This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a425bb-39fe-49d4-86c1-2d84726e43c8.roa File: 78a425bb-39fe-49d4-86c1-2d84726e43c8.roa (raw, json) Hash identifier: LQi/eZU7DbqW4cGcMeH9nxoiGdT37/SUUvIjFzkLuZU= Subject key identifier: B7:7B:7B:FB:77:1C:50:3E:68:F1:36:6B:4F:4D:33:04:8C:A3:F5:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49C5E52AD6835095D198D6987CD82650A86D1CA4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a425bb-39fe-49d4-86c1-2d84726e43c8.roa Signing time: Sun 07 Dec 2025 02:00:46 +0000 ROA not before: Sun 07 Dec 2025 02:00:46 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f16::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:c5:e5:2a:d6:83:50:95:d1:98:d6:98:7c:d8:26:50:a8:6d:1c:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 02:00:46 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=74dd347a6dc600dbcd2be5b6a59bd70a791b2b32be3238113edb87f0ff9da424, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d2:cb:59:7c:bc:ca:44:f9:cc:42:9a:8f:78: 0f:61:4e:50:03:40:bd:5c:0e:be:a1:cb:4d:f7:21: c7:54:70:71:f0:fc:c8:db:18:73:19:fc:c3:29:0b: ba:65:d1:fb:6b:29:8b:de:c8:99:9f:0a:90:c9:10: 91:0a:0e:17:cd:ba:0f:be:a1:60:73:98:0d:a2:e2: 18:84:6e:07:06:ec:fe:ba:df:bd:e2:61:11:86:37: 93:f5:87:0f:16:a4:65:0c:70:d0:fd:98:eb:94:17: 7d:5a:22:19:44:95:db:11:49:a7:ff:fb:67:8e:56: 67:02:e5:f4:e5:67:a2:7f:ae:9c:c6:d3:b5:75:88: a2:89:9e:44:ff:4e:e3:63:6e:bc:76:40:01:fc:d3: 8a:a8:cc:a4:d7:6d:41:79:61:dc:c1:75:05:33:fa: 52:83:bf:08:99:ea:b6:33:85:67:2b:e2:33:b1:80: 03:f0:0d:aa:1e:f0:43:83:cb:74:7c:f8:20:81:74: ca:be:00:60:61:0c:c7:fd:88:46:50:75:6e:a4:0d: 30:0f:7f:70:9a:f4:40:06:f7:e1:b8:6e:1c:44:21: 3b:82:fa:ed:47:71:33:75:7b:75:4a:33:e4:01:da: ae:42:d1:52:ed:65:f2:f4:16:ed:ee:36:12:2f:1a: 53:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7B:7B:FB:77:1C:50:3E:68:F1:36:6B:4F:4D:33:04:8C:A3:F5:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a425bb-39fe-49d4-86c1-2d84726e43c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f16::/35 Signature Algorithm: sha256WithRSAEncryption 31:38:38:87:bc:d5:b2:d5:31:09:a0:a3:a1:89:81:4b:3a:bc: 1e:38:58:ea:a0:19:98:14:3a:78:e6:0f:cb:ba:ab:d5:1c:25: 01:b3:17:83:18:6a:1a:4d:08:71:85:eb:03:bd:6c:a2:a4:54: 03:2d:74:e0:7e:d4:65:5d:22:77:f0:b9:1a:bf:99:44:ba:9f: 6e:ff:10:59:90:62:80:0d:23:b3:8e:92:2b:19:c7:d7:7d:d9: d9:2a:7a:1c:64:6c:1a:48:66:4b:d3:d8:d0:28:ba:5b:00:f2: 02:13:ed:f5:86:7b:d4:42:b6:92:f4:c1:6f:f9:a8:f4:7f:bd: 31:a3:31:9f:46:8c:9d:43:2d:ed:b8:89:80:70:71:eb:a4:41: 2a:35:2b:f7:a2:94:4c:75:f8:75:97:05:88:70:48:ff:23:13: f4:55:90:69:5f:95:ca:33:99:5f:fd:cb:f2:c7:4a:e2:cf:fd: 7a:9a:4b:b6:3d:1f:30:bf:d7:0a:74:6c:98:6d:17:0c:80:be: bb:21:b2:c5:e5:58:af:10:31:c6:36:2d:5c:1a:98:18:8d:85: 8b:e5:24:44:15:cd:c5:9a:8c:2f:88:69:49:a5:22:52:a4:32: 04:05:b7:a9:48:97:4f:b0:f3:18:6b:97:1e:7e:1c:8f:dc:dc: 12:de:6c:e0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUScXlKtaDUJXRmNaYfNgmUKhtHKQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDIwMDQ2WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGRkMzQ3YTZkYzYwMGRiY2QyYmU1YjZhNTliZDcwYTc5 MWIyYjMyYmUzMjM4MTEzZWRiODdmMGZmOWRhNDI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR0stZfLzKRPnMQpqPeA9hTlADQL1cDr6hy033IcdUcHHw /MjbGHMZ/MMpC7pl0ftrKYveyJmfCpDJEJEKDhfNug++oWBzmA2i4hiEbgcG7P66 373iYRGGN5P1hw8WpGUMcND9mOuUF31aIhlEldsRSaf/+2eOVmcC5fTlZ6J/rpzG 07V1iKKJnkT/TuNjbrx2QAH804qozKTXbUF5YdzBdQUz+lKDvwiZ6rYzhWcr4jOx gAPwDaoe8EODy3R8+CCBdMq+AGBhDMf9iEZQdW6kDTAPf3Ca9EAG9+G4bhxEITuC +u1HcTN1e3VKM+QB2q5C0VLtZfL0Fu3uNhIvGlOzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUt3t7+3ccUD5o8TZrT00zBIyj9b0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4YTQyNWJiLTM5ZmUtNDlkNC04NmMxLTJkODQ3MjZlNDNjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgUmAB8WADANBgkqhkiG9w0BAQsFAAOCAQEAMTg4h7zVstUxCaCjoYmBSzq8 HjhY6qAZmBQ6eOYPy7qr1RwlAbMXgxhqGk0IcYXrA71soqRUAy104H7UZV0id/C5 Gr+ZRLqfbv8QWZBigA0js46SKxnH133Z2Sp6HGRsGkhmS9PY0Ci6WwDyAhPt9YZ7 1EK2kvTBb/mo9H+9MaMxn0aMnUMt7biJgHBx66RBKjUr96KUTHX4dZcFiHBI/yMT 9FWQaV+VyjOZX/3L8sdK4s/9eppLtj0fML/XCnRsmG0XDIC+uyGyxeVYrxAxxjYt XBqYGI2Fi+UkRBXNxZqML4hpSaUiUqQyBAW3qUiXT7DzGGuXHn4cj9zcEt5s4A== -----END CERTIFICATE-----Generated at Fri Jan 2 12:48:45 2026 by rpki-client