This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa File: c92a8c24-62b8-4009-a51c-8908d7373850.roa (raw, json) Hash identifier: Qp8Uilb7MhgULTqv+UNcyzXXX4M3hEpzMxF9CJqdGe0= Subject key identifier: 23:9E:DF:6A:BF:A7:68:BC:2D:9E:94:8D:FC:84:6B:94:19:60:95:3D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 16238C83D83BCA81462B40C4CD4132683FDEA0AB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa Signing time: Wed 10 Dec 2025 05:10:08 +0000 ROA not before: Wed 10 Dec 2025 05:10:08 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e100::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:23:8c:83:d8:3b:ca:81:46:2b:40:c4:cd:41:32:68:3f:de:a0:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:10:08 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=b187373e2bc597d5ff80373da9c81a1add379daeace3f79d6d5ca353b7fd2ced, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a6:a2:a4:db:d0:56:1e:9f:c9:81:2c:0a:3a: 4b:28:f4:95:7a:6f:0f:1d:b9:9b:e9:da:b2:51:8c: ed:88:c7:21:06:78:69:ba:73:ea:4b:89:1a:0e:f6: 44:51:50:57:a7:09:cd:a4:54:8b:92:47:de:b2:d1: 7c:06:ef:1a:fb:4b:04:f4:fd:48:c4:57:9d:b6:ca: 46:01:6d:c5:55:d6:2f:42:32:98:3a:1f:0a:1a:84: 58:3f:b9:3b:5b:1e:ef:dd:93:71:5b:e6:b8:6d:da: 25:66:e9:45:12:12:63:0c:4a:61:13:10:97:d2:b0: f2:07:f5:4c:92:5d:77:24:32:85:0e:5e:f3:9d:f4: a1:24:c1:81:ca:bd:92:cd:c3:97:e8:07:7a:f3:89: cb:fc:da:21:8c:ff:c3:d7:4b:5c:db:1c:99:b7:23: 40:0d:90:5c:69:3f:b9:dd:c4:91:a6:cc:fe:ee:fe: 87:1d:eb:3b:94:19:4e:3d:1a:d8:43:0e:41:82:a6: cf:dd:88:e3:80:5f:ae:a9:28:06:f6:94:37:57:6a: 14:8f:50:d4:dc:37:3b:1e:03:e9:12:73:83:65:03: a4:b3:24:48:e0:82:28:03:43:51:8b:9f:12:a7:d8: 0b:7d:f3:00:d5:3b:83:41:78:cd:bd:29:50:4b:96: 58:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9E:DF:6A:BF:A7:68:BC:2D:9E:94:8D:FC:84:6B:94:19:60:95:3D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/42 Signature Algorithm: sha256WithRSAEncryption 5f:59:d7:8a:9a:ce:df:97:9b:a2:30:7a:41:4d:09:65:05:c3: f0:0b:be:ed:57:05:5a:28:d8:c0:4f:7c:21:5b:3b:5d:d0:8a: 51:54:f5:55:0d:96:b9:16:fd:70:d2:ee:70:a2:63:dd:96:47: 3f:35:b1:a0:23:01:24:5e:ea:9d:f8:ce:1a:5a:15:70:4b:ce: fb:1a:6f:d1:8d:87:7f:36:d4:d8:08:ae:ba:40:00:e2:d8:13: f6:7b:ae:0a:b1:19:86:0c:ad:2f:c6:38:6c:8f:17:b2:c1:16: 79:4b:72:47:e0:c5:30:b9:5a:c5:49:5a:9c:85:98:e4:24:6e: 49:8d:07:b6:62:a6:07:7f:a4:30:5f:f6:d5:8e:5f:b2:4a:46: 80:e2:31:33:e1:90:2f:87:2c:da:03:d1:f6:4f:44:df:42:10: 29:53:67:1e:f6:f2:19:e8:ba:d2:0f:ed:c8:91:c3:67:11:7a: b0:a1:a8:99:10:3c:a6:bb:a0:ef:93:69:ff:d7:fa:a3:47:89: 92:d6:c6:77:ed:fc:4d:d2:dd:24:8b:b8:42:29:15:ab:a0:78: 79:bc:ba:e1:fd:ab:bd:36:47:09:3b:4c:26:e9:ad:c0:01:dc: 5a:b2:b4:ba:55:d6:b7:96:d9:ad:ad:24:c0:5e:63:0e:52:0e: f9:27:94:81 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFiOMg9g7yoFGK0DEzUEyaD/eoKswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUxMDA4WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTg3MzczZTJiYzU5N2Q1ZmY4MDM3M2RhOWM4MWExYWRk Mzc5ZGFlYWNlM2Y3OWQ2ZDVjYTM1M2I3ZmQyY2VkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnpqKk29BWHp/JgSwKOkso9JV6bw8duZvp2rJRjO2IxyEG eGm6c+pLiRoO9kRRUFenCc2kVIuSR96y0XwG7xr7SwT0/UjEV522ykYBbcVV1i9C Mpg6HwoahFg/uTtbHu/dk3Fb5rht2iVm6UUSEmMMSmETEJfSsPIH9UySXXckMoUO XvOd9KEkwYHKvZLNw5foB3rzicv82iGM/8PXS1zbHJm3I0ANkFxpP7ndxJGmzP7u /ocd6zuUGU49GthDDkGCps/diOOAX66pKAb2lDdXahSPUNTcNzseA+kSc4NlA6Sz JEjggigDQ1GLnxKn2At98wDVO4NBeM29KVBLllg9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUI57far+naLwtnpSN/IRrlBlglT0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MmE4YzI0LTYyYjgtNDAwOS1hNTFjLTg5MDhkNzM3Mzg1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74QAwDQYJKoZIhvcNAQELBQADggEBAF9Z14qazt+Xm6IwekFNCWUF w/ALvu1XBVoo2MBPfCFbO13QilFU9VUNlrkW/XDS7nCiY92WRz81saAjASRe6p34 zhpaFXBLzvsab9GNh3821NgIrrpAAOLYE/Z7rgqxGYYMrS/GOGyPF7LBFnlLckfg xTC5WsVJWpyFmOQkbkmNB7Zipgd/pDBf9tWOX7JKRoDiMTPhkC+HLNoD0fZPRN9C EClTZx728hnoutIP7ciRw2cRerChqJkQPKa7oO+Taf/X+qNHiZLWxnft/E3S3SSL uEIpFaugeHm8uuH9q702Rwk7TCbprcAB3FqytLpV1reW2a2tJMBeYw5SDvknlIE= -----END CERTIFICATE-----Generated at Sun Dec 21 03:04:27 2025 by rpki-client