This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa File: 20df74ce-1a64-4df1-b616-115d4493a969.roa (raw, json) Hash identifier: NvSWW3sUvQk2Lw7mijK7JgAdf/YnVSht0O99A1LN9jc= Subject key identifier: FA:92:7E:69:E7:24:C7:B8:8C:F6:96:AD:2A:DD:43:70:6F:EC:5E:CA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 17D9FABA27054F9169EFF9C20D113D1F9E2B5ED9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa Signing time: Wed 10 Dec 2025 02:30:11 +0000 ROA not before: Wed 10 Dec 2025 02:30:11 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d9:fa:ba:27:05:4f:91:69:ef:f9:c2:0d:11:3d:1f:9e:2b:5e:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 02:30:11 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=d2fc50162e76c451160d759d568394ff4f12465dcb7c57a26e6d10587779e7e6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:de:c2:8a:2d:e0:19:6b:44:0e:fd:75:b7:49: f7:eb:47:09:9c:64:12:2a:6d:82:8f:df:89:39:bf: 2c:32:43:73:21:e4:0d:e9:1e:10:21:51:62:b0:96: 9c:80:8a:08:34:62:98:e7:0a:89:79:50:78:a6:ab: f1:d2:58:9a:44:80:ee:94:6b:f0:95:0d:11:81:85: c5:8a:29:55:d5:a0:05:20:77:a6:c2:fa:d5:48:6b: 7e:72:b8:15:d7:05:b6:c9:fa:72:c2:cd:f0:83:7f: 1f:ea:e7:f8:f5:be:9e:fa:5d:5a:ba:cd:1a:e5:f2: f6:9e:d4:72:f4:ba:96:bb:a0:a0:a8:47:42:4c:b8: 39:c3:7b:ac:da:3b:7c:51:36:4a:43:fb:46:c0:c6: 03:78:7b:cd:b8:d1:12:1e:82:4e:2c:e3:a6:8e:1e: 3e:2e:43:35:e5:97:96:21:6b:d9:85:85:11:a3:7b: 5b:11:d2:52:ea:dd:f3:1b:20:1f:f5:4f:93:48:8c: c2:a1:f2:8e:16:16:7b:ca:cf:e7:67:d7:5c:03:3b: a0:fb:8c:40:4f:4a:89:6a:a5:33:4e:75:79:c7:f1: 74:75:d7:ae:d3:6e:70:6c:9c:51:eb:ce:c5:ae:17: c2:d3:c8:7b:c6:ed:97:62:fd:80:c6:34:a2:a0:5f: 82:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:92:7E:69:E7:24:C7:B8:8C:F6:96:AD:2A:DD:43:70:6F:EC:5E:CA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:200::/40 Signature Algorithm: sha256WithRSAEncryption 03:71:1a:88:49:d1:35:98:3f:f3:f9:04:21:2b:be:10:23:a0: e3:00:0a:e1:57:2b:02:95:84:dd:82:78:ca:66:2a:c9:0a:ad: de:65:e4:a1:8e:bc:dd:9d:42:22:45:d0:9c:16:ff:ac:32:1d: 7a:cd:18:e8:37:d7:13:f7:ab:b4:44:4e:bd:79:f3:11:3b:ca: 9f:05:00:a2:ba:0a:44:de:5c:ce:d8:1f:59:32:54:76:6a:f7: 7f:ce:41:e7:76:40:6c:4a:03:53:c7:9c:a0:a6:24:fb:c1:e1: ca:6d:44:97:fd:50:d6:49:0d:96:b7:7c:83:3a:aa:d5:85:7c: 80:8c:43:a7:64:97:51:7a:d7:68:84:cd:58:67:b0:b4:23:81: a0:59:0f:b4:fd:69:18:ad:37:5c:11:42:29:38:05:58:c8:93: 4a:78:e0:b8:1f:c8:c5:24:ec:f7:87:41:65:24:a4:11:b6:bd: f2:25:ad:c2:5f:71:3a:1f:d8:61:4d:1f:07:1e:46:1f:62:4e: cf:9e:72:9c:d8:8e:9b:d9:52:9e:29:02:80:6e:97:01:f6:43: 63:a2:30:c2:7c:81:7b:95:9b:2f:24:03:f0:5e:2c:77:de:11: 55:dc:43:1c:b3:ef:ed:b7:f9:1c:72:9b:50:b1:6a:f3:36:ed: 90:19:06:3e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUF9n6uicFT5Fp7/nCDRE9H54rXtkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDIzMDExWhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMmZjNTAxNjJlNzZjNDUxMTYwZDc1OWQ1NjgzOTRmZjRm MTI0NjVkY2I3YzU3YTI2ZTZkMTA1ODc3NzllN2U2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA3sKKLeAZa0QO/XW3SffrRwmcZBIqbYKP34k5vywyQ3Mh 5A3pHhAhUWKwlpyAigg0YpjnCol5UHimq/HSWJpEgO6Ua/CVDRGBhcWKKVXVoAUg d6bC+tVIa35yuBXXBbbJ+nLCzfCDfx/q5/j1vp76XVq6zRrl8vae1HL0upa7oKCo R0JMuDnDe6zaO3xRNkpD+0bAxgN4e8240RIegk4s46aOHj4uQzXll5Yha9mFhRGj e1sR0lLq3fMbIB/1T5NIjMKh8o4WFnvKz+dn11wDO6D7jEBPSolqpTNOdXnH8XR1 167TbnBsnFHrzsWuF8LTyHvG7Zdi/YDGNKKgX4JHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU+pJ+aeckx7iM9patKt1DcG/sXsowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIwZGY3NGNlLTFhNjQtNGRmMS1iNjE2LTExNWQ0NDkzYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwAjANBgkqhkiG9w0BAQsFAAOCAQEAA3EaiEnRNZg/8/kEISu+ECOg 4wAK4VcrApWE3YJ4ymYqyQqt3mXkoY683Z1CIkXQnBb/rDIdes0Y6DfXE/ertERO vXnzETvKnwUAoroKRN5cztgfWTJUdmr3f85B53ZAbEoDU8ecoKYk+8Hhym1El/1Q 1kkNlrd8gzqq1YV8gIxDp2SXUXrXaITNWGewtCOBoFkPtP1pGK03XBFCKTgFWMiT SnjguB/IxSTs94dBZSSkEba98iWtwl9xOh/YYU0fBx5GH2JOz55ynNiOm9lSnikC gG6XAfZDY6IwwnyBe5WbLyQD8F4sd94RVdxDHLPv7bf5HHKbULFq8zbtkBkGPg== -----END CERTIFICATE-----Generated at Sat Dec 20 14:43:52 2025 by rpki-client