This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa File: da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa (raw, json) Hash identifier: tCKtkcKMcL/JrcAPqWCLBEL83dpcSSsSIjJYAiLe4zs= Subject key identifier: D1:21:88:E9:CB:13:53:14:25:E2:BC:6A:F7:42:96:E5:94:C2:4C:7E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 056A93624E45E43C0D434DDD4F9597DA6E51A180 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa Signing time: Wed 10 Dec 2025 05:00:07 +0000 ROA not before: Wed 10 Dec 2025 05:00:07 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:6a:93:62:4e:45:e4:3c:0d:43:4d:dd:4f:95:97:da:6e:51:a1:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:00:07 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=ad641890e755de738da13635b4363e813d6794a6a07dcbb72d9871fa80146cd4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c5:f1:d3:ca:90:7e:a0:26:9f:ce:be:49:5e: 6c:14:71:04:11:b3:36:ab:c5:5e:f1:0d:8e:13:08: 6f:ac:9c:1b:a8:bf:f0:8c:09:4a:c3:e5:83:fa:60: 73:95:27:d1:cd:bf:e6:eb:c3:af:0a:a4:54:33:bd: 9d:e7:90:b1:c5:0a:4e:e7:09:68:96:b6:41:b7:3a: 83:fd:3b:0b:d6:ee:76:79:7e:7f:1f:30:eb:0a:48: 4d:dc:5f:56:04:c4:ff:8e:64:f2:5b:ea:50:51:81: ee:37:43:0e:5d:84:8c:7a:38:f4:39:be:89:7b:d9: cd:62:14:d6:50:1f:90:58:45:f4:09:65:0b:67:ef: de:f5:e7:71:76:8b:fc:37:a8:a2:87:7c:5e:56:11: e0:55:75:29:20:6c:1c:1e:45:8c:c9:3a:ec:36:8e: 38:86:fb:f4:1c:00:74:2a:c3:6e:24:8a:24:9b:a9: c5:ee:17:4a:6a:29:e4:9e:bf:3d:3d:4b:ab:45:ce: 18:a3:2e:7d:b9:a5:54:ca:18:77:5c:01:69:41:27: 4e:c8:96:9c:5c:7d:74:57:59:40:23:63:d7:6f:d0: 4c:b8:cf:69:45:84:f8:b8:5f:79:56:de:41:27:fa: 48:f4:7f:88:84:3d:ad:a5:4d:22:d6:81:f5:63:ca: 04:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:21:88:E9:CB:13:53:14:25:E2:BC:6A:F7:42:96:E5:94:C2:4C:7E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 07:cc:25:ec:b9:23:2c:58:26:f5:8d:4c:36:4e:df:39:8e:b0: 3f:89:e0:8f:f7:28:d9:5c:68:5b:dc:6c:c1:a0:26:f9:f2:6c: b4:95:98:4f:84:e9:df:6a:07:74:a6:fb:44:b2:26:c9:8f:fb: 56:23:ab:b4:da:82:d8:9f:a6:f1:29:8f:30:76:5d:67:0a:e8: c2:06:da:77:06:25:d5:f0:4b:88:be:21:93:79:e9:20:9b:23: 15:7b:96:31:4a:c9:d1:54:4d:fa:ff:3c:30:2f:b4:fe:64:5a: 7c:1d:9e:15:27:1b:24:69:1f:6e:77:76:a4:4a:d2:dd:3e:f7: fc:b8:ac:23:c2:e2:00:56:d3:f5:bc:20:40:39:d6:ad:e9:c9: 43:c5:e5:8c:54:d6:49:09:d6:fc:9c:7f:4c:ec:20:ba:d1:6e: d3:bc:a7:d1:88:0d:60:5a:0c:1e:16:c5:f3:cf:a6:6f:c1:59: ad:de:77:b2:b0:39:b2:10:91:13:1c:1d:9e:8b:89:16:eb:39: 9e:6d:68:49:bd:e5:ca:f5:b5:26:f2:de:ed:07:db:5d:9d:9d: a8:78:0a:36:75:20:2e:d5:3a:7e:3e:c8:a4:6d:d7:03:23:ef: f5:cf:2f:de:f8:9e:a2:81:9b:ba:9d:21:b0:7f:bb:2d:87:24: af:7a:fb:56 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBWqTYk5F5DwNQ03dT5WX2m5RoYAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUwMDA3WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDY0MTg5MGU3NTVkZTczOGRhMTM2MzViNDM2M2U4MTNk Njc5NGE2YTA3ZGNiYjcyZDk4NzFmYTgwMTQ2Y2Q0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3xfHTypB+oCafzr5JXmwUcQQRszarxV7xDY4TCG+snBuo v/CMCUrD5YP6YHOVJ9HNv+brw68KpFQzvZ3nkLHFCk7nCWiWtkG3OoP9OwvW7nZ5 fn8fMOsKSE3cX1YExP+OZPJb6lBRge43Qw5dhIx6OPQ5vol72c1iFNZQH5BYRfQJ ZQtn797153F2i/w3qKKHfF5WEeBVdSkgbBweRYzJOuw2jjiG+/QcAHQqw24kiiSb qcXuF0pqKeSevz09S6tFzhijLn25pVTKGHdcAWlBJ07IlpxcfXRXWUAjY9dv0Ey4 z2lFhPi4X3lW3kEn+kj0f4iEPa2lTSLWgfVjygSZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0SGI6csTUxQl4rxq90KW5ZTCTH4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMGQwZjFmLWY4MmQtNDdiYi05YWM3LWVlMDlhNTFiM2YyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAAfMJey5IyxYJvWNTDZO3zmO sD+J4I/3KNlcaFvcbMGgJvnybLSVmE+E6d9qB3Sm+0SyJsmP+1Yjq7TagtifpvEp jzB2XWcK6MIG2ncGJdXwS4i+IZN56SCbIxV7ljFKydFUTfr/PDAvtP5kWnwdnhUn GyRpH253dqRK0t0+9/y4rCPC4gBW0/W8IEA51q3pyUPF5YxU1kkJ1vycf0zsILrR btO8p9GIDWBaDB4WxfPPpm/BWa3ed7KwObIQkRMcHZ6LiRbrOZ5taEm95cr1tSby 3u0H212dnah4CjZ1IC7VOn4+yKRt1wMj7/XPL974nqKBm7qdIbB/uy2HJK96+1Y= -----END CERTIFICATE-----Generated at Sat Dec 20 11:16:58 2025 by rpki-client