This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa File: 9a96c02c-ad61-40ce-b5aa-def693953ba1.roa (raw, json) Hash identifier: KepjD6x0X+zxzIKP+TpIOZp3GvZvXm7apa/3utcnSBk= Subject key identifier: DA:B6:31:38:7E:9D:51:FB:AF:34:E8:3B:E4:22:D8:8A:E6:99:F3:44 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6627F7A23F1BA21CCFB1CAAA0AF699BCC2E37A25 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa Signing time: Thu 11 Dec 2025 00:50:14 +0000 ROA not before: Thu 11 Dec 2025 00:50:14 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:27:f7:a2:3f:1b:a2:1c:cf:b1:ca:aa:0a:f6:99:bc:c2:e3:7a:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 11 00:50:14 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=cf258c56df653f96d18a2273a976ff1404bf488457e5530f8a181e8127b46ce4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fb:65:32:51:dc:3e:e6:07:b0:0e:f2:c7:43: 37:2f:6d:c9:db:ac:71:15:49:7f:a5:85:b6:8c:80: 73:6f:9c:92:03:f3:7e:e3:e9:ca:ad:7f:27:a0:91: c2:28:52:ff:6f:34:6e:34:76:44:05:61:c3:d1:f5: 96:ad:36:05:c5:4a:f3:1b:66:08:47:e2:20:84:07: 5a:6a:3f:03:44:87:63:90:33:41:c6:90:20:ad:c4: 07:57:b5:90:6a:36:c0:45:69:a6:de:f1:56:bd:d6: b4:f1:61:d0:a9:36:69:c7:ff:d1:1d:98:77:63:e8: dc:ad:11:9d:36:49:22:86:39:a5:ea:7e:43:7e:05: ad:63:9d:61:5b:67:f4:32:40:79:6e:62:95:02:8b: d6:43:7f:08:32:f1:c6:6e:7f:d0:f6:ce:a6:85:c7: 97:4d:10:f4:5e:09:c4:c8:c8:11:2e:46:f6:a0:c5: 27:37:a4:80:2a:8c:3b:95:06:cc:3f:fc:e6:b5:f9: 22:d7:38:66:69:97:16:b2:94:19:a4:56:ad:f0:e8: 14:fe:dc:f0:35:23:25:6e:b9:8c:a4:6f:28:35:fa: c9:74:ea:22:c0:c4:3a:40:79:b0:f7:ac:94:b4:0f: 12:8b:79:fb:06:d4:b4:dc:d6:3d:ad:69:b4:99:aa: bb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B6:31:38:7E:9D:51:FB:AF:34:E8:3B:E4:22:D8:8A:E6:99:F3:44 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 2d:9b:0a:f3:b8:72:ea:c2:31:54:d7:ed:f0:2e:1b:0e:40:a7: 11:6a:65:7f:1b:17:08:34:f3:98:a4:b2:59:9a:71:9a:9b:48: 8a:a8:02:51:ba:71:07:37:92:ea:fb:a8:eb:72:11:30:e3:82: c2:60:63:f5:0d:1e:aa:49:96:4e:75:b0:af:9e:58:90:29:85: 73:72:7e:c1:ce:c1:79:e4:74:f4:68:16:86:19:43:33:07:3f: 97:76:df:49:c1:38:0b:af:02:01:b9:e3:ea:b5:9f:b5:26:a6: b8:ef:99:6d:59:d0:35:36:c9:4a:cd:92:97:3a:48:ef:82:3c: 17:f3:cc:78:1e:a4:f4:21:cc:53:6a:e8:4b:09:13:3d:02:50: 0b:93:b1:24:0a:db:9d:2a:d1:c0:11:c9:78:6b:15:b4:d9:3f: 90:28:96:c6:5d:ea:ba:40:a2:01:fb:7e:8e:11:25:6f:dc:e5: 48:f2:61:e6:88:c2:66:39:69:8f:41:e6:af:e4:54:46:42:42: 60:07:79:64:ee:02:0c:a6:68:1b:5f:2c:b7:b7:53:df:7e:3a: e4:21:82:ca:ca:fd:02:9a:59:8a:c0:66:e8:67:40:1a:15:89: 52:05:7d:a3:7e:dd:ae:f9:93:1f:d0:1f:d5:10:de:75:de:f1: 42:cb:30:2a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZif3oj8bohzPscqqCvaZvMLjeiUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjExMDA1MDE0WhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjI1OGM1NmRmNjUzZjk2ZDE4YTIyNzNhOTc2ZmYxNDA0 YmY0ODg0NTdlNTUzMGY4YTE4MWU4MTI3YjQ2Y2U0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb+2UyUdw+5gewDvLHQzcvbcnbrHEVSX+lhbaMgHNvnJID 837j6cqtfyegkcIoUv9vNG40dkQFYcPR9ZatNgXFSvMbZghH4iCEB1pqPwNEh2OQ M0HGkCCtxAdXtZBqNsBFaabe8Va91rTxYdCpNmnH/9EdmHdj6NytEZ02SSKGOaXq fkN+Ba1jnWFbZ/QyQHluYpUCi9ZDfwgy8cZuf9D2zqaFx5dNEPReCcTIyBEuRvag xSc3pIAqjDuVBsw//Oa1+SLXOGZplxaylBmkVq3w6BT+3PA1IyVuuYykbyg1+sl0 6iLAxDpAebD3rJS0DxKLefsG1LTc1j2tabSZqruRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2rYxOH6dUfuvNOg75CLYiuaZ80QwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzlhOTZjMDJjLWFkNjEtNDBjZS1iNWFhLWRlZjY5Mzk1M2JhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAC2bCvO4curCMVTX7fAuGw5A pxFqZX8bFwg085ikslmacZqbSIqoAlG6cQc3kur7qOtyETDjgsJgY/UNHqpJlk51 sK+eWJAphXNyfsHOwXnkdPRoFoYZQzMHP5d230nBOAuvAgG54+q1n7UmprjvmW1Z 0DU2yUrNkpc6SO+CPBfzzHgepPQhzFNq6EsJEz0CUAuTsSQK250q0cARyXhrFbTZ P5AolsZd6rpAogH7fo4RJW/c5UjyYeaIwmY5aY9B5q/kVEZCQmAHeWTuAgymaBtf LLe3U99+OuQhgsrK/QKaWYrAZuhnQBoViVIFfaN+3a75kx/QH9UQ3nXe8ULLMCo= -----END CERTIFICATE-----Generated at Sun Dec 21 03:04:09 2025 by rpki-client