This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa File: 3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa (raw, json) Hash identifier: +ycuhuENTE1qRir3pcZxgaY3+08/kzDZ8kywfPSob5I= Subject key identifier: B1:82:B1:EA:75:CD:41:35:C5:A5:B1:CF:1D:B6:CB:64:6C:F7:31:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 426B151BF7A7D66F8C83FEBE7FB3134D390A655A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa Signing time: Sun 07 Dec 2025 00:20:30 +0000 ROA not before: Sun 07 Dec 2025 00:20:30 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:6b:15:1b:f7:a7:d6:6f:8c:83:fe:be:7f:b3:13:4d:39:0a:65:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 00:20:30 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=d68cc0f67853deaeb7af5a7a4175eb85a7459a77ba9d0473008b1137e8610f82, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3c:74:98:f8:39:b5:7b:5f:e6:50:3e:63:ee: 0a:f9:2f:18:29:f6:e8:ed:d0:69:17:93:10:10:e3: be:65:c9:f3:2c:e8:4d:00:30:8b:83:25:4a:15:5a: 11:d3:ee:94:49:4d:5b:b4:cc:16:67:fe:b6:59:23: 49:8e:a7:19:da:03:9d:b0:94:be:61:46:43:aa:e8: 32:06:8b:45:08:d7:11:a1:34:e9:1d:20:3d:1d:f8: 5d:eb:67:2b:61:5c:30:57:55:a8:c9:d5:3b:f1:99: 6d:37:c8:17:f4:01:da:98:2f:d0:07:7d:f0:9b:ac: 69:89:30:6a:ff:60:93:61:6f:52:eb:49:32:a7:fb: bf:90:56:a5:bb:09:be:b7:62:90:dc:a2:5a:e8:12: 9a:d2:08:a2:4d:ef:54:a9:79:d5:5e:4d:14:43:59: f9:16:9c:44:36:25:7b:40:3f:5f:e9:4d:2a:88:14: 77:eb:e6:14:ee:d4:6c:9a:10:44:dd:8a:c4:10:27: 35:13:0d:bb:a3:07:a0:62:33:31:e6:cb:ef:12:24: ca:7d:02:50:35:0e:49:6e:38:01:11:45:5e:a6:82: 7e:da:5a:56:db:c5:e7:ed:14:68:19:f1:14:4e:98: 80:27:9e:21:2b:a9:a3:a3:42:36:e5:f6:c8:be:fa: 4d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:82:B1:EA:75:CD:41:35:C5:A5:B1:CF:1D:B6:CB:64:6C:F7:31:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:e000::/40 Signature Algorithm: sha256WithRSAEncryption c4:e2:49:60:64:3b:89:c7:9d:50:3c:44:81:04:bd:b1:08:34: 08:0d:39:ee:ce:47:05:cf:29:5e:89:23:fe:27:a8:eb:06:d5: 17:0b:0c:ec:ba:23:37:05:e6:5e:30:02:6d:5f:56:51:d4:39: 67:00:62:1b:1a:97:13:ec:18:fe:6f:95:e5:41:e2:4f:fb:4c: 74:a9:72:0f:30:ee:6f:8b:cd:59:0a:73:42:0a:da:de:ac:86: ae:f9:45:4c:4b:7f:62:70:3c:b2:23:f1:40:f6:d1:f6:a6:dd: 57:3d:ed:ec:82:cc:b9:75:39:e1:e3:48:6a:48:cf:76:a7:ef: 8f:a3:11:02:5b:89:45:ae:b6:ce:64:78:82:7a:6d:cb:1b:53: 3f:c3:30:64:b8:fc:da:11:5b:a3:4a:77:0d:4f:43:ae:a0:34: 45:de:50:76:d0:f0:a5:03:46:e3:02:88:37:c8:78:7a:d5:02: 8f:5a:63:3b:2f:98:b3:75:6a:20:2a:ac:e9:73:aa:75:67:25: 93:99:e7:b4:a7:5e:e4:93:b4:0b:d2:09:be:30:a9:5c:a4:49: df:f8:66:e7:82:cb:b8:82:6c:5a:a2:38:19:8a:6c:82:b5:7f: 89:ce:4c:50:bc:77:61:f1:62:59:cb:c2:c4:19:ca:06:d2:76: 40:59:16:81 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQmsVG/en1m+Mg/6+f7MTTTkKZVowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDAyMDMwWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjhjYzBmNjc4NTNkZWFlYjdhZjVhN2E0MTc1ZWI4NWE3 NDU5YTc3YmE5ZDA0NzMwMDhiMTEzN2U4NjEwZjgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzPHSY+Dm1e1/mUD5j7gr5Lxgp9ujt0GkXkxAQ475lyfMs 6E0AMIuDJUoVWhHT7pRJTVu0zBZn/rZZI0mOpxnaA52wlL5hRkOq6DIGi0UI1xGh NOkdID0d+F3rZythXDBXVajJ1TvxmW03yBf0AdqYL9AHffCbrGmJMGr/YJNhb1Lr STKn+7+QVqW7Cb63YpDcolroEprSCKJN71SpedVeTRRDWfkWnEQ2JXtAP1/pTSqI FHfr5hTu1GyaEETdisQQJzUTDbujB6BiMzHmy+8SJMp9AlA1DkluOAERRV6mgn7a WlbbxeftFGgZ8RROmIAnniErqaOjQjbl9si++k05AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUsYKx6nXNQTXFpbHPHbbLZGz3MZQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiM2JkZWFiLTZiMTMtNGEyOC04MGVkLTBmZTJhNWZhNGRmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//4DANBgkqhkiG9w0BAQsFAAOCAQEAxOJJYGQ7icedUDxEgQS9sQg0 CA057s5HBc8pXokj/ieo6wbVFwsM7LojNwXmXjACbV9WUdQ5ZwBiGxqXE+wY/m+V 5UHiT/tMdKlyDzDub4vNWQpzQgra3qyGrvlFTEt/YnA8siPxQPbR9qbdVz3t7ILM uXU54eNIakjPdqfvj6MRAluJRa62zmR4gnptyxtTP8MwZLj82hFbo0p3DU9DrqA0 Rd5QdtDwpQNG4wKIN8h4etUCj1pjOy+Ys3VqICqs6XOqdWclk5nntKde5JO0C9IJ vjCpXKRJ3/hm54LLuIJsWqI4GYpsgrV/ic5MULx3YfFiWcvCxBnKBtJ2QFkWgQ== -----END CERTIFICATE-----Generated at Sat Dec 20 16:50:52 2025 by rpki-client