This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ca586b6c-c586-4283-8392-892b53790b90.roa File: ca586b6c-c586-4283-8392-892b53790b90.roa (raw, json) Hash identifier: C1y2u/fXbNj4kDIcjZ4DJ/MESnm+gU/ZsANiDIsUbe0= Subject key identifier: D3:EC:A2:ED:DC:ED:AC:A4:DC:E0:D8:56:56:22:A7:A8:26:37:9C:BE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1774AEC53B0FDF3C7B6687EF66EEB2C0C9291052 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ca586b6c-c586-4283-8392-892b53790b90.roa Signing time: Tue 02 Dec 2025 01:30:10 +0000 ROA not before: Tue 02 Dec 2025 01:30:10 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:74:ae:c5:3b:0f:df:3c:7b:66:87:ef:66:ee:b2:c0:c9:29:10:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 2 01:30:10 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=6b48c1d81cd1b2338264b585e4effc5745f96b2957b93f8bfd726dfd6f1f0e40, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:10:c1:28:aa:0f:aa:7d:15:1f:bd:e3:4b:de: be:48:2f:34:c2:a7:69:19:b1:67:b9:ac:ae:8b:db: 50:48:c0:b1:aa:fb:3c:b3:11:c4:bf:91:4e:c5:ee: 1e:10:6e:4c:4e:da:ce:63:93:d2:fc:4e:26:ed:91: ca:b1:25:3b:e7:c0:4f:e6:0c:e5:26:72:2f:7b:de: b0:4b:13:f4:13:c2:bd:50:ee:af:09:f6:60:ea:0a: be:b7:6d:03:81:6b:9d:46:5a:cb:ad:6a:cf:40:58: 8c:0d:91:93:37:91:71:6c:a3:33:a6:ea:87:7e:bc: c9:4c:23:84:88:eb:e8:b0:1a:e3:36:cb:ae:c6:b5: 04:f5:19:4f:92:fb:dd:d9:a2:b3:ad:d2:2d:c7:6c: 46:5a:ed:7d:fd:eb:60:ed:66:3a:b9:fa:89:b9:6b: 8b:1f:4d:1a:72:40:6a:6f:a2:8f:d7:55:30:93:67: 49:52:be:2e:d7:f4:52:6e:4a:93:f2:b1:4f:6a:32: 33:99:94:e2:2d:d4:b7:8b:c0:46:ac:87:81:7a:9e: a1:3f:c6:42:72:ee:f6:14:00:41:95:22:b5:df:af: 75:d8:ae:3a:9a:a7:1f:d2:21:9b:6d:4a:1f:9d:01: 35:31:70:bc:b4:f1:32:37:f1:6a:c5:1f:6a:23:7f: c4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:EC:A2:ED:DC:ED:AC:A4:DC:E0:D8:56:56:22:A7:A8:26:37:9C:BE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ca586b6c-c586-4283-8392-892b53790b90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1::/44 Signature Algorithm: sha256WithRSAEncryption 6f:e6:9b:11:98:05:09:26:53:fb:01:46:87:73:cd:60:29:66: 09:b8:43:4d:b2:58:73:a0:a7:77:78:49:3f:c5:1e:8b:ee:6b: 66:c7:ba:5e:e9:4b:1e:92:0c:3b:67:03:1a:7f:ee:ab:be:1c: 9c:b9:6d:03:4e:fc:4f:06:d5:d3:e9:e0:79:1f:22:50:22:73: 6a:52:f6:12:01:36:e7:02:67:60:5b:50:ef:1c:b0:b1:7c:2e: c8:5a:74:f9:ba:ca:08:99:28:9e:6b:a8:6c:7c:3c:3d:cb:19: 96:0e:1f:c1:23:c4:f7:e9:f2:d6:6b:fd:59:78:50:84:96:56: 22:61:38:92:e8:d6:83:32:ad:e3:02:d4:42:2f:10:70:8d:6a: 05:3f:3c:c8:d0:ad:3e:c4:2b:0e:68:13:ef:fc:d3:9e:3f:97: 43:13:17:35:76:8c:96:c6:10:67:2f:d6:da:00:18:85:31:36: f4:56:3c:19:15:52:92:bd:47:3c:4a:99:5d:ec:51:25:e7:14: 78:81:1a:7d:22:9f:cb:44:65:e3:0d:4d:69:d5:16:5f:f4:f8: 5c:b9:e2:4b:69:cd:8a:5d:77:0f:c7:84:40:8a:93:3c:45:b9: d9:70:cd:a7:73:2c:09:c2:83:ed:46:18:f5:04:1b:a2:9b:38: bf:01:35:b0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUF3SuxTsP3zx7ZofvZu6ywMkpEFIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjAyMDEzMDEwWhcNMjYwMzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjQ4YzFkODFjZDFiMjMzODI2NGI1ODVlNGVmZmM1NzQ1 Zjk2YjI5NTdiOTNmOGJmZDcyNmRmZDZmMWYwZTQwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQEMEoqg+qfRUfveNL3r5ILzTCp2kZsWe5rK6L21BIwLGq +zyzEcS/kU7F7h4QbkxO2s5jk9L8TibtkcqxJTvnwE/mDOUmci973rBLE/QTwr1Q 7q8J9mDqCr63bQOBa51GWsutas9AWIwNkZM3kXFsozOm6od+vMlMI4SI6+iwGuM2 y67GtQT1GU+S+93ZorOt0i3HbEZa7X3962DtZjq5+om5a4sfTRpyQGpvoo/XVTCT Z0lSvi7X9FJuSpPysU9qMjOZlOIt1LeLwEash4F6nqE/xkJy7vYUAEGVIrXfr3XY rjqapx/SIZttSh+dATUxcLy08TI38WrFH2ojf8S1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0+yi7dztrKTc4NhWViKnqCY3nL4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NhNTg2YjZjLWM1ODYtNDI4My04MzkyLTg5MmI1Mzc5MGI5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDxAAAwDQYJKoZIhvcNAQELBQADggEBAG/mmxGYBQkmU/sBRodzzWAp Zgm4Q02yWHOgp3d4ST/FHovua2bHul7pSx6SDDtnAxp/7qu+HJy5bQNO/E8G1dPp 4HkfIlAic2pS9hIBNucCZ2BbUO8csLF8LshadPm6ygiZKJ5rqGx8PD3LGZYOH8Ej xPfp8tZr/Vl4UISWViJhOJLo1oMyreMC1EIvEHCNagU/PMjQrT7EKw5oE+/8054/ l0MTFzV2jJbGEGcv1toAGIUxNvRWPBkVUpK9RzxKmV3sUSXnFHiBGn0in8tEZeMN TWnVFl/0+Fy54ktpzYpddw/HhECKkzxFudlwzadzLAnCg+1GGPUEG6KbOL8BNbA= -----END CERTIFICATE-----Generated at Sat Dec 6 16:33:13 2025 by rpki-client