This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa File: 475cc5b7-0cb2-405e-b609-203b983a6087.roa (raw, json) Hash identifier: FQDBqoB1Rvr3j3hp4aCsCTCn8BBFG+nOIgyhB94m31g= Subject key identifier: E1:BA:21:82:EE:D5:D7:7B:AB:FA:05:62:11:79:DF:87:EA:68:08:29 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6F3A761EB01523832D2F06DA71B363E4D0E40C21 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa Signing time: Sat 15 Nov 2025 05:10:42 +0000 ROA not before: Sat 15 Nov 2025 05:10:42 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ed00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:3a:76:1e:b0:15:23:83:2d:2f:06:da:71:b3:63:e4:d0:e4:0c:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 05:10:42 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=e0fb333f170780acbfcf35987fe64f24b530a5fc9efa95bfce486e2e526b9a6b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0c:e3:66:c7:66:25:f2:70:21:7e:da:d7:62: 0b:f8:e5:5b:3c:40:2d:d9:b8:06:b6:82:38:41:48: c2:8a:b3:ea:b9:50:f9:8e:3d:35:7f:63:07:39:7a: 37:6d:cd:a8:f0:ce:1b:39:80:dd:87:d6:5a:8f:48: 49:78:f0:10:10:d0:99:ff:85:0f:ba:e1:0f:bf:16: 96:50:ca:b5:d2:fb:68:86:9f:ad:fc:6d:52:d4:e5: 39:30:3f:18:df:cf:86:e7:4c:e9:86:59:cc:16:20: d6:2c:02:68:94:59:75:99:1a:c6:ee:43:22:6a:2b: 11:56:57:db:88:a9:b8:eb:b0:fd:b8:07:e4:d7:09: bf:fa:13:be:38:a7:d3:50:7e:a2:35:4c:0f:85:1f: 72:1b:cc:75:62:a9:d7:fc:b3:b2:70:89:3f:e8:d3: 5a:47:bc:53:d7:7b:aa:19:0a:1b:8e:10:54:08:1c: d9:6b:c7:e2:21:2d:61:8b:b2:b2:01:48:8e:82:5c: b3:de:5f:ed:b1:11:36:33:fb:a2:4d:6b:96:18:02: eb:7e:0d:26:35:e4:77:c0:a9:fe:d9:f5:d5:ed:c2: 9e:7d:30:f4:6f:ae:a2:bb:2a:05:5b:d0:48:53:a1: 3c:9a:92:3b:8b:39:67:fd:17:b1:74:5d:10:13:81: f5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:BA:21:82:EE:D5:D7:7B:AB:FA:05:62:11:79:DF:87:EA:68:08:29 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ed00::/40 Signature Algorithm: sha256WithRSAEncryption 32:7b:dd:fb:1e:ad:a1:78:11:b7:74:cf:55:6a:4b:51:33:7a: 9b:42:32:f2:22:a2:f9:a1:40:5f:ab:84:c4:ab:38:38:3d:9b: 96:1b:50:a3:8e:08:99:3b:31:b4:8b:d6:a0:18:9a:9e:8c:aa: 26:86:6e:3a:7b:f3:46:e3:a9:c4:5d:2a:9c:e2:b6:48:a7:64: c9:0e:9b:ec:d9:fb:d8:3c:d0:14:d9:55:f2:c9:65:2d:dc:b3: ea:79:61:6e:9b:8d:a5:49:04:4e:c6:45:23:3f:1a:62:ec:b7: a9:0f:17:ca:87:c6:09:eb:42:23:72:02:68:17:f3:71:95:b7: a2:e6:fe:6f:3e:9c:0e:da:50:bc:43:01:2e:c1:42:bf:8f:64: 3f:52:a5:5c:b1:42:6e:0d:35:d0:c1:25:91:d9:51:d6:59:5e: 15:5d:68:d0:37:b4:16:12:78:0e:8b:d7:e2:ec:66:43:8d:a6: ef:6b:bf:63:c0:92:d3:79:e7:27:79:2c:5c:e0:4d:83:0a:e8: 40:44:56:a3:3b:b9:04:9c:1f:8d:68:bc:ed:0a:74:76:48:d6: d7:14:20:75:87:6f:15:06:36:ca:74:bf:e2:a9:7b:24:83:05: f8:71:09:cf:c2:d4:02:46:c8:cb:aa:f0:79:ff:00:50:85:40: f4:7d:48:43 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbzp2HrAVI4MtLwbacbNj5NDkDCEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTE1MDUxMDQyWhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGZiMzMzZjE3MDc4MGFjYmZjZjM1OTg3ZmU2NGYyNGI1 MzBhNWZjOWVmYTk1YmZjZTQ4NmUyZTUyNmI5YTZiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDODONmx2Yl8nAhftrXYgv45Vs8QC3ZuAa2gjhBSMKKs+q5 UPmOPTV/Ywc5ejdtzajwzhs5gN2H1lqPSEl48BAQ0Jn/hQ+64Q+/FpZQyrXS+2iG n638bVLU5TkwPxjfz4bnTOmGWcwWINYsAmiUWXWZGsbuQyJqKxFWV9uIqbjrsP24 B+TXCb/6E744p9NQfqI1TA+FH3IbzHViqdf8s7JwiT/o01pHvFPXe6oZChuOEFQI HNlrx+IhLWGLsrIBSI6CXLPeX+2xETYz+6JNa5YYAut+DSY15HfAqf7Z9dXtwp59 MPRvrqK7KgVb0EhToTyakjuLOWf9F7F0XRATgfUDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU4bohgu7V13ur+gViEXnfh+poCCkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ3NWNjNWI3LTBjYjItNDA1ZS1iNjA5LTIwM2I5ODNhNjA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77TANBgkqhkiG9w0BAQsFAAOCAQEAMnvd+x6toXgRt3TPVWpLUTN6 m0Iy8iKi+aFAX6uExKs4OD2blhtQo44ImTsxtIvWoBianoyqJoZuOnvzRuOpxF0q nOK2SKdkyQ6b7Nn72DzQFNlV8sllLdyz6nlhbpuNpUkETsZFIz8aYuy3qQ8XyofG CetCI3ICaBfzcZW3oub+bz6cDtpQvEMBLsFCv49kP1KlXLFCbg010MElkdlR1lle FV1o0De0FhJ4DovX4uxmQ42m72u/Y8CS03nnJ3ksXOBNgwroQERWozu5BJwfjWi8 7Qp0dkjW1xQgdYdvFQY2ynS/4ql7JIMF+HEJz8LUAkbIy6rwef8AUIVA9H1IQw== -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:17 2025 by rpki-client