This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b39f42e-3903-4926-ae1f-f90681592c51.roa File: 3b39f42e-3903-4926-ae1f-f90681592c51.roa (raw, json) Hash identifier: OiQ5aytOiocaNV/pXzWnlYILPbk1u2vypQP29mVFL+g= Subject key identifier: DE:8E:41:96:61:CB:96:A0:02:25:D8:39:41:54:6F:F9:0C:24:FF:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E0C1DFD6D7CA381174D756E2C1F41C8F96507DE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b39f42e-3903-4926-ae1f-f90681592c51.roa Signing time: Sun 07 Dec 2025 02:30:12 +0000 ROA not before: Sun 07 Dec 2025 02:30:12 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:7440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0c:1d:fd:6d:7c:a3:81:17:4d:75:6e:2c:1f:41:c8:f9:65:07:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 02:30:12 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=23cbcd521678816c878b3367c9b4e40578963ff2dcd5c242040230e32ed015c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:04:ae:49:10:af:e0:c2:9d:a3:90:33:d6:95: 2b:a4:67:1d:5e:e5:fb:8f:4a:a2:3d:30:4e:1b:6a: 9e:ea:21:9b:b3:56:20:33:15:c0:62:1d:2d:fd:0f: 4f:e3:6f:90:ea:08:8b:76:15:61:5e:c5:9b:13:90: 79:d7:df:3c:10:58:53:51:c1:b4:36:d9:be:8a:bc: 68:4a:92:2f:28:aa:c0:b0:26:68:17:dc:9f:a0:a3: b4:04:3a:26:48:4f:05:ed:36:d1:8f:44:01:aa:40: 0d:3f:b6:8c:f2:1c:47:1c:bd:76:15:59:67:50:fb: 1c:15:de:91:d4:cd:e0:6b:57:50:c7:49:72:90:64: 09:9b:c1:b1:b4:7b:cc:96:30:84:d5:03:d4:06:37: 33:e3:99:f1:c6:71:51:04:d1:64:11:24:16:aa:4c: de:7c:93:f7:82:22:d8:b7:a9:6b:f1:4c:9c:28:46: 00:26:61:63:85:a1:4e:7d:f6:88:f8:d0:2d:11:62: 3b:f0:76:51:de:36:17:47:0e:b4:d1:c1:44:fb:94: cf:44:5a:9b:29:b3:f0:73:47:5c:40:c3:37:ce:a8: d5:64:a5:c4:11:14:05:6b:fc:78:88:40:ff:4e:f8: 5a:3c:4f:c1:2b:1e:83:61:1b:d9:e1:13:68:9a:18: a6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:8E:41:96:61:CB:96:A0:02:25:D8:39:41:54:6F:F9:0C:24:FF:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b39f42e-3903-4926-ae1f-f90681592c51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:7440::/48 Signature Algorithm: sha256WithRSAEncryption c3:e1:d4:6c:d9:bb:f0:29:db:56:18:5a:de:8f:5d:1d:3f:06: 18:59:b2:30:77:71:fb:8a:d8:c7:39:0e:c5:09:4b:f9:2b:ef: 0e:c8:56:b1:f0:a8:15:1d:4f:9c:04:74:a9:af:e6:38:bf:24: 77:9e:ed:6c:75:30:a4:40:5d:de:da:d6:60:c3:af:0f:8c:44: ba:b9:5b:84:61:ee:89:f6:0a:f6:73:8b:6c:89:19:57:fd:b7: 4f:e6:b5:5b:c9:86:53:77:65:c5:c0:91:39:ca:c4:72:ce:38: a3:6e:9f:2f:7b:54:52:af:21:d4:3b:52:fa:48:5c:56:eb:8f: 2d:11:77:1e:a6:35:0f:ba:c5:cf:df:a7:20:0d:51:8a:51:b8: d5:3b:a6:1f:df:9e:19:52:77:58:92:a2:8f:2e:16:2b:53:5e: e4:d7:04:38:73:fc:e1:6f:e6:f4:f2:82:78:81:05:a4:65:4e: 62:97:6d:80:aa:b4:58:4d:fe:63:cd:09:a0:8e:34:71:88:c9: bf:4a:41:5e:89:50:e7:cf:7a:67:18:cb:0c:72:56:4b:ee:94: 54:b7:7d:47:5a:58:d5:d0:62:f0:23:15:53:74:26:30:99:fc: 2a:6b:de:79:39:0c:c4:80:bc:3d:3a:0a:d4:d4:cb:79:dc:8b: fd:be:36:69 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPgwd/W18o4EXTXVuLB9ByPllB94wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDIzMDEyWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2NiY2Q1MjE2Nzg4MTZjODc4YjMzNjdjOWI0ZTQwNTc4 OTYzZmYyZGNkNWMyNDIwNDAyMzBlMzJlZDAxNWM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIBK5JEK/gwp2jkDPWlSukZx1e5fuPSqI9ME4bap7qIZuz ViAzFcBiHS39D0/jb5DqCIt2FWFexZsTkHnX3zwQWFNRwbQ22b6KvGhKki8oqsCw JmgX3J+go7QEOiZITwXtNtGPRAGqQA0/tozyHEccvXYVWWdQ+xwV3pHUzeBrV1DH SXKQZAmbwbG0e8yWMITVA9QGNzPjmfHGcVEE0WQRJBaqTN58k/eCIti3qWvxTJwo RgAmYWOFoU599oj40C0RYjvwdlHeNhdHDrTRwUT7lM9EWpsps/BzR1xAwzfOqNVk pcQRFAVr/HiIQP9O+Fo8T8ErHoNhG9nhE2iaGKYxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3o5BlmHLlqACJdg5QVRv+Qwk/yYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiMzlmNDJlLTM5MDMtNDkyNi1hZTFmLWY5MDY4MTU5MmM1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hdEAwDQYJKoZIhvcNAQELBQADggEBAMPh1GzZu/Ap21YYWt6PXR0/ BhhZsjB3cfuK2Mc5DsUJS/kr7w7IVrHwqBUdT5wEdKmv5ji/JHee7Wx1MKRAXd7a 1mDDrw+MRLq5W4Rh7on2CvZzi2yJGVf9t0/mtVvJhlN3ZcXAkTnKxHLOOKNuny97 VFKvIdQ7UvpIXFbrjy0Rdx6mNQ+6xc/fpyANUYpRuNU7ph/fnhlSd1iSoo8uFitT XuTXBDhz/OFv5vTygniBBaRlTmKXbYCqtFhN/mPNCaCONHGIyb9KQV6JUOfPemcY ywxyVkvulFS3fUdaWNXQYvAjFVN0JjCZ/Cpr3nk5DMSAvD06CtTUy3nci/2+Nmk= -----END CERTIFICATE-----Generated at Fri Jan 2 11:19:27 2026 by rpki-client