This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa File: 0b456d9a-b78d-45ba-9949-b00a9581f118.roa (raw, json) Hash identifier: CUwrkqOC+iLoq81mQmx2MmPe99flzSmVYSU3OZcNqOA= Subject key identifier: 48:36:74:E1:3F:3D:EF:FA:78:39:3A:AE:0D:84:0E:AA:2F:1B:84:5B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 37EB047A6FB5D019E61AB29FF2D76EF14A0975A7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa Signing time: Sat 15 Nov 2025 05:00:32 +0000 ROA not before: Sat 15 Nov 2025 05:00:32 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ec00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:eb:04:7a:6f:b5:d0:19:e6:1a:b2:9f:f2:d7:6e:f1:4a:09:75:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 05:00:32 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=06ba8c73122a147dfa4c54fb97e37526351e7e558690853b0ca586cdeb3256aa, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cc:d1:6c:43:39:f2:fa:23:72:8b:25:59:4a: e8:53:dd:dc:40:9c:b2:4a:e3:ec:37:ad:d9:b8:7e: 22:c4:7f:7c:7f:d9:56:c0:e9:b2:04:a1:3b:fd:b0: 78:2a:5f:55:f2:59:43:46:eb:62:3a:24:53:d4:9c: be:3d:f3:ea:14:71:38:bc:52:b3:f9:f0:3f:a6:43: eb:62:ef:5a:3a:27:63:33:fc:1f:6a:cb:47:cf:b8: f8:f6:a0:0d:0b:c0:45:2f:e1:7e:76:96:0c:7e:7a: b6:cc:3b:5e:43:a4:96:42:db:cd:22:d8:45:61:11: 52:0f:27:93:d0:49:fb:11:8c:d6:2c:55:49:f2:bf: 72:b0:32:84:f7:7e:4f:e9:a8:9a:2a:3c:48:4d:98: 96:2c:13:4e:9a:7f:37:eb:31:cf:c4:34:f5:66:21: 84:f1:b3:88:80:09:68:eb:e8:e2:85:c6:7c:f8:b4: 9e:c4:96:7f:fc:20:03:7e:ba:13:f8:0a:23:c4:59: 52:92:f0:f3:f5:b5:71:c4:93:5e:97:ed:d4:91:40: 18:bb:63:e0:b5:75:eb:e8:5a:61:87:60:84:04:9b: f4:ee:6b:91:64:ac:d4:8d:6d:78:ea:e0:2c:90:7b: 4a:81:03:c2:86:4c:f1:01:ae:21:a7:66:b8:bf:7d: 16:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:36:74:E1:3F:3D:EF:FA:78:39:3A:AE:0D:84:0E:AA:2F:1B:84:5B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/42 Signature Algorithm: sha256WithRSAEncryption 5a:9a:61:b9:42:1c:7a:90:50:62:ca:41:5b:9c:a9:1c:38:d1: 54:d8:4a:64:33:49:9a:fe:70:b4:f0:ee:05:2f:65:5f:da:fb: c5:a2:5b:9d:60:8f:72:f5:47:c7:45:a6:00:82:31:f7:7a:fe: f6:91:61:5b:ef:ba:c3:fc:f9:5d:77:ce:88:37:75:0d:a9:a4: 22:7d:46:12:ba:03:38:30:87:39:52:35:19:84:e4:cd:56:6a: 59:1d:bb:cd:cd:0f:87:1b:01:03:30:dd:10:66:ae:0a:7e:41: ac:41:d4:0a:ff:b4:7e:ee:d0:1c:b0:37:25:cd:af:ac:7b:11: 76:ce:cc:de:30:71:50:3c:3a:1e:f6:cb:17:80:a0:92:26:50: 1b:a2:b0:41:b7:93:73:99:69:0f:ad:cb:13:c5:15:5c:52:77: 02:71:f8:42:17:0d:64:12:1d:86:d8:a6:4d:ad:b6:24:3e:4a: 8f:dc:ca:be:08:6a:fb:d1:d4:67:7c:84:c3:5d:47:66:15:c0: 23:0e:c8:74:f7:d1:1f:a7:aa:aa:a2:0b:d3:94:18:2b:4b:c8: c4:2c:e4:94:67:5c:b4:4d:3c:44:c9:e6:5a:b5:91:15:b1:7f: 15:23:9e:26:c9:38:d9:12:17:31:08:d6:9d:64:6e:4d:14:be: 74:e8:9b:ef -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUN+sEem+10BnmGrKf8tdu8UoJdacwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTE1MDUwMDMyWhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmJhOGM3MzEyMmExNDdkZmE0YzU0ZmI5N2UzNzUyNjM1 MWU3ZTU1ODY5MDg1M2IwY2E1ODZjZGViMzI1NmFhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6zNFsQzny+iNyiyVZSuhT3dxAnLJK4+w3rdm4fiLEf3x/ 2VbA6bIEoTv9sHgqX1XyWUNG62I6JFPUnL498+oUcTi8UrP58D+mQ+ti71o6J2Mz /B9qy0fPuPj2oA0LwEUv4X52lgx+erbMO15DpJZC280i2EVhEVIPJ5PQSfsRjNYs VUnyv3KwMoT3fk/pqJoqPEhNmJYsE06afzfrMc/ENPVmIYTxs4iACWjr6OKFxnz4 tJ7Eln/8IAN+uhP4CiPEWVKS8PP1tXHEk16X7dSRQBi7Y+C1devoWmGHYIQEm/Tu a5FkrNSNbXjq4CyQe0qBA8KGTPEBriGnZri/fRZbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSDZ04T897/p4OTquDYQOqi8bhFswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiNDU2ZDlhLWI3OGQtNDViYS05OTQ5LWIwMGE5NTgxZjExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77AAwDQYJKoZIhvcNAQELBQADggEBAFqaYblCHHqQUGLKQVucqRw4 0VTYSmQzSZr+cLTw7gUvZV/a+8WiW51gj3L1R8dFpgCCMfd6/vaRYVvvusP8+V13 zog3dQ2ppCJ9RhK6AzgwhzlSNRmE5M1Walkdu83ND4cbAQMw3RBmrgp+QaxB1Ar/ tH7u0BywNyXNr6x7EXbOzN4wcVA8Oh72yxeAoJImUBuisEG3k3OZaQ+tyxPFFVxS dwJx+EIXDWQSHYbYpk2ttiQ+So/cyr4IavvR1Gd8hMNdR2YVwCMOyHT30R+nqqqi C9OUGCtLyMQs5JRnXLRNPETJ5lq1kRWxfxUjnibJONkSFzEI1p1kbk0UvnTom+8= -----END CERTIFICATE-----Generated at Sun Dec 7 10:53:50 2025 by rpki-client