This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa File: aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa (raw, json) Hash identifier: 82aWGIUorKyvwS4BNjSHvB1cF8yvvcGDyFp8LCCBtqA= Subject key identifier: 60:BB:18:50:52:56:A6:66:4E:4E:D1:55:28:66:FA:F9:B7:AF:2F:95 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 427ABBEA7E27716968E46CD208BF06807A952BEF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa Signing time: Tue 25 Nov 2025 20:00:11 +0000 ROA not before: Tue 25 Nov 2025 20:00:11 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5502::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:7a:bb:ea:7e:27:71:69:68:e4:6c:d2:08:bf:06:80:7a:95:2b:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 25 20:00:11 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=a01f63b40b306921f9534a71fdec7ea743b690ae72cf46dccd813e95b1506b31, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:59:89:85:bb:3c:2b:9a:7b:90:21:1f:cc:11: 31:43:f7:04:c5:98:c1:f5:6b:d3:6c:e6:d9:a2:70: 2c:85:34:01:16:b3:df:0e:4d:26:de:8c:09:19:6c: 23:96:f4:5c:57:29:79:ad:5f:0c:ad:0f:6c:79:92: a2:fb:b9:c8:00:a6:fc:fa:ba:00:1f:d0:f2:2d:43: ab:49:84:2e:bf:6c:a8:e9:3b:cf:7b:3c:7e:37:a4: 6f:ed:65:4a:f0:c2:49:4a:1f:6a:f8:f3:8f:8d:d7: 6a:a5:57:e8:1c:e2:4a:ff:33:20:fc:13:1a:f4:98: a3:6d:09:5f:11:c2:f1:36:39:02:9c:44:fa:6c:06: 01:00:b6:d3:e7:ba:6b:6a:2c:a6:79:a0:02:5d:4c: b2:8d:6d:5d:42:6d:5a:16:a1:09:1b:02:4e:d8:fa: 2e:04:d8:c6:8b:24:20:47:a8:34:7c:55:6c:4f:34: c1:93:89:2d:36:27:3b:76:08:77:30:64:9d:52:25: 12:05:28:a3:c5:65:81:8a:00:ab:91:10:93:46:a2: 31:50:fb:c9:f9:8b:e2:eb:3a:52:e8:96:fe:e4:e3: 8d:85:02:fe:d2:1c:fa:d4:50:36:39:e9:18:56:67: 6b:0a:16:5f:a4:08:25:07:c3:23:ca:f0:5e:d4:71: 9a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:BB:18:50:52:56:A6:66:4E:4E:D1:55:28:66:FA:F9:B7:AF:2F:95 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5502::/48 Signature Algorithm: sha256WithRSAEncryption 0d:1c:be:98:8b:65:ad:e7:4d:5b:22:2e:01:ff:37:3f:f4:49: 60:a9:90:bb:a7:8e:58:02:da:66:ea:41:0b:52:ee:21:57:e7: d3:07:9e:08:09:82:cc:1a:da:f9:7f:20:f8:04:f6:0a:9d:ec: 2b:44:53:47:77:55:64:bd:be:27:0c:88:23:5c:11:15:35:93: 1c:3b:5f:0a:3d:cf:c1:fa:5b:4b:61:2d:04:c3:8e:92:fa:42: 21:e0:54:b5:2d:51:f0:25:df:9c:f9:5d:14:6b:4b:5d:a3:61: 8e:29:22:cf:c5:0e:78:9f:dc:33:dd:d5:02:84:e3:57:2d:47: bd:4b:f3:cd:e3:54:9d:28:cc:2d:3a:ad:88:7b:e8:19:2c:20: 25:7d:f1:23:16:e7:bc:b8:80:d1:b3:de:e6:6b:d4:db:58:ec: 2a:8b:77:d3:55:5c:fb:8a:7c:1e:18:c0:3c:91:82:f5:70:20: b9:3d:24:64:f6:eb:3c:b3:e3:68:4e:b5:65:b3:df:8e:c0:79: b2:47:f2:fa:34:0d:2e:3c:4a:dc:24:11:0c:97:37:3a:cd:c1: 14:02:7f:bc:51:5a:cf:df:8e:03:05:0c:f1:0b:1b:69:29:cc: 75:4f:61:6c:a8:f8:ad:1d:80:b0:59:a1:7d:17:1f:13:6e:ea: 99:fd:a8:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQnq76n4ncWlo5GzSCL8GgHqVK+8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTI1MjAwMDExWhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDFmNjNiNDBiMzA2OTIxZjk1MzRhNzFmZGVjN2VhNzQz YjY5MGFlNzJjZjQ2ZGNjZDgxM2U5NWIxNTA2YjMxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1WYmFuzwrmnuQIR/METFD9wTFmMH1a9Ns5tmicCyFNAEW s98OTSbejAkZbCOW9FxXKXmtXwytD2x5kqL7ucgApvz6ugAf0PItQ6tJhC6/bKjp O897PH43pG/tZUrwwklKH2r484+N12qlV+gc4kr/MyD8Exr0mKNtCV8RwvE2OQKc RPpsBgEAttPnumtqLKZ5oAJdTLKNbV1CbVoWoQkbAk7Y+i4E2MaLJCBHqDR8VWxP NMGTiS02Jzt2CHcwZJ1SJRIFKKPFZYGKAKuREJNGojFQ+8n5i+LrOlLolv7k442F Av7SHPrUUDY56RhWZ2sKFl+kCCUHwyPK8F7UcZq1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYLsYUFJWpmZOTtFVKGb6+bevL5UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZDI0YTJlLWY2MWItNDJiNC05NTA5LTllMDZhMTM2ZWIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQIwDQYJKoZIhvcNAQELBQADggEBAA0cvpiLZa3nTVsiLgH/Nz/0 SWCpkLunjlgC2mbqQQtS7iFX59MHnggJgswa2vl/IPgE9gqd7CtEU0d3VWS9vicM iCNcERU1kxw7Xwo9z8H6W0thLQTDjpL6QiHgVLUtUfAl35z5XRRrS12jYY4pIs/F Dnif3DPd1QKE41ctR71L883jVJ0ozC06rYh76BksICV98SMW57y4gNGz3uZr1NtY 7CqLd9NVXPuKfB4YwDyRgvVwILk9JGT26zyz42hOtWWz347AebJH8vo0DS48Stwk EQyXNzrNwRQCf7xRWs/fjgMFDPELG2kpzHVPYWyo+K0dgLBZoX0XHxNu6pn9qFo= -----END CERTIFICATE-----Generated at Sat Dec 6 14:56:56 2025 by rpki-client