This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa File: 14518d87-9a80-47da-80c6-efeb62f0643b.roa (raw, json) Hash identifier: 3QVHCJ2fO+zTEffAIB+T/z6UM4xSZB2yfSL/683kYQQ= Subject key identifier: 42:BA:A7:5E:64:88:10:BA:47:AF:9C:DA:18:27:67:4F:6E:AF:96:05 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3A548CCEFFB501345ECEAFEBC60FE3C27984A67D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa Signing time: Sat 15 Nov 2025 05:20:07 +0000 ROA not before: Sat 15 Nov 2025 05:20:07 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:54:8c:ce:ff:b5:01:34:5e:ce:af:eb:c6:0f:e3:c2:79:84:a6:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 05:20:07 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=3d5991cb20bd290624bde06ec3f671d618bad388868b81074d0f6bf0b31b26b1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:89:b2:6b:56:db:23:e8:d7:a4:e3:db:64:c4: f1:75:bd:8a:e9:e6:9b:25:e2:a3:dd:b4:ab:0f:fe: 5d:f5:91:a1:49:0e:f8:55:f0:fd:80:12:9f:2d:21: 02:a9:74:e7:3d:45:92:3a:dc:46:20:5e:33:2c:c6: 02:0a:03:86:75:71:35:a9:39:7c:c7:28:ca:19:32: 4b:50:a2:5e:07:74:c7:c4:1f:9a:1d:c6:61:db:4d: e6:86:61:bf:5f:0b:34:56:50:ee:05:5d:93:ac:c5: 4e:3a:62:5f:19:3d:2d:c2:d6:b9:83:d7:5c:4d:7f: 5a:d6:91:95:23:b3:6f:85:3d:7d:25:14:db:da:33: c7:dc:93:b4:dd:d7:bb:a0:3a:41:2d:c4:6b:c4:87: 76:9f:98:3a:2e:9e:df:d3:de:ac:51:39:36:09:5d: 04:aa:30:05:3b:48:d7:e7:91:19:5d:c4:a7:4c:ce: fd:e1:ef:b5:95:52:af:b6:91:08:13:57:2b:b0:38: d9:ae:a4:23:d3:db:54:39:ad:3d:30:1c:21:42:e4: ea:9c:77:80:fa:7e:5e:78:36:eb:e3:32:ac:d8:e8: ca:bc:64:c9:ef:ac:a7:58:69:32:56:45:59:ac:ce: a2:32:a5:2d:58:da:95:31:54:b4:bd:a8:a7:bf:e2: 3e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:BA:A7:5E:64:88:10:BA:47:AF:9C:DA:18:27:67:4F:6E:AF:96:05 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:3::/48 Signature Algorithm: sha256WithRSAEncryption 71:f3:c3:59:33:d5:87:3f:22:9f:76:be:f4:b8:f8:17:25:52: f2:47:7b:ac:e9:bd:0c:54:71:1e:0e:8c:b5:a9:6b:03:fe:76: cc:8b:22:16:53:3b:1e:a9:60:24:7b:3f:26:e1:ef:d0:10:30: c2:30:ec:b8:52:88:49:5c:5e:de:26:b0:23:82:ff:b9:79:cd: 58:dc:dc:35:42:24:4d:3e:fb:52:19:e2:b3:16:94:55:fa:ea: 57:a6:af:c1:ec:d9:9f:35:e1:f4:39:20:5a:12:72:ed:05:32: 8f:bf:cc:de:a7:d0:03:e0:aa:e7:81:ff:46:b0:46:5e:39:4c: ac:b6:82:79:97:3c:b3:b9:7d:27:35:6c:5a:8d:6b:b5:cf:8d: 03:12:91:7e:97:49:bd:33:25:5a:e8:57:03:9e:1d:8c:22:8e: cc:73:32:8f:a4:39:25:6f:60:76:f9:d5:63:a1:05:1e:ff:ad: ee:18:55:f2:67:9c:eb:3b:14:c5:64:8e:47:ee:d3:d5:89:38: e0:97:1e:fd:f7:be:08:73:8a:a3:ec:65:f7:2f:2c:2a:93:7a: 84:ba:f3:01:59:e6:04:ce:15:a7:d8:2b:ce:50:c7:d8:6b:85: cb:8f:0d:b2:89:2f:89:47:d4:ee:b3:3d:a7:f7:8d:9a:62:c1: 8d:c9:10:eb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOlSMzv+1ATRezq/rxg/jwnmEpn0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTE1MDUyMDA3WhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDU5OTFjYjIwYmQyOTA2MjRiZGUwNmVjM2Y2NzFkNjE4 YmFkMzg4ODY4YjgxMDc0ZDBmNmJmMGIzMWIyNmIxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSibJrVtsj6Nek49tkxPF1vYrp5psl4qPdtKsP/l31kaFJ DvhV8P2AEp8tIQKpdOc9RZI63EYgXjMsxgIKA4Z1cTWpOXzHKMoZMktQol4HdMfE H5odxmHbTeaGYb9fCzRWUO4FXZOsxU46Yl8ZPS3C1rmD11xNf1rWkZUjs2+FPX0l FNvaM8fck7Td17ugOkEtxGvEh3afmDount/T3qxROTYJXQSqMAU7SNfnkRldxKdM zv3h77WVUq+2kQgTVyuwONmupCPT21Q5rT0wHCFC5Oqcd4D6fl54NuvjMqzY6Mq8 ZMnvrKdYaTJWRVmszqIypS1Y2pUxVLS9qKe/4j4JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQrqnXmSIELpHr5zaGCdnT26vlgUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE0NTE4ZDg3LTlhODAtNDdkYS04MGM2LWVmZWI2MmYwNjQzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAMwDQYJKoZIhvcNAQELBQADggEBAHHzw1kz1Yc/Ip92vvS4+Bcl UvJHe6zpvQxUcR4OjLWpawP+dsyLIhZTOx6pYCR7Pybh79AQMMIw7LhSiElcXt4m sCOC/7l5zVjc3DVCJE0++1IZ4rMWlFX66lemr8Hs2Z814fQ5IFoScu0FMo+/zN6n 0APgqueB/0awRl45TKy2gnmXPLO5fSc1bFqNa7XPjQMSkX6XSb0zJVroVwOeHYwi jsxzMo+kOSVvYHb51WOhBR7/re4YVfJnnOs7FMVkjkfu09WJOOCXHv33vghziqPs ZfcvLCqTeoS68wFZ5gTOFafYK85Qx9hrhcuPDbKJL4lH1O6zPaf3jZpiwY3JEOs= -----END CERTIFICATE-----Generated at Tue Nov 18 18:21:46 2025 by rpki-client