This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/445ec936-4ab3-46e7-bfa6-2ffd1095678c.roa File: 445ec936-4ab3-46e7-bfa6-2ffd1095678c.roa (raw, json) Hash identifier: 0uft5p8oTMYFK+q+UUiPeOaRXi0p28oM1qRsScclyew= Subject key identifier: 3E:5F:9B:C2:B0:0A:49:EA:D9:EE:B7:2E:56:0B:E7:FD:C8:8C:F8:0F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4741710A24CB9ED9D8A7AF07719BD5342534E56C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/445ec936-4ab3-46e7-bfa6-2ffd1095678c.roa Signing time: Sun 07 Dec 2025 00:10:49 +0000 ROA not before: Sun 07 Dec 2025 00:10:49 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb9:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:41:71:0a:24:cb:9e:d9:d8:a7:af:07:71:9b:d5:34:25:34:e5:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 00:10:49 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=4df1606771aafd058d8b110ea4552deb8d2167c93c5f5cf03e52c538e7a6bee6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:62:3e:66:ad:05:69:25:8d:50:9f:9d:46:0e: da:ce:1d:b0:44:88:40:7a:f7:50:97:cb:07:2d:09: 7c:67:b7:d7:e7:eb:6a:85:57:1e:31:08:26:80:5a: 26:1e:1c:da:4b:19:76:70:c5:2a:e4:4d:27:60:0f: e6:cb:1d:60:b6:3c:f3:f3:5d:61:15:c5:cc:1e:17: 08:d8:0b:c7:ea:47:97:00:55:9f:e0:e3:12:65:e9: a7:1f:e7:56:5c:f5:59:18:95:81:71:41:73:58:84: 59:68:31:d7:e8:a6:19:dd:fb:e3:48:df:d4:6d:2d: 50:73:10:a7:05:20:ef:04:7c:c1:7a:99:7b:c4:25: 65:d2:4d:33:97:b1:e7:20:d3:c8:7d:a1:62:a8:69: 84:4e:f5:96:31:79:39:d1:1e:f0:a4:53:1f:12:06: ce:e3:cf:8e:75:70:21:60:36:ca:f7:8e:6b:c6:89: 3b:2d:27:a7:b2:b2:08:f5:b2:fe:46:c7:e8:06:36: 53:e0:f7:52:50:68:54:8b:61:07:4b:25:42:7d:98: 9f:ce:73:5c:d7:8b:34:2f:0d:19:4e:aa:9b:71:f7: 0d:e8:25:95:c3:9d:3d:44:9a:e1:b7:c3:09:01:65: 40:8d:87:84:20:22:70:1d:e0:33:eb:e7:b5:51:d9: 06:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:5F:9B:C2:B0:0A:49:EA:D9:EE:B7:2E:56:0B:E7:FD:C8:8C:F8:0F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/445ec936-4ab3-46e7-bfa6-2ffd1095678c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:c000::/40 Signature Algorithm: sha256WithRSAEncryption 4c:97:10:f5:57:7f:14:d5:87:92:2e:8c:05:86:11:04:e0:cf: 3c:72:02:5b:71:43:63:b1:71:9d:af:fc:38:76:ec:2b:87:bd: 13:78:2c:b9:09:2e:d7:8d:34:d1:67:b9:f1:89:41:1a:fc:81: 7c:38:90:7b:5b:94:9d:c3:17:5a:b9:7e:89:33:0b:77:9f:c2: 8e:45:e1:40:fa:43:e1:f9:7d:f9:90:23:3e:11:e2:4e:27:8f: 9a:d3:4f:a2:55:c5:66:b8:f0:6d:ab:ba:a5:cc:3b:bd:6b:8c: 55:0f:eb:81:ea:d9:4e:d9:cf:ea:4f:ac:29:31:e4:3e:46:50: eb:43:d8:b8:ba:62:8a:9c:99:16:54:6a:40:b4:dc:ba:6f:c0: 0a:9e:18:1d:b2:a4:70:91:c6:49:20:fb:4d:aa:77:f7:1f:e5: ac:d8:62:cf:6a:ca:4c:95:7b:de:c3:d4:42:bf:76:ff:eb:d6: 46:79:a2:84:63:dc:2a:71:28:90:eb:93:da:65:5b:85:94:b1: d2:f8:db:10:e9:7b:4e:6b:bf:c4:6f:09:9d:e5:b8:cb:aa:b1: 90:6e:5a:29:7a:29:aa:97:ec:52:98:cf:9e:bf:04:d2:6c:f0: 16:4c:b8:6d:5e:0b:f8:27:c6:a9:94:c2:4b:fe:ac:a3:b7:ca: 58:4e:28:c7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUR0FxCiTLntnYp68HcZvVNCU05WwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDAxMDQ5WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGYxNjA2NzcxYWFmZDA1OGQ4YjExMGVhNDU1MmRlYjhk MjE2N2M5M2M1ZjVjZjAzZTUyYzUzOGU3YTZiZWU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfYj5mrQVpJY1Qn51GDtrOHbBEiEB691CXywctCXxnt9fn 62qFVx4xCCaAWiYeHNpLGXZwxSrkTSdgD+bLHWC2PPPzXWEVxcweFwjYC8fqR5cA VZ/g4xJl6acf51Zc9VkYlYFxQXNYhFloMdfophnd++NI39RtLVBzEKcFIO8EfMF6 mXvEJWXSTTOXsecg08h9oWKoaYRO9ZYxeTnRHvCkUx8SBs7jz451cCFgNsr3jmvG iTstJ6eysgj1sv5Gx+gGNlPg91JQaFSLYQdLJUJ9mJ/Oc1zXizQvDRlOqptx9w3o JZXDnT1EmuG3wwkBZUCNh4QgInAd4DPr57VR2QYXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUPl+bwrAKSerZ7rcuVgvn/ciM+A8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0NWVjOTM2LTRhYjMtNDZlNy1iZmE2LTJmZmQxMDk1Njc4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+5wDANBgkqhkiG9w0BAQsFAAOCAQEATJcQ9Vd/FNWHki6MBYYRBODP PHICW3FDY7Fxna/8OHbsK4e9E3gsuQku14000We58YlBGvyBfDiQe1uUncMXWrl+ iTMLd5/CjkXhQPpD4fl9+ZAjPhHiTiePmtNPolXFZrjwbau6pcw7vWuMVQ/rgerZ TtnP6k+sKTHkPkZQ60PYuLpiipyZFlRqQLTcum/ACp4YHbKkcJHGSSD7Tap39x/l rNhiz2rKTJV73sPUQr92/+vWRnmihGPcKnEokOuT2mVbhZSx0vjbEOl7Tmu/xG8J neW4y6qxkG5aKXopqpfsUpjPnr8E0mzwFky4bV4L+CfGqZTCS/6so7fKWE4oxw== -----END CERTIFICATE-----Generated at Sat Dec 20 13:17:31 2025 by rpki-client