This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa File: b3f91ab4-930a-4958-b6c8-811feb211be7.roa (raw, json) Hash identifier: 1g4diK/2aW9IJd6hh6/K/3VPVCVbQpAOwImrBY25RK0= Subject key identifier: 19:07:21:1F:11:7C:2E:FC:F5:FB:F1:9E:32:74:D8:EF:D5:7A:38:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D2D6912E9C03B087500DEB491F78F16812A73D8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa Signing time: Sun 07 Dec 2025 01:51:32 +0000 ROA not before: Sun 07 Dec 2025 01:51:32 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f10:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:2d:69:12:e9:c0:3b:08:75:00:de:b4:91:f7:8f:16:81:2a:73:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 01:51:32 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=ea3c94ea2fe5726f6ae2fd8e250b96683683d844c335a3860588bb9ea859213f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:35:9a:d4:39:8a:e4:82:d8:85:57:9e:de:9c: 49:cd:60:15:26:7b:2b:65:ed:2c:10:dd:6d:0a:94: 84:a5:b8:da:ca:2c:86:3e:43:2f:0f:08:bf:8e:fe: c1:87:f8:55:e8:00:22:d5:c5:8d:82:82:ec:12:6c: 3a:b1:ae:37:9c:6d:ca:53:0c:49:4b:f1:16:e0:3f: 24:88:b9:7c:51:6f:1a:9d:73:76:cd:d6:f4:4b:37: 52:28:47:b8:2c:75:58:a3:21:96:fe:c5:7f:b8:75: 05:27:fd:94:c2:16:0c:26:c2:f5:91:ee:98:15:4d: c5:5d:48:f9:8a:85:ae:88:ce:e9:38:ee:ef:4f:e6: 4d:ef:ee:22:76:96:37:9c:ae:ab:a1:1d:05:96:52: 1b:3c:32:81:f0:a2:bf:f5:e7:37:4b:3d:ef:ff:05: c0:3a:24:49:6a:ed:cb:01:c3:a1:5f:ff:0c:e2:4c: 30:e5:f0:a1:7b:5f:e9:8a:1a:62:fd:11:87:ed:08: f3:54:fd:4c:a0:83:d6:a3:be:7f:74:42:0b:b6:a1: 65:8b:e8:87:9d:38:75:ab:b4:f6:b8:02:d3:64:a0: 8d:1a:86:e4:d7:44:5a:e3:8c:bc:54:8a:ef:54:86: 4b:3e:4e:f2:ba:8e:b2:d1:73:7e:64:f6:1f:ec:0f: ff:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:07:21:1F:11:7C:2E:FC:F5:FB:F1:9E:32:74:D8:EF:D5:7A:38:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f10:c800::/37 Signature Algorithm: sha256WithRSAEncryption 87:77:a7:f2:cd:15:99:c5:3a:89:73:f0:ff:0d:5e:d3:f8:5e: 19:fa:e3:15:b0:77:4a:64:af:45:6b:63:85:56:1e:b5:d2:42: 06:25:a4:b9:85:8d:cc:21:fa:20:9f:ed:c5:8b:87:d3:0e:0e: 20:c6:bf:e2:a3:11:2d:df:90:ac:e3:45:2f:d9:b4:95:56:13: fc:8c:7b:15:8f:24:e9:88:7b:fc:fd:d1:0a:7d:d2:fb:3b:75: a4:78:41:96:5a:0d:3e:30:4d:2a:a6:26:a5:7d:35:53:83:37: 94:bb:2b:ee:3f:cc:ca:4c:ef:e3:78:7c:4b:2e:ae:dd:cf:a6: 92:59:66:ee:ac:7e:3e:60:54:47:93:3a:8a:07:75:77:05:df: bc:66:78:a4:0d:61:1a:aa:30:11:2f:4e:0a:36:61:f1:59:b6: a4:b9:91:e7:e2:98:60:0a:c2:80:62:d7:a3:a4:60:b0:be:0b: 60:68:13:06:54:a9:73:50:f5:2b:1d:67:73:50:6e:58:97:cc: e5:01:ac:3a:fa:54:55:18:71:fd:7d:c2:8c:eb:5f:96:dd:73: 58:15:c2:f4:93:af:92:ff:76:68:90:0a:20:a0:84:c3:53:b9: c1:20:83:65:b9:15:fd:89:f5:ab:c0:55:ed:f4:40:ba:4b:91: fb:2b:8f:d4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXS1pEunAOwh1AN60kfePFoEqc9gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDE1MTMyWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTNjOTRlYTJmZTU3MjZmNmFlMmZkOGUyNTBiOTY2ODM2 ODNkODQ0YzMzNWEzODYwNTg4YmI5ZWE4NTkyMTNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0NZrUOYrkgtiFV57enEnNYBUmeytl7SwQ3W0KlISluNrK LIY+Qy8PCL+O/sGH+FXoACLVxY2CguwSbDqxrjecbcpTDElL8RbgPySIuXxRbxqd c3bN1vRLN1IoR7gsdVijIZb+xX+4dQUn/ZTCFgwmwvWR7pgVTcVdSPmKha6Izuk4 7u9P5k3v7iJ2ljecrquhHQWWUhs8MoHwor/15zdLPe//BcA6JElq7csBw6Ff/wzi TDDl8KF7X+mKGmL9EYftCPNU/Uygg9ajvn90Qgu2oWWL6IedOHWrtPa4AtNkoI0a huTXRFrjjLxUiu9Uhks+TvK6jrLRc35k9h/sD/+5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUGQchHxF8Lvz1+/GeMnTY79V6OMAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzZjkxYWI0LTkzMGEtNDk1OC1iNmM4LTgxMWZlYjIxMWJlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8QyDANBgkqhkiG9w0BAQsFAAOCAQEAh3en8s0VmcU6iXPw/w1e0/he GfrjFbB3SmSvRWtjhVYetdJCBiWkuYWNzCH6IJ/txYuH0w4OIMa/4qMRLd+QrONF L9m0lVYT/Ix7FY8k6Yh7/P3RCn3S+zt1pHhBlloNPjBNKqYmpX01U4M3lLsr7j/M ykzv43h8Sy6u3c+mkllm7qx+PmBUR5M6igd1dwXfvGZ4pA1hGqowES9OCjZh8Vm2 pLmR5+KYYArCgGLXo6RgsL4LYGgTBlSpc1D1Kx1nc1BuWJfM5QGsOvpUVRhx/X3C jOtflt1zWBXC9JOvkv92aJAKIKCEw1O5wSCDZbkV/Yn1q8BV7fRAukuR+yuP1A== -----END CERTIFICATE-----Generated at Wed Dec 24 08:46:11 2025 by rpki-client