This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8118e9e-4da8-4d2a-bf13-2faef4f132df.roa File: f8118e9e-4da8-4d2a-bf13-2faef4f132df.roa (raw, json) Hash identifier: CT1KfCtdblntEOKzp9jwaxD3aYKhRxLFfwgO13NQekI= Subject key identifier: 8D:2F:2F:88:A6:55:93:61:37:C1:18:32:D5:DF:0F:EF:79:E3:6D:B3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 382C84034C9DC4AE776FF175838A38C3285D9C25 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8118e9e-4da8-4d2a-bf13-2faef4f132df.roa Signing time: Tue 25 Nov 2025 19:50:41 +0000 ROA not before: Tue 25 Nov 2025 19:50:41 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:610e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:2c:84:03:4c:9d:c4:ae:77:6f:f1:75:83:8a:38:c3:28:5d:9c:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 25 19:50:41 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=56627b90209e64759d2da0b17c35ce7b1ec7e74deec6dc454d7284229f5641d4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bd:b7:b2:45:7b:ca:81:20:32:7f:d0:4d:8c: 93:da:0f:45:8a:12:4a:59:46:99:89:4a:a6:7f:fc: 29:38:47:fa:27:11:a1:99:db:00:31:22:3f:36:eb: c8:55:b9:a5:ae:73:99:e7:e2:34:55:8f:39:fe:55: 3b:d3:c7:89:c9:8d:db:45:7a:1c:6b:dc:5e:3f:fd: 32:07:51:fb:d8:2d:31:ad:a6:c5:b5:fe:17:8a:90: 32:ef:10:95:00:f6:fc:a4:e5:bc:96:0c:6a:4d:93: 15:25:e4:65:9f:11:4d:d5:f2:f7:9f:99:64:b1:31: c3:26:11:f9:46:98:2c:ed:ee:69:12:60:d8:09:a3: bd:91:67:db:ce:29:77:4f:26:be:d5:1e:d5:d0:cc: ed:98:0c:de:11:e1:62:94:be:46:b2:7c:ec:b1:c1: 99:01:08:45:a9:ef:c9:f2:90:d5:47:f3:ae:74:6d: 10:fe:d1:b1:7b:49:8a:8a:e1:60:68:74:55:b9:c7: 52:29:aa:1d:4e:0b:44:ff:3e:9f:d7:38:da:5a:c3: 14:d1:7e:9e:01:3c:2a:64:fc:ab:cf:70:e4:ba:ff: b3:3c:c3:0e:25:5e:d2:4a:79:2a:5f:3a:08:4e:b2: d1:12:e8:40:ba:95:fc:cc:28:aa:24:6e:24:90:ca: 0f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2F:2F:88:A6:55:93:61:37:C1:18:32:D5:DF:0F:EF:79:E3:6D:B3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8118e9e-4da8-4d2a-bf13-2faef4f132df.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610e::/48 Signature Algorithm: sha256WithRSAEncryption 5e:c3:70:47:c5:1c:05:3d:c2:38:0f:80:a0:7b:3c:7d:6e:d5: 43:5e:7f:b4:65:07:9a:38:06:b7:af:72:34:30:93:5e:ec:80: da:78:f9:e2:2e:b7:18:f0:3b:18:80:aa:eb:6e:7d:34:27:5a: 70:3f:22:1b:24:4d:29:93:8a:c1:9e:14:24:1c:ae:5c:76:47: 97:eb:3a:70:10:cf:5b:45:73:8f:49:a9:49:da:a9:0b:da:02: 9e:e1:b0:65:9d:45:16:7e:1f:f3:69:d5:29:8f:2a:91:00:1a: d9:60:97:12:9d:28:ce:d8:df:11:95:81:ed:64:5e:4a:8a:92: 51:4e:d4:cc:fc:10:d9:c9:ac:de:6f:5f:23:9c:c5:f5:1c:9c: 74:b1:33:5c:94:a1:b5:52:16:a4:6d:9a:67:5a:37:0c:94:24: 21:47:d8:55:5e:1e:f6:b2:8c:d9:8d:8d:54:ce:c5:a4:b9:dd: bc:f4:77:13:15:ef:92:9b:2d:42:d2:94:81:b1:1a:ab:6d:d5: 97:b8:2e:39:c9:7f:05:c2:f4:5b:e1:98:7d:b1:09:f4:c7:2b: 7a:da:a7:52:74:fb:92:ea:09:19:4b:f0:31:5e:94:8e:09:9c: fb:ab:8d:7c:b9:42:94:39:da:73:ba:16:52:8f:72:5a:ca:b8: 77:7b:c4:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOCyEA0ydxK53b/F1g4o4wyhdnCUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTI1MTk1MDQxWhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjYyN2I5MDIwOWU2NDc1OWQyZGEwYjE3YzM1Y2U3YjFl YzdlNzRkZWVjNmRjNDU0ZDcyODQyMjlmNTY0MWQ0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3vbeyRXvKgSAyf9BNjJPaD0WKEkpZRpmJSqZ//Ck4R/on EaGZ2wAxIj8268hVuaWuc5nn4jRVjzn+VTvTx4nJjdtFehxr3F4//TIHUfvYLTGt psW1/heKkDLvEJUA9vyk5byWDGpNkxUl5GWfEU3V8vefmWSxMcMmEflGmCzt7mkS YNgJo72RZ9vOKXdPJr7VHtXQzO2YDN4R4WKUvkayfOyxwZkBCEWp78nykNVH8650 bRD+0bF7SYqK4WBodFW5x1Ipqh1OC0T/Pp/XONpawxTRfp4BPCpk/KvPcOS6/7M8 ww4lXtJKeSpfOghOstES6EC6lfzMKKokbiSQyg85AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjS8viKZVk2E3wRgy1d8P73njbbMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y4MTE4ZTllLTRkYTgtNGQyYS1iZjEzLTJmYWVmNGYxMzJkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQ4wDQYJKoZIhvcNAQELBQADggEBAF7DcEfFHAU9wjgPgKB7PH1u 1UNef7RlB5o4BrevcjQwk17sgNp4+eIutxjwOxiAqutufTQnWnA/IhskTSmTisGe FCQcrlx2R5frOnAQz1tFc49JqUnaqQvaAp7hsGWdRRZ+H/Np1SmPKpEAGtlglxKd KM7Y3xGVge1kXkqKklFO1Mz8ENnJrN5vXyOcxfUcnHSxM1yUobVSFqRtmmdaNwyU JCFH2FVeHvayjNmNjVTOxaS53bz0dxMV75KbLULSlIGxGqtt1Ze4LjnJfwXC9Fvh mH2xCfTHK3rap1J0+5LqCRlL8DFelI4JnPurjXy5QpQ52nO6FlKPclrKuHd7xNQ= -----END CERTIFICATE-----Generated at Sat Dec 6 14:08:46 2025 by rpki-client