This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa File: 39b45593-f3f3-4a2e-aa3a-895815db366a.roa (raw, json) Hash identifier: TOqGWyA1nfacE9aK+AtP7FKWs8jywgaKwiMgWoL+1Wg= Subject key identifier: FB:EA:ED:98:9F:52:7C:23:A2:75:62:8E:78:55:98:DB:48:B5:AA:A9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 69F7B0D5DA885DEBC50F7895A3B44F43258F2C8B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa Signing time: Wed 10 Dec 2025 05:00:12 +0000 ROA not before: Wed 10 Dec 2025 05:00:12 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:f7:b0:d5:da:88:5d:eb:c5:0f:78:95:a3:b4:4f:43:25:8f:2c:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:00:12 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=436703b697479360dd04e717b96dd9e09318abaa4c85928e263e9aecd08ee73c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d7:59:7c:b9:5b:d6:a6:19:8f:96:1e:42:6a: 76:90:a8:6f:5d:e6:95:bb:a3:a8:19:82:1f:9c:00: 01:ee:6a:78:d2:b7:7e:f7:5b:84:0a:df:8f:d6:a7: 12:9f:29:52:d8:da:68:9f:52:d0:af:b7:da:45:da: 9a:b7:ae:f0:d2:76:cc:f5:9a:34:ee:1a:75:d2:08: ed:1d:03:ef:9e:41:d9:a0:ef:4d:9e:19:00:3b:03: f3:ee:a6:d0:f3:95:9d:4b:50:ff:63:62:8c:cf:7e: 07:5d:e6:c6:55:66:ff:98:f4:a7:0d:44:ca:e9:ed: 00:56:d0:90:00:20:04:af:49:05:cf:7b:95:04:00: d0:0a:24:7c:63:1c:cc:57:3f:32:4d:f9:84:1a:b3: d3:78:1e:41:ae:9e:fa:72:bb:9e:7b:dc:a2:c0:fc: 37:f3:30:62:b4:7f:60:b8:3f:8a:ad:19:01:da:90: ac:47:df:de:10:fd:cd:16:a4:fa:9a:67:fa:5b:19: cb:55:2c:9a:74:50:67:b7:f5:18:b1:98:a7:ff:e4: de:d1:4e:e3:28:54:a3:08:3d:fd:73:38:3c:8c:3b: 50:0f:ac:35:6b:d3:d6:a9:e6:8b:f9:de:cd:11:7c: 15:6f:f1:d3:d4:a7:c1:c2:12:0a:40:1a:76:12:d8: af:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:EA:ED:98:9F:52:7C:23:A2:75:62:8E:78:55:98:DB:48:B5:AA:A9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/39 Signature Algorithm: sha256WithRSAEncryption 0d:ce:20:18:3c:6b:62:20:b9:ea:28:a4:9a:95:da:35:1d:84: 6c:21:e6:ca:8e:3c:67:11:e5:5b:c8:39:cf:1b:e7:e5:6a:7f: b4:39:89:3c:53:03:d3:1d:8a:48:f0:f1:b1:b6:cb:8b:dd:f0: 06:93:64:8c:0d:8f:21:f3:f8:69:22:51:b0:79:2b:be:15:2d: e6:32:5e:40:59:bf:6d:e3:1e:d5:28:82:2f:b5:20:7b:ea:ca: d3:67:c8:b4:92:7f:82:bf:33:5b:b0:18:83:83:ab:56:c0:6e: 94:3e:c2:71:59:c3:5f:6e:7e:3c:3c:0b:3c:31:ec:35:e6:ed: a9:e2:41:ea:81:84:50:eb:dd:c7:a2:57:bf:0f:48:2c:80:47: e9:aa:de:29:45:e6:1c:bb:b4:00:75:7a:a8:73:c3:ae:d4:f4: ef:da:a6:1e:a8:91:4a:66:43:c2:4b:41:c2:83:17:f6:19:74: 2c:7e:97:67:6e:c1:36:a6:a9:04:ff:d7:ae:50:3d:35:41:42: 87:42:c3:2c:ab:db:8c:d0:1e:66:97:81:7b:6b:59:28:af:f5: ce:bf:88:af:0c:6b:e8:94:ea:b5:da:06:d7:ee:cc:cf:48:2e: c4:8a:5d:dc:b8:eb:ca:19:bf:ea:ef:1f:25:4e:ad:ff:92:fd: 69:0a:99:ea -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUafew1dqIXevFD3iVo7RPQyWPLIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUwMDEyWhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzY3MDNiNjk3NDc5MzYwZGQwNGU3MTdiOTZkZDllMDkz MThhYmFhNGM4NTkyOGUyNjNlOWFlY2QwOGVlNzNjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC711l8uVvWphmPlh5CanaQqG9d5pW7o6gZgh+cAAHuanjS t373W4QK34/WpxKfKVLY2mifUtCvt9pF2pq3rvDSdsz1mjTuGnXSCO0dA++eQdmg 702eGQA7A/PuptDzlZ1LUP9jYozPfgdd5sZVZv+Y9KcNRMrp7QBW0JAAIASvSQXP e5UEANAKJHxjHMxXPzJN+YQas9N4HkGunvpyu5573KLA/DfzMGK0f2C4P4qtGQHa kKxH394Q/c0WpPqaZ/pbGctVLJp0UGe39RixmKf/5N7RTuMoVKMIPf1zODyMO1AP rDVr09ap5ov53s0RfBVv8dPUp8HCEgpAGnYS2K+zAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU++rtmJ9SfCOidWKOeFWY20i1qqkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM5YjQ1NTkzLWYzZjMtNGEyZS1hYTNhLTg5NTgxNWRiMzY2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAAADANBgkqhkiG9w0BAQsFAAOCAQEADc4gGDxrYiC56iikmpXaNR2E bCHmyo48ZxHlW8g5zxvn5Wp/tDmJPFMD0x2KSPDxsbbLi93wBpNkjA2PIfP4aSJR sHkrvhUt5jJeQFm/beMe1SiCL7Uge+rK02fItJJ/gr8zW7AYg4OrVsBulD7CcVnD X25+PDwLPDHsNebtqeJB6oGEUOvdx6JXvw9ILIBH6areKUXmHLu0AHV6qHPDrtT0 79qmHqiRSmZDwktBwoMX9hl0LH6XZ27BNqapBP/XrlA9NUFCh0LDLKvbjNAeZpeB e2tZKK/1zr+Irwxr6JTqtdoG1+7Mz0guxIpd3Ljryhm/6u8fJU6t/5L9aQqZ6g== -----END CERTIFICATE-----Generated at Sat Dec 20 12:57:29 2025 by rpki-client