This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa File: bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa (raw, json) Hash identifier: ZY0KBa7hQz88mu1vxVqSVsRaXzqtDPGFUOsEWZA8AsQ= Subject key identifier: F6:18:5B:3E:D8:54:93:DF:95:32:DE:52:4E:79:66:56:DF:69:A3:54 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 59FCB40161BEA71E2964ED4265997FB5A9909474 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa Signing time: Wed 10 Dec 2025 05:00:43 +0000 ROA not before: Wed 10 Dec 2025 05:00:43 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:fc:b4:01:61:be:a7:1e:29:64:ed:42:65:99:7f:b5:a9:90:94:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:00:43 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=2e1868261b2e6eaecc04d5e7fda808bb9f2b00fd033a2a39eff94223310f4187, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:93:80:21:0d:7c:4a:5a:08:02:41:ad:ec:00: 30:91:74:d8:b7:c7:56:e5:b5:50:03:90:b6:5c:ca: 50:6a:49:08:f0:59:a7:dc:83:95:49:0f:ca:43:ca: 33:be:52:7c:31:e4:7a:e2:e2:41:1a:c8:ec:a7:57: 54:9b:52:6c:77:0e:99:4a:b5:ca:fb:05:23:32:e5: 54:0c:3f:24:a0:2d:0c:a6:81:d0:5f:e6:34:7a:fc: 71:ef:33:77:c1:19:74:91:bb:20:14:b6:95:14:b9: b5:51:ff:e4:55:4a:83:33:67:6f:56:a4:08:8c:04: 25:dc:fd:35:c5:4e:d3:a2:30:a4:1c:2a:62:9b:6b: bb:68:8e:ed:c1:f6:67:a0:b8:da:a2:81:b8:de:b9: c3:cd:1e:1e:76:08:35:76:e2:85:d5:8a:8f:ce:92: f7:7e:64:a0:b6:37:3c:3f:7b:8b:1a:02:be:a6:24: 86:31:24:c3:8c:91:45:fd:61:bd:7c:af:e9:90:aa: 28:92:88:cb:74:5c:a3:4d:37:21:5e:5b:68:16:e1: cd:1c:e0:ea:8b:b1:9f:34:6b:6b:9a:b2:e9:b6:8e: 1f:c1:80:97:40:f5:3c:46:61:cf:07:35:6e:57:ed: a3:b5:3c:a3:8e:cc:21:8f:1a:9b:60:59:ff:54:4f: b2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:18:5B:3E:D8:54:93:DF:95:32:DE:52:4E:79:66:56:DF:69:A3:54 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/42 Signature Algorithm: sha256WithRSAEncryption 9a:c4:0a:c4:fb:f2:cc:30:ba:ac:35:99:6d:c9:b2:62:f0:3d: 57:8e:7b:89:c1:78:82:bf:b1:55:c5:b4:1d:c8:e7:6b:f0:22: 2d:51:3f:04:0c:1a:7a:0c:60:e2:9e:c9:ab:9d:9b:f1:f6:86: 22:07:ba:ad:f9:4d:fd:5f:1e:84:cb:37:8f:b1:81:4b:25:c7: 49:18:de:d6:5d:1e:27:e0:05:51:0e:06:ac:11:a5:52:e8:07: 6b:2c:c7:61:5d:fd:8b:e9:bf:77:c7:93:1d:04:4a:d8:63:c6: 5b:c9:f6:c0:92:e9:95:0e:4c:59:01:4b:07:80:91:71:a8:ef: 8c:5d:9d:72:af:d9:98:4a:8f:88:5d:a1:30:9f:90:34:4c:00: b7:ce:2f:11:43:5a:21:74:91:ce:fb:71:41:60:20:74:c7:8c: b7:88:da:a0:11:e5:90:8b:f4:7d:8d:75:dc:10:5a:86:06:71: 76:4e:1c:b2:66:c8:d8:d0:5c:d9:a1:3b:23:8f:99:a8:69:e2: 03:85:b9:b3:84:e8:ad:eb:2b:5b:e2:4f:8c:1d:74:4a:e8:a0: e7:ab:88:19:96:86:b1:f7:8b:90:5a:8f:6d:50:9b:b3:4a:5e: bb:8b:c4:23:63:55:76:91:c6:10:19:10:d4:18:b2:89:83:83: f9:b6:42:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWfy0AWG+px4pZO1CZZl/tamQlHQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUwMDQzWhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTE4NjgyNjFiMmU2ZWFlY2MwNGQ1ZTdmZGE4MDhiYjlm MmIwMGZkMDMzYTJhMzllZmY5NDIyMzMxMGY0MTg3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCak4AhDXxKWggCQa3sADCRdNi3x1bltVADkLZcylBqSQjw Wafcg5VJD8pDyjO+Unwx5Hri4kEayOynV1SbUmx3DplKtcr7BSMy5VQMPySgLQym gdBf5jR6/HHvM3fBGXSRuyAUtpUUubVR/+RVSoMzZ29WpAiMBCXc/TXFTtOiMKQc KmKba7toju3B9meguNqigbjeucPNHh52CDV24oXVio/Okvd+ZKC2Nzw/e4saAr6m JIYxJMOMkUX9Yb18r+mQqiiSiMt0XKNNNyFeW2gW4c0c4OqLsZ80a2uasum2jh/B gJdA9TxGYc8HNW5X7aO1PKOOzCGPGptgWf9UT7JBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9hhbPthUk9+VMt5STnlmVt9po1QwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JmMjdmZGI3LTg0YmYtNDBkMi05MDZhLTdiNGMxZmY0MDViMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75AAwDQYJKoZIhvcNAQELBQADggEBAJrECsT78swwuqw1mW3JsmLw PVeOe4nBeIK/sVXFtB3I52vwIi1RPwQMGnoMYOKeyaudm/H2hiIHuq35Tf1fHoTL N4+xgUslx0kY3tZdHifgBVEOBqwRpVLoB2ssx2Fd/Yvpv3fHkx0ESthjxlvJ9sCS 6ZUOTFkBSweAkXGo74xdnXKv2ZhKj4hdoTCfkDRMALfOLxFDWiF0kc77cUFgIHTH jLeI2qAR5ZCL9H2NddwQWoYGcXZOHLJmyNjQXNmhOyOPmahp4gOFubOE6K3rK1vi T4wddErooOeriBmWhrH3i5Baj21Qm7NKXruLxCNjVXaRxhAZENQYsomDg/m2QnI= -----END CERTIFICATE-----Generated at Sat Dec 20 11:30:06 2025 by rpki-client