This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa File: ab860450-a818-47f3-a42f-5570594471c3.roa (raw, json) Hash identifier: 3T5XE288yYxkmsVWofbDCVag8j49rzk+vX0T2YvkjVA= Subject key identifier: CF:91:23:C9:39:DD:BF:A8:5D:BC:1A:02:CE:69:C8:63:28:CD:4A:6D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 12D456573F0E07C913425B8ACEE6E220349B745B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa Signing time: Sat 15 Nov 2025 05:10:11 +0000 ROA not before: Sat 15 Nov 2025 05:10:11 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:d4:56:57:3f:0e:07:c9:13:42:5b:8a:ce:e6:e2:20:34:9b:74:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 05:10:11 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=125e95501330962a64cd1b86baf1f20c63764b80eac14a6cfbf35aa97318e615, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:5b:a9:29:8d:e8:e6:c5:4e:55:e5:bb:d6:f1: 96:e6:aa:c0:40:db:68:4d:98:50:7f:23:f0:f3:84: 52:cb:25:57:9a:f1:1f:ac:3f:0e:53:bc:aa:70:ef: 85:e1:3a:93:19:31:c7:2d:e8:3a:37:3e:04:54:6b: c4:a7:53:28:68:c8:ab:cc:f1:e0:0d:4f:94:e3:8a: a3:17:45:cd:e9:bd:36:41:14:84:88:43:d8:f4:ad: 70:5d:07:ec:d5:6b:5e:ac:10:39:10:a7:16:e6:e2: f1:d4:e9:1f:2a:88:40:61:c4:49:59:7c:2d:41:86: 3b:10:57:9d:82:91:98:27:e8:85:dc:de:65:b1:15: 09:f1:33:95:46:ae:f3:c9:0b:39:7c:40:67:a5:32: 93:3f:1a:7b:03:ff:ca:0e:b5:e2:ff:fd:06:d8:bf: fa:0d:83:c5:99:b1:8f:ab:3a:e1:75:3a:09:39:cd: eb:56:ad:ff:c8:e5:73:46:40:b5:6c:41:4c:fe:52: 3d:78:e7:75:19:1a:f7:47:eb:24:62:81:71:3e:86: ab:56:29:95:aa:cb:6f:97:ad:b1:5d:bf:ba:20:7d: fe:c5:2e:0d:eb:7a:f4:c8:b7:4c:c0:07:12:5e:78: 75:1d:8d:ce:4b:6c:9e:23:c8:17:05:70:23:ec:11: 22:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:91:23:C9:39:DD:BF:A8:5D:BC:1A:02:CE:69:C8:63:28:CD:4A:6D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 0a:fd:be:93:2f:1f:b2:02:47:70:9a:7b:4b:13:cc:02:80:83: 45:8c:23:25:c3:d8:dd:4c:a2:d5:48:b2:74:dd:d4:a7:38:ed: 61:63:ab:01:93:10:99:34:24:48:68:4f:df:4d:e1:ce:1f:c6: b1:02:5b:14:38:0a:c3:56:40:3a:4d:55:d8:de:e3:9b:4c:7d: e4:cd:02:1b:42:66:74:ea:8b:fc:d2:60:cd:de:e8:2f:a6:7f: 6d:f1:a4:04:0f:45:c7:4d:7c:a4:36:67:cb:b2:13:46:dd:fa: 53:d8:ae:90:fc:1c:af:cc:56:d8:4a:e5:fa:b4:29:f5:f2:0b: f3:4f:ff:ce:38:a0:61:62:6d:1d:13:96:dc:0c:6e:45:ec:89: 67:fa:7e:76:4c:be:89:ff:2d:16:6c:4f:77:34:cd:c3:87:a8: 8e:44:cc:8c:d7:07:f8:7d:b4:9e:a3:c9:6e:c3:3a:5e:ad:5e: 96:0b:17:29:ef:5f:f8:cb:01:44:b7:b6:d9:ac:c5:a9:9b:20: a4:90:85:28:10:aa:80:8f:19:7a:06:98:67:07:55:b3:1a:ae: 6b:4f:21:e2:c9:cf:79:64:40:05:d9:31:9d:7b:33:52:35:b9: d3:41:64:8f:a3:9b:f8:a6:b2:f0:2e:50:71:5e:d5:e7:09:32: ca:0d:20:cf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEtRWVz8OB8kTQluKzubiIDSbdFswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTE1MDUxMDExWhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjVlOTU1MDEzMzA5NjJhNjRjZDFiODZiYWYxZjIwYzYz NzY0YjgwZWFjMTRhNmNmYmYzNWFhOTczMThlNjE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwW6kpjejmxU5V5bvW8ZbmqsBA22hNmFB/I/DzhFLLJVea 8R+sPw5TvKpw74XhOpMZMcct6Do3PgRUa8SnUyhoyKvM8eANT5TjiqMXRc3pvTZB FISIQ9j0rXBdB+zVa16sEDkQpxbm4vHU6R8qiEBhxElZfC1BhjsQV52CkZgn6IXc 3mWxFQnxM5VGrvPJCzl8QGelMpM/GnsD/8oOteL//QbYv/oNg8WZsY+rOuF1Ogk5 zetWrf/I5XNGQLVsQUz+Uj1453UZGvdH6yRigXE+hqtWKZWqy2+XrbFdv7ogff7F Lg3revTIt0zABxJeeHUdjc5LbJ4jyBcFcCPsESJlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUz5EjyTndv6hdvBoCzmnIYyjNSm0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiODYwNDUwLWE4MTgtNDdmMy1hNDJmLTU1NzA1OTQ0NzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBAAr9vpMvH7ICR3Cae0sTzAKA g0WMIyXD2N1MotVIsnTd1Kc47WFjqwGTEJk0JEhoT99N4c4fxrECWxQ4CsNWQDpN Vdje45tMfeTNAhtCZnTqi/zSYM3e6C+mf23xpAQPRcdNfKQ2Z8uyE0bd+lPYrpD8 HK/MVthK5fq0KfXyC/NP/844oGFibR0TltwMbkXsiWf6fnZMvon/LRZsT3c0zcOH qI5EzIzXB/h9tJ6jyW7DOl6tXpYLFynvX/jLAUS3ttmsxambIKSQhSgQqoCPGXoG mGcHVbMarmtPIeLJz3lkQAXZMZ17M1I1udNBZI+jm/imsvAuUHFe1ecJMsoNIM8= -----END CERTIFICATE-----Generated at Sat Dec 6 10:32:31 2025 by rpki-client