This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa File: cd3025ff-3653-4276-a530-1fa2eed87e53.roa (raw, json) Hash identifier: LsoasW17St6wNEYUfMIb5LAgCIa7C3ESFWX1LHRCHRw= Subject key identifier: 6B:27:4A:13:C4:BF:12:95:68:37:A9:62:44:EB:48:D7:20:D6:AD:F2 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 7E9139F6F0964BD0C37E6FCE981C0EB1C83B0086 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa Signing time: Tue 25 Nov 2025 00:00:17 +0000 ROA not before: Tue 25 Nov 2025 00:00:17 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:91:39:f6:f0:96:4b:d0:c3:7e:6f:ce:98:1c:0e:b1:c8:3b:00:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Nov 25 00:00:17 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=4d3a606e9ad023d74375c7bab87ec422dae25f8f9bc2a682cf70931603af3a29, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e3:84:48:a5:c8:20:a4:c5:49:e5:5e:71:b5: 76:67:41:80:39:82:5d:ee:d6:50:18:0b:ac:49:57: 32:78:46:1e:39:e9:2b:8b:2e:51:35:89:3c:8e:ce: 49:29:88:cb:7f:94:7c:40:fc:74:67:ca:13:1d:8f: 56:9c:26:a3:f1:b6:cb:5d:50:5d:c1:d4:bd:63:f5: 57:50:83:be:80:98:f3:e1:ea:4e:cd:ad:07:de:13: 41:d8:4c:dc:37:c9:b9:21:a1:7c:76:18:a0:85:c2: cc:87:e8:dd:b3:99:de:ee:09:83:08:1c:01:42:14: 64:35:53:96:43:aa:b5:42:89:dd:96:e2:1f:01:ea: 78:bc:be:65:b4:2e:e1:4a:13:d2:a3:e0:28:81:b7: c5:36:32:fd:49:f6:38:91:a4:cc:1b:20:16:40:35: 93:51:0c:db:4b:12:7a:54:ba:3f:89:68:dc:68:ac: c7:a4:34:64:27:13:1c:fb:81:00:6f:91:d0:28:13: 45:c6:32:98:6a:78:ef:85:f0:3c:0a:8c:d7:13:7c: 46:2d:38:b7:0d:f6:b2:46:e2:89:11:81:12:ac:fe: 5e:cb:06:de:01:5c:c5:9a:5a:5b:eb:ea:fa:66:6c: 0c:15:ea:3c:c1:ac:69:95:a2:7e:d1:2f:9f:17:14: 3d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:27:4A:13:C4:BF:12:95:68:37:A9:62:44:EB:48:D7:20:D6:AD:F2 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/44 Signature Algorithm: sha256WithRSAEncryption 0b:e2:06:ca:cc:ef:d9:19:7b:e4:d7:10:b7:5d:39:1e:6b:ef: f9:3a:fb:8d:6e:e7:37:a4:46:f0:05:7e:e5:74:77:a3:b5:40: 5b:e1:db:d8:40:eb:28:58:42:ba:ac:8c:52:b9:b3:d7:18:3e: a3:2d:0e:fa:c9:54:65:5f:2e:83:ac:cc:7a:b5:34:22:b3:d2: d6:dc:b8:48:6b:34:1e:94:fd:c9:19:95:90:70:24:d9:cd:c3: 14:0c:d9:fe:c7:88:51:d9:3b:57:63:84:34:0f:d0:84:0d:a6: 23:0e:30:fa:08:41:1a:88:b8:e0:f7:6c:0b:d6:c7:f9:ea:f1: 96:c0:4a:8e:32:fd:51:02:2d:0b:12:2f:cd:71:91:fb:68:92: 2a:6b:9f:d0:a1:e2:c3:0a:3a:2c:ca:60:38:83:94:d7:de:41: ad:e0:24:7c:52:f4:84:60:98:3c:af:fd:3c:61:4d:d5:2c:3c: c4:a4:3b:f9:de:4d:58:c4:05:b8:44:ba:11:73:0c:78:6d:08: e6:50:74:2e:96:90:0e:24:2f:dc:23:bf:da:a2:70:fd:0c:c6: 64:ce:f4:76:e5:58:47:60:1e:93:92:c8:f7:31:4f:a7:2a:d2: 14:96:c7:c8:03:9a:c7:09:cf:bd:3b:c7:57:79:b1:53:f3:26: a0:c2:ce:45 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfpE59vCWS9DDfm/OmBwOscg7AIYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUxMTI1MDAwMDE3WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDNhNjA2ZTlhZDAyM2Q3NDM3NWM3YmFiODdlYzQyMmRh ZTI1ZjhmOWJjMmE2ODJjZjcwOTMxNjAzYWYzYTI5MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC744RIpcggpMVJ5V5xtXZnQYA5gl3u1lAYC6xJVzJ4Rh45 6SuLLlE1iTyOzkkpiMt/lHxA/HRnyhMdj1acJqPxtstdUF3B1L1j9VdQg76AmPPh 6k7NrQfeE0HYTNw3ybkhoXx2GKCFwsyH6N2zmd7uCYMIHAFCFGQ1U5ZDqrVCid2W 4h8B6ni8vmW0LuFKE9Kj4CiBt8U2Mv1J9jiRpMwbIBZANZNRDNtLEnpUuj+JaNxo rMekNGQnExz7gQBvkdAoE0XGMphqeO+F8DwKjNcTfEYtOLcN9rJG4okRgRKs/l7L Bt4BXMWaWlvr6vpmbAwV6jzBrGmVon7RL58XFD2nAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaydKE8S/EpVoN6liROtI1yDWrfIwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2NkMzAyNWZmLTM2NTMtNDI3Ni1hNTMwLTFmYTJlZWQ4N2U1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBAAviBsrM79kZe+TXELddOR5r 7/k6+41u5zekRvAFfuV0d6O1QFvh29hA6yhYQrqsjFK5s9cYPqMtDvrJVGVfLoOs zHq1NCKz0tbcuEhrNB6U/ckZlZBwJNnNwxQM2f7HiFHZO1djhDQP0IQNpiMOMPoI QRqIuOD3bAvWx/nq8ZbASo4y/VECLQsSL81xkftokiprn9Ch4sMKOizKYDiDlNfe Qa3gJHxS9IRgmDyv/TxhTdUsPMSkO/neTVjEBbhEuhFzDHhtCOZQdC6WkA4kL9wj v9qicP0MxmTO9HblWEdgHpOSyPcxT6cq0hSWx8gDmscJz707x1d5sVPzJqDCzkU= -----END CERTIFICATE-----Generated at Sat Dec 6 10:55:36 2025 by rpki-client