This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5457865c-05cc-496e-9344-9ec7d5266e2c.roa File: 5457865c-05cc-496e-9344-9ec7d5266e2c.roa (raw, json) Hash identifier: GV3v3OiOTPIExYVwWl5aZbHwADOJYjSxQIHXU/muqHM= Subject key identifier: 25:92:1F:CB:67:2B:ED:04:3B:5C:4B:76:DA:52:86:1B:CE:CD:1D:E4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4FDA0F8403EBFB70440673BC7A763B06EC7085A8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5457865c-05cc-496e-9344-9ec7d5266e2c.roa Signing time: Sun 16 Nov 2025 00:50:29 +0000 ROA not before: Sun 16 Nov 2025 00:50:29 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:da:0f:84:03:eb:fb:70:44:06:73:bc:7a:76:3b:06:ec:70:85:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 16 00:50:29 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=0a45f0cd315cb445fa700358dd3257ce7339ab537778f7d53e0f0624d4dfbe15, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:69:f8:b2:f2:34:21:c5:54:13:e9:8f:d1:2b: ad:94:33:9a:16:a9:34:0e:a3:61:e7:54:07:bd:42: 5c:39:1d:35:c5:09:82:ff:48:26:b2:31:3d:bb:58: 2d:89:05:69:c5:fd:fb:34:ca:96:2a:b1:05:c8:a0: c3:c4:6a:59:43:32:09:38:88:01:77:d5:a5:c1:42: d5:5a:40:aa:7d:4b:6a:46:c0:db:fc:f3:df:f0:56: 57:f6:37:0a:c1:87:9e:44:fd:d4:49:1d:3e:87:4b: 26:a2:16:79:d7:d8:2a:df:de:8d:40:59:f6:0f:a2: a4:f5:ff:8d:10:85:65:23:a3:61:0c:cc:f4:43:20: 3a:ff:70:93:2b:08:73:25:64:8e:47:62:0b:fc:66: 74:c4:41:ae:50:ca:0b:52:f0:8b:22:bc:fd:5e:b6: b9:ea:4d:c4:71:a1:b6:4b:7c:d0:0d:ae:3a:17:35: 9a:1c:08:63:7b:45:67:88:1d:90:27:56:4c:4e:bc: f6:cd:6f:6a:a0:97:58:d7:54:9a:86:b3:62:d0:ff: e5:fc:ee:da:2e:54:b1:42:67:58:f4:24:de:84:2f: 94:cd:a8:64:db:0f:fe:90:c8:fe:3f:1a:80:76:d7: b7:dd:4d:e1:78:34:c8:17:a5:e1:a8:dc:84:13:f7: dc:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:92:1F:CB:67:2B:ED:04:3B:5C:4B:76:DA:52:86:1B:CE:CD:1D:E4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5457865c-05cc-496e-9344-9ec7d5266e2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f100::/48 Signature Algorithm: sha256WithRSAEncryption 63:4b:ba:1e:b5:5a:8b:ae:e8:eb:34:af:6a:9c:b1:f2:15:4a: 5a:73:a8:77:50:0f:8a:79:da:af:39:b1:d1:b4:b2:be:ae:7e: 49:d5:84:e6:11:84:aa:0e:b3:8d:67:d1:90:62:66:e7:6d:34: f9:06:0c:77:be:f8:7a:46:a5:16:7b:3d:0e:bf:de:8f:f1:b6: 33:42:09:17:30:19:d7:f6:f6:2f:4e:8b:15:57:9a:e6:97:88: ad:a3:67:08:31:76:6b:18:83:46:6d:b8:2d:2a:c3:ef:77:d2: 5a:6a:7e:39:5b:3d:27:6d:a9:32:87:f7:f1:1d:de:4a:00:6b: 4e:8c:d5:fe:0f:48:8a:4e:d9:c9:b8:45:14:9e:4e:fd:4a:56: c8:cb:49:ee:13:1d:0b:26:29:9e:83:91:7d:a4:b0:04:7c:aa: f1:31:af:82:ea:d4:88:13:e2:44:02:c8:a1:dc:6e:37:2e:76: 80:65:66:c0:52:de:07:54:a1:f9:7b:44:3d:7d:67:b7:e3:88: 95:7d:b8:49:0b:f5:26:a6:60:db:9d:2c:0e:f1:40:40:4c:4e: a1:08:50:22:35:6b:73:a7:47:63:e4:97:2d:59:46:fc:75:3c: 0a:b7:b4:7b:7b:42:68:74:ea:f9:ef:67:56:44:c5:76:cb:5e: c5:79:55:89 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUT9oPhAPr+3BEBnO8enY7BuxwhagwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTE2MDA1MDI5WhcNMjUxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTQ1ZjBjZDMxNWNiNDQ1ZmE3MDAzNThkZDMyNTdjZTcz MzlhYjUzNzc3OGY3ZDUzZTBmMDYyNGQ0ZGZiZTE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHafiy8jQhxVQT6Y/RK62UM5oWqTQOo2HnVAe9Qlw5HTXF CYL/SCayMT27WC2JBWnF/fs0ypYqsQXIoMPEallDMgk4iAF31aXBQtVaQKp9S2pG wNv889/wVlf2NwrBh55E/dRJHT6HSyaiFnnX2Crf3o1AWfYPoqT1/40QhWUjo2EM zPRDIDr/cJMrCHMlZI5HYgv8ZnTEQa5QygtS8IsivP1etrnqTcRxobZLfNANrjoX NZocCGN7RWeIHZAnVkxOvPbNb2qgl1jXVJqGs2LQ/+X87touVLFCZ1j0JN6EL5TN qGTbD/6QyP4/GoB217fdTeF4NMgXpeGo3IQT99wBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJZIfy2cr7QQ7XEt22lKGG87NHeQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NTc4NjVjLTA1Y2MtNDk2ZS05MzQ0LTllYzdkNTI2NmUyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QAwDQYJKoZIhvcNAQELBQADggEBAGNLuh61Wouu6Os0r2qcsfIV SlpzqHdQD4p52q85sdG0sr6ufknVhOYRhKoOs41n0ZBiZudtNPkGDHe++HpGpRZ7 PQ6/3o/xtjNCCRcwGdf29i9OixVXmuaXiK2jZwgxdmsYg0ZtuC0qw+930lpqfjlb PSdtqTKH9/Ed3koAa06M1f4PSIpO2cm4RRSeTv1KVsjLSe4THQsmKZ6DkX2ksAR8 qvExr4Lq1IgT4kQCyKHcbjcudoBlZsBS3gdUofl7RD19Z7fjiJV9uEkL9SamYNud LA7xQEBMTqEIUCI1a3OnR2Pkly1ZRvx1PAq3tHt7Qmh06vnvZ1ZExXbLXsV5VYk= -----END CERTIFICATE-----Generated at Sat Dec 6 12:15:47 2025 by rpki-client