This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa File: ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa (raw, json) Hash identifier: HwNPlRSMIfVSAfYSmcnYM0YifQRD6Lsjz1v7bYQcAIY= Subject key identifier: 49:54:07:D0:4A:24:A2:E4:8D:FC:B5:2D:E8:60:A0:35:EA:01:1B:3D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4B1FDBFA6692B9D37B6DF074565503C38699669B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa Signing time: Wed 10 Dec 2025 04:50:04 +0000 ROA not before: Wed 10 Dec 2025 04:50:04 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:1f:db:fa:66:92:b9:d3:7b:6d:f0:74:56:55:03:c3:86:99:66:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 04:50:04 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=f2fd3bb7dc8a26b9910a0d51fd45ec5bd96d6d4a68648b06d306b9240ac27cea, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:61:3c:01:a8:89:4a:6b:67:36:05:50:a0:96: e6:16:f3:d5:da:ac:7b:8c:37:75:b4:49:7d:d5:67: 02:1d:b2:38:9a:c4:f5:d7:03:70:06:42:06:c1:dd: f9:d2:7c:66:06:f3:d9:70:e7:ae:83:2c:68:f3:bb: 54:37:f9:ce:f1:62:0c:a1:20:c8:b4:f7:3c:81:1e: d6:d1:7a:2d:58:98:7d:7f:82:e5:bf:77:81:fe:75: 5f:4e:a1:0c:55:10:e3:fb:5d:9b:f5:34:7f:87:7f: 8d:b9:c9:c0:18:1e:9d:e8:50:55:54:08:47:85:07: 90:33:9a:da:12:04:e2:5b:6a:a3:60:e9:5d:ef:45: 4c:1d:fd:0f:c1:59:62:bf:51:dc:65:5d:68:14:68: 4a:2d:2a:58:a6:81:38:70:06:1e:3d:e1:a2:c8:6d: c5:59:ba:b6:1b:8e:9a:6c:6a:a3:6d:e2:73:3c:d6: 31:a6:36:83:d3:e8:70:da:56:f5:e7:07:bb:db:06: bf:de:84:37:ea:9e:f7:0b:dd:4e:2d:49:a0:bd:fe: 9e:5e:66:4f:b9:71:32:8d:57:ca:d1:76:8a:48:55: a7:4e:ea:8e:63:53:8f:bf:7a:44:8a:19:33:84:9a: fd:ac:38:63:e0:e3:d9:c3:be:02:d9:e3:53:69:dd: aa:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:54:07:D0:4A:24:A2:E4:8D:FC:B5:2D:E8:60:A0:35:EA:01:1B:3D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/40 Signature Algorithm: sha256WithRSAEncryption 78:b5:90:a0:fd:88:0f:08:c7:06:ba:f7:85:c2:96:fe:c2:d4: 46:69:c0:1a:4b:71:7e:64:13:6c:cc:af:e8:cd:3e:55:5d:23: 8c:3e:f0:77:e9:e1:d5:48:cb:cd:3a:27:7b:49:35:07:43:8d: 1c:4f:05:0f:5c:dd:18:82:c2:68:a2:72:1a:83:19:ad:18:b3: 99:b9:94:d1:cd:4c:65:0b:9b:e6:b1:81:ff:d8:f5:36:c2:d0: 69:b1:b8:58:b6:3d:ed:fd:63:56:e1:78:f4:ab:29:f7:d9:58: ed:5d:44:56:8f:2e:d7:62:09:00:1d:56:89:cc:b0:ac:f8:fe: bf:00:7d:12:77:57:11:20:b5:9d:b6:1a:e3:5d:10:37:cb:5b: a3:d1:53:4c:b6:81:a9:64:21:c7:3f:58:b8:40:0b:1c:b2:05: 34:46:ba:2c:e2:6b:7e:04:db:3c:e3:fe:24:0f:82:b8:17:8e: 03:42:2b:c1:30:66:e5:31:02:94:cd:a3:8d:70:55:d9:16:2c: ef:3a:02:ed:6c:19:50:c1:36:4b:59:af:0a:ec:2d:96:8d:bf: 44:53:f4:82:6c:43:70:35:63:fa:ee:63:6e:76:ee:77:8c:c9: 3b:01:8f:e8:46:7d:8e:e3:70:e4:d4:d5:0f:bc:16:38:28:a3: 47:c0:fe:16 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSx/b+maSudN7bfB0VlUDw4aZZpswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDQ1MDA0WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmZkM2JiN2RjOGEyNmI5OTEwYTBkNTFmZDQ1ZWM1YmQ5 NmQ2ZDRhNjg2NDhiMDZkMzA2YjkyNDBhYzI3Y2VhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvYTwBqIlKa2c2BVCgluYW89XarHuMN3W0SX3VZwIdsjia xPXXA3AGQgbB3fnSfGYG89lw566DLGjzu1Q3+c7xYgyhIMi09zyBHtbRei1YmH1/ guW/d4H+dV9OoQxVEOP7XZv1NH+Hf425ycAYHp3oUFVUCEeFB5AzmtoSBOJbaqNg 6V3vRUwd/Q/BWWK/UdxlXWgUaEotKlimgThwBh494aLIbcVZurYbjppsaqNt4nM8 1jGmNoPT6HDaVvXnB7vbBr/ehDfqnvcL3U4tSaC9/p5eZk+5cTKNV8rRdopIVadO 6o5jU4+/ekSKGTOEmv2sOGPg49nDvgLZ41Np3aqNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUSVQH0EokouSN/LUt6GCgNeoBGz0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZmZDJjM2UyLTRkODktNDFhMy1iNDUwLWI1M2Y5NWE5ZGNkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74jANBgkqhkiG9w0BAQsFAAOCAQEAeLWQoP2IDwjHBrr3hcKW/sLU RmnAGktxfmQTbMyv6M0+VV0jjD7wd+nh1UjLzTone0k1B0ONHE8FD1zdGILCaKJy GoMZrRizmbmU0c1MZQub5rGB/9j1NsLQabG4WLY97f1jVuF49Ksp99lY7V1EVo8u 12IJAB1WicywrPj+vwB9EndXESC1nbYa410QN8tbo9FTTLaBqWQhxz9YuEALHLIF NEa6LOJrfgTbPOP+JA+CuBeOA0IrwTBm5TEClM2jjXBV2RYs7zoC7WwZUME2S1mv Cuwtlo2/RFP0gmxDcDVj+u5jbnbud4zJOwGP6EZ9juNw5NTVD7wWOCijR8D+Fg== -----END CERTIFICATE-----Generated at Sat Dec 20 16:56:58 2025 by rpki-client