This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/bdaa1236-db49-323d-8634-b5c7b8224fda.roa File: bdaa1236-db49-323d-8634-b5c7b8224fda.roa (raw, json) Hash identifier: Trf8f8FMQQ/8qKx40gKs9PBtQK0rWad0wP54H58mlMM= Subject key identifier: 5A:45:DB:F2:B8:43:73:B9:8D:F6:D4:17:01:EA:09:7C:DD:56:84:CC Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F4328584BD8C5BDDECFA434A1D82F3740 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/bdaa1236-db49-323d-8634-b5c7b8224fda.roa Signing time: Thu 13 Nov 2025 14:00:38 +0000 ROA not before: Thu 13 Nov 2025 14:00:38 +0000 ROA not after: Wed 11 Feb 2026 14:00:38 +0000 asID: 398210 IP address blocks: 168.220.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:d8:c5:bd:de:cf:a4:34:a1:d8:2f:37:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Nov 13 14:00:38 2025 GMT Not After : Feb 11 14:00:38 2026 GMT Subject: CN=9f60769d-2530-4dd7-823e-8e032abba46d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:df:e9:45:bc:5a:75:52:08:2c:dd:85:2b:d8: 6d:f4:83:26:c4:a5:2b:6f:ab:94:d2:5d:4a:7c:24: 30:2d:a3:26:16:33:12:3d:21:10:58:a8:b9:d6:a2: a7:7b:dc:1d:ee:14:9a:6c:09:fd:fd:c3:a3:fb:a9: 9e:9e:4a:0c:57:22:f9:fd:dc:8f:49:92:90:c0:6f: 90:24:17:13:14:18:35:1b:88:8f:66:46:1b:59:9b: ac:29:b9:ff:81:ce:07:0d:0e:44:92:6b:3b:71:ba: 53:d5:e0:ac:07:d9:5f:e5:c4:66:28:15:8b:fe:e1: 68:e3:b6:f0:cb:ed:ff:ad:e4:34:40:b0:0e:ff:a5: a0:80:e6:7b:0a:7a:b7:56:46:6a:07:7e:2d:dd:60: cd:4a:c7:43:5f:7a:5d:d0:b7:e3:4f:fb:ad:5b:8c: 83:68:31:7e:19:e6:b4:56:a7:4b:13:5a:22:06:13: d3:a5:b3:b3:97:8f:c2:3c:cd:ed:b1:3c:c2:67:d4: 70:7f:5f:16:90:81:08:38:23:f3:11:78:cf:67:7b: f6:b4:5e:3c:1d:7b:c1:17:5d:f4:b5:57:52:e5:e3: 36:dd:f5:39:4a:56:62:dc:d7:d5:a4:7b:d8:bd:a7: 0c:75:a3:2e:76:bf:25:46:03:a9:68:0b:54:20:05: 14:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:45:DB:F2:B8:43:73:B9:8D:F6:D4:17:01:EA:09:7C:DD:56:84:CC Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/bdaa1236-db49-323d-8634-b5c7b8224fda.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.172.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0a:6c:3d:55:1a:4a:42:5c:1b:8c:81:83:82:b4:10:4e:00:26: 01:67:71:d6:6c:f5:1f:43:47:bb:57:97:f7:ee:a0:2f:b6:e3: 27:c2:58:e1:fe:9e:62:41:67:a1:52:1e:e3:83:a8:c1:ed:9e: 4f:a2:54:e6:0c:2a:19:39:d3:97:ec:b0:f3:44:fe:18:ed:df: 11:dc:c3:fb:68:0a:ab:01:1f:3b:10:f0:d1:b7:bb:f6:d2:1a: 82:7b:7a:de:12:48:0c:94:eb:6e:3b:4a:e0:b3:c2:e7:70:8f: 3e:b7:c9:93:be:84:94:18:e5:d4:ef:fc:d7:97:2a:26:ca:bc: 8e:c9:78:e6:8e:ef:d9:03:9d:2d:77:e3:82:65:e1:51:f2:0d: bb:a9:33:64:a8:2e:dc:e6:24:a2:f6:ce:06:0c:e1:e1:e1:1f: 03:ee:5d:9e:80:34:8d:54:b2:df:3d:86:f7:f8:ec:85:d5:13: 2e:90:db:d8:89:c0:12:be:3d:3b:8b:5f:83:f9:2c:fe:3b:6c: 87:59:38:23:d7:6c:36:53:45:00:ef:20:8d:e4:97:cd:40:fd: b6:00:e5:73:e8:d7:de:80:b4:98:3f:fc:8a:fa:dc:f3:34:9f: a5:81:aa:d8:2e:c6:df:43:9c:7a:ca:1a:89:51:51:93:25:14: 11:e8:b3:4d -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEvYxb3ez6Q0odgvN0AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI1MTExMzE0MDAzOFoXDTI2MDIxMTE0MDAzOFowLzEtMCsGA1UEAxMk OWY2MDc2OWQtMjUzMC00ZGQ3LTgyM2UtOGUwMzJhYmJhNDZkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyt/pRbxadVIILN2FK9ht9IMmxKUrb6uU0l1K fCQwLaMmFjMSPSEQWKi51qKne9wd7hSabAn9/cOj+6menkoMVyL5/dyPSZKQwG+Q JBcTFBg1G4iPZkYbWZusKbn/gc4HDQ5Ekms7cbpT1eCsB9lf5cRmKBWL/uFo47bw y+3/reQ0QLAO/6WggOZ7Cnq3VkZqB34t3WDNSsdDX3pd0LfjT/utW4yDaDF+Gea0 VqdLE1oiBhPTpbOzl4/CPM3tsTzCZ9Rwf18WkIEIOCPzEXjPZ3v2tF48HXvBF130 tVdS5eM23fU5SlZi3NfVpHvYvacMdaMudr8lRgOpaAtUIAUUIwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFpF2/K4Q3O5jfbUFwHqCXzdVoTMMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvYmRhYTEyMzYtZGI0OS0z MjNkLTg2MzQtYjVjN2I4MjI0ZmRhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNysMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAApsPVUaSkJcG4yBg4K0EE4AJgFncdZs9R9DR7tXl/fuoC+24yfCWOH+ nmJBZ6FSHuODqMHtnk+iVOYMKhk505fssPNE/hjt3xHcw/toCqsBHzsQ8NG3u/bS GoJ7et4SSAyU6247SuCzwudwjz63yZO+hJQY5dTv/NeXKibKvI7JeOaO79kDnS13 44Jl4VHyDbupM2SoLtzmJKL2zgYM4eHhHwPuXZ6ANI1Ust89hvf47IXVEy6Q29iJ wBK+PTuLX4P5LP47bIdZOCPXbDZTRQDvII3kl81A/bYA5XPo196AtJg//Ir63PM0 n6WBqtguxt9DnHrKGolRUZMlFBHos00= -----END CERTIFICATE-----Generated at Sat Dec 6 16:07:41 2025 by rpki-client