This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d21d2b11-198a-4187-babe-5e898f2a1576.roa File: d21d2b11-198a-4187-babe-5e898f2a1576.roa (raw, json) Hash identifier: u4HRwxZcJzYAiIPANiieDUG1R2IZerx/xoI7ucrAEvU= Subject key identifier: B6:0F:85:08:12:AB:F6:6E:A9:46:9B:7A:3D:FD:A1:BC:5B:03:24:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BC8899B3B5A054BA86B91520596C8C4E8FEB28D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d21d2b11-198a-4187-babe-5e898f2a1576.roa Signing time: Sat 22 Nov 2025 00:20:09 +0000 ROA not before: Sat 22 Nov 2025 00:20:09 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fa0:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 29 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c8:89:9b:3b:5a:05:4b:a8:6b:91:52:05:96:c8:c4:e8:fe:b2:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:20:09 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=9636077171879b576bc212a7533f0282661ae9780d6abde56a4461fb667d756c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f3:84:f1:da:78:77:a5:3c:96:79:46:7c:f4: 83:fc:54:73:2e:4c:dc:17:03:10:f8:1b:2c:36:f9: 75:fc:ce:92:fe:2d:2a:85:6f:07:9a:2f:0c:f5:aa: b1:54:a8:b7:4c:ef:f8:f9:34:7a:bc:13:60:54:76: ad:03:03:1c:3b:07:f5:6c:1b:9d:c1:fb:89:3b:3c: 5f:3b:60:ea:d8:2a:c9:86:bc:ef:4d:da:c9:bf:dc: 50:0b:b6:e2:31:90:09:b9:1e:0f:98:d0:75:29:7c: 85:2e:4c:13:d9:c4:fb:56:07:87:a2:b3:6c:58:1e: 16:6c:e7:9c:a3:da:99:c0:48:9b:a9:70:a3:c5:21: bf:e7:cf:94:2f:9b:79:58:0c:df:35:5e:c3:16:76: 35:a7:d7:cf:26:5e:ba:c9:0f:0a:93:c5:13:4c:81: 92:3f:78:37:4f:4c:05:81:34:80:d5:3e:f8:ed:97: 3a:c5:c6:84:64:1d:10:6c:66:28:93:8a:42:82:4e: 2b:24:15:08:db:dd:89:d1:96:40:74:68:96:37:0f: 0c:c7:0c:ee:cf:e7:27:0e:db:e4:84:b3:17:7d:9d: 01:5e:d7:42:6b:47:78:cf:0a:0d:1e:02:a0:16:ad: 47:fb:86:16:8d:45:3d:e2:12:8f:e1:87:91:d8:cb: 5e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:0F:85:08:12:AB:F6:6E:A9:46:9B:7A:3D:FD:A1:BC:5B:03:24:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d21d2b11-198a-4187-babe-5e898f2a1576.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:8000::/39 Signature Algorithm: sha256WithRSAEncryption 46:6c:ca:7f:b5:1e:d4:0b:32:12:2c:81:92:a2:78:e3:2a:7d: cc:31:af:6d:9d:20:c4:6e:aa:0d:33:9b:4a:f1:38:86:ae:74: 24:71:7b:e0:e5:4b:64:74:cb:15:f4:16:c8:cc:a6:8d:4a:5b: 83:b7:3e:87:40:d5:6b:28:c5:78:3c:f4:5a:a7:43:79:84:64: d1:f5:96:fc:e1:26:08:1f:27:bd:d1:47:6b:61:59:7d:91:f3: f1:bd:1c:c6:65:f2:d2:67:ea:0f:82:26:da:6d:d2:c0:75:88: fe:d7:e6:c4:fd:01:74:ad:f9:2d:ef:17:42:d0:5e:7c:01:43: 89:85:8f:7e:80:15:aa:1c:8b:bb:8f:6e:ba:b9:64:35:d9:f3: 3c:c1:ea:73:82:bd:69:8e:c0:56:6e:dc:58:1a:c6:ef:2b:81: d3:d9:d5:33:13:92:36:86:5a:bc:16:32:6e:f9:f4:02:f0:ba: e3:c1:76:11:b0:99:04:d2:95:db:67:02:88:88:81:47:73:b8: 2e:98:13:30:8d:a6:70:59:b8:cb:15:c4:a8:e8:b7:f3:4d:9e: 3b:82:f4:d5:da:db:d7:35:97:c4:de:93:79:2f:99:27:e6:44: 18:32:c3:f7:69:a0:64:d2:84:bb:76:ac:18:13:b1:c6:0d:7d: 4b:1a:16:be -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUO8iJmztaBUuoa5FSBZbIxOj+so0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIyMDAyMDA5WhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjM2MDc3MTcxODc5YjU3NmJjMjEyYTc1MzNmMDI4MjY2 MWFlOTc4MGQ2YWJkZTU2YTQ0NjFmYjY2N2Q3NTZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr84Tx2nh3pTyWeUZ89IP8VHMuTNwXAxD4Gyw2+XX8zpL+ LSqFbweaLwz1qrFUqLdM7/j5NHq8E2BUdq0DAxw7B/VsG53B+4k7PF87YOrYKsmG vO9N2sm/3FALtuIxkAm5Hg+Y0HUpfIUuTBPZxPtWB4eis2xYHhZs55yj2pnASJup cKPFIb/nz5Qvm3lYDN81XsMWdjWn188mXrrJDwqTxRNMgZI/eDdPTAWBNIDVPvjt lzrFxoRkHRBsZiiTikKCTiskFQjb3YnRlkB0aJY3DwzHDO7P5ycO2+SEsxd9nQFe 10JrR3jPCg0eAqAWrUf7hhaNRT3iEo/hh5HYy14jAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUtg+FCBKr9m6pRpt6Pf2hvFsDJOswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyMWQyYjExLTE5OGEtNDE4Ny1iYWJlLTVlODk4ZjJhMTU3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+ggDANBgkqhkiG9w0BAQsFAAOCAQEARmzKf7Ue1AsyEiyBkqJ44yp9 zDGvbZ0gxG6qDTObSvE4hq50JHF74OVLZHTLFfQWyMymjUpbg7c+h0DVayjFeDz0 WqdDeYRk0fWW/OEmCB8nvdFHa2FZfZHz8b0cxmXy0mfqD4Im2m3SwHWI/tfmxP0B dK35Le8XQtBefAFDiYWPfoAVqhyLu49uurlkNdnzPMHqc4K9aY7AVm7cWBrG7yuB 09nVMxOSNoZavBYybvn0AvC648F2EbCZBNKV22cCiIiBR3O4LpgTMI2mcFm4yxXE qOi3802eO4L01drb1zWXxN6TeS+ZJ+ZEGDLD92mgZNKEu3asGBOxxg19SxoWvg== -----END CERTIFICATE-----Generated at Fri Nov 28 06:08:16 2025 by rpki-client