This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1bc377fa-1761-4743-8aa4-75cb00b977af.roa File: 1bc377fa-1761-4743-8aa4-75cb00b977af.roa (raw, json) Hash identifier: vMyp5WAvXayWM1EpC/kmWGvtmwcVvevJ5JHKS8ilgcU= Subject key identifier: 85:4C:41:8A:63:9D:9E:78:5B:6F:99:D0:13:49:FD:06:F8:04:91:37 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 43C0D2B88137BE19AE2F9A73459AC05A2B2E377D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1bc377fa-1761-4743-8aa4-75cb00b977af.roa Signing time: Tue 02 Dec 2025 01:30:10 +0000 ROA not before: Tue 02 Dec 2025 01:30:10 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:c0:d2:b8:81:37:be:19:ae:2f:9a:73:45:9a:c0:5a:2b:2e:37:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 2 01:30:10 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=9f4ceac45fc204314eea182a8696640c63265819b8a6688ea8e37cb27f431af1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d2:d7:36:c9:5a:cb:39:70:72:09:07:c6:33: c0:ba:fb:e4:96:cc:52:db:26:d9:62:c7:c7:6f:5a: 56:bf:cf:13:1c:37:aa:77:58:4e:9d:29:51:88:66: 97:09:be:fa:cf:3c:3b:51:f1:b6:3b:cd:6c:be:d6: 84:0d:11:a2:87:3b:26:e6:1a:fb:cb:b3:a1:cf:77: 9e:78:49:82:8a:df:7e:f7:3c:46:7e:57:16:03:bf: 2a:85:1b:bb:a8:a8:b9:05:ac:24:9c:ab:66:08:2e: 08:43:c1:e2:a6:6f:e5:38:88:49:61:91:3c:4b:4c: 8e:8d:ac:fc:0d:46:66:13:e3:33:ad:11:a0:72:eb: e7:b4:d6:ca:f9:0f:ed:e7:14:ba:76:98:94:4d:99: 1e:3d:02:2f:09:ad:bc:b6:7d:9c:52:64:1f:c7:a6: 3d:af:6b:ac:c8:4b:08:84:e7:70:59:3d:12:46:4a: 0b:bd:d9:4d:94:8e:a8:be:e5:93:c3:64:52:b4:c0: ce:e3:8f:54:d9:71:d4:e4:aa:a3:aa:f7:1c:c5:c1: 62:81:e4:7e:9e:aa:fb:32:30:44:e4:85:3c:16:a9: eb:95:92:8d:6b:9e:de:e0:22:08:49:11:54:15:a5: 81:45:8a:73:87:85:9f:f6:3b:b9:e6:db:37:31:3a: af:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:4C:41:8A:63:9D:9E:78:5B:6F:99:D0:13:49:FD:06:F8:04:91:37 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1bc377fa-1761-4743-8aa4-75cb00b977af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1::/44 Signature Algorithm: sha256WithRSAEncryption 86:9e:54:10:55:76:ab:7f:15:f4:38:c1:2e:78:1c:81:32:e6: 7a:dd:b8:9e:2a:0d:b8:dc:8f:72:33:b3:9f:ea:77:c0:fc:39: aa:0b:f6:b2:6f:62:49:6a:20:5b:b3:07:fb:62:7b:bf:1c:59: de:b8:43:48:b8:76:cb:85:de:18:cb:5f:07:ce:7d:2d:97:4d: 12:61:24:fd:65:b5:0b:c2:41:f1:1d:21:37:7a:5c:cc:e9:60: 49:ac:d1:b3:f7:3d:07:bd:30:e4:37:65:fc:51:79:df:d1:31: ff:97:90:73:8e:31:95:43:d1:48:ac:30:15:54:a2:ff:cc:ce: ff:61:f1:4b:4c:ac:20:6d:1e:a0:58:3f:0f:dd:ff:ea:9b:8d: 0c:9e:7b:e8:41:c7:69:15:e5:78:ea:b4:9d:f1:f1:c4:e4:97: 77:b6:53:bf:79:45:95:e0:c0:23:bb:59:38:28:ab:dc:f0:70: 1a:c7:b8:55:f9:08:2a:8c:de:61:18:f1:50:d3:f5:b7:6d:4a: 92:f4:1b:ea:33:89:18:75:cc:6e:36:a8:e6:52:03:ce:22:81: 4b:2c:02:b1:43:70:c0:ef:ee:60:33:33:16:b8:15:7e:78:63: af:44:eb:42:72:cd:f2:9e:13:7f:39:f3:33:b0:d3:a0:b6:8e: 36:5e:75:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQ8DSuIE3vhmuL5pzRZrAWisuN30wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjAyMDEzMDEwWhcNMjYwMzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjRjZWFjNDVmYzIwNDMxNGVlYTE4MmE4Njk2NjQwYzYz MjY1ODE5YjhhNjY4OGVhOGUzN2NiMjdmNDMxYWYxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY0tc2yVrLOXByCQfGM8C6++SWzFLbJtlix8dvWla/zxMc N6p3WE6dKVGIZpcJvvrPPDtR8bY7zWy+1oQNEaKHOybmGvvLs6HPd554SYKK3373 PEZ+VxYDvyqFG7uoqLkFrCScq2YILghDweKmb+U4iElhkTxLTI6NrPwNRmYT4zOt EaBy6+e01sr5D+3nFLp2mJRNmR49Ai8Jrby2fZxSZB/Hpj2va6zISwiE53BZPRJG Sgu92U2Ujqi+5ZPDZFK0wM7jj1TZcdTkqqOq9xzFwWKB5H6eqvsyMETkhTwWqeuV ko1rnt7gIghJEVQVpYFFinOHhZ/2O7nm2zcxOq8nAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhUxBimOdnnhbb5nQE0n9BvgEkTcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFiYzM3N2ZhLTE3NjEtNDc0My04YWE0LTc1Y2IwMGI5NzdhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDxAAAwDQYJKoZIhvcNAQELBQADggEBAIaeVBBVdqt/FfQ4wS54HIEy 5nrduJ4qDbjcj3Izs5/qd8D8OaoL9rJvYklqIFuzB/tie78cWd64Q0i4dsuF3hjL XwfOfS2XTRJhJP1ltQvCQfEdITd6XMzpYEms0bP3PQe9MOQ3ZfxRed/RMf+XkHOO MZVD0UisMBVUov/Mzv9h8UtMrCBtHqBYPw/d/+qbjQyee+hBx2kV5XjqtJ3x8cTk l3e2U795RZXgwCO7WTgoq9zwcBrHuFX5CCqM3mEY8VDT9bdtSpL0G+oziRh1zG42 qOZSA84igUssArFDcMDv7mAzMxa4FX54Y69E60JyzfKeE3858zOw06C2jjZedeA= -----END CERTIFICATE-----Generated at Sat Dec 6 11:39:56 2025 by rpki-client