This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa File: 1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa (raw, json) Hash identifier: QSXxtFQ5gZ0YWXfS8Yu03M/3R+Urt4qiHRJNMPPIW7w= Subject key identifier: C0:0A:E7:32:81:30:49:71:2E:8A:5C:8E:B5:1D:4C:D7:8F:5A:2F:76 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5BED4CACB20E49AE9F3A1DA3B32BCCBBAF138A33 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa Signing time: Sat 22 Nov 2025 00:00:10 +0000 ROA not before: Sat 22 Nov 2025 00:00:10 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:ed:4c:ac:b2:0e:49:ae:9f:3a:1d:a3:b3:2b:cc:bb:af:13:8a:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 22 00:00:10 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=a0a17b0784936c9b2aedbdb4dcdb6592ac23af41713c76e01fb4af2f40c2ebc6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:8f:f3:10:38:5d:15:6b:f4:50:46:0e:cc:3b: ef:39:df:d4:62:54:03:31:f4:0b:18:b1:2e:27:32: 47:bb:48:cc:6c:80:3e:40:47:20:0b:3d:a5:aa:df: ba:51:2b:e6:46:79:79:b9:00:5b:f2:42:a7:9e:5f: 31:e1:96:9d:e5:53:a6:6d:6e:20:85:c5:1b:f1:56: eb:40:cc:70:84:81:15:b7:fe:ec:0b:02:b1:78:0e: 1c:73:a7:0f:da:91:b3:9a:32:49:d0:80:38:78:2b: 74:3d:a8:3e:47:11:c7:54:a6:59:10:37:83:11:ac: 96:ec:f6:0a:7b:08:63:45:36:de:17:12:0b:77:2c: 65:26:3d:54:9e:7d:be:f0:40:5c:88:92:3d:3c:2a: a2:47:2f:a3:a0:ff:06:41:1f:39:40:a7:99:69:14: f0:13:f2:9d:4d:c1:fd:ad:7a:ac:e8:6a:6a:7f:22: 8a:28:dc:bd:87:3d:c4:46:f3:1d:14:c4:6e:29:f9: b7:3f:b8:65:0a:c1:f2:71:16:38:8d:84:51:9e:8a: d7:d6:a8:c2:b1:0a:a2:a4:29:47:cf:a8:58:10:46: 65:5e:59:61:86:c4:4b:79:2b:01:d5:9c:ad:88:ec: b5:ce:a7:26:f4:31:b1:85:87:0b:0e:3f:7f:0a:f9: 98:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:0A:E7:32:81:30:49:71:2E:8A:5C:8E:B5:1D:4C:D7:8F:5A:2F:76 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6102::/48 Signature Algorithm: sha256WithRSAEncryption 65:a0:38:1c:cc:1a:09:a5:fb:85:fd:82:fd:f8:c9:77:9e:c4: e6:70:20:6d:62:e1:c1:24:be:20:ba:38:0b:d0:42:8d:b2:8e: e6:34:77:a5:2f:96:07:69:0f:bf:29:0d:6d:13:9c:8a:7b:40: dc:d1:d2:b7:12:dc:56:9c:e6:f6:54:ea:20:25:70:02:eb:97: 34:b1:fc:31:80:e2:88:cb:bc:70:91:4f:f6:fc:d6:57:df:60: 85:f2:55:7e:a7:bb:b0:b3:17:f9:f4:bb:02:60:1a:c2:a7:c8: 4d:67:0a:34:aa:dc:ef:b4:d2:41:de:45:9c:d2:eb:58:28:dd: ff:54:ab:9d:fa:93:69:dd:76:70:2f:9d:88:af:aa:ea:e4:58: 88:a8:7f:eb:8c:ae:26:4d:39:38:8a:d5:cf:29:f7:e2:f1:90: 84:1e:6f:5e:cb:3d:9e:e1:8f:04:26:f9:34:17:45:3e:a3:86: c2:87:34:84:bc:9c:c7:4d:9c:fe:d3:15:1a:77:a8:fc:2e:75: 90:a5:ba:a7:30:38:27:7e:e9:17:1b:3a:a1:f4:06:c3:0c:6b: dc:56:b3:4d:f8:f1:b3:fe:a0:be:39:8e:80:c5:fe:79:85:ca: 30:05:05:55:1c:7f:1c:44:02:8b:b3:a1:7d:95:86:dd:6b:a4: da:bf:f0:2f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW+1MrLIOSa6fOh2jsyvMu68TijMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTIyMDAwMDEwWhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGExN2IwNzg0OTM2YzliMmFlZGJkYjRkY2RiNjU5MmFj MjNhZjQxNzEzYzc2ZTAxZmI0YWYyZjQwYzJlYmM2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGj/MQOF0Va/RQRg7MO+8539RiVAMx9AsYsS4nMke7SMxs gD5ARyALPaWq37pRK+ZGeXm5AFvyQqeeXzHhlp3lU6ZtbiCFxRvxVutAzHCEgRW3 /uwLArF4Dhxzpw/akbOaMknQgDh4K3Q9qD5HEcdUplkQN4MRrJbs9gp7CGNFNt4X Egt3LGUmPVSefb7wQFyIkj08KqJHL6Og/wZBHzlAp5lpFPAT8p1Nwf2teqzoamp/ Iooo3L2HPcRG8x0UxG4p+bc/uGUKwfJxFjiNhFGeitfWqMKxCqKkKUfPqFgQRmVe WWGGxEt5KwHVnK2I7LXOpyb0MbGFhwsOP38K+Zh3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwArnMoEwSXEuilyOtR1M149aL3YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFlMGNjZDU0LTIzY2MtNDkzOS1iNWJlLTFjZjFjOGFiNjE1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQIwDQYJKoZIhvcNAQELBQADggEBAGWgOBzMGgml+4X9gv34yXee xOZwIG1i4cEkviC6OAvQQo2yjuY0d6UvlgdpD78pDW0TnIp7QNzR0rcS3Fac5vZU 6iAlcALrlzSx/DGA4ojLvHCRT/b81lffYIXyVX6nu7CzF/n0uwJgGsKnyE1nCjSq 3O+00kHeRZzS61go3f9Uq536k2nddnAvnYivqurkWIiof+uMriZNOTiK1c8p9+Lx kIQeb17LPZ7hjwQm+TQXRT6jhsKHNIS8nMdNnP7TFRp3qPwudZCluqcwOCd+6Rcb OqH0BsMMa9xWs0348bP+oL45joDF/nmFyjAFBVUcfxxEAouzoX2Vht1rpNq/8C8= -----END CERTIFICATE-----Generated at Sat Dec 6 15:56:06 2025 by rpki-client