This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa File: ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa (raw, json) Hash identifier: P3r7y6CI4nC8RwC3NmEq/b995POfr+lz5DsuCUM/VFE= Subject key identifier: 94:71:DF:88:16:B8:27:A4:C9:25:F6:DC:80:0F:83:DB:CC:48:0F:F6 Certificate issuer: /CN=64da013d-8ba3-4af5-80ad-7674bd0cc403 Certificate serial: 010D0C9F4328584C0B06290F3BE073B211F5A280 Authority key identifier: 2D:D1:01:C1:DB:B3:F5:6C:57:8C:83:E5:D4:15:B8:40:06:A9:9F:34 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa Signing time: Mon 01 Dec 2025 14:00:39 +0000 ROA not before: Mon 01 Dec 2025 14:00:39 +0000 ROA not after: Sun 01 Mar 2026 14:00:39 +0000 asID: 399916 IP address blocks: 66.118.0.0/22 maxlen: 22 66.118.0.0/24 maxlen: 24 66.118.1.0/24 maxlen: 24 66.118.2.0/24 maxlen: 24 66.118.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:0b:06:29:0f:3b:e0:73:b2:11:f5:a2:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64da013d-8ba3-4af5-80ad-7674bd0cc403 Validity Not Before: Dec 1 14:00:39 2025 GMT Not After : Mar 1 14:00:39 2026 GMT Subject: CN=aec31ddc-4d14-4088-bdad-9ba7199f89c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:31:89:67:b5:61:86:a7:cb:7c:df:ea:1c:a7: 28:c9:49:61:c0:c9:a1:cc:f5:31:2d:d4:04:09:e3: 5f:87:89:50:09:b4:f2:49:e7:7e:84:95:67:0a:53: 37:67:c0:b6:da:f4:b2:0e:48:0c:eb:82:b3:d2:bf: 7d:f4:6f:35:73:af:94:b1:9b:ff:e0:67:e3:11:2e: 13:95:71:4d:1b:5a:76:88:76:00:00:42:a3:d1:54: c3:1f:64:fc:58:c0:eb:5b:5c:d2:17:3c:c6:64:53: 91:76:40:02:90:dc:1c:06:bd:bd:64:5a:7d:8b:7d: 12:b3:f7:ea:6d:1a:4b:fd:00:f0:21:dd:20:21:5f: fb:ec:af:4e:d4:04:d7:35:c0:cb:ba:41:c8:e4:bf: 5c:44:18:26:9e:6d:07:81:3a:40:37:5b:85:2c:d1: 8c:a5:d4:84:1e:61:4f:ad:a8:a6:6d:1a:f8:7c:91: 9e:f1:46:2e:13:01:b6:19:0c:0a:5c:b0:aa:00:14: 33:c0:cd:10:59:22:dd:b8:0a:fd:76:53:c5:94:25: db:bc:6e:56:0c:ab:e3:44:84:88:e8:cd:cb:4f:fd: e4:96:e2:ab:7d:d7:aa:99:93:28:b6:19:27:53:5f: ce:f7:f2:87:3d:b4:64:b5:e3:76:5f:ca:04:d7:f6: 80:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:71:DF:88:16:B8:27:A4:C9:25:F6:DC:80:0F:83:DB:CC:48:0F:F6 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.crl X509v3 Authority Key Identifier: keyid:2D:D1:01:C1:DB:B3:F5:6C:57:8C:83:E5:D4:15:B8:40:06:A9:9F:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer sbgp-ipAddrBlock: critical IPv4: 66.118.0.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 42:a7:72:fe:5d:0d:a3:df:85:15:24:9e:bc:b4:a8:b3:16:4b: 60:ce:a9:07:d5:9f:3c:d9:15:17:f3:7e:93:00:01:d0:fb:54: 9a:0d:f3:2c:39:fe:5f:49:f3:eb:37:8b:12:dd:db:34:6e:9c: 05:61:cc:30:9a:04:e9:b2:4e:70:ad:42:b8:cd:d8:58:d2:ca: 28:6e:49:bf:30:8f:1d:5b:83:e4:23:3b:09:b2:77:7e:29:aa: 1b:90:36:f9:59:3d:05:0d:75:ea:b2:b4:ff:23:76:33:8a:70: b2:47:87:0a:31:6c:6e:b5:2d:39:fb:88:14:71:20:1f:0f:b7: f8:14:5f:9a:6c:ff:8f:d8:2d:eb:d5:0c:df:f9:50:2c:e4:9b: ae:62:4a:fe:49:33:db:d1:3e:1f:bd:73:89:01:34:a1:d6:ba: 23:2d:21:b9:c7:ef:25:50:33:5c:7e:d4:6e:57:94:6d:cd:bd: 36:06:7b:1e:18:e4:c8:a9:09:43:01:73:9e:0f:5e:a9:b3:42: 20:b6:9d:25:ac:08:41:1d:80:87:67:0a:23:5b:4b:49:bb:61: a8:a4:61:90:a4:41:e6:27:27:8e:5e:50:01:a6:77:7e:6d:4d: a1:22:2b:1b:c8:6e:f3:35:38:54:26:e1:22:f0:ae:33:b1:0a: c3:6b:9c:68 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEwLBikPO+BzshH1ooAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjRkYTAxM2QtOGJhMy00YWY1LTgwYWQtNzY3NGJkMGNj NDAzMB4XDTI1MTIwMTE0MDAzOVoXDTI2MDMwMTE0MDAzOVowLzEtMCsGA1UEAxMk YWVjMzFkZGMtNGQxNC00MDg4LWJkYWQtOWJhNzE5OWY4OWM3MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1zGJZ7VhhqfLfN/qHKcoyUlhwMmhzPUxLdQE CeNfh4lQCbTySed+hJVnClM3Z8C22vSyDkgM64Kz0r999G81c6+UsZv/4GfjES4T lXFNG1p2iHYAAEKj0VTDH2T8WMDrW1zSFzzGZFORdkACkNwcBr29ZFp9i30Ss/fq bRpL/QDwId0gIV/77K9O1ATXNcDLukHI5L9cRBgmnm0HgTpAN1uFLNGMpdSEHmFP raimbRr4fJGe8UYuEwG2GQwKXLCqABQzwM0QWSLduAr9dlPFlCXbvG5WDKvjRISI 6M3LT/3kluKrfdeqmZMothknU1/O9/KHPbRkteN2X8oE1/aAZwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFJRx34gWuCekySX23IAPg9vMSA/2MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82NGRh MDEzZC04YmEzLTRhZjUtODBhZC03Njc0YmQwY2M0MDMvYmE5YWY3YzktNDE4OC0z YWVjLTgzY2EtMGU2MDI5OGE5OWQ0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNjRkYTAxM2QtOGJhMy00YWY1LTgw YWQtNzY3NGJkMGNjNDAzLzY0ZGEwMTNkLThiYTMtNGFmNS04MGFkLTc2NzRiZDBj YzQwMy5jcmwwHwYDVR0jBBgwFoAULdEBwduz9WxXjIPl1BW4QAapnzQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy82NGRhMDEzZC04YmEzLTRhZjUtODBhZC03Njc0 YmQwY2M0MDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCQnYAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAEKncv5dDaPfhRUknry0qLMWS2DOqQfVnzzZFRfzfpMAAdD7VJoN8yw5 /l9J8+s3ixLd2zRunAVhzDCaBOmyTnCtQrjN2FjSyihuSb8wjx1bg+QjOwmyd34p qhuQNvlZPQUNdeqytP8jdjOKcLJHhwoxbG61LTn7iBRxIB8Pt/gUX5ps/4/YLevV DN/5UCzkm65iSv5JM9vRPh+9c4kBNKHWuiMtIbnH7yVQM1x+1G5XlG3NvTYGex4Y 5MipCUMBc54PXqmzQiC2nSWsCEEdgIdnCiNbS0m7YaikYZCkQeYnJ45eUAGmd35t TaEiKxvIbvM1OFQm4SLwrjOxCsNrnGg= -----END CERTIFICATE-----Generated at Sun Dec 7 04:55:50 2025 by rpki-client