This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa File: 3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa (raw, json) Hash identifier: FIfpliswTzydVwVSd5zqy2Ompjy6OYNsRezwHCpR5ws= Subject key identifier: C2:5E:D7:97:3C:0D:9C:68:7B:13:5A:9D:CE:30:55:43:A1:D0:5C:C0 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 348B4E3864E011B13EB159EC11D6E7303F3A03FF Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa Signing time: Sat 29 Nov 2025 02:50:49 +0000 ROA not before: Sat 29 Nov 2025 02:50:49 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:64d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8b:4e:38:64:e0:11:b1:3e:b1:59:ec:11:d6:e7:30:3f:3a:03:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 29 02:50:49 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=2026c30f34924b11abe32d5b68e202dda78a659f9247cca21ca3ca3c357c6776, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:ce:dc:bc:97:ad:27:e6:a8:b2:c7:39:98:7d: ae:dc:3d:1f:94:0b:57:5c:cf:d3:61:06:a0:b9:df: df:d7:b0:cf:7c:47:22:44:a4:93:d9:52:3b:30:d0: ca:0a:c5:d2:42:d5:47:11:c9:57:3f:6b:7f:a2:94: d5:45:24:97:70:6b:4b:fa:65:34:b8:44:59:c0:a3: bc:d4:79:77:18:08:01:53:da:12:ab:d7:cd:38:68: 50:b4:73:e3:3c:c5:ab:ea:7a:44:c4:32:c5:89:90: 8d:5b:21:7d:cc:c9:02:65:01:a8:7b:d8:bf:5b:61: be:cc:94:db:5f:0b:c6:bc:cd:9e:65:96:3c:6e:ae: b9:27:42:75:d4:ff:e5:9b:91:c9:38:62:8d:b6:45: 37:f5:35:35:a7:4a:3b:58:06:40:93:e4:99:e7:58: a4:1f:23:fb:c5:42:45:fa:11:9d:39:1b:ba:ed:1c: e6:bd:d4:bd:08:df:e0:92:05:98:73:97:d3:5b:7c: d3:c0:c4:fe:a4:24:5a:f1:cc:76:21:f7:34:d2:8c: 39:b0:25:cd:62:31:12:16:07:8a:7e:cc:1f:25:45: fd:b0:80:68:20:4d:bd:cd:6c:91:a4:d7:a6:42:c6: 43:32:c5:fb:6d:cc:70:6e:51:58:3f:bf:0d:5a:ee: 11:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:5E:D7:97:3C:0D:9C:68:7B:13:5A:9D:CE:30:55:43:A1:D0:5C:C0 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64d::/48 Signature Algorithm: sha256WithRSAEncryption 19:84:bd:31:ea:67:52:f7:1d:69:e3:e3:bf:0b:3f:fe:9f:55: 6b:d4:17:3a:fe:fe:81:13:2b:21:d0:1f:d4:8c:af:17:3f:84: 3d:11:df:53:17:a2:1e:6c:70:47:73:9b:33:07:57:64:92:87: 7f:1a:03:6b:8b:84:0f:66:95:24:5b:38:67:d9:64:c4:35:3c: 30:05:51:a0:81:ac:6f:2f:b5:57:40:2d:f5:c7:58:0f:1e:02: 87:52:10:68:ea:5e:03:a8:17:f8:8c:89:7b:00:b9:bb:85:2c: d5:ea:a3:1e:7e:db:46:95:4f:92:79:30:99:6e:c5:ff:aa:7d: 15:df:db:e9:20:46:10:3b:4c:ae:17:90:36:85:70:12:17:2c: 4f:23:56:64:86:f9:8f:b2:d8:07:ad:cd:b3:60:e4:94:a5:c0: 18:d6:ae:35:c6:a1:6b:26:d9:36:b9:d6:96:3c:3d:a1:5f:3e: 32:36:b4:a3:11:97:ea:4b:c9:c7:1f:e0:dd:f3:e6:55:fd:72: 05:26:fd:aa:07:75:c1:9f:1a:fe:a1:3e:1b:32:a3:b7:46:bb: 97:73:cd:81:eb:b8:01:a4:c8:49:2a:14:0c:2d:f3:47:ab:cc: 8f:13:69:32:07:15:da:e8:f5:f9:8e:aa:b1:b2:12:6d:ae:05: 0d:5e:da:77 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNItOOGTgEbE+sVnsEdbnMD86A/8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTI5MDI1MDQ5WhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDI2YzMwZjM0OTI0YjExYWJlMzJkNWI2OGUyMDJkZGE3 OGE2NTlmOTI0N2NjYTIxY2EzY2EzYzM1N2M2Nzc2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNzty8l60n5qiyxzmYfa7cPR+UC1dcz9NhBqC539/XsM98 RyJEpJPZUjsw0MoKxdJC1UcRyVc/a3+ilNVFJJdwa0v6ZTS4RFnAo7zUeXcYCAFT 2hKr1804aFC0c+M8xavqekTEMsWJkI1bIX3MyQJlAah72L9bYb7MlNtfC8a8zZ5l ljxurrknQnXU/+Wbkck4Yo22RTf1NTWnSjtYBkCT5JnnWKQfI/vFQkX6EZ05G7rt HOa91L0I3+CSBZhzl9NbfNPAxP6kJFrxzHYh9zTSjDmwJc1iMRIWB4p+zB8lRf2w gGggTb3NbJGk16ZCxkMyxfttzHBuUVg/vw1a7hGrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwl7XlzwNnGh7E1qdzjBVQ6HQXMAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZjRjN2IyLWE2YTMtNDJmYi05ZjgwLWI3ZjVmZmM2NjM5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABk0wDQYJKoZIhvcNAQELBQADggEBABmEvTHqZ1L3HWnj478LP/6f VWvUFzr+/oETKyHQH9SMrxc/hD0R31MXoh5scEdzmzMHV2SSh38aA2uLhA9mlSRb OGfZZMQ1PDAFUaCBrG8vtVdALfXHWA8eAodSEGjqXgOoF/iMiXsAubuFLNXqox5+ 20aVT5J5MJluxf+qfRXf2+kgRhA7TK4XkDaFcBIXLE8jVmSG+Y+y2AetzbNg5JSl wBjWrjXGoWsm2Ta51pY8PaFfPjI2tKMRl+pLyccf4N3z5lX9cgUm/aoHdcGfGv6h Phsyo7dGu5dzzYHruAGkyEkqFAwt80erzI8TaTIHFdro9fmOqrGyEm2uBQ1e2nc= -----END CERTIFICATE-----Generated at Sat Dec 6 22:16:18 2025 by rpki-client