This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa File: 3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa (raw, json) Hash identifier: 4LOXZeh3dviYGMHT0G8U7dpw+Klo8Pd7MZUyEwuZCpE= Subject key identifier: 9E:13:76:50:83:EB:DD:69:F6:FB:BD:17:47:43:F1:FB:EA:17:ED:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60EE210A14B62333882AF33DE2FA8F711A9E2659 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa Signing time: Sun 07 Dec 2025 02:00:11 +0000 ROA not before: Sun 07 Dec 2025 02:00:11 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ee:21:0a:14:b6:23:33:88:2a:f3:3d:e2:fa:8f:71:1a:9e:26:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 02:00:11 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=3e6ecd3bc38a8297be547baa1c5c6411361a351fd1b873960285a0697b8f4b97, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ec:0c:5e:57:15:02:5c:7b:65:fc:e4:5e:8c: 50:7c:33:1d:f7:7e:c1:26:84:d4:51:cb:64:3e:be: 0b:0e:24:fd:78:71:b4:59:6c:c6:d1:24:c9:ff:07: 58:b0:b3:71:43:f7:8e:67:d9:e5:73:0e:93:d6:c7: 30:05:ad:71:8e:96:d7:c4:63:8f:ce:9b:c4:4e:57: a0:c1:46:d6:22:27:65:19:8e:7a:ec:7e:df:2e:57: b7:03:ae:85:2a:a3:a0:76:1e:ca:71:9a:f4:42:fd: 4f:5f:12:fc:2f:08:50:f1:24:d8:1e:8c:b6:00:f0: e5:f8:01:c0:42:5b:8f:93:1d:0f:02:17:73:f3:4c: 92:7a:b0:e8:a8:e1:21:8b:6c:7d:1c:43:2f:53:50: 66:bb:63:81:88:4f:ec:85:cb:d7:d1:81:b7:eb:1f: 12:ff:ff:70:f0:e6:e0:89:5d:32:c6:a5:35:fe:61: 99:bd:e3:a1:32:8b:7f:f7:2d:6a:ec:46:67:75:14: b2:f4:9b:c2:ae:28:3f:11:43:b7:23:03:c9:44:4e: 48:69:38:06:83:a1:8f:6a:3d:36:87:df:e0:49:40: 57:ca:1a:58:3f:21:c7:d5:78:5c:f7:12:00:b0:dd: 06:d7:58:99:4c:58:25:5a:e2:90:71:d0:1f:b4:36: 3b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:13:76:50:83:EB:DD:69:F6:FB:BD:17:47:43:F1:FB:EA:17:ED:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c040::/48 Signature Algorithm: sha256WithRSAEncryption d0:71:87:30:4a:8d:11:bb:ed:c4:7e:14:8c:1a:d8:09:c3:97: e9:d7:fa:c0:95:c2:d2:19:09:98:4e:98:bd:7d:b7:2a:1b:de: 3c:c4:e8:86:5f:74:a7:66:fc:47:b3:8d:29:9b:21:7a:1d:51: e9:61:04:f1:72:c6:6a:45:01:fd:7e:3f:5c:5e:2a:1a:4f:61: 95:ff:ef:71:16:1d:eb:05:f4:b8:4c:2d:ea:20:32:4b:ee:a8: 15:a1:22:1d:80:70:93:e4:ba:70:fd:ed:68:3c:e0:d7:89:9a: 7d:ae:e2:d9:b0:58:0e:ab:5a:87:7c:72:00:80:7e:19:2d:7e: 16:77:33:0a:37:a9:15:28:08:21:6c:86:5b:9a:cf:15:51:e0: e0:7f:d4:98:79:73:f6:eb:11:b0:97:c9:48:7f:fb:c9:8b:c8: ff:1c:17:3f:8b:8b:6a:be:c1:19:d0:ca:a9:d6:a3:20:c0:13: cb:83:88:62:69:89:7a:f5:e6:92:75:ee:cb:49:86:9e:ab:04: 65:05:9c:34:34:88:28:d3:30:ad:fc:9f:a4:33:5c:32:7e:ed: fa:11:3d:27:31:8d:6a:76:e6:ac:14:fc:10:01:20:ee:3f:8f: d7:ea:24:45:e4:13:66:99:40:e9:7c:04:47:9d:67:d5:c7:9c: 64:1e:6a:3f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYO4hChS2IzOIKvM94vqPcRqeJlkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDIwMDExWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTZlY2QzYmMzOGE4Mjk3YmU1NDdiYWExYzVjNjQxMTM2 MWEzNTFmZDFiODczOTYwMjg1YTA2OTdiOGY0Yjk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC87AxeVxUCXHtl/ORejFB8Mx33fsEmhNRRy2Q+vgsOJP14 cbRZbMbRJMn/B1iws3FD945n2eVzDpPWxzAFrXGOltfEY4/Om8ROV6DBRtYiJ2UZ jnrsft8uV7cDroUqo6B2HspxmvRC/U9fEvwvCFDxJNgejLYA8OX4AcBCW4+THQ8C F3PzTJJ6sOio4SGLbH0cQy9TUGa7Y4GIT+yFy9fRgbfrHxL//3Dw5uCJXTLGpTX+ YZm946Eyi3/3LWrsRmd1FLL0m8KuKD8RQ7cjA8lETkhpOAaDoY9qPTaH3+BJQFfK Glg/IcfVeFz3EgCw3QbXWJlMWCVa4pBx0B+0Njt1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnhN2UIPr3Wn2+70XR0Px++oX7WwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3MzRlN2RiLThmMjItNDBlMC1iMmNjLTQ4OWYyZDYzNjVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//wEAwDQYJKoZIhvcNAQELBQADggEBANBxhzBKjRG77cR+FIwa2AnD l+nX+sCVwtIZCZhOmL19tyob3jzE6IZfdKdm/EezjSmbIXodUelhBPFyxmpFAf1+ P1xeKhpPYZX/73EWHesF9LhMLeogMkvuqBWhIh2AcJPkunD97Wg84NeJmn2u4tmw WA6rWod8cgCAfhktfhZ3Mwo3qRUoCCFshluazxVR4OB/1Jh5c/brEbCXyUh/+8mL yP8cFz+Li2q+wRnQyqnWoyDAE8uDiGJpiXr15pJ17stJhp6rBGUFnDQ0iCjTMK38 n6QzXDJ+7foRPScxjWp25qwU/BABIO4/j9fqJEXkE2aZQOl8BEedZ9XHnGQeaj8= -----END CERTIFICATE-----Generated at Sat Dec 20 14:42:24 2025 by rpki-client