This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa File: 5443f26e-949a-460a-b187-e26290bfcf24.roa (raw, json) Hash identifier: T+OlWwy5+9gzI/PXsjoOdGTpkV2tCkVw7wmYdUvZCbE= Subject key identifier: 21:6E:BD:00:76:68:41:86:56:84:CA:F3:EB:63:3B:AA:46:0D:A6:FB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5FB8E3D90BC82F3937F261C3FA49C7BB1A26C5BD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa Signing time: Thu 11 Dec 2025 01:00:07 +0000 ROA not before: Thu 11 Dec 2025 01:00:07 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:b8:e3:d9:0b:c8:2f:39:37:f2:61:c3:fa:49:c7:bb:1a:26:c5:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 11 01:00:07 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=b3dac903e8660820169be42dffa109647016fd49bb1b06d96caeb5187e58b658, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:93:76:35:fd:31:72:d2:da:93:51:bd:88:84: 6a:06:4f:ba:27:ef:8e:14:ee:6e:d7:ab:07:07:63: 63:f3:a3:c7:56:54:2f:3e:b5:2a:7c:6b:5a:f2:9d: 45:dd:87:dd:4b:fc:eb:30:43:9f:59:02:4f:9b:0c: 8b:2a:8b:76:8f:b5:17:80:cd:6c:dc:be:c7:37:23: cf:09:96:54:62:e8:37:e1:55:af:31:39:b8:08:0f: 55:d3:23:41:d8:bf:47:bc:0b:99:4a:62:55:1e:11: 0e:81:53:74:02:68:92:e2:66:ce:ab:62:2e:18:21: f9:0a:49:b5:90:f6:a5:49:c0:17:10:cf:1b:b5:1e: cd:a7:37:f5:32:c3:71:1b:d6:8e:57:ce:19:41:92: 8e:51:10:2b:2d:d0:44:10:9c:f4:f3:08:4a:c8:64: 8f:86:db:57:8a:d5:d3:8c:57:6f:ec:76:c8:3b:32: b2:90:9e:bc:9a:d5:79:07:97:e9:fe:fc:9a:75:1c: 9b:79:cc:b2:bd:22:c0:24:94:70:aa:77:ea:d9:4c: ed:56:c1:d8:cc:74:39:34:15:99:52:87:84:34:ea: 7d:59:b8:0b:f7:d4:32:44:d4:17:a1:e1:93:aa:d6: 57:01:98:c0:b8:e1:bb:fe:2c:cc:32:0e:f7:07:58: 05:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:6E:BD:00:76:68:41:86:56:84:CA:F3:EB:63:3B:AA:46:0D:A6:FB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4000::/44 Signature Algorithm: sha256WithRSAEncryption 7d:1c:9b:5d:4f:f9:82:af:b2:6b:4d:94:44:e2:ba:03:c7:e1: 6d:54:73:72:f4:90:bd:26:3d:4e:93:22:91:35:ec:48:54:24: 75:71:52:57:73:02:d3:7a:2f:1d:d1:94:98:ea:5b:dd:66:3b: 16:33:19:19:02:ee:50:13:67:64:db:e7:a2:98:ba:fa:47:fb: f5:dc:d1:0c:58:ba:5f:9e:0d:c1:b2:7f:09:cc:fe:c9:5d:19: da:ea:39:54:0d:d7:4e:90:2c:4a:a2:09:fa:33:4b:a6:00:e5: c7:4c:17:f5:b0:a9:11:53:42:3e:5e:c1:48:17:b0:ae:5d:c3: a1:d4:ab:44:28:5a:24:7a:10:f0:e4:10:67:6e:67:9c:d5:37: 19:1b:9e:ee:61:b2:13:de:f6:53:f6:71:b5:78:00:03:f9:87: c7:30:ad:39:1e:93:a5:04:e3:40:93:4e:7d:d6:6f:b2:e9:de: 95:58:5a:02:0a:69:06:49:3d:82:c1:b1:5f:b0:71:8b:fc:a5: c7:14:c3:7a:49:94:0e:2e:55:d5:a2:e4:5f:17:60:8e:d3:3f: 7c:75:db:04:b7:da:86:ef:19:79:07:88:5f:d2:55:21:e1:57: 15:40:b1:75:36:7d:18:47:77:6f:d2:40:ed:09:db:9e:3c:2d: 0d:2c:33:31 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUX7jj2QvILzk38mHD+knHuxomxb0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjExMDEwMDA3WhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2RhYzkwM2U4NjYwODIwMTY5YmU0MmRmZmExMDk2NDcw MTZmZDQ5YmIxYjA2ZDk2Y2FlYjUxODdlNThiNjU4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9k3Y1/TFy0tqTUb2IhGoGT7on744U7m7XqwcHY2Pzo8dW VC8+tSp8a1rynUXdh91L/OswQ59ZAk+bDIsqi3aPtReAzWzcvsc3I88JllRi6Dfh Va8xObgID1XTI0HYv0e8C5lKYlUeEQ6BU3QCaJLiZs6rYi4YIfkKSbWQ9qVJwBcQ zxu1Hs2nN/Uyw3Eb1o5XzhlBko5RECst0EQQnPTzCErIZI+G21eK1dOMV2/sdsg7 MrKQnrya1XkHl+n+/Jp1HJt5zLK9IsAklHCqd+rZTO1WwdjMdDk0FZlSh4Q06n1Z uAv31DJE1Beh4ZOq1lcBmMC44bv+LMwyDvcHWAUXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIW69AHZoQYZWhMrz62M7qkYNpvswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NDNmMjZlLTk0OWEtNDYwYS1iMTg3LWUyNjI5MGJmY2YyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwQAAwDQYJKoZIhvcNAQELBQADggEBAH0cm11P+YKvsmtNlETiugPH 4W1Uc3L0kL0mPU6TIpE17EhUJHVxUldzAtN6Lx3RlJjqW91mOxYzGRkC7lATZ2Tb 56KYuvpH+/Xc0QxYul+eDcGyfwnM/sldGdrqOVQN106QLEqiCfozS6YA5cdMF/Ww qRFTQj5ewUgXsK5dw6HUq0QoWiR6EPDkEGduZ5zVNxkbnu5hshPe9lP2cbV4AAP5 h8cwrTkek6UE40CTTn3Wb7Lp3pVYWgIKaQZJPYLBsV+wcYv8pccUw3pJlA4uVdWi 5F8XYI7TP3x12wS32obvGXkHiF/SVSHhVxVAsXU2fRhHd2/SQO0J2548LQ0sMzE= -----END CERTIFICATE-----Generated at Sun Dec 21 03:02:09 2025 by rpki-client