This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/afbb9459-9f83-4359-a830-b3ddaa638879.roa File: afbb9459-9f83-4359-a830-b3ddaa638879.roa (raw, json) Hash identifier: Cti1oJLpo6S2iYefA+TgtklMwbmlHLqiMkhvnzCBzHU= Subject key identifier: 12:66:A6:DC:12:8D:96:97:55:08:0E:DE:7C:AE:BF:70:50:8F:01:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 265492364165E0BD752EEFC9690EA1850CC8BD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/afbb9459-9f83-4359-a830-b3ddaa638879.roa Signing time: Sun 07 Dec 2025 01:21:16 +0000 ROA not before: Sun 07 Dec 2025 01:21:16 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1e:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:54:92:36:41:65:e0:bd:75:2e:ef:c9:69:0e:a1:85:0c:c8:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 01:21:16 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=3421a11ecb8f06fcd6a963ac37067d1ba49713fff1f5d2cc95c685051b3a25e3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:2c:53:94:8c:81:ec:e0:a9:f9:d3:9d:78: 4d:a2:be:37:4d:0a:7f:80:8d:28:1b:50:03:47:c0: 58:22:d3:b2:fe:f5:c9:e8:86:54:08:6a:45:87:40: c6:13:e4:d9:ff:4d:1f:83:09:84:0c:87:6a:2c:28: 7d:a3:4c:90:81:24:83:a0:e8:b2:e1:51:00:61:c3: f1:3b:ed:7d:4b:76:f9:8b:87:03:7e:f9:78:7d:45: 43:a4:9e:26:3c:8f:45:a0:ca:88:51:54:53:64:36: 62:18:44:5f:61:fb:8c:ec:b5:af:2e:c7:7f:32:11: 5e:42:49:8f:d7:84:54:f0:5f:6b:b6:55:60:ca:ab: 84:ac:ad:5d:9c:ab:8f:56:27:32:f1:34:8c:13:fb: 2a:45:bc:58:07:d7:80:79:41:0b:57:1f:89:89:e1: 66:b3:22:7d:39:fa:d3:4e:72:12:eb:b1:b7:30:3b: 04:fa:8a:b0:ef:06:d1:33:89:6d:ed:0d:95:9a:8b: 13:47:ea:a7:f3:c2:03:4d:f7:55:ed:32:09:15:65: e6:ba:2e:07:3b:be:0f:a6:d1:ec:c2:9c:43:40:ab: 66:49:36:71:57:0f:3e:ca:de:0a:14:f3:3a:26:74: b1:46:9b:d6:80:6f:f9:8e:41:3c:ed:63:57:bb:37: 9e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:66:A6:DC:12:8D:96:97:55:08:0E:DE:7C:AE:BF:70:50:8F:01:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/afbb9459-9f83-4359-a830-b3ddaa638879.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1e:4000::/37 Signature Algorithm: sha256WithRSAEncryption d7:a4:22:b8:11:95:03:75:73:fd:71:ae:a4:e2:0f:a0:08:ab: 76:b9:a0:01:e4:7a:e6:09:d5:23:76:90:3a:d4:46:31:59:89: c2:0a:e2:6a:c4:1c:d8:ad:f7:f8:fa:a0:f2:3c:13:66:18:49: 26:3f:3d:91:f0:f3:9a:1d:66:4c:37:d7:1b:d5:a5:d8:18:3c: 8c:50:76:14:7e:d5:85:eb:a3:f7:1b:41:f2:fa:1a:d4:dd:28: 19:93:4c:d6:2e:cc:0a:05:56:a9:80:77:7a:ac:c3:60:46:ea: 40:23:a2:3f:1e:54:4d:b4:e0:65:95:6a:63:b6:d8:f6:64:74: fe:ae:e6:83:5a:27:e1:b8:fb:f0:b9:d2:af:6d:23:be:d8:33: 03:34:70:8c:73:d0:c1:f7:a6:0d:80:d0:4b:db:35:66:15:e0: 83:9b:94:fe:1f:c8:78:af:8a:e2:02:2f:45:5d:51:79:3a:72: 34:67:26:8f:b8:52:e2:c0:62:98:72:ad:22:df:74:80:a6:7b: 8b:a2:23:7c:c9:fa:a1:d1:4a:25:7e:b1:a3:12:4d:28:fd:54: 8d:c8:e7:7b:44:8b:ad:10:6b:ca:a7:e3:8f:90:ad:f8:84:94: 09:b5:0f:34:c7:5a:c3:bb:23:e8:de:98:4c:e7:38:05:43:fd: 9a:b9:2c:83 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITJlSSNkFl4L11Lu/JaQ6hhQzIvTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTEyMDcwMTIxMTZaFw0yNjAzMDcyMzU5NTla MHoxSTBHBgNVBAUTQDM0MjFhMTFlY2I4ZjA2ZmNkNmE5NjNhYzM3MDY3ZDFiYTQ5 NzEzZmZmMWY1ZDJjYzk1YzY4NTA1MWIzYTI1ZTMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL9/LFOUjIHs4Kn50514TaK+N00Kf4CNKBtQA0fAWCLTsv71 yeiGVAhqRYdAxhPk2f9NH4MJhAyHaiwofaNMkIEkg6DosuFRAGHD8TvtfUt2+YuH A375eH1FQ6SeJjyPRaDKiFFUU2Q2YhhEX2H7jOy1ry7HfzIRXkJJj9eEVPBfa7ZV YMqrhKytXZyrj1YnMvE0jBP7KkW8WAfXgHlBC1cfiYnhZrMifTn6005yEuuxtzA7 BPqKsO8G0TOJbe0NlZqLE0fqp/PCA033Ve0yCRVl5rouBzu+D6bR7MKcQ0CrZkk2 cVcPPsreChTzOiZ0sUab1oBv+Y5BPO1jV7s3nlMCAwEAAaOCArMwggKvMB0GA1Ud DgQWBBQSZqbcEo2Wl1UIDt58rr9wUI8BMTAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvYWZiYjk0NTktOWY4My00MzU5LWE4MzAtYjNkZGFhNjM4ODc5LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGAyYAHx5AMA0GCSqGSIb3DQEBCwUAA4IBAQDXpCK4EZUDdXP9ca6k4g+gCKt2 uaAB5HrmCdUjdpA61EYxWYnCCuJqxBzYrff4+qDyPBNmGEkmPz2R8POaHWZMN9cb 1aXYGDyMUHYUftWF66P3G0Hy+hrU3SgZk0zWLswKBVapgHd6rMNgRupAI6I/HlRN tOBllWpjttj2ZHT+ruaDWifhuPvwudKvbSO+2DMDNHCMc9DB96YNgNBL2zVmFeCD m5T+H8h4r4riAi9FXVF5OnI0ZyaPuFLiwGKYcq0i33SApnuLoiN8yfqh0UolfrGj Ek0o/VSNyOd7RIutEGvKp+OPkK34hJQJtQ80x1rDuyPo3phM5zgFQ/2auSyD -----END CERTIFICATE-----Generated at Sat Dec 20 17:05:29 2025 by rpki-client