This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/9318efc3-4d3a-413f-86c6-169a71d2eccb.roa File: 9318efc3-4d3a-413f-86c6-169a71d2eccb.roa (raw, json) Hash identifier: AW8vl4UgPAbXD5HshZX095QSahUCEzNHoqT8ToQl6Yk= Subject key identifier: DE:CD:F4:A2:B0:7B:A7:89:A2:35:B1:99:6A:78:FE:E2:5C:63:B3:14 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 5CECBDD5848AFEA2BB5278E3B015DEC6580FAD20 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/9318efc3-4d3a-413f-86c6-169a71d2eccb.roa Signing time: Sat 29 Nov 2025 00:10:04 +0000 ROA not before: Sat 29 Nov 2025 00:10:04 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2605:b140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ec:bd:d5:84:8a:fe:a2:bb:52:78:e3:b0:15:de:c6:58:0f:ad:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Nov 29 00:10:04 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=f04a4d20ffb8cfdfa5e80053a327fb2599fa89383481ca814680ac91aeadde39, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7f:f9:14:10:58:5d:ac:ca:6f:04:bb:90:2f: ae:ca:76:50:45:fa:0a:3c:68:fa:50:91:c7:7c:7d: 56:eb:44:45:2a:ec:19:be:c1:3d:a8:87:5a:57:4d: ec:3c:fb:f4:60:f3:de:63:6d:00:3d:69:04:b7:04: f8:a4:9d:32:1f:f8:7a:d8:58:af:e0:17:7e:cb:e0: e1:0b:38:a6:b5:27:4d:30:c8:4e:4a:5b:fd:f8:03: 16:55:cb:f9:73:26:b6:67:84:ab:72:4e:8c:5c:11: 9b:1e:06:7d:14:6b:40:87:01:d9:bb:36:89:cc:4c: c7:00:11:b5:95:e4:ee:42:d4:08:f4:35:39:87:0d: a5:47:4a:37:a0:23:6f:63:cc:03:aa:94:3a:6e:ed: 6b:0a:95:5b:f3:6c:28:a9:c2:51:e0:c5:39:ea:2d: 9f:c4:0f:09:6b:eb:39:b4:79:5e:54:ee:43:92:11: c1:33:2e:60:61:17:e9:ed:f6:55:03:8f:82:1f:0e: dd:4f:40:c5:c5:d6:9b:61:b2:c9:82:43:b6:48:09: 80:cd:6b:59:67:e7:1e:81:a1:20:74:60:f2:bf:ce: 58:79:d4:31:88:bd:23:90:26:cd:23:5f:7b:8c:90: 2a:bd:4b:e3:2a:16:24:cc:1c:c9:70:41:67:5c:ab: 19:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:CD:F4:A2:B0:7B:A7:89:A2:35:B1:99:6A:78:FE:E2:5C:63:B3:14 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/9318efc3-4d3a-413f-86c6-169a71d2eccb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:b140::/32 Signature Algorithm: sha256WithRSAEncryption 75:97:f8:90:5a:85:bd:42:04:17:e8:ad:5d:87:21:b2:97:fd: bf:86:93:c2:73:d0:d1:8f:90:c1:b7:28:a4:7a:f6:af:22:0a: cc:52:f2:09:d8:6e:25:2f:f2:86:ed:90:c4:35:8b:50:59:fb: ef:a3:c2:67:2f:d6:e5:64:0c:2b:72:bd:9c:28:ef:e5:f6:6f: 87:d0:67:8e:e1:8f:23:0e:da:45:d9:5a:ac:7d:65:2f:77:61: ee:08:60:5b:99:61:48:8c:ca:94:f6:f7:9f:14:54:64:10:62: a9:fb:32:e8:eb:1d:e0:c0:8a:e9:14:39:e7:dd:d7:ba:56:0c: 83:36:4f:bc:82:6c:e1:1d:65:db:00:d6:2a:74:fa:75:a7:9b: d9:3d:35:7a:07:87:ab:5f:cb:79:95:73:68:90:7c:ed:c0:b7: b5:40:fb:3d:0b:7a:0e:1f:ca:62:1a:39:5c:33:38:b6:4b:c7: a8:d9:6b:b2:fd:34:14:46:1d:a1:78:1c:85:5b:0f:63:5a:dd: fe:45:6e:27:06:2b:ac:38:e8:72:f3:a2:43:4e:69:80:02:1f: 49:72:b4:54:33:50:65:92:2e:74:ee:13:72:20:f7:7e:7d:b9: 00:b7:ed:6e:fd:ae:00:ca:4b:a3:0f:34:0d:73:f0:91:36:d2: a5:0d:99:33 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUXOy91YSK/qK7UnjjsBXexlgPrSAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUxMTI5MDAxMDA0WhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDRhNGQyMGZmYjhjZmRmYTVlODAwNTNhMzI3ZmIyNTk5 ZmE4OTM4MzQ4MWNhODE0NjgwYWM5MWFlYWRkZTM5MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwf/kUEFhdrMpvBLuQL67KdlBF+go8aPpQkcd8fVbrREUq 7Bm+wT2oh1pXTew8+/Rg895jbQA9aQS3BPiknTIf+HrYWK/gF37L4OELOKa1J00w yE5KW/34AxZVy/lzJrZnhKtyToxcEZseBn0Ua0CHAdm7NonMTMcAEbWV5O5C1Aj0 NTmHDaVHSjegI29jzAOqlDpu7WsKlVvzbCipwlHgxTnqLZ/EDwlr6zm0eV5U7kOS EcEzLmBhF+nt9lUDj4IfDt1PQMXF1pthssmCQ7ZICYDNa1ln5x6BoSB0YPK/zlh5 1DGIvSOQJs0jX3uMkCq9S+MqFiTMHMlwQWdcqxlBAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU3s30orB7p4miNbGZanj+4lxjsxQwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzkzMThlZmMzLTRkM2EtNDEzZi04NmM2LTE2OWE3MWQyZWNjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBbFAMA0GCSqGSIb3DQEBCwUAA4IBAQB1l/iQWoW9QgQX6K1dhyGyl/2/ hpPCc9DRj5DBtyikevavIgrMUvIJ2G4lL/KG7ZDENYtQWfvvo8JnL9blZAwrcr2c KO/l9m+H0GeO4Y8jDtpF2VqsfWUvd2HuCGBbmWFIjMqU9vefFFRkEGKp+zLo6x3g wIrpFDnn3de6VgyDNk+8gmzhHWXbANYqdPp1p5vZPTV6B4erX8t5lXNokHztwLe1 QPs9C3oOH8piGjlcMzi2S8eo2Wuy/TQURh2heByFWw9jWt3+RW4nBiusOOhy86JD TmmAAh9JcrRUM1Blki507hNyIPd+fbkAt+1u/a4AykujDzQNc/CRNtKlDZkz -----END CERTIFICATE-----Generated at Sat Dec 6 15:13:29 2025 by rpki-client