This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa File: c8a22460-1c12-4314-8b13-6a586edac27c.roa (raw, json) Hash identifier: j8f475rsERWmlrhV/bwDNPJu4POV9go2vwOKwFctCag= Subject key identifier: 6B:1A:A7:73:1F:D0:C9:59:89:FD:C2:97:2E:F6:6A:7C:23:79:12:5C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 362897C589317AEAF14CA350A33C3D9603349AEA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa Signing time: Wed 10 Dec 2025 04:50:09 +0000 ROA not before: Wed 10 Dec 2025 04:50:09 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:28:97:c5:89:31:7a:ea:f1:4c:a3:50:a3:3c:3d:96:03:34:9a:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 04:50:09 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=d09d0c73ef8113f4cb1876d711c3c1e4df9bf4fb8a9d6cb0fe34deeaf44cdf0a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2f:fa:16:26:64:84:b1:b7:10:74:9d:aa:53: a2:20:76:f9:50:03:11:20:87:c1:55:44:bc:8e:92: 7d:83:33:df:dc:68:a2:6b:b3:87:d8:9f:c7:20:3b: bf:9e:3c:86:e0:7a:4c:d6:43:86:c7:d5:85:db:d4: 0a:89:3c:e6:2e:e5:97:2d:ff:4e:be:e7:ec:57:95: 11:99:11:cc:ad:f9:01:c5:a1:81:9f:36:29:34:12: 8b:7a:6e:6f:ad:a7:bc:f2:0c:98:89:b3:97:a9:dc: 59:35:05:91:8e:8c:9e:09:e9:4e:7a:d8:8b:04:43: 8c:e4:97:e6:f5:81:97:3f:91:c8:6b:9b:93:c2:0f: 47:44:d3:ab:bc:05:55:90:8c:44:86:19:ca:04:20: 78:a8:19:28:8e:f5:ea:d9:5b:8a:a9:bc:b0:6f:9e: 86:ca:4a:11:16:33:08:85:04:8a:94:b1:06:da:76: ac:cb:61:59:9f:53:f1:41:02:96:c4:80:48:c5:74: f0:b7:dd:51:54:e6:64:d5:15:59:38:92:ab:72:1b: 43:0c:cd:3f:ea:d8:4a:28:8e:1e:b3:82:35:b9:00: 93:12:2e:3a:2d:85:a4:0c:89:05:5f:ea:6a:d5:50: 1c:9b:20:2e:f3:82:42:5a:30:cf:97:b7:95:f8:78: da:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:1A:A7:73:1F:D0:C9:59:89:FD:C2:97:2E:F6:6A:7C:23:79:12:5C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 83:c5:7e:05:d4:65:fc:fc:d1:1e:f5:00:b6:b7:be:52:d9:44: 95:55:e4:a9:0f:b5:5d:50:e2:eb:d7:46:3b:ed:f1:fb:27:03: d7:ee:07:c5:25:19:a5:de:74:8c:65:2c:6a:38:28:b0:47:70: ec:1d:cd:5f:b2:62:94:5d:e6:b0:f7:81:be:ad:80:10:66:6d: 64:6a:fa:f2:6c:ea:da:07:81:ed:86:47:49:d4:61:7c:f2:5d: a6:14:7d:7e:b4:fe:7c:1c:68:f6:04:33:0f:78:a2:91:6b:28: 82:0d:c0:92:b6:4a:d2:c3:35:64:78:c7:e6:ca:f3:3d:69:86: b3:6f:26:00:3b:04:e5:4b:e4:70:98:ed:4f:4d:0e:50:2e:85: 8e:86:a4:b4:b1:75:9f:6d:fe:1e:4a:c7:70:9f:6f:7c:53:b7: 34:7f:ac:17:b6:1d:be:49:8c:4c:0a:07:32:ad:cc:83:d6:c0: 4d:b0:ca:ac:60:05:a4:5e:89:1a:f7:6d:f2:f1:a9:0f:ff:66: 93:dc:03:84:9a:e2:aa:06:7e:b2:4b:66:e1:7c:cb:a2:24:a4: 16:58:6f:b6:1b:80:62:d5:ac:74:09:dc:9c:f6:b0:4c:e4:4a: c8:1e:33:0d:ac:66:e7:b1:e4:af:3f:25:44:45:1b:59:e2:8b: b8:44:cb:9c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNiiXxYkxeurxTKNQozw9lgM0muowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDQ1MDA5WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDlkMGM3M2VmODExM2Y0Y2IxODc2ZDcxMWMzYzFlNGRm OWJmNGZiOGE5ZDZjYjBmZTM0ZGVlYWY0NGNkZjBhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcL/oWJmSEsbcQdJ2qU6IgdvlQAxEgh8FVRLyOkn2DM9/c aKJrs4fYn8cgO7+ePIbgekzWQ4bH1YXb1AqJPOYu5Zct/06+5+xXlRGZEcyt+QHF oYGfNik0Eot6bm+tp7zyDJiJs5ep3Fk1BZGOjJ4J6U562IsEQ4zkl+b1gZc/kchr m5PCD0dE06u8BVWQjESGGcoEIHioGSiO9erZW4qpvLBvnobKShEWMwiFBIqUsQba dqzLYVmfU/FBApbEgEjFdPC33VFU5mTVFVk4kqtyG0MMzT/q2Eoojh6zgjW5AJMS LjothaQMiQVf6mrVUBybIC7zgkJaMM+Xt5X4eNoZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUaxqncx/QyVmJ/cKXLvZqfCN5ElwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M4YTIyNDYwLTFjMTItNDMxNC04YjEzLTZhNTg2ZWRhYzI3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77DANBgkqhkiG9w0BAQsFAAOCAQEAg8V+BdRl/PzRHvUAtre+UtlE lVXkqQ+1XVDi69dGO+3x+ycD1+4HxSUZpd50jGUsajgosEdw7B3NX7JilF3msPeB vq2AEGZtZGr68mzq2geB7YZHSdRhfPJdphR9frT+fBxo9gQzD3iikWsogg3AkrZK 0sM1ZHjH5srzPWmGs28mADsE5UvkcJjtT00OUC6FjoaktLF1n23+HkrHcJ9vfFO3 NH+sF7YdvkmMTAoHMq3Mg9bATbDKrGAFpF6JGvdt8vGpD/9mk9wDhJriqgZ+sktm 4XzLoiSkFlhvthuAYtWsdAncnPawTORKyB4zDaxm57Hkrz8lREUbWeKLuETLnA== -----END CERTIFICATE-----Generated at Sat Dec 20 17:03:23 2025 by rpki-client