This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa File: 7332e9a4-0787-3148-ac49-59abb3ffcd35.roa (raw, json) Hash identifier: XDrVTcAQDjbG3g4ONUHd5JFuDTklJ8uTuN0BXQ4+hkE= Subject key identifier: D2:80:BA:4F:17:A2:34:9D:DE:A0:5C:41:42:51:57:3F:27:02:2D:77 Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F4328584BD8C5BDB9EEA9F15B8F0F71A0 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa Signing time: Thu 13 Nov 2025 14:00:38 +0000 ROA not before: Thu 13 Nov 2025 14:00:38 +0000 ROA not after: Wed 11 Feb 2026 14:00:38 +0000 asID: 398210 IP address blocks: 168.220.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:d8:c5:bd:b9:ee:a9:f1:5b:8f:0f:71:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Nov 13 14:00:38 2025 GMT Not After : Feb 11 14:00:38 2026 GMT Subject: CN=f6a29030-361b-4fd8-939d-2a27b3cba1a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:32:a0:d5:28:1f:b9:15:4d:25:f9:fc:0d:c9: 7d:3d:eb:8c:9d:d1:b9:af:b2:dd:ec:0b:20:32:e8: 30:36:82:b9:5b:a7:3b:eb:d8:2a:d2:89:8b:0a:37: cd:77:89:29:2e:07:91:86:19:c3:c4:66:39:65:15: 3a:6d:95:5c:ad:74:8d:04:05:b2:06:a5:07:bc:51: b7:1c:67:0d:d3:90:b7:07:42:d2:37:cc:ce:cf:ea: 01:56:c4:b0:5b:19:cb:f5:fa:d6:e1:66:fb:39:73: 76:c0:78:c1:dd:4a:ef:d1:90:43:52:87:1e:74:9f: 34:fd:25:36:c8:af:e6:47:a7:0c:8c:35:72:25:0a: e2:b5:92:77:ac:19:88:d0:5e:6f:a6:c7:e5:1f:03: 61:9f:9c:a5:2f:29:a5:05:89:7d:96:20:37:c4:03: 40:aa:34:72:ec:3d:ad:57:20:34:0a:19:8a:84:f1: 73:07:44:7c:4b:93:b7:ac:7a:bc:47:85:fd:c0:f8: 39:a1:d0:14:27:20:d5:88:c3:cc:e1:dd:91:93:da: 1f:78:8b:42:7b:34:60:90:5b:b0:6f:18:8f:40:cc: 03:15:c8:7b:b0:ed:38:84:74:ff:a9:0b:cc:dd:a4: 1e:b5:d1:5c:5f:c4:19:46:4d:05:32:29:dd:4c:98: 7f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:80:BA:4F:17:A2:34:9D:DE:A0:5C:41:42:51:57:3F:27:02:2D:77 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.168.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 5b:97:de:26:f7:4a:f7:77:87:61:e8:4b:89:9c:23:41:69:f3: f8:a9:41:78:91:88:6c:5f:12:1c:c5:a1:31:d2:e0:97:ad:a4: c8:b1:65:34:4d:8f:ae:23:31:ca:3e:da:fa:bc:5d:54:be:c2: 75:be:4a:fe:d2:9d:ed:9b:b0:f7:24:37:f8:c6:91:f5:db:02: d9:97:e1:33:da:da:49:46:5a:17:a7:df:82:7b:24:40:e2:2b: 6f:24:ee:67:f4:9f:ba:e9:dd:9a:9d:bd:d7:00:8e:4a:14:f3: dc:9c:a3:bc:66:bd:9e:3f:e2:99:a4:8a:7a:68:72:9d:7f:54: a1:04:70:cd:23:d2:4b:a3:4e:ac:a3:26:07:15:b8:25:27:68: f5:99:be:b5:dd:dc:ad:ef:26:d4:43:6e:9a:e0:1a:d8:52:6b: 5f:df:4d:74:38:fe:d6:6f:10:b2:66:85:56:8d:61:21:00:9e: c2:3c:3c:37:80:ac:ed:19:fc:e6:5d:59:75:95:a4:85:f2:ad: 28:27:16:ce:f1:93:53:14:5c:24:11:7d:ac:d0:04:76:14:72: b1:12:ee:d4:de:34:23:21:c1:5e:88:b1:35:01:83:c8:3e:34: 89:eb:77:09:03:a7:2e:ab:40:28:b5:d8:9e:91:f5:82:62:38: 83:32:2a:e6 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEvYxb257qnxW48PcaAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI1MTExMzE0MDAzOFoXDTI2MDIxMTE0MDAzOFowLzEtMCsGA1UEAxMk ZjZhMjkwMzAtMzYxYi00ZmQ4LTkzOWQtMmEyN2IzY2JhMWE3MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjKg1SgfuRVNJfn8Dcl9PeuMndG5r7Ld7Asg MugwNoK5W6c769gq0omLCjfNd4kpLgeRhhnDxGY5ZRU6bZVcrXSNBAWyBqUHvFG3 HGcN05C3B0LSN8zOz+oBVsSwWxnL9frW4Wb7OXN2wHjB3Urv0ZBDUocedJ80/SU2 yK/mR6cMjDVyJQritZJ3rBmI0F5vpsflHwNhn5ylLymlBYl9liA3xANAqjRy7D2t VyA0ChmKhPFzB0R8S5O3rHq8R4X9wPg5odAUJyDViMPM4d2Rk9ofeItCezRgkFuw bxiPQMwDFch7sO04hHT/qQvM3aQetdFcX8QZRk0FMindTJh/dwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFNKAuk8XojSd3qBcQUJRVz8nAi13MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvNzMzMmU5YTQtMDc4Ny0z MTQ4LWFjNDktNTlhYmIzZmZjZDM1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNyoMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFuX3ib3Svd3h2HoS4mcI0Fp8/ipQXiRiGxfEhzFoTHS4JetpMixZTRN j64jMco+2vq8XVS+wnW+Sv7Sne2bsPckN/jGkfXbAtmX4TPa2klGWhen34J7JEDi K28k7mf0n7rp3ZqdvdcAjkoU89yco7xmvZ4/4pmkinpocp1/VKEEcM0j0kujTqyj JgcVuCUnaPWZvrXd3K3vJtRDbprgGthSa1/fTXQ4/tZvELJmhVaNYSEAnsI8PDeA rO0Z/OZdWXWVpIXyrSgnFs7xk1MUXCQRfazQBHYUcrES7tTeNCMhwV6IsTUBg8g+ NInrdwkDpy6rQCi12J6R9YJiOIMyKuY= -----END CERTIFICATE-----Generated at Sat Dec 6 18:49:20 2025 by rpki-client