This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa File: c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa (raw, json) Hash identifier: G2ZPCbMX5+INtb2C6z/9KhNOtWfaF/lITcgbn0QP8ps= Subject key identifier: CF:DE:51:37:34:DA:6E:AA:0A:80:D9:1E:E7:AE:5D:18:4C:E9:4A:D8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2B2A22513A4BF4843F51E06FE0136C02681EAAA7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa Signing time: Wed 10 Dec 2025 05:00:11 +0000 ROA not before: Wed 10 Dec 2025 05:00:11 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:300::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:2a:22:51:3a:4b:f4:84:3f:51:e0:6f:e0:13:6c:02:68:1e:aa:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:00:11 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=02900d6cf15a5fc0f3b6896c650e83d64ebf21dec0e2677480e792867b0b1dd8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:db:4a:11:fc:68:0d:72:c5:f6:b0:5f:5a:e8: 88:0c:bd:e3:c4:ed:14:d7:a3:18:78:6c:1f:c5:54: 02:38:9f:b2:86:c9:04:33:fb:1c:37:d3:96:ec:f0: 1d:67:52:f0:6c:be:89:6c:52:83:79:a5:60:d2:01: 34:16:16:03:0a:20:07:70:96:6d:b4:54:c3:18:5a: 80:fa:d8:4d:dc:7c:b4:93:d4:61:cd:f5:87:64:d8: 19:21:a1:49:46:93:b2:22:de:8a:b7:47:af:0f:01: 60:20:e1:1f:97:3c:2b:2a:61:65:61:e2:43:2d:cc: 53:4a:e6:81:a8:38:24:03:3c:65:da:49:b5:80:46: 48:14:f6:c4:48:ba:8b:04:4a:35:ea:13:3e:e0:7f: eb:3e:ff:01:51:84:68:67:93:ca:b6:89:e0:17:6e: e8:0c:a5:bc:cf:33:48:12:9b:61:40:59:82:c7:ae: b2:32:3a:05:58:71:c8:b3:09:92:30:23:a4:1b:43: 87:e7:fb:bc:f4:19:bc:20:74:92:00:c6:8a:b1:57: b2:82:77:00:f1:8b:9e:52:6f:82:a8:40:12:1c:30: 17:74:0d:c2:9b:e0:fa:21:d4:97:23:0c:75:4d:5d: e4:17:c5:04:a3:28:26:34:5c:70:02:e6:51:43:f4: 1e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:DE:51:37:34:DA:6E:AA:0A:80:D9:1E:E7:AE:5D:18:4C:E9:4A:D8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:300::/44 Signature Algorithm: sha256WithRSAEncryption 56:41:cf:f1:f4:84:bb:81:69:78:68:a7:b0:ee:3d:12:2d:74: 59:de:e1:a0:a5:db:7b:0d:b4:6f:2e:c6:86:6f:4c:f0:7a:39: 04:88:6e:81:2c:4c:22:8a:de:aa:c4:62:6e:8b:53:ee:28:e9: 76:fc:ba:ac:4f:29:93:c0:c7:6b:3f:5b:c6:c4:3b:ee:7d:1a: b0:83:63:74:f8:5e:bf:dd:f4:2f:a3:e3:6f:4f:d4:c3:23:fd: 4c:60:ff:f6:dc:72:77:d3:e1:8f:d1:c8:fd:ae:d9:bf:45:58: 1d:8b:e6:d3:d3:e7:41:2c:75:a9:bd:38:95:78:64:45:4e:01: 06:83:e8:52:20:f1:60:40:ce:b8:9c:d4:3c:91:09:34:97:00: 81:73:81:63:44:e9:eb:19:a4:c8:df:5c:93:d2:5e:23:f1:ce: 68:f4:98:6b:7d:64:a2:f3:d1:77:46:40:b6:58:53:f4:50:73: 52:ab:de:c9:51:26:c1:ab:d9:91:0f:4b:39:75:ff:ce:ca:99: c7:4e:2c:84:f7:c0:90:c4:b0:51:c4:35:ec:4f:0a:25:88:05: ca:2d:a3:6e:6a:91:9e:c4:d4:29:b6:77:3b:6d:56:3c:c0:37: fd:7c:de:62:43:e0:02:da:90:8c:e2:72:3c:c5:76:96:ac:7c: ac:51:ce:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKyoiUTpL9IQ/UeBv4BNsAmgeqqcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUwMDExWhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjkwMGQ2Y2YxNWE1ZmMwZjNiNjg5NmM2NTBlODNkNjRl YmYyMWRlYzBlMjY3NzQ4MGU3OTI4NjdiMGIxZGQ4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR20oR/GgNcsX2sF9a6IgMvePE7RTXoxh4bB/FVAI4n7KG yQQz+xw305bs8B1nUvBsvolsUoN5pWDSATQWFgMKIAdwlm20VMMYWoD62E3cfLST 1GHN9Ydk2BkhoUlGk7Ii3oq3R68PAWAg4R+XPCsqYWVh4kMtzFNK5oGoOCQDPGXa SbWARkgU9sRIuosESjXqEz7gf+s+/wFRhGhnk8q2ieAXbugMpbzPM0gSm2FAWYLH rrIyOgVYccizCZIwI6QbQ4fn+7z0GbwgdJIAxoqxV7KCdwDxi55Sb4KoQBIcMBd0 DcKb4Poh1JcjDHVNXeQXxQSjKCY0XHAC5lFD9B5ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUz95RNzTabqoKgNke565dGEzpStgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5YTdiZDIwLTQ4YmQtNGYwYS05MzdlLTJjY2M3MzAwOGY3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAwAwDQYJKoZIhvcNAQELBQADggEBAFZBz/H0hLuBaXhop7DuPRIt dFne4aCl23sNtG8uxoZvTPB6OQSIboEsTCKK3qrEYm6LU+4o6Xb8uqxPKZPAx2s/ W8bEO+59GrCDY3T4Xr/d9C+j429P1MMj/Uxg//bccnfT4Y/RyP2u2b9FWB2L5tPT 50Esdam9OJV4ZEVOAQaD6FIg8WBAzric1DyRCTSXAIFzgWNE6esZpMjfXJPSXiPx zmj0mGt9ZKLz0XdGQLZYU/RQc1Kr3slRJsGr2ZEPSzl1/87KmcdOLIT3wJDEsFHE NexPCiWIBcoto25qkZ7E1Cm2dzttVjzAN/183mJD4ALakIzicjzFdpasfKxRzuA= -----END CERTIFICATE-----Generated at Sun Dec 21 01:23:16 2025 by rpki-client