This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa File: 4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa (raw, json) Hash identifier: /2VlsUgkLKnOHZlbQ0pEBrC0v0PZVP6BnRYdj8AhLbE= Subject key identifier: C2:A1:47:FF:83:CC:5C:BE:06:8C:8C:48:44:EB:8B:39:CB:34:81:45 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1C6E15BBB0538A2E7F5F30FC50DF1550500B6231 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa Signing time: Wed 10 Dec 2025 05:10:45 +0000 ROA not before: Wed 10 Dec 2025 05:10:45 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e500::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:6e:15:bb:b0:53:8a:2e:7f:5f:30:fc:50:df:15:50:50:0b:62:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:10:45 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=52b38377b39975e7570b46ab5ab0e980068470ebbbe284661849930a1fec4c74, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:77:bf:85:7d:9a:c0:a7:b9:70:60:e5:b9:79: fb:37:33:a7:3f:79:91:4b:a1:5f:d8:cf:9a:1d:71: 4e:f6:45:a3:6c:e0:af:2c:0e:4e:60:c7:d5:a9:5e: db:e2:7c:4f:fa:40:c1:d2:cd:79:34:e9:f5:60:5f: 9d:e9:d5:52:21:2b:9f:6e:70:05:02:1b:48:2a:7d: e8:3a:43:08:f5:f4:af:6b:26:19:8e:8a:35:57:4d: a2:02:7b:d5:83:40:94:94:69:76:33:b5:90:99:11: 77:41:7c:27:f6:86:c3:01:47:4a:d7:56:57:85:b9: ba:c2:01:ce:17:d7:e1:bb:f9:d5:c4:ea:33:75:2c: 11:6c:b0:62:39:62:de:02:97:b0:e4:68:38:45:57: 82:5d:94:f4:8a:0a:27:ba:0b:a3:37:28:32:16:8f: 9b:36:f2:da:a4:1e:8c:01:bb:d6:ed:37:f1:e8:ec: cc:e6:ae:e6:58:bd:c3:64:04:a9:51:ce:3c:5e:22: 67:6c:8e:3a:e9:3a:28:97:e1:ce:9e:1b:a8:e8:93: 50:9f:c7:ab:c3:74:e1:0d:73:30:84:90:40:9c:fe: 52:bc:ff:a1:bc:96:13:c6:aa:3f:f3:e5:42:55:3b: 0b:c3:7e:40:c9:7e:42:0d:ea:fe:c7:8b:3e:7c:3e: 45:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A1:47:FF:83:CC:5C:BE:06:8C:8C:48:44:EB:8B:39:CB:34:81:45 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/42 Signature Algorithm: sha256WithRSAEncryption 05:bb:55:f9:3f:d1:1a:31:d8:35:e0:e4:16:37:c0:12:b2:d5: d0:a9:10:d6:ca:11:32:86:bb:9b:57:fc:dc:2e:a4:a9:b7:45: 63:87:9c:60:23:3f:13:d5:d8:75:77:99:e3:5d:87:33:22:c5: 1c:65:30:04:ab:98:8c:0d:f2:53:ee:cd:9a:a6:fa:87:fc:d2: cf:0d:51:a6:cc:5d:56:9e:e3:05:86:fa:22:88:70:98:81:f9: c1:6c:72:46:70:11:33:2a:83:85:12:f5:a7:8b:d6:6b:e9:ce: 7d:17:be:02:6b:a0:c9:51:1d:bc:40:b3:c9:d8:bb:33:d2:a5: dc:0d:fe:af:d8:30:24:c0:f8:e4:48:1a:df:02:42:cb:23:b2: ba:9c:6f:65:f2:f8:64:36:12:ec:1a:e5:40:1f:0d:7d:e7:e1: 7f:cc:b2:5b:28:4c:d4:a3:67:ca:27:48:c3:93:0f:4b:a6:19: bb:ae:90:f1:c2:9a:e7:38:cd:62:69:2a:e4:06:07:3b:5c:2e: 53:f0:26:ba:ce:44:19:cc:38:54:4a:04:ff:e9:5c:22:27:4e: f7:64:76:4c:70:9c:3e:25:04:d8:dd:d8:ef:09:94:5b:3b:9c: 3a:2b:74:cb:4f:c3:af:f4:a7:9e:d0:e9:69:09:76:85:89:14: e5:d9:06:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHG4Vu7BTii5/XzD8UN8VUFALYjEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUxMDQ1WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmIzODM3N2IzOTk3NWU3NTcwYjQ2YWI1YWIwZTk4MDA2 ODQ3MGViYmJlMjg0NjYxODQ5OTMwYTFmZWM0Yzc0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCud7+FfZrAp7lwYOW5efs3M6c/eZFLoV/Yz5odcU72RaNs 4K8sDk5gx9WpXtvifE/6QMHSzXk06fVgX53p1VIhK59ucAUCG0gqfeg6Qwj19K9r JhmOijVXTaICe9WDQJSUaXYztZCZEXdBfCf2hsMBR0rXVleFubrCAc4X1+G7+dXE 6jN1LBFssGI5Yt4Cl7DkaDhFV4JdlPSKCie6C6M3KDIWj5s28tqkHowBu9btN/Ho 7MzmruZYvcNkBKlRzjxeImdsjjrpOiiX4c6eG6jok1Cfx6vDdOENczCEkECc/lK8 /6G8lhPGqj/z5UJVOwvDfkDJfkIN6v7Hiz58PkXTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwqFH/4PMXL4GjIxIROuLOcs0gUUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRjN2MyNmQwLTBlNjItNGNjOC1hZDNjLTNjMTVmZmUzMTRlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75QAwDQYJKoZIhvcNAQELBQADggEBAAW7Vfk/0Rox2DXg5BY3wBKy 1dCpENbKETKGu5tX/NwupKm3RWOHnGAjPxPV2HV3meNdhzMixRxlMASrmIwN8lPu zZqm+of80s8NUabMXVae4wWG+iKIcJiB+cFsckZwETMqg4US9aeL1mvpzn0XvgJr oMlRHbxAs8nYuzPSpdwN/q/YMCTA+ORIGt8CQssjsrqcb2Xy+GQ2Euwa5UAfDX3n 4X/MslsoTNSjZ8onSMOTD0umGbuukPHCmuc4zWJpKuQGBztcLlPwJrrORBnMOFRK BP/pXCInTvdkdkxwnD4lBNjd2O8JlFs7nDordMtPw6/0p57Q6WkJdoWJFOXZBgU= -----END CERTIFICATE-----Generated at Sat Dec 20 11:13:31 2025 by rpki-client