This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa File: 0b0acdef-c848-447c-9624-6a4634464aaa.roa (raw, json) Hash identifier: lWOMaIbI/MsdatInYqpQbjNqudXs8muL1D9kyiMVKf8= Subject key identifier: 9E:E5:2E:1B:9F:0B:FE:0C:8E:64:D3:F3:CF:B4:95:62:B1:5C:28:AD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0A2CBB92FFD3EC00B326275F236493CDF8467103 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa Signing time: Wed 10 Dec 2025 02:30:11 +0000 ROA not before: Wed 10 Dec 2025 02:30:11 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:2c:bb:92:ff:d3:ec:00:b3:26:27:5f:23:64:93:cd:f8:46:71:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 02:30:11 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=93920967971d696a222fb72ae51c6fbf401b123f5b969f02ae35ab8cfd2e4e3e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:41:85:73:64:91:60:c1:31:01:30:35:51:24: 14:39:0b:fc:1b:cd:bb:13:26:b8:b9:78:d6:1a:ad: cd:e1:bc:88:36:72:94:65:83:bd:50:a7:a6:99:33: eb:40:16:85:a9:98:92:ab:6f:a9:0e:e6:ea:31:d3: d4:28:e8:6a:71:93:15:38:ab:f2:91:37:08:f6:9c: b7:30:9a:74:15:d3:7d:40:c8:a0:e5:c1:de:ff:41: 25:bc:fa:86:0b:9d:f1:89:3a:97:e1:19:86:4c:69: fe:fb:2b:80:6b:35:11:7d:3a:d7:54:1f:ef:6c:43: 5b:a5:9a:d0:b5:c8:ca:13:1e:bf:a3:29:39:28:79: 48:67:e0:0a:0f:f2:35:28:d9:20:b9:69:ba:d8:83: 90:40:43:75:1b:25:b9:bb:88:41:f0:6f:f6:60:7f: 6c:12:43:2b:63:b4:eb:8f:81:2d:46:d5:55:5e:a2: f8:33:14:5e:c8:50:5d:d3:92:3e:75:82:2c:a8:86: 09:ba:c7:2f:df:7e:fe:9a:f0:4f:eb:02:10:50:3a: 67:75:d2:aa:a6:36:b1:25:80:41:e5:b7:c6:df:5f: ad:10:35:7e:b2:10:2c:a0:de:32:34:96:39:49:50: ce:03:95:74:af:ce:86:a9:1b:24:f1:93:68:27:78: 9c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E5:2E:1B:9F:0B:FE:0C:8E:64:D3:F3:CF:B4:95:62:B1:5C:28:AD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/42 Signature Algorithm: sha256WithRSAEncryption 61:d8:72:34:a6:d5:74:09:dc:6e:f2:d6:76:4d:74:ae:a5:a7: f8:f3:10:61:dc:34:51:18:d5:59:bd:d3:0e:b1:8b:05:01:54: f2:d2:a4:85:09:06:b3:06:63:f8:74:97:f1:8b:69:92:a8:7e: 6e:fe:f7:c4:c8:c9:ef:0a:e9:31:8d:99:30:38:6d:ae:ea:d8: 17:9e:67:2e:48:1b:5a:c5:00:8f:90:10:26:55:74:f8:f2:e6: 60:04:cc:91:b6:41:46:ab:e0:d5:11:77:d5:85:9c:d5:92:97: d7:61:60:b5:ac:70:03:9f:30:67:6a:85:e0:3e:9c:af:fc:f2: ca:36:5d:b7:47:19:f8:a9:27:5a:1d:40:ec:64:3f:5d:c5:9f: 5c:f8:09:fc:b8:58:62:d4:09:fa:57:cb:83:16:0d:93:8d:0a: 7e:23:b0:69:d6:ab:61:79:11:bb:6f:b1:9a:26:ee:cb:cb:2d: 3b:5a:cd:a1:d2:14:e1:18:e3:2e:9b:5c:8f:53:7b:d8:63:f2: 8d:bb:1b:7f:36:37:67:8a:22:07:ad:ee:27:95:f2:85:23:18: 04:95:fc:bf:3e:bc:10:f4:17:55:8e:f4:9f:c3:87:6c:37:61: 9a:c9:ac:85:4e:6d:b6:02:70:be:07:73:b5:a0:84:e2:2d:b2: f7:e1:1b:a5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCiy7kv/T7ACzJidfI2STzfhGcQMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDIzMDExWhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzkyMDk2Nzk3MWQ2OTZhMjIyZmI3MmFlNTFjNmZiZjQw MWIxMjNmNWI5NjlmMDJhZTM1YWI4Y2ZkMmU0ZTNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGQYVzZJFgwTEBMDVRJBQ5C/wbzbsTJri5eNYarc3hvIg2 cpRlg71Qp6aZM+tAFoWpmJKrb6kO5uox09Qo6GpxkxU4q/KRNwj2nLcwmnQV031A yKDlwd7/QSW8+oYLnfGJOpfhGYZMaf77K4BrNRF9OtdUH+9sQ1ulmtC1yMoTHr+j KTkoeUhn4AoP8jUo2SC5abrYg5BAQ3UbJbm7iEHwb/Zgf2wSQytjtOuPgS1G1VVe ovgzFF7IUF3Tkj51giyohgm6xy/ffv6a8E/rAhBQOmd10qqmNrElgEHlt8bfX60Q NX6yECyg3jI0ljlJUM4DlXSvzoapGyTxk2gneJz7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnuUuG58L/gyOZNPzz7SVYrFcKK0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiMGFjZGVmLWM4NDgtNDQ3Yy05NjI0LTZhNDYzNDQ2NGFhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76AAwDQYJKoZIhvcNAQELBQADggEBAGHYcjSm1XQJ3G7y1nZNdK6l p/jzEGHcNFEY1Vm90w6xiwUBVPLSpIUJBrMGY/h0l/GLaZKofm7+98TIye8K6TGN mTA4ba7q2BeeZy5IG1rFAI+QECZVdPjy5mAEzJG2QUar4NURd9WFnNWSl9dhYLWs cAOfMGdqheA+nK/88so2XbdHGfipJ1odQOxkP13Fn1z4Cfy4WGLUCfpXy4MWDZON Cn4jsGnWq2F5EbtvsZom7svLLTtazaHSFOEY4y6bXI9Te9hj8o27G382N2eKIget 7ieV8oUjGASV/L8+vBD0F1WO9J/Dh2w3YZrJrIVObbYCcL4Hc7WghOItsvfhG6U= -----END CERTIFICATE-----Generated at Sun Dec 21 01:15:46 2025 by rpki-client