This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a13bd1b-83be-4772-b2ef-75052230daca.roa File: 8a13bd1b-83be-4772-b2ef-75052230daca.roa (raw, json) Hash identifier: RGX5JtEppNU7Q3eJJo3/MRJqG51nopgOY4Prsh74mS0= Subject key identifier: 83:92:CA:4B:DE:E5:D5:57:EE:0C:30:0A:34:12:C9:BE:14:61:75:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32A0E7767AFB1D8D05CC5E8C102B8097CD0D2DC7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a13bd1b-83be-4772-b2ef-75052230daca.roa Signing time: Sun 07 Dec 2025 01:50:12 +0000 ROA not before: Sun 07 Dec 2025 01:50:12 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f1c:c000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 Jan 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:a0:e7:76:7a:fb:1d:8d:05:cc:5e:8c:10:2b:80:97:cd:0d:2d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 01:50:12 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=cea380a49d804cd0a6a2015d012bbb833c7973c84a7d5a11371cd8b5a01d110c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:be:8b:9a:c8:09:85:f5:9a:48:49:6c:73:d6: e3:c2:69:12:87:85:38:ab:bc:bf:a8:40:2d:61:93: 0d:1c:71:3c:51:3d:4d:35:5d:9a:e3:7e:89:f5:79: 4c:b8:4e:40:a5:bf:1c:f3:b9:54:91:f7:fd:8c:b6: 4b:c6:b7:52:cf:61:ca:e0:8d:0c:88:1b:30:79:84: fe:7d:d4:c5:a7:79:a9:91:01:b6:bd:9c:ba:83:42: d6:58:68:1b:cc:7f:44:4b:71:e9:c0:1a:74:bb:fc: 37:e0:01:5f:93:9d:73:ed:34:fe:be:96:33:3c:f3: 64:55:8f:b6:a7:63:d5:30:a1:8b:42:54:f6:b5:54: f0:c6:f9:ff:1b:5f:e2:95:06:60:03:98:27:59:a3: f4:81:40:63:da:6a:e2:f2:27:e4:77:ce:2b:7c:57: d1:36:c4:17:74:cc:c2:db:3d:97:ef:ed:2f:96:e8: f0:fe:d4:58:c4:49:d1:ac:94:a5:f7:52:fe:7f:7e: 9d:60:70:cd:48:24:91:29:5a:f9:b0:da:50:28:e6: ed:0c:f2:7b:67:02:e6:4c:81:9c:cd:f0:a9:fe:6e: 54:31:07:74:1f:23:d2:44:78:ac:da:86:99:97:da: a5:3a:37:18:eb:a8:e9:c0:f8:05:75:7a:52:3f:de: 26:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:92:CA:4B:DE:E5:D5:57:EE:0C:30:0A:34:12:C9:BE:14:61:75:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a13bd1b-83be-4772-b2ef-75052230daca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1c:c000::/37 Signature Algorithm: sha256WithRSAEncryption ab:c8:73:cd:07:59:46:ae:4e:3b:68:e2:33:40:57:b4:7c:3a: 02:53:a4:02:55:6b:0c:0a:3a:be:78:7a:01:da:ac:21:49:a3: e7:6b:5d:91:a9:f4:db:3f:96:49:81:1f:4c:53:2e:75:67:9e: d5:4e:06:6e:90:ee:ae:2e:2e:d0:be:7d:9d:91:a0:a5:59:e0: 6b:46:c0:dd:9a:1b:da:e6:6d:5c:64:74:ca:64:93:cd:70:1f: fa:39:af:e8:d5:4e:54:b7:77:9b:62:e9:9d:df:88:f4:8c:37: 4a:ff:55:b6:fe:6c:dd:65:aa:d8:8d:b6:a0:91:e5:62:7f:1c: 18:c1:c9:5c:a1:94:a3:ce:45:f7:d0:45:ef:ce:7a:47:3d:6c: ae:cd:bc:4c:ba:f5:6d:ae:19:b9:41:1f:90:de:7d:8d:33:15: 29:f7:5a:6e:c1:77:5c:70:38:22:f4:77:40:46:0e:92:a3:5c: 1d:b7:00:8c:9a:65:fe:88:f8:f1:cb:ff:ec:c8:6a:d8:75:b1: b9:8f:e9:40:62:51:de:ad:22:15:a6:c0:10:8c:36:f9:dc:8d: ff:18:cc:b2:ac:0c:1f:b7:93:50:67:05:5a:fa:76:32:f6:ef: a0:fe:38:b4:ef:7a:15:04:7a:33:23:0e:ef:7f:bb:75:26:4a: 45:c8:e1:65 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMqDndnr7HY0FzF6MECuAl80NLccwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDE1MDEyWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWEzODBhNDlkODA0Y2QwYTZhMjAxNWQwMTJiYmI4MzNj Nzk3M2M4NGE3ZDVhMTEzNzFjZDhiNWEwMWQxMTBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClvouayAmF9ZpISWxz1uPCaRKHhTirvL+oQC1hkw0ccTxR PU01XZrjfon1eUy4TkClvxzzuVSR9/2MtkvGt1LPYcrgjQyIGzB5hP591MWneamR Aba9nLqDQtZYaBvMf0RLcenAGnS7/DfgAV+TnXPtNP6+ljM882RVj7anY9UwoYtC VPa1VPDG+f8bX+KVBmADmCdZo/SBQGPaauLyJ+R3zit8V9E2xBd0zMLbPZfv7S+W 6PD+1FjESdGslKX3Uv5/fp1gcM1IJJEpWvmw2lAo5u0M8ntnAuZMgZzN8Kn+blQx B3QfI9JEeKzahpmX2qU6NxjrqOnA+AV1elI/3iYPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUg5LKS97l1VfuDDAKNBLJvhRhdbAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhMTNiZDFiLTgzYmUtNDc3Mi1iMmVmLTc1MDUyMjMwZGFjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8cwDANBgkqhkiG9w0BAQsFAAOCAQEAq8hzzQdZRq5OO2jiM0BXtHw6 AlOkAlVrDAo6vnh6AdqsIUmj52tdkan02z+WSYEfTFMudWee1U4GbpDuri4u0L59 nZGgpVnga0bA3Zob2uZtXGR0ymSTzXAf+jmv6NVOVLd3m2Lpnd+I9Iw3Sv9Vtv5s 3WWq2I22oJHlYn8cGMHJXKGUo85F99BF7856Rz1srs28TLr1ba4ZuUEfkN59jTMV KfdabsF3XHA4IvR3QEYOkqNcHbcAjJpl/oj48cv/7Mhq2HWxuY/pQGJR3q0iFabA EIw2+dyN/xjMsqwMH7eTUGcFWvp2MvbvoP44tO96FQR6MyMO73+7dSZKRcjhZQ== -----END CERTIFICATE-----Generated at Fri Jan 9 00:56:50 2026 by rpki-client