This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa File: c0ba95f7-f662-491c-8d5f-68532e494cdd.roa (raw, json) Hash identifier: 5JhCaDkhoHWuJPeIo+Pdxt4QFSXxIP4IX6Uk77UdZZo= Subject key identifier: 72:0F:AF:8C:C7:C8:49:3C:18:86:94:52:FD:EA:9C:BE:5F:47:67:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6042AB3174AF06115029C0833AF4BCF73931D654 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa Signing time: Sun 07 Dec 2025 01:20:07 +0000 ROA not before: Sun 07 Dec 2025 01:20:07 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f17:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:42:ab:31:74:af:06:11:50:29:c0:83:3a:f4:bc:f7:39:31:d6:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 01:20:07 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=1b154e9209ff7e9a9de2c105a970334fef83b8390ba84383460d9cee0e1a2ea0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:11:11:10:17:df:03:ac:59:0c:5e:23:b5:fc: 68:49:65:e5:7f:50:1e:31:03:e3:62:64:9e:45:ad: c0:0d:e8:f7:cc:b1:46:01:93:d2:3e:96:4d:a6:36: c7:dd:20:4b:ba:ef:f0:0a:d0:ce:92:a5:35:53:e0: 22:96:0b:c9:9a:92:60:38:f3:ea:87:64:84:6a:8e: 04:22:b9:66:23:50:29:7d:71:f7:41:73:a3:d0:13: ba:0c:27:53:2b:9a:2a:47:d9:7d:b1:d1:f4:3f:01: 4c:40:06:9e:de:ce:21:72:fd:11:74:be:3d:6b:42: ed:5d:5d:12:6f:58:c9:9d:3a:43:64:c2:4b:a8:18: e5:19:ab:f3:e4:28:61:f9:4e:80:8e:2c:19:87:63: 62:77:1c:83:0c:d9:4c:65:ce:7c:e5:c5:0c:33:6a: 37:4c:f9:4f:19:77:24:1d:7b:44:b3:e1:0f:36:cc: 82:2f:36:a9:2b:bf:37:c2:84:64:67:6f:9a:69:d4: a2:8f:58:4a:8d:26:d1:08:08:5b:8f:1d:3a:fb:ad: ec:23:95:83:78:5f:ba:6d:a3:ee:db:c7:ef:92:81: a0:e7:e9:52:90:16:19:e0:6a:c4:59:b1:b9:87:7a: b0:39:2e:49:89:64:1f:c0:3d:dc:ba:7a:e2:5e:d1: 93:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:0F:AF:8C:C7:C8:49:3C:18:86:94:52:FD:EA:9C:BE:5F:47:67:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f17:4000::/36 Signature Algorithm: sha256WithRSAEncryption 87:15:20:55:8e:94:19:84:b4:5e:36:c9:ae:ec:d6:fd:bb:b3: 35:cc:6b:a2:ad:20:ac:ea:f9:94:16:27:c1:64:54:ec:f0:44: b1:6c:48:48:87:10:71:0b:8b:09:78:bd:3a:16:7c:35:eb:22: e4:ba:8e:a5:4c:08:12:96:4a:ad:d8:6e:27:f3:85:8c:7d:4e: 23:dc:2d:23:8d:7c:3a:88:2f:e7:eb:64:35:92:a3:d6:f1:76: 3d:49:b0:1a:bd:2d:33:58:d7:15:0c:c9:eb:fb:c3:a5:07:fe: 7e:78:1a:c8:51:04:4c:f0:00:8d:36:27:2e:eb:c0:14:6e:6c: c4:b0:e0:16:c1:ba:ea:eb:0c:6b:9a:2a:15:b1:4c:1a:88:a8: 2b:71:f2:7c:76:14:bc:a5:4c:3f:c6:e4:00:be:0d:84:c5:f5: d4:b5:5f:aa:ba:d5:b3:87:a4:52:b0:2a:43:70:7d:dd:f4:dc: 88:d3:a7:d2:f0:b2:4c:75:d0:54:37:8f:07:01:56:4b:48:68: bc:65:6e:2e:b5:4b:65:58:cf:3e:a9:4a:8c:b2:af:78:91:91: 92:8f:7b:e2:9a:a2:71:3d:69:91:5c:44:26:03:7a:3b:c9:a0: 63:51:00:b2:fb:66:af:50:b8:b8:59:9f:97:8e:4d:b1:c5:4c: a5:c7:25:fd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYEKrMXSvBhFQKcCDOvS89zkx1lQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDEyMDA3WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjE1NGU5MjA5ZmY3ZTlhOWRlMmMxMDVhOTcwMzM0ZmVm ODNiODM5MGJhODQzODM0NjBkOWNlZTBlMWEyZWEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtEREQF98DrFkMXiO1/GhJZeV/UB4xA+NiZJ5FrcAN6PfM sUYBk9I+lk2mNsfdIEu67/AK0M6SpTVT4CKWC8makmA48+qHZIRqjgQiuWYjUCl9 cfdBc6PQE7oMJ1MrmipH2X2x0fQ/AUxABp7eziFy/RF0vj1rQu1dXRJvWMmdOkNk wkuoGOUZq/PkKGH5ToCOLBmHY2J3HIMM2UxlznzlxQwzajdM+U8ZdyQde0Sz4Q82 zIIvNqkrvzfChGRnb5pp1KKPWEqNJtEICFuPHTr7rewjlYN4X7pto+7bx++SgaDn 6VKQFhngasRZsbmHerA5LkmJZB/APdy6euJe0ZO3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUcg+vjMfISTwYhpRS/eqcvl9HZ3AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwYmE5NWY3LWY2NjItNDkxYy04ZDVmLTY4NTMyZTQ5NGNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8XQDANBgkqhkiG9w0BAQsFAAOCAQEAhxUgVY6UGYS0XjbJruzW/buz Ncxroq0grOr5lBYnwWRU7PBEsWxISIcQcQuLCXi9OhZ8Nesi5LqOpUwIEpZKrdhu J/OFjH1OI9wtI418Oogv5+tkNZKj1vF2PUmwGr0tM1jXFQzJ6/vDpQf+fngayFEE TPAAjTYnLuvAFG5sxLDgFsG66usMa5oqFbFMGoioK3HyfHYUvKVMP8bkAL4NhMX1 1LVfqrrVs4ekUrAqQ3B93fTciNOn0vCyTHXQVDePBwFWS0hovGVuLrVLZVjPPqlK jLKveJGRko974pqicT1pkVxEJgN6O8mgY1EAsvtmr1C4uFmfl45NscVMpccl/Q== -----END CERTIFICATE-----Generated at Sat Dec 20 14:42:46 2025 by rpki-client