This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa File: aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa (raw, json) Hash identifier: DurvMUqc4ut+DAZB4NhPZyLQQR2x00FWLkM8TMzyx2Q= Subject key identifier: BD:1B:AE:EB:5D:38:91:7C:3B:38:33:6E:DA:1F:F9:32:5F:18:4C:37 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25CFF550644B42364ACB2E166E1FC2FE73BAEB3C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa Signing time: Wed 10 Dec 2025 05:00:42 +0000 ROA not before: Wed 10 Dec 2025 05:00:42 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:cf:f5:50:64:4b:42:36:4a:cb:2e:16:6e:1f:c2:fe:73:ba:eb:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:00:42 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=b651be0ab13df96161e482f04e212356e80dc12d315eb5b9ace798c1a2aa0fc8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:18:c4:c9:6d:1a:1f:fa:37:b4:16:f8:b6:d5: 10:c1:48:b9:bf:aa:25:8a:35:8c:76:67:2d:86:9e: 4d:18:24:9a:d1:c3:46:ac:1b:16:d6:cc:c1:9e:f0: 30:52:7a:74:1c:6e:a8:a2:30:4e:da:0e:6e:99:c4: 6c:ea:88:89:ea:f5:55:7f:f2:f7:0a:b4:59:cb:dd: 6f:02:af:e2:b2:c4:00:7a:81:a7:20:a1:c7:c8:1e: 52:fa:dc:ee:26:86:6b:e5:42:69:79:8d:1e:4d:82: 47:ad:14:fe:ca:30:a6:5b:a1:2f:03:2b:e0:9c:78: 23:e0:0b:90:06:fb:4e:09:38:c1:e0:df:e6:1e:74: 6f:a8:1d:a4:d0:48:36:81:03:b5:08:e6:76:42:dd: 75:c9:a6:b8:e9:e6:5a:7f:37:25:0b:f1:80:35:3c: a9:3e:8f:6d:82:00:32:29:56:8f:86:cd:54:83:c7: d2:3e:a1:db:e5:eb:37:54:9a:b0:12:f8:5c:2f:c1: ac:e0:7e:f7:2f:bb:de:cb:6d:bd:13:d6:1b:61:fd: 91:13:06:e5:af:c2:47:18:f5:3c:5e:db:d2:a3:f6: b1:ee:52:d3:95:18:dd:ce:24:41:be:ad:cf:5f:e0: c7:c2:43:7b:ba:e4:34:2a:30:48:c1:09:94:d6:58: 21:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:1B:AE:EB:5D:38:91:7C:3B:38:33:6E:DA:1F:F9:32:5F:18:4C:37 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/42 Signature Algorithm: sha256WithRSAEncryption 89:a5:75:e9:df:3c:f9:48:ac:c4:a5:36:f0:a5:39:3d:68:b6: 23:a7:29:ef:0c:1d:48:e7:d8:48:f9:e1:d5:7f:8a:6f:5e:4c: 40:dc:8f:95:46:7f:e4:bd:18:bd:6d:de:66:a8:73:ef:87:ff: cc:8e:8b:ca:35:30:6d:e8:3e:ac:5f:a6:5e:e8:c9:c6:2c:1d: 2c:e8:66:bd:b8:bb:5e:18:ea:00:2d:42:86:50:3a:7b:dc:1c: 61:2c:cd:3f:f4:9b:39:d8:13:8f:77:aa:78:e1:f2:cd:3d:02: aa:27:88:c3:e1:17:8a:74:24:db:23:c6:d9:6c:e8:45:20:4d: fc:8c:25:fa:c7:c4:b2:b1:1d:b5:0b:aa:e7:35:cf:6a:ca:ea: aa:34:8b:bd:99:d0:48:fb:2b:e7:ef:7b:59:3e:74:f1:1a:71: 59:46:cf:01:51:42:f9:13:86:ac:c6:a1:36:ed:f2:5b:65:7b: 8e:39:1e:2c:d6:92:c5:83:da:60:aa:a7:65:4d:ea:68:00:61: 2e:76:7f:d0:1b:91:f2:e4:98:f8:95:22:06:c2:ca:c4:c3:24: 48:f7:f0:d4:2a:b7:ba:84:2e:30:21:e9:cb:e8:c4:a4:09:76: 8d:63:3c:b4:1d:35:f9:7a:e6:ef:cb:96:e3:54:96:91:08:27: df:a8:df:2d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJc/1UGRLQjZKyy4Wbh/C/nO66zwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUwMDQyWhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjUxYmUwYWIxM2RmOTYxNjFlNDgyZjA0ZTIxMjM1NmU4 MGRjMTJkMzE1ZWI1YjlhY2U3OThjMWEyYWEwZmM4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEGMTJbRof+je0Fvi21RDBSLm/qiWKNYx2Zy2Gnk0YJJrR w0asGxbWzMGe8DBSenQcbqiiME7aDm6ZxGzqiInq9VV/8vcKtFnL3W8Cr+KyxAB6 gacgocfIHlL63O4mhmvlQml5jR5NgketFP7KMKZboS8DK+CceCPgC5AG+04JOMHg 3+YedG+oHaTQSDaBA7UI5nZC3XXJprjp5lp/NyUL8YA1PKk+j22CADIpVo+GzVSD x9I+odvl6zdUmrAS+Fwvwazgfvcvu97Lbb0T1hth/ZETBuWvwkcY9Txe29Kj9rHu UtOVGN3OJEG+rc9f4MfCQ3u65DQqMEjBCZTWWCGFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvRuu6104kXw7ODNu2h/5Ml8YTDcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZjUxNDAyLWYxYmYtNGU3Yi1iN2MzLTY1ZDkzZGVmNmJkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74gAwDQYJKoZIhvcNAQELBQADggEBAImldenfPPlIrMSlNvClOT1o tiOnKe8MHUjn2Ej54dV/im9eTEDcj5VGf+S9GL1t3maoc++H/8yOi8o1MG3oPqxf pl7oycYsHSzoZr24u14Y6gAtQoZQOnvcHGEszT/0mznYE493qnjh8s09AqoniMPh F4p0JNsjxtls6EUgTfyMJfrHxLKxHbULquc1z2rK6qo0i72Z0Ej7K+fve1k+dPEa cVlGzwFRQvkThqzGoTbt8ltle445HizWksWD2mCqp2VN6mgAYS52f9AbkfLkmPiV IgbCysTDJEj38NQqt7qELjAh6cvoxKQJdo1jPLQdNfl65u/LluNUlpEIJ9+o3y0= -----END CERTIFICATE-----Generated at Sat Dec 20 11:16:01 2025 by rpki-client