This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa File: a1a5323d-810c-4209-a36d-e85d1d062c2e.roa (raw, json) Hash identifier: 3OfVG+BGmwojqFDNgwxHaCC9Zs5ZPh9sGrjaD3Ebxe4= Subject key identifier: E7:30:A8:68:A8:E7:C6:35:8D:47:63:4E:81:51:B0:C5:43:FE:1F:CD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 18F9E19CFFCA5FD6003BBD03C2F5BDBDFEF59B5D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa Signing time: Thu 11 Dec 2025 01:00:35 +0000 ROA not before: Thu 11 Dec 2025 01:00:35 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:f9:e1:9c:ff:ca:5f:d6:00:3b:bd:03:c2:f5:bd:bd:fe:f5:9b:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 11 01:00:35 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=13126c3c80bad38310e9fab636c31c2ad9faa40738cbb1e2a07605e9e7bac9fd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2e:61:99:cc:ed:1f:7e:35:d6:99:73:3b:9f: b9:a1:8d:7c:a5:40:5d:f0:cc:6f:32:fa:95:91:8d: df:18:09:96:c6:29:b9:9c:ae:88:e5:4a:a7:5d:67: fa:b3:75:e0:2b:8a:e2:37:a4:2f:6b:b2:86:7c:0b: 85:1e:12:1f:9c:b9:95:47:09:83:cb:18:05:5b:ff: 9a:7c:6e:21:19:75:23:d2:2c:8e:5d:5b:31:64:a6: 94:59:69:db:62:b2:27:7d:fc:f2:2f:52:b1:55:22: 28:c2:6b:3b:29:cf:2a:a8:a2:1b:fa:80:20:96:18: 65:05:02:78:25:46:d0:19:1c:41:06:36:3b:81:61: e3:86:63:31:79:33:6e:ec:b9:f8:3f:30:71:1c:10: 09:e4:55:a3:07:8a:6f:32:7b:5a:3f:1b:40:1f:09: 2d:93:8a:54:11:bd:ad:ca:cc:9f:ef:bf:e2:85:3b: 16:df:c9:c2:4d:a7:2f:d3:e9:42:ee:c7:d7:d6:d3: 25:db:49:c6:62:82:7e:d6:b8:75:e6:71:5a:d8:9c: 10:1c:f3:67:46:9e:ce:63:47:0c:c4:91:c3:4b:a2: ee:e4:8a:e3:c7:2f:d1:3d:74:1e:37:f9:7a:be:b3: 30:8c:54:7e:1d:80:ab:b5:28:66:48:54:eb:e3:2b: 0e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:30:A8:68:A8:E7:C6:35:8D:47:63:4E:81:51:B0:C5:43:FE:1F:CD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10a::/48 Signature Algorithm: sha256WithRSAEncryption 28:30:7f:e0:d0:a9:27:cb:09:64:af:ab:0b:1a:e7:4a:be:80: 42:50:ba:05:1c:14:f0:b8:5a:f4:f6:af:dd:ec:17:99:f5:00: 09:8a:d8:49:49:d5:56:f3:83:e9:be:18:54:9e:42:be:e7:5d: fe:ca:d8:5f:2d:6d:3a:d7:0f:ea:ac:f7:bd:7f:d8:3f:2e:e0: 4e:b0:f5:8d:14:82:e3:d8:d4:ca:99:e1:32:76:4d:b4:80:fe: c7:eb:08:94:49:b3:de:be:07:07:b5:54:c5:b1:2e:b6:c3:59: 38:4c:43:b1:ac:fc:5e:5d:fa:91:e6:9e:79:b7:53:8a:8c:9a: ff:51:65:4b:99:b2:e0:9f:22:9a:65:b1:4a:9b:e2:06:8c:27: 5a:f3:81:33:47:18:9f:f6:02:92:02:3c:8d:ad:c9:e0:3d:78: 95:85:44:8e:2b:d7:2c:b8:a7:57:d4:fa:bb:b5:40:b8:b3:ff: 33:42:a2:e5:24:28:7d:c9:83:57:06:42:16:5b:93:4f:b7:fa: 97:3a:34:99:a4:23:d1:a9:59:71:24:aa:18:2c:58:8b:70:ee: d7:82:2d:b3:87:b8:56:e0:4d:60:63:7c:70:46:42:29:b4:98: fa:61:44:3c:ff:b2:b4:6b:d4:c4:9d:61:43:44:9e:5f:79:14: 25:69:bb:48 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGPnhnP/KX9YAO70DwvW9vf71m10wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjExMDEwMDM1WhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzEyNmMzYzgwYmFkMzgzMTBlOWZhYjYzNmMzMWMyYWQ5 ZmFhNDA3MzhjYmIxZTJhMDc2MDVlOWU3YmFjOWZkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzLmGZzO0ffjXWmXM7n7mhjXylQF3wzG8y+pWRjd8YCZbG KbmcrojlSqddZ/qzdeAriuI3pC9rsoZ8C4UeEh+cuZVHCYPLGAVb/5p8biEZdSPS LI5dWzFkppRZadtisid9/PIvUrFVIijCazspzyqoohv6gCCWGGUFAnglRtAZHEEG NjuBYeOGYzF5M27sufg/MHEcEAnkVaMHim8ye1o/G0AfCS2TilQRva3KzJ/vv+KF OxbfycJNpy/T6ULux9fW0yXbScZign7WuHXmcVrYnBAc82dGns5jRwzEkcNLou7k iuPHL9E9dB43+Xq+szCMVH4dgKu1KGZIVOvjKw7pAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5zCoaKjnxjWNR2NOgVGwxUP+H80wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExYTUzMjNkLTgxMGMtNDIwOS1hMzZkLWU4NWQxZDA2MmMyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QowDQYJKoZIhvcNAQELBQADggEBACgwf+DQqSfLCWSvqwsa50q+ gEJQugUcFPC4WvT2r93sF5n1AAmK2ElJ1Vbzg+m+GFSeQr7nXf7K2F8tbTrXD+qs 971/2D8u4E6w9Y0UguPY1MqZ4TJ2TbSA/sfrCJRJs96+Bwe1VMWxLrbDWThMQ7Gs /F5d+pHmnnm3U4qMmv9RZUuZsuCfIpplsUqb4gaMJ1rzgTNHGJ/2ApICPI2tyeA9 eJWFRI4r1yy4p1fU+ru1QLiz/zNCouUkKH3Jg1cGQhZbk0+3+pc6NJmkI9GpWXEk qhgsWItw7teCLbOHuFbgTWBjfHBGQim0mPphRDz/srRr1MSdYUNEnl95FCVpu0g= -----END CERTIFICATE-----Generated at Sat Dec 20 11:14:19 2025 by rpki-client