This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa File: af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa (raw, json) Hash identifier: Jzu3Am3aq7CwILhE7Tmib6VNnH5wjSlqNuiOiLBrD6o= Subject key identifier: 15:B6:F1:4F:B7:8A:D7:17:DC:55:19:5F:F9:8A:03:C3:78:B0:CF:6F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 409AA3C730C047A59A93CAD55E7F321DF1DEE7B6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa Signing time: Sat 29 Nov 2025 00:30:13 +0000 ROA not before: Sat 29 Nov 2025 00:30:13 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6122::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:9a:a3:c7:30:c0:47:a5:9a:93:ca:d5:5e:7f:32:1d:f1:de:e7:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 29 00:30:13 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=7f81a372c0da5fa9e542d82056aa8652da52c30cdfc741092627214da880fc6d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:df:49:52:b1:d4:e1:fe:3e:28:1d:fa:50:c6: 97:69:cd:eb:06:d6:18:f3:e5:18:81:5f:ca:0c:d5: de:13:2b:55:55:56:e6:4f:c3:5c:b3:04:bb:ef:62: 24:17:fe:2f:12:5a:da:81:77:4e:c2:34:41:79:eb: 0d:f2:11:65:c0:4b:b5:97:f2:33:d8:60:2d:26:cd: 89:61:7f:e7:49:2a:72:20:30:df:ea:71:7f:86:d3: d1:2a:70:d0:b3:e6:6d:63:d3:28:17:f6:52:81:1d: 80:2c:2a:e2:66:f9:e5:b4:84:d5:c0:a5:c4:ae:94: a5:0d:d3:e7:ce:34:99:8e:ad:a8:dc:f3:20:37:0f: 5f:18:93:e5:d6:1c:e8:63:0b:e7:9d:68:ab:7a:23: 43:78:c4:7f:7f:7e:9d:5c:ac:a8:4c:0e:3b:0b:8d: 89:e6:d8:7e:a6:21:ae:d6:10:f8:03:01:8d:d0:64: d6:0d:9a:14:48:3e:56:e2:46:49:4f:6a:90:56:5e: 4a:7e:29:6d:1c:3a:97:10:ed:20:d6:e4:62:2f:19: 04:ff:d1:75:c2:8f:15:61:51:78:30:40:4b:a0:04: dd:41:6c:13:2a:1b:f0:5c:61:e2:bb:8b:c7:74:6a: 6e:69:25:7b:30:59:1b:af:3e:e5:7f:39:d1:29:f4: 7c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:B6:F1:4F:B7:8A:D7:17:DC:55:19:5F:F9:8A:03:C3:78:B0:CF:6F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6122::/48 Signature Algorithm: sha256WithRSAEncryption 0c:ce:e0:63:68:c0:67:82:c1:c9:0b:a4:b6:44:53:c1:06:df: 31:1d:7f:3c:02:fd:7a:c5:f7:4d:3d:15:80:0a:c3:71:ea:27: a7:a9:17:56:fe:68:d2:79:a3:ef:a5:47:f0:cd:cd:03:7c:6b: a1:e5:5d:4a:8e:82:55:96:42:6e:ba:51:a9:67:25:d8:67:2e: e2:21:98:f3:06:09:87:08:cd:52:56:c2:f2:6c:b4:6e:f4:69: d6:07:76:15:8b:42:6f:cd:97:71:10:e8:3e:30:b3:e3:39:8a: ba:b3:af:3f:d9:3b:6a:af:cc:1d:37:8a:89:30:75:b9:d9:ea: e3:a2:7f:5e:e6:8c:6e:32:51:a1:2c:e0:ac:0f:cf:38:89:b9: 17:f6:16:fb:c9:eb:8d:c5:ee:94:c3:99:63:13:37:7d:ad:c3: 26:a7:fb:53:8e:a0:56:73:ee:a5:2a:18:ba:ca:a6:31:e8:d8: 30:0f:ba:fc:82:52:b5:95:95:0f:2f:50:33:e2:fc:a4:77:15: a2:d1:39:6f:be:83:19:8d:12:d7:12:de:95:4a:36:45:16:f7: 29:52:be:f0:f4:9c:a2:fe:0e:0d:c2:84:dd:2a:ac:40:f6:65: 27:85:be:83:7d:44:74:2b:35:7e:cb:15:09:78:fc:7a:43:34: ed:c0:70:69 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQJqjxzDAR6Wak8rVXn8yHfHe57YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTI5MDAzMDEzWhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjgxYTM3MmMwZGE1ZmE5ZTU0MmQ4MjA1NmFhODY1MmRh NTJjMzBjZGZjNzQxMDkyNjI3MjE0ZGE4ODBmYzZkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCD30lSsdTh/j4oHfpQxpdpzesG1hjz5RiBX8oM1d4TK1VV VuZPw1yzBLvvYiQX/i8SWtqBd07CNEF56w3yEWXAS7WX8jPYYC0mzYlhf+dJKnIg MN/qcX+G09EqcNCz5m1j0ygX9lKBHYAsKuJm+eW0hNXApcSulKUN0+fONJmOrajc 8yA3D18Yk+XWHOhjC+edaKt6I0N4xH9/fp1crKhMDjsLjYnm2H6mIa7WEPgDAY3Q ZNYNmhRIPlbiRklPapBWXkp+KW0cOpcQ7SDW5GIvGQT/0XXCjxVhUXgwQEugBN1B bBMqG/BcYeK7i8d0am5pJXswWRuvPuV/OdEp9HzLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFbbxT7eK1xfcVRlf+YoDw3iwz28wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmNmQwY2ExLWRkNzctNDI0OS1hNWNmLWRkNzU3NGRiMzRmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSIwDQYJKoZIhvcNAQELBQADggEBAAzO4GNowGeCwckLpLZEU8EG 3zEdfzwC/XrF9009FYAKw3HqJ6epF1b+aNJ5o++lR/DNzQN8a6HlXUqOglWWQm66 UalnJdhnLuIhmPMGCYcIzVJWwvJstG70adYHdhWLQm/Nl3EQ6D4ws+M5irqzrz/Z O2qvzB03iokwdbnZ6uOif17mjG4yUaEs4KwPzziJuRf2FvvJ643F7pTDmWMTN32t wyan+1OOoFZz7qUqGLrKpjHo2DAPuvyCUrWVlQ8vUDPi/KR3FaLROW++gxmNEtcS 3pVKNkUW9ylSvvD0nKL+Dg3ChN0qrED2ZSeFvoN9RHQrNX7LFQl4/HpDNO3AcGk= -----END CERTIFICATE-----Generated at Sat Dec 6 20:56:52 2025 by rpki-client