This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/529e132d-0c8c-4ca3-bafc-0927932483fd.roa File: 529e132d-0c8c-4ca3-bafc-0927932483fd.roa (raw, json) Hash identifier: tT5th13+WCvRcHhwdDzlVjg6kWqzSuiG69/MrP4/zmU= Subject key identifier: 20:4F:27:A4:7C:93:EF:00:B6:CB:22:80:65:A2:C5:A1:77:9F:5A:AD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 33452121167A77503F7DBCC7F93362936C09A67D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/529e132d-0c8c-4ca3-bafc-0927932483fd.roa Signing time: Wed 10 Dec 2025 05:10:33 +0000 ROA not before: Wed 10 Dec 2025 05:10:33 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:45:21:21:16:7a:77:50:3f:7d:bc:c7:f9:33:62:93:6c:09:a6:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:10:33 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=9e544fd470b5d2e2abe0a25fadf66e4cc6da6a204174600dce77c5d9e11ed5d6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d9:9d:18:a1:86:bb:af:07:1e:a1:02:24:fe: 1c:21:3c:c4:0b:67:95:9a:d6:3d:95:b0:4a:66:c0: b1:04:be:21:4e:12:d4:87:8f:d6:ec:07:dd:1d:7d: 1d:9a:cf:44:bb:19:a0:80:80:eb:fc:66:01:d2:b7: 90:15:d4:2e:db:4e:65:7e:bc:9d:6b:34:a8:f7:87: 0c:d1:6e:b4:a9:9a:e0:e3:2e:a1:a3:ec:6c:e6:67: 7f:3b:82:d5:68:dd:9d:a8:7e:44:12:0f:c6:1b:0a: 66:29:0e:0b:5e:0b:8f:05:ca:56:3b:c8:cd:da:52: 9d:60:cb:1f:9a:b6:b6:be:0a:98:df:0d:51:0f:f4: f4:34:af:cd:0d:05:ae:bc:81:23:11:10:2f:60:1a: eb:3d:2e:8e:b5:c4:29:7f:0e:e5:18:7f:7b:4c:9c: 94:07:bd:4a:e6:7b:2e:90:48:ea:71:6c:10:ad:27: 36:4b:e0:92:43:57:27:e3:de:e0:be:eb:38:7a:3b: 4d:14:4b:f9:56:58:ac:cc:87:41:c4:ad:26:b3:54: 8b:c7:90:a4:8e:0c:9d:27:22:fe:82:4b:68:39:d0: 0d:27:93:85:42:3e:ba:1a:75:a5:8b:c2:45:43:bd: d1:74:b9:85:78:f6:a3:e4:b0:9b:98:8a:86:df:5e: 94:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:4F:27:A4:7C:93:EF:00:B6:CB:22:80:65:A2:C5:A1:77:9F:5A:AD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/529e132d-0c8c-4ca3-bafc-0927932483fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e000::/36 Signature Algorithm: sha256WithRSAEncryption 33:6d:98:eb:66:44:e8:6a:c6:6e:f0:79:f1:2a:06:49:50:15: 52:a7:24:c2:12:e9:f6:6d:bf:d5:fb:01:fa:1c:09:b4:89:2a: 97:b8:dc:fe:fc:08:e1:df:03:17:a6:35:fa:b6:65:d3:79:55: 93:7a:20:45:8a:5c:9b:3c:2d:61:d5:4e:f1:08:77:38:c7:2c: b0:15:b6:88:51:25:dd:9b:63:79:de:19:02:19:47:0b:79:e7: 0d:3d:65:b1:c2:df:ed:e2:63:5f:d3:7e:21:90:09:d3:1a:36: 49:6d:47:ef:d6:5e:a9:a7:9d:82:03:37:a1:de:25:2d:32:d7: 2b:40:66:f2:d7:89:df:54:76:b9:1f:b5:d0:0e:20:e9:20:f5: 69:9c:47:90:0b:f8:02:4a:7d:52:2b:3a:18:ba:18:76:fa:4b: d6:af:87:32:4e:fd:af:88:a3:c8:b3:3d:5c:f9:73:b4:9f:cd: 3d:92:4f:07:c9:74:38:fc:ef:a1:31:69:77:48:be:81:42:d6: 45:14:72:45:63:37:88:12:05:60:33:7c:b3:71:5b:22:bb:b1: 04:29:0a:40:ae:5b:86:c3:48:3e:29:f4:1d:35:d9:b3:0c:19: 79:f3:b0:54:e7:e3:6b:3b:e1:27:c1:d1:dd:12:ff:cd:66:c9: a8:75:54:4a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUM0UhIRZ6d1A/fbzH+TNik2wJpn0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUxMDMzWhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTU0NGZkNDcwYjVkMmUyYWJlMGEyNWZhZGY2NmU0Y2M2 ZGE2YTIwNDE3NDYwMGRjZTc3YzVkOWUxMWVkNWQ2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC22Z0YoYa7rwceoQIk/hwhPMQLZ5Wa1j2VsEpmwLEEviFO EtSHj9bsB90dfR2az0S7GaCAgOv8ZgHSt5AV1C7bTmV+vJ1rNKj3hwzRbrSpmuDj LqGj7GzmZ387gtVo3Z2ofkQSD8YbCmYpDgteC48FylY7yM3aUp1gyx+atra+Cpjf DVEP9PQ0r80NBa68gSMREC9gGus9Lo61xCl/DuUYf3tMnJQHvUrmey6QSOpxbBCt JzZL4JJDVyfj3uC+6zh6O00US/lWWKzMh0HErSazVIvHkKSODJ0nIv6CS2g50A0n k4VCProadaWLwkVDvdF0uYV49qPksJuYiobfXpS9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIE8npHyT7wC2yyKAZaLFoXefWq0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUyOWUxMzJkLTBjOGMtNGNhMy1iYWZjLTA5Mjc5MzI0ODNmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAPD74DANBgkqhkiG9w0BAQsFAAOCAQEAM22Y62ZE6GrGbvB58SoGSVAV UqckwhLp9m2/1fsB+hwJtIkql7jc/vwI4d8DF6Y1+rZl03lVk3ogRYpcmzwtYdVO 8Qh3OMcssBW2iFEl3Ztjed4ZAhlHC3nnDT1lscLf7eJjX9N+IZAJ0xo2SW1H79Ze qaedggM3od4lLTLXK0Bm8teJ31R2uR+10A4g6SD1aZxHkAv4Akp9Uis6GLoYdvpL 1q+HMk79r4ijyLM9XPlztJ/NPZJPB8l0OPzvoTFpd0i+gULWRRRyRWM3iBIFYDN8 s3FbIruxBCkKQK5bhsNIPin0HTXZswwZefOwVOfjazvhJ8HR3RL/zWbJqHVUSg== -----END CERTIFICATE-----Generated at Sat Dec 20 16:53:36 2025 by rpki-client