This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7789e577-d458-4bf2-9fdd-d815202ea397.roa File: 7789e577-d458-4bf2-9fdd-d815202ea397.roa (raw, json) Hash identifier: uQws5pKLOo3EMpLhqYVp5wbvWu2ZEMuvjcXm4+yMLOo= Subject key identifier: 3E:DB:EB:11:CC:F8:CC:4C:68:42:B4:60:B0:C0:1E:AC:2B:A1:83:01 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2E5A2E997F2569B923118009C973889ABF6EB1F5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7789e577-d458-4bf2-9fdd-d815202ea397.roa Signing time: Sat 06 Dec 2025 00:30:14 +0000 ROA not before: Sat 06 Dec 2025 00:30:14 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7400::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:5a:2e:99:7f:25:69:b9:23:11:80:09:c9:73:88:9a:bf:6e:b1:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 6 00:30:14 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=b9323669b92bf869727a83cc8004357c8b97b2832b715a2e577e5aa63243ab69, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:57:30:dc:10:a0:89:d8:be:b6:96:22:f1:e2: be:d1:0f:ba:d3:5b:5d:d1:fd:89:ce:06:df:6c:44: a5:cf:b7:be:8a:70:99:69:36:16:17:fe:13:5c:e1: 04:59:b4:07:8d:7e:c7:62:9b:83:c3:b9:c7:70:6f: dd:3f:26:f9:b0:cd:b7:d9:eb:6c:42:61:24:00:96: 48:93:8d:ef:f1:9b:80:e2:b0:f6:8e:a7:8c:6c:27: a7:11:77:38:56:0d:2a:d2:aa:cd:ba:12:1a:b4:e9: b2:ce:de:99:ab:9c:51:63:94:ba:df:ae:16:21:3f: 6b:f7:19:a5:0a:4e:c8:da:59:33:32:d6:3f:0f:de: e6:01:29:05:47:89:f0:43:3d:d0:11:b5:a3:9d:0e: 2e:28:92:bc:d6:f6:c1:c1:8b:cd:90:4c:6f:2c:24: d2:74:b3:66:ff:72:27:86:28:12:68:24:c8:77:fe: dd:fb:7f:52:5b:87:f8:95:96:1f:8b:fa:1c:af:23: de:65:be:ee:65:43:4b:8d:96:9f:e1:2b:1b:c9:b2: 18:8f:05:ab:df:fd:4d:18:35:93:50:71:6b:9d:b8: 47:c8:62:2a:d6:00:30:b7:b9:30:29:cb:e2:3a:97: d9:31:53:64:3d:7a:c3:e5:cb:b3:f5:e3:e0:09:76: be:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:DB:EB:11:CC:F8:CC:4C:68:42:B4:60:B0:C0:1E:AC:2B:A1:83:01 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7789e577-d458-4bf2-9fdd-d815202ea397.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7400::/38 Signature Algorithm: sha256WithRSAEncryption 1a:bb:a7:18:23:e9:82:97:dd:ba:34:e3:74:1f:56:52:cc:15: 4e:59:52:43:07:7f:d8:3a:9c:fa:0d:ce:61:8b:28:a1:fd:29: 20:a5:2a:67:41:d7:65:10:d1:eb:04:c0:c4:a0:a2:fe:04:c7: 1f:e3:fd:11:a3:c6:f0:a4:fb:64:5b:f0:0f:58:e4:53:e6:f1: 27:25:1b:b5:b3:96:36:f6:19:69:56:0c:b3:ac:74:67:96:3f: 1f:9e:33:a8:18:e6:19:a4:df:bb:18:ca:89:cd:a1:1f:ba:cf: 4c:10:97:4f:b6:3c:c3:7e:be:d8:a0:45:d9:4b:3c:06:be:0e: 78:90:42:85:e2:a0:ea:a2:0b:78:1e:cf:9a:dc:ae:26:9f:77: 04:8e:e4:35:23:66:bc:75:34:e6:b5:78:ba:02:80:56:61:e1: 5a:d8:8d:2d:de:eb:f0:15:d8:30:7c:1e:f0:48:a5:3e:52:c2: f8:e1:03:86:72:fc:57:cf:54:62:a6:33:5e:0e:6b:d2:7d:15: a4:f8:ec:6f:cf:11:81:d5:a2:5f:6b:99:18:d1:f3:c6:8d:9f: 31:5a:16:13:76:ee:19:0b:20:80:eb:ca:f1:87:65:f8:be:f4: bd:51:50:b5:a3:79:20:1b:ad:7d:50:dc:72:0d:e7:35:d6:85: 0e:94:fa:95 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULloumX8labkjEYAJyXOImr9usfUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjA2MDAzMDE0WhcNMjYwMzA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTMyMzY2OWI5MmJmODY5NzI3YTgzY2M4MDA0MzU3Yzhi OTdiMjgzMmI3MTVhMmU1NzdlNWFhNjMyNDNhYjY5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeVzDcEKCJ2L62liLx4r7RD7rTW13R/YnOBt9sRKXPt76K cJlpNhYX/hNc4QRZtAeNfsdim4PDucdwb90/JvmwzbfZ62xCYSQAlkiTje/xm4Di sPaOp4xsJ6cRdzhWDSrSqs26Ehq06bLO3pmrnFFjlLrfrhYhP2v3GaUKTsjaWTMy 1j8P3uYBKQVHifBDPdARtaOdDi4okrzW9sHBi82QTG8sJNJ0s2b/cieGKBJoJMh3 /t37f1Jbh/iVlh+L+hyvI95lvu5lQ0uNlp/hKxvJshiPBavf/U0YNZNQcWuduEfI YirWADC3uTApy+I6l9kxU2Q9esPly7P14+AJdr4zAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUPtvrEcz4zExoQrRgsMAerCuhgwEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc3ODllNTc3LWQ0NTgtNGJmMi05ZmRkLWQ4MTUyMDJlYTM5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAPDydDANBgkqhkiG9w0BAQsFAAOCAQEAGrunGCPpgpfdujTjdB9WUswV TllSQwd/2Dqc+g3OYYsoof0pIKUqZ0HXZRDR6wTAxKCi/gTHH+P9EaPG8KT7ZFvw D1jkU+bxJyUbtbOWNvYZaVYMs6x0Z5Y/H54zqBjmGaTfuxjKic2hH7rPTBCXT7Y8 w36+2KBF2Us8Br4OeJBCheKg6qILeB7PmtyuJp93BI7kNSNmvHU05rV4ugKAVmHh WtiNLd7r8BXYMHwe8EilPlLC+OEDhnL8V89UYqYzXg5r0n0VpPjsb88RgdWiX2uZ GNHzxo2fMVoWE3buGQsggOvK8Ydl+L70vVFQtaN5IButfVDccg3nNdaFDpT6lQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:22:44 2025 by rpki-client