This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a67dba-13fc-4b07-9d44-def1dd6a809e.roa File: b9a67dba-13fc-4b07-9d44-def1dd6a809e.roa (raw, json) Hash identifier: ZpO9QEY5GszfWsiKshlWXFjsjenh/qbTty4rNexye/A= Subject key identifier: 85:CA:64:CA:5D:03:16:C2:D6:CE:D8:78:0E:25:77:E8:96:B5:5A:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6327B33ABF8EF1AB146C3D82DA33BA4679E906F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a67dba-13fc-4b07-9d44-def1dd6a809e.roa Signing time: Thu 13 Nov 2025 00:30:13 +0000 ROA not before: Thu 13 Nov 2025 00:30:13 +0000 ROA not after: Thu 18 Dec 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fb8:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 27 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:27:b3:3a:bf:8e:f1:ab:14:6c:3d:82:da:33:ba:46:79:e9:06:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 13 00:30:13 2025 GMT Not After : Dec 18 23:59:59 2025 GMT Subject: serialNumber=60b70d3ee792a68c646a7c92ce5132d222ec325c8f705575b7cba42df3b72c9d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:17:69:fe:10:29:cc:5e:64:d3:ec:5f:55:54: 7a:5f:ad:46:7f:36:81:a7:ad:1b:89:61:78:d6:b0: ca:04:a2:c2:30:4c:cc:77:b7:28:01:71:d0:ae:0b: 57:58:42:9f:70:2b:d6:8d:b5:00:81:e0:81:7d:a7: ba:00:ec:4e:9b:4d:96:e1:d5:80:5a:e1:3e:e6:4c: b2:41:e4:10:99:f3:45:47:e2:75:ab:59:8c:53:84: da:fe:31:45:03:8b:29:9f:11:17:0b:78:cd:39:42: e3:eb:93:38:55:7b:c9:88:7c:5a:1e:9c:01:f5:75: 5d:3e:59:7d:2f:d5:fc:4a:00:48:da:17:97:52:bb: ed:fe:5b:68:78:e7:42:7f:97:b3:89:82:54:92:86: e3:b4:11:19:92:5e:74:01:d4:b0:10:ef:f3:88:28: 51:ef:a1:14:42:a9:9b:32:a9:f3:80:e2:6d:1d:55: 85:d1:a5:26:f6:fa:9a:6a:a3:c4:e5:3e:36:f1:b3: a9:c1:0f:97:e4:03:7c:f7:ff:01:42:e1:e9:68:f2: 20:80:fe:95:af:54:b9:4c:06:e8:ef:58:b3:e9:f9: 93:33:01:98:9f:07:59:c3:9b:fb:ab:d0:74:70:ae: 5c:92:45:f0:95:3a:d4:af:17:95:41:23:a5:c7:70: 53:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:CA:64:CA:5D:03:16:C2:D6:CE:D8:78:0E:25:77:E8:96:B5:5A:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a67dba-13fc-4b07-9d44-def1dd6a809e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:2000::/40 Signature Algorithm: sha256WithRSAEncryption d5:3e:09:97:7f:c4:75:b9:73:b2:25:5a:9b:56:e6:0c:00:0a: d4:90:95:cc:26:1c:54:ca:d4:81:4b:04:c1:78:43:55:e5:76: a7:2b:3d:e5:1c:dd:f8:3b:ca:ac:20:3b:ef:7a:b9:6f:3b:8f: b1:2b:ed:54:ef:9c:94:5c:24:e6:aa:35:40:23:ef:09:85:b2: 6c:8b:ea:17:09:ce:1f:7c:0f:93:42:d9:bc:ea:9c:8c:b3:46: 21:1e:74:0a:86:9a:48:0e:e6:de:c0:a7:7f:02:c9:d5:91:f0: 23:10:38:ae:c6:14:c1:5f:82:7f:65:c1:c7:85:07:aa:b7:d9: 3d:8b:ae:74:36:b7:d2:e4:20:11:dd:4c:01:46:a9:69:19:55: 79:22:fb:27:ef:80:80:f6:1a:e0:5b:08:00:6b:31:64:51:50: c5:d5:4b:b4:3c:56:b9:3d:42:0d:db:22:6b:05:a6:ef:40:e2: 4d:96:6c:8f:c2:1b:aa:e1:12:d1:28:7c:70:25:b8:52:c5:68: ca:c6:a7:49:12:a2:0b:cd:5a:01:3a:e3:fd:4b:1d:c3:9d:dc: f8:f7:8e:0f:02:05:74:2b:5c:5b:55:ba:47:d4:e7:39:41:c6: b1:26:df:3f:d9:96:cd:94:61:57:d0:fc:5e:a9:47:3e:d3:c9: a9:e8:21:bc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYyezOr+O8asUbD2C2jO6RnnpBvYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTEzMDAzMDEzWhcNMjUxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MGI3MGQzZWU3OTJhNjhjNjQ2YTdjOTJjZTUxMzJkMjIy ZWMzMjVjOGY3MDU1NzViN2NiYTQyZGYzYjcyYzlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5F2n+ECnMXmTT7F9VVHpfrUZ/NoGnrRuJYXjWsMoEosIw TMx3tygBcdCuC1dYQp9wK9aNtQCB4IF9p7oA7E6bTZbh1YBa4T7mTLJB5BCZ80VH 4nWrWYxThNr+MUUDiymfERcLeM05QuPrkzhVe8mIfFoenAH1dV0+WX0v1fxKAEja F5dSu+3+W2h450J/l7OJglSShuO0ERmSXnQB1LAQ7/OIKFHvoRRCqZsyqfOA4m0d VYXRpSb2+ppqo8TlPjbxs6nBD5fkA3z3/wFC4elo8iCA/pWvVLlMBujvWLPp+ZMz AZifB1nDm/ur0HRwrlySRfCVOtSvF5VBI6XHcFPTAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUhcpkyl0DFsLWzth4DiV36Ja1WkowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5YTY3ZGJhLTEzZmMtNGIwNy05ZDQ0LWRlZjFkZDZhODA5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+4IDANBgkqhkiG9w0BAQsFAAOCAQEA1T4Jl3/EdblzsiVam1bmDAAK 1JCVzCYcVMrUgUsEwXhDVeV2pys95Rzd+DvKrCA773q5bzuPsSvtVO+clFwk5qo1 QCPvCYWybIvqFwnOH3wPk0LZvOqcjLNGIR50CoaaSA7m3sCnfwLJ1ZHwIxA4rsYU wV+Cf2XBx4UHqrfZPYuudDa30uQgEd1MAUapaRlVeSL7J++AgPYa4FsIAGsxZFFQ xdVLtDxWuT1CDdsiawWm70DiTZZsj8IbquES0Sh8cCW4UsVoysanSRKiC81aATrj /Usdw53c+PeODwIFdCtcW1W6R9TnOUHGsSbfP9mWzZRhV9D8XqlHPtPJqeghvA== -----END CERTIFICATE-----Generated at Tue Nov 25 17:31:49 2025 by rpki-client