This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa File: 9a96c02c-ad61-40ce-b5aa-def693953ba1.roa (raw, json) Hash identifier: yARkT/BOE6dAxidZJvNoWbSHbx7gq5knAbB4WctGOtg= Subject key identifier: F4:9F:AC:5E:FD:CF:0A:53:C8:C5:D6:30:F3:7D:64:0D:6F:20:AE:3B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6E1E193CFB1D2FD83A24006F1689DDA211E7DC70 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa Signing time: Sun 16 Nov 2025 00:50:08 +0000 ROA not before: Sun 16 Nov 2025 00:50:08 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:1e:19:3c:fb:1d:2f:d8:3a:24:00:6f:16:89:dd:a2:11:e7:dc:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 16 00:50:08 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=004abff0b8b65a8233382f6e537b27f49e33611a27d466157940136601c26640, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a3:a9:8b:b5:df:8c:a6:71:be:1f:b6:29:87: 10:a3:24:65:4d:be:4c:a6:be:d5:c2:8f:cd:a1:89: 93:d6:31:95:59:6a:c7:d1:63:64:4b:39:2c:9b:47: bd:f2:dc:49:ec:6c:66:e3:ea:cd:2a:b1:64:bc:aa: 78:f2:33:f8:db:da:8a:82:83:ce:48:a9:c1:42:d0: 82:43:a4:0d:70:5b:63:2a:04:d4:83:fc:fa:24:ce: f6:47:71:28:06:b8:aa:a0:94:0f:9d:40:d6:f0:8c: b3:c9:62:3d:a5:2a:a9:cb:57:7b:c9:b5:be:bd:4c: cb:df:62:d9:78:92:4a:79:8f:12:55:af:8c:67:1d: 29:e9:bf:79:b0:6d:d6:9a:4a:20:fe:52:dd:58:b6: dd:e7:d5:b8:7e:75:31:2c:9a:9c:34:07:c5:de:67: 61:47:ca:b2:37:d5:85:77:34:96:73:d2:46:bb:bd: 33:26:14:23:b1:f2:5d:71:ce:fc:1f:a1:b7:4a:0b: 2b:a7:69:74:36:f1:fb:7f:c8:e2:c6:c4:f3:95:de: 47:87:00:0f:b3:ce:42:ed:8e:0a:1a:ad:01:fa:a7: d1:a9:85:a5:f6:f1:af:1e:19:17:db:d2:26:8f:79: 25:86:d8:64:92:41:4e:4d:76:2c:59:b1:c0:df:b3: 52:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9F:AC:5E:FD:CF:0A:53:C8:C5:D6:30:F3:7D:64:0D:6F:20:AE:3B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 32:ba:aa:3d:34:76:d5:5d:09:d0:cc:1b:90:84:cf:9c:37:6f: 07:7e:c0:c1:03:01:ed:45:0e:c9:fd:26:f3:38:26:aa:6e:09: c7:f4:8c:8a:3c:d3:5b:a3:24:ff:21:c5:1b:d1:83:59:08:40: 70:b9:de:62:f1:72:eb:a6:3f:ed:18:1c:2c:9a:0e:1e:3f:4b: 9b:11:5a:a2:7d:d8:73:e5:a8:1c:2e:a5:b2:70:92:06:53:48: fc:f6:54:11:07:75:42:de:c0:3d:3c:99:3f:d3:fa:86:d6:fe: 55:d5:0f:c2:c8:a1:23:af:f7:bc:19:ab:c9:f2:c9:36:e3:85: a6:a8:44:60:13:87:58:f9:89:ab:4a:f9:64:e3:e9:19:fe:ad: a5:19:46:db:56:8d:3d:c4:69:29:26:cf:04:52:ac:8f:2b:eb: 81:09:05:3e:16:ee:23:6f:03:ea:04:03:2b:c3:e0:e5:73:3d: cd:03:d1:06:d3:d8:01:48:af:59:ae:3b:d0:53:17:d6:ed:c6: 50:7d:00:dd:fd:89:54:4d:89:f7:de:d5:cf:2a:b4:b2:03:29: 9c:06:1a:dc:09:13:bf:43:91:5f:22:98:ba:03:be:2b:e5:69: 23:6f:9f:02:4c:21:b3:d2:3e:15:7f:4f:3a:a5:1c:ea:61:81: dc:16:87:dc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbh4ZPPsdL9g6JABvFondohHn3HAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTE2MDA1MDA4WhcNMjUxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDRhYmZmMGI4YjY1YTgyMzMzODJmNmU1MzdiMjdmNDll MzM2MTFhMjdkNDY2MTU3OTQwMTM2NjAxYzI2NjQwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGo6mLtd+MpnG+H7YphxCjJGVNvkymvtXCj82hiZPWMZVZ asfRY2RLOSybR73y3EnsbGbj6s0qsWS8qnjyM/jb2oqCg85IqcFC0IJDpA1wW2Mq BNSD/PokzvZHcSgGuKqglA+dQNbwjLPJYj2lKqnLV3vJtb69TMvfYtl4kkp5jxJV r4xnHSnpv3mwbdaaSiD+Ut1Ytt3n1bh+dTEsmpw0B8XeZ2FHyrI31YV3NJZz0ka7 vTMmFCOx8l1xzvwfobdKCyunaXQ28ft/yOLGxPOV3keHAA+zzkLtjgoarQH6p9Gp haX28a8eGRfb0iaPeSWG2GSSQU5NdixZscDfs1IxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9J+sXv3PClPIxdYw831kDW8grjswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzlhOTZjMDJjLWFkNjEtNDBjZS1iNWFhLWRlZjY5Mzk1M2JhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBADK6qj00dtVdCdDMG5CEz5w3 bwd+wMEDAe1FDsn9JvM4JqpuCcf0jIo801ujJP8hxRvRg1kIQHC53mLxcuumP+0Y HCyaDh4/S5sRWqJ92HPlqBwupbJwkgZTSPz2VBEHdULewD08mT/T+obW/lXVD8LI oSOv97wZq8nyyTbjhaaoRGATh1j5iatK+WTj6Rn+raUZRttWjT3EaSkmzwRSrI8r 64EJBT4W7iNvA+oEAyvD4OVzPc0D0QbT2AFIr1muO9BTF9btxlB9AN39iVRNiffe 1c8qtLIDKZwGGtwJE79DkV8imLoDvivlaSNvnwJMIbPSPhV/TzqlHOphgdwWh9w= -----END CERTIFICATE-----Generated at Sat Dec 6 10:32:43 2025 by rpki-client