This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ba699c1e-9e17-4134-9d1f-8ba97ffd9f3e.roa File: ba699c1e-9e17-4134-9d1f-8ba97ffd9f3e.roa (raw, json) Hash identifier: RVEOPuD9qAkSg3KRL7sE5dE3ZsSsQc9vQIKs40jFc6M= Subject key identifier: 9E:33:B2:93:07:EE:F9:A2:46:72:E4:4E:4A:35:0B:4B:42:20:16:AE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2DB535F45D0F1669BCDCED5F38DBDFE89EA9E1DD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ba699c1e-9e17-4134-9d1f-8ba97ffd9f3e.roa Signing time: Tue 25 Nov 2025 19:50:52 +0000 ROA not before: Tue 25 Nov 2025 19:50:52 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:611a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:b5:35:f4:5d:0f:16:69:bc:dc:ed:5f:38:db:df:e8:9e:a9:e1:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 25 19:50:52 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=a1f12c56f230a1903a0a4552358a92c147fa0ca8672e53f1dc73422b07495ba6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:41:14:71:73:18:94:05:40:d3:bb:6c:70:d3: 6d:ee:58:c1:10:e9:59:43:40:76:39:91:2b:7d:65: 23:51:08:76:2a:8d:ac:8f:42:1c:de:dd:06:52:49: 3b:9c:c9:da:ee:f6:fe:85:af:10:c9:5c:0d:bb:e3: 32:a8:2b:b3:9e:62:08:65:bd:28:ae:7d:00:8f:e4: bf:29:0a:7e:7f:5d:6c:07:f1:aa:19:ef:56:0a:a5: 3d:53:3a:e4:44:c1:14:f5:44:7b:64:9a:48:ed:bc: 11:1c:be:68:cb:92:85:0d:87:9d:e7:5a:97:48:b4: df:a2:7a:b7:3f:9b:ae:60:6f:89:27:00:6d:ea:0d: 7c:01:6e:1c:dd:8f:a9:0d:f1:8e:d5:3f:c5:6f:ba: 71:92:77:d6:13:2a:77:81:02:b8:a0:58:cb:63:0d: 55:f0:3e:78:b4:b4:ea:f6:9d:15:58:df:20:77:f2: 51:3d:bc:5a:c5:4d:62:c5:1c:3b:fe:a3:bc:24:d8: 4e:e2:55:5a:57:d4:80:8c:d6:ab:de:b3:c1:27:a8: 45:8a:54:27:e4:0f:2d:0c:b4:2f:17:c9:a5:fe:5b: 85:df:a4:63:4d:7f:b6:92:a0:13:dc:b8:11:4d:22: c2:da:10:c1:41:19:2c:2d:01:b2:9a:75:66:83:8e: 58:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:33:B2:93:07:EE:F9:A2:46:72:E4:4E:4A:35:0B:4B:42:20:16:AE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ba699c1e-9e17-4134-9d1f-8ba97ffd9f3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611a::/48 Signature Algorithm: sha256WithRSAEncryption a1:de:02:b6:96:6e:1a:c4:27:53:06:63:2d:76:4c:fa:ec:98: d4:97:68:26:db:d2:e3:9f:aa:16:6f:79:49:6c:d5:71:83:48: 4a:df:b6:47:6a:e8:23:03:8e:a5:49:b5:04:ba:5d:f9:46:6b: 64:65:f7:46:73:15:d3:68:45:bb:5e:98:2a:11:03:06:6a:c2: b5:6a:3c:73:f2:0f:0e:0f:09:42:81:ac:36:48:7f:69:3d:ea: 5c:ef:d9:82:a1:92:c9:6b:96:76:b1:18:ee:5c:24:bd:bd:d1: e0:15:e0:70:d3:15:62:cc:e9:28:b1:9f:24:f1:49:c4:92:0b: 53:42:c4:06:c9:00:06:c5:d2:9c:85:06:98:a9:9a:3e:dc:2a: 68:c8:fd:74:ba:a1:5c:95:bb:62:13:cf:30:f1:f2:1b:c8:3c: 30:64:9f:82:84:b6:64:f6:26:77:2c:a0:85:05:d8:8d:4b:27: 3e:df:94:6f:a8:28:a5:b2:5c:40:46:a0:b0:95:ea:d8:dd:cb: 5b:a7:88:04:fc:d9:9e:47:ff:80:fc:ab:db:74:d1:0d:7a:45: f9:1f:05:f3:6f:ee:27:a4:ae:0c:55:06:97:ee:20:9e:03:e6: dd:3d:42:bd:88:ba:06:75:68:90:10:85:07:d7:00:76:d4:aa: 76:da:30:b2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULbU19F0PFmm83O1fONvf6J6p4d0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTI1MTk1MDUyWhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMWYxMmM1NmYyMzBhMTkwM2EwYTQ1NTIzNThhOTJjMTQ3 ZmEwY2E4NjcyZTUzZjFkYzczNDIyYjA3NDk1YmE2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWQRRxcxiUBUDTu2xw023uWMEQ6VlDQHY5kSt9ZSNRCHYq jayPQhze3QZSSTucydru9v6FrxDJXA274zKoK7OeYghlvSiufQCP5L8pCn5/XWwH 8aoZ71YKpT1TOuREwRT1RHtkmkjtvBEcvmjLkoUNh53nWpdItN+ierc/m65gb4kn AG3qDXwBbhzdj6kN8Y7VP8VvunGSd9YTKneBArigWMtjDVXwPni0tOr2nRVY3yB3 8lE9vFrFTWLFHDv+o7wk2E7iVVpX1ICM1qves8EnqEWKVCfkDy0MtC8XyaX+W4Xf pGNNf7aSoBPcuBFNIsLaEMFBGSwtAbKadWaDjlgJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnjOykwfu+aJGcuROSjULS0IgFq4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JhNjk5YzFlLTllMTctNDEzNC05ZDFmLThiYTk3ZmZkOWYzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRowDQYJKoZIhvcNAQELBQADggEBAKHeAraWbhrEJ1MGYy12TPrs mNSXaCbb0uOfqhZveUls1XGDSErftkdq6CMDjqVJtQS6XflGa2Rl90ZzFdNoRbte mCoRAwZqwrVqPHPyDw4PCUKBrDZIf2k96lzv2YKhkslrlnaxGO5cJL290eAV4HDT FWLM6SixnyTxScSSC1NCxAbJAAbF0pyFBpipmj7cKmjI/XS6oVyVu2ITzzDx8hvI PDBkn4KEtmT2JncsoIUF2I1LJz7flG+oKKWyXEBGoLCV6tjdy1uniAT82Z5H/4D8 q9t00Q16RfkfBfNv7iekrgxVBpfuIJ4D5t09Qr2IugZ1aJAQhQfXAHbUqnbaMLI= -----END CERTIFICATE-----Generated at Sat Dec 6 12:16:02 2025 by rpki-client