This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa File: b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa (raw, json) Hash identifier: /y+9yvko5yPYOTpvdmveXS4PxxkKI3wl9R7H5RIpgA4= Subject key identifier: 3C:8E:8D:DA:96:F8:5D:00:BB:00:07:2A:27:1A:18:41:B1:AA:8C:36 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 42E37C919713D73C584BDDDBC2F000599F174B72 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa Signing time: Fri 05 Dec 2025 00:00:20 +0000 ROA not before: Fri 05 Dec 2025 00:00:20 +0000 ROA not after: Thu 05 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0::/28 maxlen: 28 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e3:7c:91:97:13:d7:3c:58:4b:dd:db:c2:f0:00:59:9f:17:4b:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 5 00:00:20 2025 GMT Not After : Mar 5 23:59:59 2026 GMT Subject: serialNumber=55073d500fb776b19a46b0b14b60a70904bb1f1c0f9a550a492b41d9cd4c660b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e1:f8:e9:c1:e2:2a:36:27:cc:9e:a9:44:4c: f2:8c:f6:d4:ad:cf:10:a7:fe:28:e7:0a:45:27:d5: 82:5e:f2:7b:0b:52:0a:c6:c7:d2:ac:61:50:00:fb: da:e5:c3:da:0b:34:31:cb:53:33:bc:6c:05:b7:60: 8e:5a:4e:c3:2d:e2:91:75:31:e2:6d:22:9f:5f:f1: 96:af:58:38:5a:b9:78:15:7d:ac:01:a2:78:45:10: 5f:bc:53:27:6c:1b:2f:9c:ad:0f:69:fc:22:0a:e6: 85:12:49:d0:c8:ad:ad:0d:25:16:d8:13:7e:d5:8f: fb:e7:18:b8:fd:19:67:96:5a:85:29:28:69:b9:72: 50:af:8b:53:99:11:27:10:2a:56:c6:56:ae:57:5c: 83:55:90:83:06:d9:e8:d2:f1:1f:4f:f3:c5:02:88: d1:ec:71:13:3f:4d:63:c5:34:18:e8:e5:f1:4d:7d: 63:cb:2e:b2:3c:f5:da:cf:89:7c:ec:35:6e:13:0f: ab:b7:74:79:4d:31:fa:0a:c2:3a:fb:25:4a:63:0f: 1d:ce:7b:32:e3:11:a8:96:96:e3:4c:d6:1f:96:43: 55:d6:42:2b:ca:81:f9:20:61:39:4a:8a:2a:e8:87: 9c:35:9c:7e:f4:80:84:cd:d7:12:35:f0:9d:79:bc: dc:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:8E:8D:DA:96:F8:5D:00:BB:00:07:2A:27:1A:18:41:B1:AA:8C:36 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0::/28 Signature Algorithm: sha256WithRSAEncryption 7a:d8:39:f1:c3:ba:82:ee:aa:14:80:33:ac:b6:21:57:04:21: 39:f0:97:39:7e:aa:77:73:4c:5e:34:f8:ee:5d:aa:79:fb:c5: 97:95:b2:94:e3:68:82:cf:63:b6:4e:e7:de:77:4f:bd:93:9d: c4:ee:eb:d4:9f:b0:e2:61:89:42:7f:3c:9c:1b:4e:7b:a0:b5: 09:a6:48:5f:d0:92:bd:1d:05:75:53:a6:b8:7c:65:a0:d5:9b: 23:2c:1a:81:4c:56:29:54:6f:80:bb:49:b8:f9:c6:34:a2:0f: 5c:cc:c8:12:c5:79:8d:4d:46:4f:f7:e5:43:ef:70:ae:ba:2e: db:2d:b3:fe:ad:5f:4a:43:e2:b0:f0:e9:c0:1f:35:ff:be:33: 4d:a7:04:77:a8:6b:f9:ae:e3:5d:2c:49:93:7a:e7:bb:ef:fe: dc:d9:3b:46:29:d9:2b:f4:72:74:4d:d8:f3:ec:0c:c2:4e:c3: a0:d5:e6:cf:ed:e5:d5:f2:2f:dc:db:d7:ac:2c:1c:ef:82:c6: 3a:be:61:4d:56:3a:e0:cd:32:dc:db:ed:67:ff:4e:6a:a3:c4: b3:21:88:94:8e:d4:53:c2:0a:da:4c:e5:2d:51:c1:fa:00:2c: 9c:ae:e0:91:53:d7:26:db:e1:fb:93:41:20:19:99:4a:22:ac: 96:55:86:36 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUQuN8kZcT1zxYS93bwvAAWZ8XS3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjA1MDAwMDIwWhcNMjYwMzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTA3M2Q1MDBmYjc3NmIxOWE0NmIwYjE0YjYwYTcwOTA0 YmIxZjFjMGY5YTU1MGE0OTJiNDFkOWNkNGM2NjBiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn4fjpweIqNifMnqlETPKM9tStzxCn/ijnCkUn1YJe8nsL UgrGx9KsYVAA+9rlw9oLNDHLUzO8bAW3YI5aTsMt4pF1MeJtIp9f8ZavWDhauXgV fawBonhFEF+8UydsGy+crQ9p/CIK5oUSSdDIra0NJRbYE37Vj/vnGLj9GWeWWoUp KGm5clCvi1OZEScQKlbGVq5XXINVkIMG2ejS8R9P88UCiNHscRM/TWPFNBjo5fFN fWPLLrI89drPiXzsNW4TD6u3dHlNMfoKwjr7JUpjDx3OezLjEaiWluNM1h+WQ1XW QivKgfkgYTlKiiroh5w1nH70gITN1xI18J15vNwBAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUPI6N2pb4XQC7AAcqJxoYQbGqjDYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3YmJhZmJmLWU2ZDQtNDQ4Ny05ZWJiLWNiZDcyYjNkNmM3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPDwMA0GCSqGSIb3DQEBCwUAA4IBAQB62Dnxw7qC7qoUgDOstiFXBCE5 8Jc5fqp3c0xeNPjuXap5+8WXlbKU42iCz2O2Tufed0+9k53E7uvUn7DiYYlCfzyc G057oLUJpkhf0JK9HQV1U6a4fGWg1ZsjLBqBTFYpVG+Au0m4+cY0og9czMgSxXmN TUZP9+VD73Cuui7bLbP+rV9KQ+Kw8OnAHzX/vjNNpwR3qGv5ruNdLEmTeue77/7c 2TtGKdkr9HJ0Tdjz7AzCTsOg1ebP7eXV8i/c29esLBzvgsY6vmFNVjrgzTLc2+1n /05qo8SzIYiUjtRTwgraTOUtUcH6ACycruCRU9cm2+H7k0EgGZlKIqyWVYY2 -----END CERTIFICATE-----Generated at Sat Dec 6 13:25:07 2025 by rpki-client