This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59167a0a-38a5-40ce-b8dd-17fb1df5fe38.roa File: 59167a0a-38a5-40ce-b8dd-17fb1df5fe38.roa (raw, json) Hash identifier: 2D7UNWFjnTuAefnfh+M4ks5v+lamRxchJ9Q5yXrNOL4= Subject key identifier: 0B:35:ED:DD:B4:0E:A5:4E:7C:AB:9F:AF:9A:BC:F3:8D:DF:F7:58:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E14814382F81A3AF93940ABEA731E739E21CB59 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59167a0a-38a5-40ce-b8dd-17fb1df5fe38.roa Signing time: Sun 07 Dec 2025 02:11:43 +0000 ROA not before: Sun 07 Dec 2025 02:11:43 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:14:81:43:82:f8:1a:3a:f9:39:40:ab:ea:73:1e:73:9e:21:cb:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 02:11:43 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=443129ec8f8a812277ce1a4da046b937410e70580f91a534ad3d146ac5130489, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:12:eb:ac:69:62:0f:ca:95:c2:5c:40:34:b1: 59:ff:13:e0:bf:9c:63:ac:3c:be:c0:a3:93:c8:bf: 6a:17:0c:10:ed:ac:37:62:64:1e:d7:f9:db:3c:ca: 68:8d:f4:da:4c:03:65:94:83:95:05:c5:5a:a4:95: 2b:6a:04:fc:30:d2:99:db:53:ad:53:05:74:41:13: 74:71:42:44:98:54:4b:87:00:82:26:ee:9a:f2:38: 3c:53:55:a7:41:60:d0:b7:32:59:be:fd:ba:13:2d: 27:d6:ac:17:9a:3e:0c:e1:1b:27:7a:7e:b7:a0:8c: 94:13:61:b7:7a:77:29:15:4d:ef:35:f5:71:8b:5b: de:7d:43:63:66:7f:c4:ea:7a:0b:94:a5:83:9b:e5: 06:7a:47:d4:37:08:de:5c:bf:10:e9:07:f3:34:90: 68:44:ed:01:8e:e2:c6:e1:fa:2d:36:10:16:30:1b: 2f:39:a7:55:c9:81:72:ad:79:a4:0b:2e:05:fa:df: 16:b3:12:83:11:e6:f3:5c:f3:36:47:03:e0:93:77: 16:32:09:cc:20:50:e6:09:52:62:c4:74:40:07:46: 1a:f0:38:19:e6:dc:fe:de:f2:b7:b1:fa:19:ee:91: 59:1c:ae:e0:02:e2:c2:ed:ad:ac:8a:b0:10:c0:3b: dd:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:35:ED:DD:B4:0E:A5:4E:7C:AB:9F:AF:9A:BC:F3:8D:DF:F7:58:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59167a0a-38a5-40ce-b8dd-17fb1df5fe38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8010::/48 Signature Algorithm: sha256WithRSAEncryption 77:6b:a2:5c:23:a2:37:d4:4e:6a:5a:e2:4d:af:61:c3:7e:7d: 3d:21:83:e4:72:a9:0c:fe:e4:c8:a3:a0:05:9f:90:b4:1e:5a: 04:7e:fd:7e:f9:d3:2d:37:58:d3:52:fe:91:9a:0e:24:1b:3e: cf:7d:45:75:49:6c:af:4e:17:28:57:dd:1c:64:36:3a:71:d4: b2:a2:78:d2:f6:a6:5a:d5:b8:14:bf:1a:c1:6e:18:58:cb:aa: 01:05:ea:c6:0d:89:14:de:b8:58:4e:dc:05:a2:fc:60:35:82: 62:b1:fb:8a:58:b2:46:4f:d0:fc:86:bb:7a:f5:26:87:a6:a1: e3:c4:26:e5:8d:8d:79:cf:7e:71:f1:71:89:bb:7e:49:aa:74: 0f:14:ff:29:e3:47:7d:ba:03:eb:2e:43:9e:33:91:e9:1b:6f: f8:7a:7d:bb:b1:9f:bc:dd:a7:5f:e4:2b:8c:1f:48:c6:e5:83: 10:13:8d:b7:8b:12:31:9c:4a:9f:a3:be:6f:5b:b3:12:46:73: 5d:c2:df:48:99:3d:40:24:47:42:cf:35:33:e0:cb:e3:44:9b: 79:e4:f2:04:1d:93:7c:f0:67:1a:59:c4:6d:6c:aa:15:11:a3: 6c:d7:e1:79:e4:b7:a7:0f:dc:7e:b8:87:97:01:7f:9e:42:6e: 61:cf:c7:13 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXhSBQ4L4Gjr5OUCr6nMec54hy1kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDIxMTQzWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDMxMjllYzhmOGE4MTIyNzdjZTFhNGRhMDQ2YjkzNzQx MGU3MDU4MGY5MWE1MzRhZDNkMTQ2YWM1MTMwNDg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0EuusaWIPypXCXEA0sVn/E+C/nGOsPL7Ao5PIv2oXDBDt rDdiZB7X+ds8ymiN9NpMA2WUg5UFxVqklStqBPww0pnbU61TBXRBE3RxQkSYVEuH AIIm7pryODxTVadBYNC3Mlm+/boTLSfWrBeaPgzhGyd6fregjJQTYbd6dykVTe81 9XGLW959Q2Nmf8TqeguUpYOb5QZ6R9Q3CN5cvxDpB/M0kGhE7QGO4sbh+i02EBYw Gy85p1XJgXKteaQLLgX63xazEoMR5vNc8zZHA+CTdxYyCcwgUOYJUmLEdEAHRhrw OBnm3P7e8rex+hnukVkcruAC4sLtrayKsBDAO92HAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCzXt3bQOpU58q5+vmrzzjd/3WIUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5MTY3YTBhLTM4YTUtNDBjZS1iOGRkLTE3ZmIxZGY1ZmUzOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gBAwDQYJKoZIhvcNAQELBQADggEBAHdrolwjojfUTmpa4k2vYcN+ fT0hg+RyqQz+5MijoAWfkLQeWgR+/X750y03WNNS/pGaDiQbPs99RXVJbK9OFyhX 3RxkNjpx1LKieNL2plrVuBS/GsFuGFjLqgEF6sYNiRTeuFhO3AWi/GA1gmKx+4pY skZP0PyGu3r1JoemoePEJuWNjXnPfnHxcYm7fkmqdA8U/ynjR326A+suQ54zkekb b/h6fbuxn7zdp1/kK4wfSMblgxATjbeLEjGcSp+jvm9bsxJGc13C30iZPUAkR0LP NTPgy+NEm3nk8gQdk3zwZxpZxG1sqhURo2zX4Xnkt6cP3H64h5cBf55CbmHPxxM= -----END CERTIFICATE-----Generated at Sat Dec 20 11:29:57 2025 by rpki-client