This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f933dc9a-6cb0-4836-9711-454fb0e2e364.roa File: f933dc9a-6cb0-4836-9711-454fb0e2e364.roa (raw, json) Hash identifier: 3Jsmx8IxjoNCDa6MkZQV3wCaD69muIiUauqGRt1y0SA= Subject key identifier: 12:0D:09:B7:93:94:61:87:4A:4E:FF:53:FE:12:54:A7:0F:E8:F4:B9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 79CF3E820CD54121CAE2133D63AE497764CA0BCE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f933dc9a-6cb0-4836-9711-454fb0e2e364.roa Signing time: Thu 11 Dec 2025 00:50:07 +0000 ROA not before: Thu 11 Dec 2025 00:50:07 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f104::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:cf:3e:82:0c:d5:41:21:ca:e2:13:3d:63:ae:49:77:64:ca:0b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 11 00:50:07 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=1a3a9c488eb8f07257c97637af68619d5cebc80026853860739c838f86eec664, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:30:cc:d8:57:a7:26:cd:95:45:9d:21:57:25: a5:c3:02:2e:22:41:05:d3:3d:ff:41:77:11:ae:b3: 36:a7:e1:be:0c:4b:86:b2:4c:f9:5e:fe:45:ef:b8: 3b:38:b5:42:f9:06:fe:c5:6c:f8:d5:d3:11:62:23: 34:0c:4d:0e:32:f5:5f:53:fe:b3:a2:5a:34:23:ab: f7:bd:44:59:3f:7f:8a:7d:bc:c9:28:bc:e9:2b:7e: e3:95:fd:e4:ae:c0:3d:d3:65:65:e8:66:54:55:3b: f9:6a:b5:92:f0:08:41:46:10:f4:b6:1e:e5:80:5c: 2c:68:85:2e:31:df:62:df:27:5c:33:29:7e:dd:6c: 44:17:35:bb:7a:a6:58:83:e7:5f:54:ea:df:e3:19: 1c:5a:3f:ca:df:eb:2a:2a:d0:9c:55:46:df:88:89: 14:c0:72:9a:c5:85:9a:3e:0d:4e:ad:53:0d:a5:2e: 26:cc:4c:31:3b:da:05:f8:b7:94:d9:db:33:52:d2: 9a:c0:b2:ab:c6:2b:20:c2:fc:5b:d5:ba:d7:eb:75: 95:8d:0a:2a:76:d4:f2:fd:a1:70:ff:bb:21:76:26: 0e:d6:29:c8:64:a6:93:0a:58:9b:9b:24:4e:ba:6d: c8:cb:b6:b1:83:a1:8e:93:93:22:5e:df:75:30:fd: a4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:0D:09:B7:93:94:61:87:4A:4E:FF:53:FE:12:54:A7:0F:E8:F4:B9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f933dc9a-6cb0-4836-9711-454fb0e2e364.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f104::/48 Signature Algorithm: sha256WithRSAEncryption 62:0a:bf:4a:ce:b5:dd:aa:91:ad:1c:96:09:ca:60:e2:6f:f9: 6b:e3:c5:57:7a:14:3d:e5:db:b1:81:37:a5:aa:38:b8:73:05: 40:25:d8:17:9e:80:cf:9f:34:c5:35:e4:fa:42:be:d7:fd:97: c4:6f:e4:52:2d:5c:9a:0b:c9:33:ff:d0:65:3a:34:4f:a6:8a: e1:6f:10:60:96:6b:f6:57:2c:b6:cc:12:d9:9e:9f:d3:6f:19: db:2b:ad:94:55:7b:99:bc:e6:a4:1a:2a:c1:40:70:38:da:18: 42:f2:7c:e6:27:10:e4:c4:e0:2e:0c:b4:f4:32:6a:a5:c2:e7: 5f:0b:17:41:bb:0d:ad:47:ed:ce:2f:84:20:6b:64:c0:23:ef: 24:31:1c:be:2d:1e:86:94:b4:32:8b:3b:41:ad:b9:a3:e7:66: ae:90:5c:17:fb:ef:47:4e:2d:c9:31:20:22:e8:2f:45:b4:c7: 32:44:df:c2:42:9b:25:e7:f1:08:3e:20:6f:e2:1a:92:f8:45: a9:6e:f4:64:03:92:4b:48:d8:9c:b6:c2:f9:48:06:f8:27:43: 55:a4:f8:05:22:3b:f8:c5:09:d4:27:0b:3c:f2:7a:00:d4:91: 3f:9b:d2:8e:4d:c9:46:61:55:37:ab:17:01:03:b8:bc:15:72: 82:96:f4:24 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUec8+ggzVQSHK4hM9Y65Jd2TKC84wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjExMDA1MDA3WhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTNhOWM0ODhlYjhmMDcyNTdjOTc2MzdhZjY4NjE5ZDVj ZWJjODAwMjY4NTM4NjA3MzljODM4Zjg2ZWVjNjY0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1MMzYV6cmzZVFnSFXJaXDAi4iQQXTPf9BdxGuszan4b4M S4ayTPle/kXvuDs4tUL5Bv7FbPjV0xFiIzQMTQ4y9V9T/rOiWjQjq/e9RFk/f4p9 vMkovOkrfuOV/eSuwD3TZWXoZlRVO/lqtZLwCEFGEPS2HuWAXCxohS4x32LfJ1wz KX7dbEQXNbt6pliD519U6t/jGRxaP8rf6yoq0JxVRt+IiRTAcprFhZo+DU6tUw2l LibMTDE72gX4t5TZ2zNS0prAsqvGKyDC/FvVutfrdZWNCip21PL9oXD/uyF2Jg7W KchkppMKWJubJE66bcjLtrGDoY6TkyJe33Uw/aSzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEg0Jt5OUYYdKTv9T/hJUpw/o9LkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y5MzNkYzlhLTZjYjAtNDgzNi05NzExLTQ1NGZiMGUyZTM2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QQwDQYJKoZIhvcNAQELBQADggEBAGIKv0rOtd2qka0clgnKYOJv +WvjxVd6FD3l27GBN6WqOLhzBUAl2BeegM+fNMU15PpCvtf9l8Rv5FItXJoLyTP/ 0GU6NE+miuFvEGCWa/ZXLLbMEtmen9NvGdsrrZRVe5m85qQaKsFAcDjaGELyfOYn EOTE4C4MtPQyaqXC518LF0G7Da1H7c4vhCBrZMAj7yQxHL4tHoaUtDKLO0GtuaPn Zq6QXBf770dOLckxICLoL0W0xzJE38JCmyXn8Qg+IG/iGpL4Ralu9GQDkktI2Jy2 wvlIBvgnQ1Wk+AUiO/jFCdQnCzzyegDUkT+b0o5NyUZhVTerFwEDuLwVcoKW9CQ= -----END CERTIFICATE-----Generated at Sat Dec 20 19:04:44 2025 by rpki-client