This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b5856a7-3d17-4060-a6c4-bace9436884e.roa File: 3b5856a7-3d17-4060-a6c4-bace9436884e.roa (raw, json) Hash identifier: gxJS6vTRAGsJyOmS2xY2LGhhXu/UkDEI6wXCE4bR45s= Subject key identifier: 0C:A0:B5:FB:BB:70:58:BE:1A:1F:94:38:03:2A:A3:41:3E:44:11:69 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2FB9F5D593CFE113038346DD63BE8963F9B3D3A5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b5856a7-3d17-4060-a6c4-bace9436884e.roa Signing time: Tue 16 Dec 2025 00:51:34 +0000 ROA not before: Tue 16 Dec 2025 00:51:34 +0000 ROA not after: Mon 16 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:b9:f5:d5:93:cf:e1:13:03:83:46:dd:63:be:89:63:f9:b3:d3:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 16 00:51:34 2025 GMT Not After : Mar 16 23:59:59 2026 GMT Subject: serialNumber=e648c26beab1bbb7ee5550d5302c89ab590995b31504ae667c04244c9e90fbf7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c9:21:d5:0c:16:7d:6b:1d:2f:13:3a:43:b1: 56:26:11:db:d2:21:d8:4c:ad:dc:b7:d2:fa:1b:40: 9d:5f:b5:ba:84:d8:af:42:fc:10:10:cd:0c:b2:39: b1:66:4b:8c:8d:64:21:f7:9f:b3:d2:be:b6:89:9a: db:e3:72:43:73:65:25:b1:79:80:c2:d8:ca:82:fe: ef:7c:70:8a:5b:0b:69:00:57:e5:62:a0:78:09:cb: 23:ba:7d:8f:a5:10:f3:8e:c9:98:cb:fa:53:53:1d: be:f8:39:c6:37:6e:7d:00:a9:a2:91:79:23:d9:27: 01:a4:df:ad:3e:d2:a1:e2:36:c1:ae:bc:45:a8:54: 9d:cb:e5:f4:5a:4a:12:7d:e4:ac:65:2c:f6:4c:cc: b3:a9:78:bc:a1:5a:00:1a:8c:33:72:45:8a:45:38: 30:5b:d1:6a:9d:ef:99:01:fd:9c:c1:88:e5:ff:63: c1:64:28:6e:1d:bf:fb:a0:14:e9:a0:9e:5d:cf:70: 88:ed:00:a6:a3:24:8c:29:d3:83:4c:0f:0f:36:0a: d2:78:c5:b0:10:c5:72:c3:13:92:71:0f:0c:92:2d: 12:ee:a6:42:9d:97:5e:ac:bc:86:0e:e1:27:45:40: 2a:b3:3a:b1:ec:c7:cf:fa:0e:ac:16:43:20:d1:84: 5c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A0:B5:FB:BB:70:58:BE:1A:1F:94:38:03:2A:A3:41:3E:44:11:69 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b5856a7-3d17-4060-a6c4-bace9436884e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7020::/44 Signature Algorithm: sha256WithRSAEncryption 7b:0d:c2:b5:06:d8:12:90:5d:b3:02:d2:f6:41:da:1b:39:15: b9:49:99:50:02:27:99:b4:d6:a9:c0:9d:ac:4e:c4:48:56:d0: 3c:d7:1a:dc:bf:d3:3d:40:e4:ab:66:e5:5e:d6:29:4a:1c:ce: d5:29:dd:ca:77:21:fd:81:7e:67:e2:7b:91:62:52:33:77:05: 3f:7e:66:21:c9:eb:dc:87:76:c8:5e:73:18:bb:fb:c5:d8:a5: 22:99:f1:11:90:b7:a3:16:66:e8:ea:11:54:61:4d:53:d0:b5: 62:3e:cf:c6:6e:47:23:3c:ef:c4:c1:99:9e:e3:a9:4c:05:33: f2:5c:d5:9f:0b:f1:ee:cd:e2:8d:00:b5:ae:e9:0a:28:7b:bc: 1b:ca:a3:d8:b6:38:4e:a9:9c:dc:45:e2:00:24:8f:13:67:8a: 76:3f:af:ce:49:32:c3:d1:7c:38:1f:f7:50:5b:fd:d3:b8:85: 06:69:7f:f0:bb:01:ba:95:be:e1:18:06:cc:7a:ad:98:f6:57: 21:eb:87:4d:32:a2:46:e6:c1:8e:24:85:34:6d:34:65:ce:b9: 5c:51:5b:bd:4d:9f:44:dc:ff:d5:e5:87:73:90:aa:66:0b:85: 1d:fc:07:e3:3d:52:4c:d0:54:d8:a8:df:a3:75:0b:62:d6:c0: 96:dd:2e:c7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUL7n11ZPP4RMDg0bdY76JY/mz06UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjE2MDA1MTM0WhcNMjYwMzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNjQ4YzI2YmVhYjFiYmI3ZWU1NTUwZDUzMDJjODlhYjU5 MDk5NWIzMTUwNGFlNjY3YzA0MjQ0YzllOTBmYmY3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcySHVDBZ9ax0vEzpDsVYmEdvSIdhMrdy30vobQJ1ftbqE 2K9C/BAQzQyyObFmS4yNZCH3n7PSvraJmtvjckNzZSWxeYDC2MqC/u98cIpbC2kA V+VioHgJyyO6fY+lEPOOyZjL+lNTHb74OcY3bn0AqaKReSPZJwGk360+0qHiNsGu vEWoVJ3L5fRaShJ95KxlLPZMzLOpeLyhWgAajDNyRYpFODBb0Wqd75kB/ZzBiOX/ Y8FkKG4dv/ugFOmgnl3PcIjtAKajJIwp04NMDw82CtJ4xbAQxXLDE5JxDwySLRLu pkKdl16svIYO4SdFQCqzOrHsx8/6DqwWQyDRhFzPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDKC1+7twWL4aH5Q4AyqjQT5EEWkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNiNTg1NmE3LTNkMTctNDA2MC1hNmM0LWJhY2U5NDM2ODg0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycCAwDQYJKoZIhvcNAQELBQADggEBAHsNwrUG2BKQXbMC0vZB2hs5 FblJmVACJ5m01qnAnaxOxEhW0DzXGty/0z1A5Ktm5V7WKUocztUp3cp3If2Bfmfi e5FiUjN3BT9+ZiHJ69yHdshecxi7+8XYpSKZ8RGQt6MWZujqEVRhTVPQtWI+z8Zu RyM878TBmZ7jqUwFM/Jc1Z8L8e7N4o0Ata7pCih7vBvKo9i2OE6pnNxF4gAkjxNn inY/r85JMsPRfDgf91Bb/dO4hQZpf/C7AbqVvuEYBsx6rZj2VyHrh00yokbmwY4k hTRtNGXOuVxRW71Nn0Tc/9Xlh3OQqmYLhR38B+M9UkzQVNio36N1C2LWwJbdLsc= -----END CERTIFICATE-----Generated at Fri Dec 19 23:20:33 2025 by rpki-client