This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4d9dc189-6c00-4764-9c0c-c990d1727298.roa File: 4d9dc189-6c00-4764-9c0c-c990d1727298.roa (raw, json) Hash identifier: Hnb6UahTP/XrYkTy2v1T1UpZ3Gh7T+VXPVwC+rBrUYg= Subject key identifier: CA:A2:FA:20:7C:26:72:91:15:C0:E8:27:3A:04:D3:0A:94:C4:C3:19 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0C3B9CA167DEC0B866D5CCDB0D21F01EEEAB74B6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4d9dc189-6c00-4764-9c0c-c990d1727298.roa Signing time: Wed 10 Dec 2025 05:00:07 +0000 ROA not before: Wed 10 Dec 2025 05:00:07 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:3b:9c:a1:67:de:c0:b8:66:d5:cc:db:0d:21:f0:1e:ee:ab:74:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:00:07 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=7a083598ca981ee36a8b7bd5d40af11939ca6bce9284e4cb6839db1779d5f901, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:de:fd:59:62:58:53:ab:57:7e:b6:9a:ce:21: 97:d4:0f:43:85:95:d5:9f:6b:a8:b5:cd:e8:a8:dd: fd:dc:c8:46:0f:a9:54:a4:12:60:37:93:f4:41:d4: de:86:d9:77:e9:99:14:59:2c:5c:6f:d1:45:59:4e: 3b:5b:87:13:18:76:51:e2:79:4b:95:7c:15:80:6f: 80:d8:fa:35:64:98:12:c4:2f:ea:df:ed:be:11:8f: b3:7c:7c:a7:86:af:e9:33:84:a0:8e:f5:04:e7:eb: da:eb:de:1e:90:0d:e8:fc:eb:c0:00:c5:19:80:1d: a3:97:db:88:cb:32:9a:4b:fe:b3:48:9d:e8:8b:31: f0:96:78:45:14:70:58:78:ea:0a:47:12:9d:6a:f8: 6d:ea:55:57:5d:9f:fc:3d:53:4f:7f:79:01:f2:21: fa:81:48:c7:03:f5:20:da:59:c9:6c:6c:29:e9:27: f0:50:4e:e4:2d:91:c6:c2:61:ec:be:69:3e:95:bc: f8:1e:04:ca:5a:ac:d7:32:65:23:35:6c:fd:51:04: 1b:c6:69:1d:47:bf:5e:6e:fc:71:28:80:c1:95:0a: 8f:75:a4:0a:22:74:4c:f4:80:33:50:86:0f:ea:77: fc:41:62:8f:55:8a:25:23:14:0e:67:5d:1c:6f:83: 0b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A2:FA:20:7C:26:72:91:15:C0:E8:27:3A:04:D3:0A:94:C4:C3:19 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4d9dc189-6c00-4764-9c0c-c990d1727298.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:600::/48 Signature Algorithm: sha256WithRSAEncryption 71:89:2f:61:5e:cb:7c:14:d4:55:fc:23:2e:75:30:88:11:bf: a8:f7:9c:72:e8:33:5c:af:c2:b1:aa:22:f6:0e:63:21:59:a5: 64:72:db:11:6c:a0:6a:a8:18:7c:f9:34:f9:84:ba:63:e2:a2: b6:4b:4e:09:a3:ab:8c:c6:39:3f:aa:59:75:06:9c:c4:c9:00: f9:96:a3:8b:28:0c:16:16:56:16:d8:63:6c:85:32:b5:25:59: 87:8e:fa:a1:80:65:62:8a:53:cc:36:69:9d:50:07:f4:64:d2: 0d:78:ef:11:ce:ab:fd:7b:85:97:3a:a2:4d:bd:da:58:be:3a: 0c:31:58:10:b8:32:54:c7:20:7e:d0:3f:a2:f8:be:7d:7d:a9: b2:b6:6e:d3:74:30:8d:b6:7a:a7:aa:67:bd:05:dc:68:36:aa: 6d:1d:94:7b:de:18:7e:87:cc:b6:34:07:13:07:cc:0c:69:62: 1c:f1:97:4b:b8:47:91:86:b5:0e:3a:9f:a5:f7:8b:c2:72:df: 9a:89:b6:a4:34:f0:e3:f6:2e:3d:b1:4f:d1:93:34:fd:2e:ff: 89:08:c7:1b:43:37:db:9c:de:f2:fe:be:90:3f:39:fc:76:8e: 01:33:0c:a6:6c:0f:e0:c8:35:a9:c5:58:13:e2:0c:dd:cc:fb: 3e:44:8b:91 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDDucoWfewLhm1czbDSHwHu6rdLYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUwMDA3WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTA4MzU5OGNhOTgxZWUzNmE4YjdiZDVkNDBhZjExOTM5 Y2E2YmNlOTI4NGU0Y2I2ODM5ZGIxNzc5ZDVmOTAxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj3v1ZYlhTq1d+tprOIZfUD0OFldWfa6i1zeio3f3cyEYP qVSkEmA3k/RB1N6G2XfpmRRZLFxv0UVZTjtbhxMYdlHieUuVfBWAb4DY+jVkmBLE L+rf7b4Rj7N8fKeGr+kzhKCO9QTn69rr3h6QDej868AAxRmAHaOX24jLMppL/rNI neiLMfCWeEUUcFh46gpHEp1q+G3qVVddn/w9U09/eQHyIfqBSMcD9SDaWclsbCnp J/BQTuQtkcbCYey+aT6VvPgeBMparNcyZSM1bP1RBBvGaR1Hv15u/HEogMGVCo91 pAoidEz0gDNQhg/qd/xBYo9ViiUjFA5nXRxvgwuZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyqL6IHwmcpEVwOgnOgTTCpTEwxkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRkOWRjMTg5LTZjMDAtNDc2NC05YzBjLWM5OTBkMTcyNzI5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBgAwDQYJKoZIhvcNAQELBQADggEBAHGJL2Fey3wU1FX8Iy51MIgR v6j3nHLoM1yvwrGqIvYOYyFZpWRy2xFsoGqoGHz5NPmEumPiorZLTgmjq4zGOT+q WXUGnMTJAPmWo4soDBYWVhbYY2yFMrUlWYeO+qGAZWKKU8w2aZ1QB/Rk0g147xHO q/17hZc6ok292li+OgwxWBC4MlTHIH7QP6L4vn19qbK2btN0MI22eqeqZ70F3Gg2 qm0dlHveGH6HzLY0BxMHzAxpYhzxl0u4R5GGtQ46n6X3i8Jy35qJtqQ08OP2Lj2x T9GTNP0u/4kIxxtDN9uc3vL+vpA/Ofx2jgEzDKZsD+DINanFWBPiDN3M+z5Ei5E= -----END CERTIFICATE-----Generated at Sat Dec 20 11:16:04 2025 by rpki-client