This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d914165-a3e7-48af-b624-8691c64e5360.roa File: 8d914165-a3e7-48af-b624-8691c64e5360.roa (raw, json) Hash identifier: CQjNhpzbE2K9AoR+eqvD6hCA1r9pxl0BSdHC1LMGS90= Subject key identifier: D8:67:29:3E:48:86:90:04:81:AD:B0:A7:1B:EA:A3:26:47:E1:71:B9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3EBDD7472418BDC42F0CEF237C708860FD31B3FE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d914165-a3e7-48af-b624-8691c64e5360.roa Signing time: Wed 10 Dec 2025 05:10:09 +0000 ROA not before: Wed 10 Dec 2025 05:10:09 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/28 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:bd:d7:47:24:18:bd:c4:2f:0c:ef:23:7c:70:88:60:fd:31:b3:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:10:09 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=f103fa0434d2dc8de24f9bf8c135f370ca8f642ed56cbc683a973b03c6e71f6e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:40:c7:d4:82:bb:70:22:3e:12:be:a8:e2:85: 22:f7:1f:47:6f:81:2e:cf:25:b4:e1:52:2e:86:c1: 40:c0:99:81:7b:3c:f2:03:27:6f:15:d5:cf:1e:43: 31:7b:fb:9f:64:38:23:a6:b1:4f:2e:5b:38:53:7f: 1d:e2:0e:22:07:f6:8e:d6:99:67:e1:f2:1f:45:af: 70:49:b8:8a:d0:58:8f:0b:9e:87:35:26:af:26:f2: 88:bd:64:82:3b:74:06:5b:61:42:ab:fb:94:a0:e9: 59:c1:10:9f:2d:90:70:ac:01:a6:24:6d:81:73:fd: ae:ac:f6:ed:61:70:50:c9:57:29:25:f1:ec:22:bd: 49:85:68:5c:96:ef:e6:25:b7:54:76:91:3f:1a:4f: 5c:6d:00:9d:f7:e8:84:db:b1:f4:60:a3:06:85:08: e9:0b:53:ff:5b:6b:e8:23:65:f0:08:71:0b:39:05: 82:2c:f3:1b:40:b3:07:c9:38:c0:b7:30:9e:3b:59: 01:61:5f:f8:59:54:9e:b5:f5:ab:1b:5b:d7:cf:47: 3a:08:e5:37:5c:a1:c9:78:3b:5b:50:8d:e3:21:66: 29:1e:8c:98:57:67:26:f7:16:10:a9:e9:40:9d:d7: dd:2a:02:fe:f9:18:a5:5f:88:49:dc:9e:b3:de:1a: 89:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:67:29:3E:48:86:90:04:81:AD:B0:A7:1B:EA:A3:26:47:E1:71:B9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d914165-a3e7-48af-b624-8691c64e5360.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/28 Signature Algorithm: sha256WithRSAEncryption 60:b4:c2:a2:f6:e3:f8:89:2d:7a:89:f8:40:d8:b9:f4:5e:80: f3:16:59:01:03:38:ef:5e:e1:e2:5d:c2:f2:fb:72:48:9b:af: fc:63:ee:fa:5b:21:8d:77:69:7e:7c:cc:08:9a:c5:4c:72:c1: c6:6f:61:61:c7:41:12:97:f7:26:a7:1e:10:e3:60:5e:9d:fb: a7:e4:db:9e:c8:1d:31:92:32:13:ad:87:2e:28:67:b5:2f:07: 9a:f7:e7:9e:f4:43:dd:17:4d:db:70:70:34:c0:43:d3:fd:df: 35:5e:c6:a9:9d:f5:e8:4d:4b:26:a0:b2:b9:9b:b2:78:2e:9f: e1:ea:1d:0e:c4:fe:92:a9:1f:20:12:d8:5e:5a:91:95:4e:eb: 1b:8c:2e:15:95:b8:81:b7:60:64:47:dd:0c:18:69:43:c5:13: 43:df:ab:47:de:3d:c9:e5:ad:ba:ce:72:96:e6:40:89:a4:7d: ad:27:3f:6d:20:f5:44:6f:86:6b:71:1c:d4:a1:bb:c3:95:31: 17:90:6f:3a:d9:a0:ca:ae:83:69:f6:27:2f:aa:af:a3:93:27: 49:21:c0:4c:46:6b:83:9e:ca:88:a6:8c:b1:d5:00:ac:75:2b: bd:e4:72:b0:39:a5:c2:db:40:d2:3c:ae:46:e9:ce:f5:63:fe: 25:cb:28:e8 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUPr3XRyQYvcQvDO8jfHCIYP0xs/4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUxMDA5WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTAzZmEwNDM0ZDJkYzhkZTI0ZjliZjhjMTM1ZjM3MGNh OGY2NDJlZDU2Y2JjNjgzYTk3M2IwM2M2ZTcxZjZlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8QMfUgrtwIj4SvqjihSL3H0dvgS7PJbThUi6GwUDAmYF7 PPIDJ28V1c8eQzF7+59kOCOmsU8uWzhTfx3iDiIH9o7WmWfh8h9Fr3BJuIrQWI8L noc1Jq8m8oi9ZII7dAZbYUKr+5Sg6VnBEJ8tkHCsAaYkbYFz/a6s9u1hcFDJVykl 8ewivUmFaFyW7+Ylt1R2kT8aT1xtAJ336ITbsfRgowaFCOkLU/9ba+gjZfAIcQs5 BYIs8xtAswfJOMC3MJ47WQFhX/hZVJ619asbW9fPRzoI5Tdcocl4O1tQjeMhZike jJhXZyb3FhCp6UCd190qAv75GKVfiEncnrPeGom1AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU2GcpPkiGkASBrbCnG+qjJkfhcbkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhkOTE0MTY1LWEzZTctNDhhZi1iNjI0LTg2OTFjNjRlNTM2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPAAMA0GCSqGSIb3DQEBCwUAA4IBAQBgtMKi9uP4iS16ifhA2Ln0XoDz FlkBAzjvXuHiXcLy+3JIm6/8Y+76WyGNd2l+fMwImsVMcsHGb2Fhx0ESl/cmpx4Q 42Benfun5NueyB0xkjITrYcuKGe1Lwea9+ee9EPdF03bcHA0wEPT/d81XsapnfXo TUsmoLK5m7J4Lp/h6h0OxP6SqR8gEtheWpGVTusbjC4VlbiBt2BkR90MGGlDxRND 36tH3j3J5a26znKW5kCJpH2tJz9tIPVEb4ZrcRzUobvDlTEXkG862aDKroNp9icv qq+jkydJIcBMRmuDnsqIpoyx1QCsdSu95HKwOaXC20DSPK5G6c71Y/4lyyjo -----END CERTIFICATE-----Generated at Sat Dec 20 11:31:45 2025 by rpki-client