This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa File: 3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa (raw, json) Hash identifier: 3vjGFfmoC/OB4cJUnmXUuPUoxejTH+0Y3kDt8cflsH0= Subject key identifier: F0:76:6E:90:AA:00:C1:7F:35:40:42:B7:3C:25:AC:F2:E5:D0:D2:4B Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F4328584C751D3ECFF95062307E2A1940 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa Signing time: Thu 08 Jan 2026 14:00:39 +0000 ROA not before: Thu 08 Jan 2026 14:00:39 +0000 ROA not after: Wed 08 Apr 2026 13:00:39 +0000 asID: 33668 IP address blocks: 68.36.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:75:1d:3e:cf:f9:50:62:30:7e:2a:19:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Jan 8 14:00:39 2026 GMT Not After : Apr 8 13:00:39 2026 GMT Subject: CN=2ef04a23-ac79-41ef-9755-d4434b1856de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f8:21:84:0e:a2:04:29:24:72:3b:92:d4:73: b0:51:89:53:2b:ff:83:f1:e5:37:46:5f:58:20:33: 54:c3:85:28:9d:d2:f4:fd:3e:12:1d:a8:e2:2d:b5: 70:16:31:1f:e9:f2:46:2f:a5:1c:ec:ad:ed:b7:a2: 3b:03:95:da:91:fb:91:b5:10:1d:bf:e7:c1:2a:e2: 5b:48:1a:70:f0:c7:a5:3c:29:ac:16:c9:21:b9:fd: 60:0d:2f:38:cd:26:d6:85:51:4f:5e:5d:86:f9:bd: d8:55:d0:02:e8:40:13:29:a1:cc:50:8b:10:f3:98: 1d:b5:5c:9e:c2:b3:b6:b7:ae:1e:2f:54:5b:34:35: c8:44:18:f2:f8:1e:40:3e:3b:ae:20:5c:d8:84:81: 9f:b9:55:c4:54:20:51:06:53:47:cd:ce:63:d5:bb: af:96:b4:84:01:52:f7:11:af:16:1f:07:16:62:22: ac:d4:04:f1:53:c9:1e:ee:a1:86:01:bc:1c:de:fb: b5:71:bd:56:cc:aa:a7:b0:e7:53:fb:ea:c6:30:d8: bb:28:99:06:51:cb:5c:f9:5b:72:de:8e:b9:29:02: 68:1f:92:64:61:d5:44:fd:50:0a:32:4b:0d:8c:8f: 79:5a:24:95:c7:d0:02:29:e1:4d:06:9a:1d:e4:ee: a5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:76:6E:90:AA:00:C1:7F:35:40:42:B7:3C:25:AC:F2:E5:D0:D2:4B Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.36.220.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 43:eb:df:a7:74:17:54:90:f6:b7:c7:03:af:ff:e4:d6:1f:50: f6:fe:f9:10:9a:a4:a6:d2:da:d7:08:6c:03:38:6e:e4:0e:c6: 19:e4:ca:ff:ec:ee:bc:bb:18:9e:f5:ba:1b:61:64:f1:d4:e2: 5e:21:83:db:df:c7:cc:e8:3f:72:31:50:52:43:5b:a6:5d:4f: 82:60:d5:1b:de:4a:11:f6:ef:f0:7d:0a:50:e2:7d:83:f1:c3: 6b:8d:9f:fa:b0:bf:0f:aa:d6:79:da:10:e1:25:2d:1e:81:f6: 18:bc:f4:a1:ca:51:62:bc:f3:22:21:6b:c4:8e:ca:cd:a2:3a: 6a:f2:53:d3:68:c2:46:e0:14:c6:1e:41:5c:ee:c7:27:5a:4e: f3:43:73:5c:57:95:6d:18:e1:62:1d:79:4b:5b:b1:8d:9b:7b: 59:8e:53:97:7c:80:05:63:c3:59:9b:66:04:d0:1e:9a:4d:fb: 97:27:86:c5:14:79:7d:e5:8d:05:c8:cf:40:05:b5:13:ed:62: f9:a1:5a:d3:77:0f:c9:7f:c0:07:f9:e9:1a:1f:ab:72:e6:83: 73:a2:5b:5f:3c:a3:9f:55:0b:6c:6c:ca:86:7d:75:de:7d:79: 10:3a:f9:e2:93:28:f0:d8:5f:96:5f:3a:0a:85:99:3e:0e:35: e6:a6:ee:af -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEx1HT7P+VBiMH4qGUAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI2MDEwODE0MDAzOVoXDTI2MDQwODEzMDAzOVowLzEtMCsGA1UEAxMk MmVmMDRhMjMtYWM3OS00MWVmLTk3NTUtZDQ0MzRiMTg1NmRlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvghhA6iBCkkcjuS1HOwUYlTK/+D8eU3Rl9Y IDNUw4UondL0/T4SHajiLbVwFjEf6fJGL6Uc7K3tt6I7A5XakfuRtRAdv+fBKuJb SBpw8MelPCmsFskhuf1gDS84zSbWhVFPXl2G+b3YVdAC6EATKaHMUIsQ85gdtVye wrO2t64eL1RbNDXIRBjy+B5APjuuIFzYhIGfuVXEVCBRBlNHzc5j1buvlrSEAVL3 Ea8WHwcWYiKs1ATxU8ke7qGGAbwc3vu1cb1WzKqnsOdT++rGMNi7KJkGUctc+Vty 3o65KQJoH5JkYdVE/VAKMksNjI95WiSVx9ACKeFNBpod5O6lqQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFPB2bpCqAMF/NUBCtzwlrPLl0NJLMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvMzg4OGMzYjYtYzQ4OC0z YWE4LWI4ZjAtODRkYTViNWM2YjhiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCRCTcMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAEPr36d0F1SQ9rfHA6//5NYfUPb++RCapKbS2tcIbAM4buQOxhnkyv/s 7ry7GJ71uhthZPHU4l4hg9vfx8zoP3IxUFJDW6ZdT4Jg1RveShH27/B9ClDifYPx w2uNn/qwvw+q1nnaEOElLR6B9hi89KHKUWK88yIha8SOys2iOmryU9NowkbgFMYe QVzuxydaTvNDc1xXlW0Y4WIdeUtbsY2be1mOU5d8gAVjw1mbZgTQHppN+5cnhsUU eX3ljQXIz0AFtRPtYvmhWtN3D8l/wAf56Rofq3Lmg3OiW188o59VC2xsyoZ9dd59 eRA6+eKTKPDYX5ZfOgqFmT4ONeam7q8= -----END CERTIFICATE-----Generated at Sun Jan 25 12:29:02 2026 by rpki-client