This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa File: 05876e04-6a48-47f9-a53a-40496713d9ab.roa (raw, json) Hash identifier: 4y4ihmyNQY96USTC7mj5O5PoiqhUyqGqJiyC1jQBMqM= Subject key identifier: 44:96:BB:92:7B:2D:F9:BE:5F:ED:FA:91:13:C3:E2:BA:89:90:56:20 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1A67D22BA725F3ADB0383FECFF36AD14B2FF49BA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa Signing time: Thu 11 Dec 2025 01:00:07 +0000 ROA not before: Thu 11 Dec 2025 01:00:07 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:67:d2:2b:a7:25:f3:ad:b0:38:3f:ec:ff:36:ad:14:b2:ff:49:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 11 01:00:07 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=0fd16a5a488ee22fcc4d9a9de591e0f5b768bcf2ecc3ebfe6132e2a27e451015, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f1:47:b2:7b:fc:06:73:71:75:34:85:56:53: 58:cf:e9:c0:ff:5e:9f:06:15:f4:a0:51:80:d1:16: b8:84:8b:0c:ec:61:14:4c:ea:85:f0:fd:65:62:14: ce:2a:1e:8f:99:65:4a:66:f0:94:c5:9c:5e:cc:81: 12:0c:bd:29:24:4f:6e:ea:f7:57:38:a9:9c:e6:73: 86:18:77:d8:7a:c8:89:f9:9b:8d:7a:20:71:65:a7: ef:01:72:b3:9f:fd:4e:10:09:46:f7:0e:f6:61:19: d8:c2:6f:34:05:bf:48:db:35:f0:ce:1f:83:74:01: 5a:eb:db:53:d2:b1:1a:e1:74:b4:c9:cf:41:28:1b: 16:8a:64:7d:5e:53:5c:16:3d:a5:1a:c3:d6:30:aa: b7:d0:e5:63:94:4e:b3:b1:68:af:8f:88:8c:a3:1f: 81:9f:3a:14:26:61:68:7a:b2:bd:f2:fe:24:2e:07: a4:a8:bb:84:84:b4:5b:ad:3b:eb:73:80:65:5e:28: d2:d5:d3:b7:83:91:b1:cd:54:b2:9d:f2:2b:c2:00: 74:90:95:8f:7a:ee:81:a4:92:51:ba:d8:6b:6a:70: 1d:97:69:ca:9e:c1:6d:5d:45:27:52:d2:a6:de:b2: 6e:77:40:78:da:ec:d7:ce:d8:72:9a:30:d1:97:8b: 2d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:96:BB:92:7B:2D:F9:BE:5F:ED:FA:91:13:C3:E2:BA:89:90:56:20 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f100::/40 Signature Algorithm: sha256WithRSAEncryption 10:2c:f5:d1:a7:56:bb:23:68:72:f3:32:48:ab:44:c6:f9:a2: 88:f3:6d:ee:46:ed:90:11:bf:b0:53:c7:3f:6d:af:d3:06:e2: 3c:64:31:88:6a:45:5f:e6:38:dc:c4:61:c6:2b:30:99:7a:ed: de:7c:27:63:43:52:88:fc:0e:96:81:43:51:3e:45:1e:09:5d: aa:fc:91:90:01:c4:18:cf:af:4a:42:c2:79:73:05:bc:e7:42: 1f:53:f3:25:b7:bd:ce:eb:06:a2:22:d2:11:b1:aa:3c:fc:67: f4:17:6e:19:23:8f:db:33:a7:66:f9:48:90:2a:62:5e:59:71: c6:33:0e:67:b4:f2:29:77:06:6f:97:12:a8:64:fd:63:b6:67: fa:b5:3c:c9:be:c4:eb:bc:df:3f:51:8e:c3:5a:7d:c3:46:7b: 33:4b:0e:e5:07:26:8c:90:5e:ff:26:f7:e2:91:91:26:b2:8a: 8e:72:6e:e2:b3:f0:32:df:e4:87:3c:c9:87:e9:47:59:0b:9e: 10:c4:48:20:25:71:40:da:7c:1a:1e:8f:39:b7:5c:32:59:64: 3f:3e:95:aa:a0:a4:de:92:ac:ba:1a:6c:ad:9a:ac:ba:97:8d: a1:dd:bc:1f:06:af:86:bb:65:76:5f:e5:c3:a9:ab:ac:20:42: f7:cd:9b:37 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGmfSK6cl862wOD/s/zatFLL/SbowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjExMDEwMDA3WhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmQxNmE1YTQ4OGVlMjJmY2M0ZDlhOWRlNTkxZTBmNWI3 NjhiY2YyZWNjM2ViZmU2MTMyZTJhMjdlNDUxMDE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC38Ueye/wGc3F1NIVWU1jP6cD/Xp8GFfSgUYDRFriEiwzs YRRM6oXw/WViFM4qHo+ZZUpm8JTFnF7MgRIMvSkkT27q91c4qZzmc4YYd9h6yIn5 m416IHFlp+8BcrOf/U4QCUb3DvZhGdjCbzQFv0jbNfDOH4N0AVrr21PSsRrhdLTJ z0EoGxaKZH1eU1wWPaUaw9YwqrfQ5WOUTrOxaK+PiIyjH4GfOhQmYWh6sr3y/iQu B6Sou4SEtFutO+tzgGVeKNLV07eDkbHNVLKd8ivCAHSQlY967oGkklG62GtqcB2X acqewW1dRSdS0qbesm53QHja7NfO2HKaMNGXiy1vAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURJa7knst+b5f7fqRE8PiuomQViAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA1ODc2ZTA0LTZhNDgtNDdmOS1hNTNhLTQwNDk2NzEzZDlhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD78TANBgkqhkiG9w0BAQsFAAOCAQEAECz10adWuyNocvMySKtExvmi iPNt7kbtkBG/sFPHP22v0wbiPGQxiGpFX+Y43MRhxiswmXrt3nwnY0NSiPwOloFD UT5FHgldqvyRkAHEGM+vSkLCeXMFvOdCH1PzJbe9zusGoiLSEbGqPPxn9BduGSOP 2zOnZvlIkCpiXllxxjMOZ7TyKXcGb5cSqGT9Y7Zn+rU8yb7E67zfP1GOw1p9w0Z7 M0sO5QcmjJBe/yb34pGRJrKKjnJu4rPwMt/khzzJh+lHWQueEMRIICVxQNp8Gh6P ObdcMllkPz6VqqCk3pKsuhpsrZqsupeNod28Hwavhrtldl/lw6mrrCBC982bNw== -----END CERTIFICATE-----Generated at Tue Dec 23 22:50:27 2025 by rpki-client