This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa File: 20df74ce-1a64-4df1-b616-115d4493a969.roa (raw, json) Hash identifier: YDfWww4kJBfvOj2meoX2i5ETmz4Axxo1xzErNtGj0dE= Subject key identifier: 14:E4:D8:EF:0D:6F:B0:AD:ED:B6:7A:E9:BA:4A:34:8F:78:B4:A3:F0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3C818A938EB241F63CF3821CAFC40C40EF7837ED Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa Signing time: Sat 15 Nov 2025 04:00:04 +0000 ROA not before: Sat 15 Nov 2025 04:00:04 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:81:8a:93:8e:b2:41:f6:3c:f3:82:1c:af:c4:0c:40:ef:78:37:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 04:00:04 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=1c1e6e566206606e50b935dcef753fc932e8535dce1a9bdd0f4045c55618570e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:81:8e:ab:1e:2d:96:d0:79:8b:1d:1d:fe:e6: e0:db:8a:8d:18:f0:cb:39:b7:13:1b:1d:e0:49:11: c7:2b:6a:24:65:a8:8d:bb:a3:6c:43:51:cf:8f:7b: a4:8b:74:d3:bd:cc:e2:32:17:3b:cf:d0:f8:bc:ff: 66:a9:9d:a6:82:ab:c9:57:9b:f4:5a:30:8f:60:7e: 42:04:d2:20:51:ba:7b:bf:73:2b:60:45:ac:a1:3f: a2:f2:dd:bd:8e:0f:cb:aa:48:0e:30:a8:df:6e:40: 3c:d9:ae:2b:7b:d0:8d:5e:f1:6a:40:ed:77:d2:62: e0:bd:2f:08:53:76:92:9c:e8:a1:41:9a:5c:cc:41: d4:74:f4:81:eb:20:e5:3e:2d:26:2d:65:20:c5:21: 4c:70:05:a5:7d:1b:a2:22:da:46:9b:a7:eb:8a:51: b3:df:33:82:b9:b3:ae:fd:fb:3c:1e:49:43:f9:9a: 70:23:75:09:67:4f:81:21:ba:a3:1d:c1:a7:ae:c1: 43:e6:b4:79:07:35:3f:0a:88:55:76:f4:27:07:62: b4:b4:3c:a7:dd:b7:f6:94:89:b7:2f:8c:07:56:0c: ca:62:61:a5:78:3b:55:11:79:cb:19:b1:a6:37:ab: fa:9e:21:ed:19:d9:f9:03:28:e9:71:dd:48:9a:b2: 63:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E4:D8:EF:0D:6F:B0:AD:ED:B6:7A:E9:BA:4A:34:8F:78:B4:A3:F0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:200::/40 Signature Algorithm: sha256WithRSAEncryption 8f:6f:8e:c6:d0:fc:13:29:5a:b6:3c:1a:3f:38:17:70:b2:10: 31:01:67:28:7e:ca:20:ed:66:d5:dd:dd:0e:89:0b:af:eb:43: dc:03:67:dc:bd:5b:90:14:75:f1:51:ec:c9:27:de:ff:84:9d: 8d:c7:46:5c:b9:f8:ca:b4:b6:16:d1:ed:e5:f7:59:7c:1d:92: 5d:6b:9e:46:18:86:8e:d9:8e:72:f3:ff:51:d4:b6:90:da:2a: 41:84:0f:2b:67:ad:e3:a4:bf:fd:81:37:a4:dd:54:1a:d9:72: bf:8a:c3:d9:04:14:8f:35:73:76:d4:48:7e:66:ff:80:8e:7d: 75:8c:39:40:2d:40:f3:96:2f:a2:cd:10:c8:89:b6:60:0c:56: a6:e7:37:26:62:df:e0:2b:33:fb:ac:26:cc:44:e2:14:23:11: 06:6e:d7:6d:5e:8a:2b:3d:49:e8:7e:70:61:30:08:a0:fd:99: 03:85:c6:ba:63:53:43:25:ed:5d:9d:fd:6a:48:81:1d:8f:98: df:93:14:05:d5:b0:8a:9a:71:08:b5:22:02:e5:35:69:ea:bb: 4c:f7:d7:50:2c:ce:7b:44:b5:f0:8b:fe:3b:f2:82:0c:e5:bb: d7:75:e3:fb:0b:c0:c0:9f:57:df:b4:42:13:b8:fb:83:0a:3b: 96:dd:34:b9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPIGKk46yQfY884Icr8QMQO94N+0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTE1MDQwMDA0WhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzFlNmU1NjYyMDY2MDZlNTBiOTM1ZGNlZjc1M2ZjOTMy ZTg1MzVkY2UxYTliZGQwZjQwNDVjNTU2MTg1NzBlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRgY6rHi2W0HmLHR3+5uDbio0Y8Ms5txMbHeBJEccraiRl qI27o2xDUc+Pe6SLdNO9zOIyFzvP0Pi8/2apnaaCq8lXm/RaMI9gfkIE0iBRunu/ cytgRayhP6Ly3b2OD8uqSA4wqN9uQDzZrit70I1e8WpA7XfSYuC9LwhTdpKc6KFB mlzMQdR09IHrIOU+LSYtZSDFIUxwBaV9G6Ii2kabp+uKUbPfM4K5s679+zweSUP5 mnAjdQlnT4EhuqMdwaeuwUPmtHkHNT8KiFV29CcHYrS0PKfdt/aUibcvjAdWDMpi YaV4O1URecsZsaY3q/qeIe0Z2fkDKOlx3UiasmMDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUFOTY7w1vsK3ttnrpuko0j3i0o/AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIwZGY3NGNlLTFhNjQtNGRmMS1iNjE2LTExNWQ0NDkzYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwAjANBgkqhkiG9w0BAQsFAAOCAQEAj2+OxtD8EylatjwaPzgXcLIQ MQFnKH7KIO1m1d3dDokLr+tD3ANn3L1bkBR18VHsySfe/4SdjcdGXLn4yrS2FtHt 5fdZfB2SXWueRhiGjtmOcvP/UdS2kNoqQYQPK2et46S//YE3pN1UGtlyv4rD2QQU jzVzdtRIfmb/gI59dYw5QC1A85Yvos0QyIm2YAxWpuc3JmLf4Csz+6wmzETiFCMR Bm7XbV6KKz1J6H5wYTAIoP2ZA4XGumNTQyXtXZ39akiBHY+Y35MUBdWwippxCLUi AuU1aeq7TPfXUCzOe0S18Iv+O/KCDOW713Xj+wvAwJ9X37RCE7j7gwo7lt00uQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:26:31 2025 by rpki-client