This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/24bd33fa-8526-478a-af3a-e24be01b6877.roa File: 24bd33fa-8526-478a-af3a-e24be01b6877.roa (raw, json) Hash identifier: CagwHwgolp0ytjWweGeWgN73GOXH3jzONNwcFp5/sFs= Subject key identifier: 6C:E6:12:B6:AE:03:09:FD:A8:97:2F:EF:E7:51:42:B1:0A:B3:35:C8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1781700860AAE5274DBABA5B531D9D8B86E6EBF0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/24bd33fa-8526-478a-af3a-e24be01b6877.roa Signing time: Tue 23 Dec 2025 17:21:56 +0000 ROA not before: Tue 23 Dec 2025 17:21:56 +0000 ROA not after: Mon 23 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:81:70:08:60:aa:e5:27:4d:ba:ba:5b:53:1d:9d:8b:86:e6:eb:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 23 17:21:56 2025 GMT Not After : Mar 23 23:59:59 2026 GMT Subject: serialNumber=803380657784565c377226fe3fc93f817bca1b7a8f3a8f67f7caa83093b7fa32, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7d:5c:b8:36:05:ca:8c:31:2f:b8:54:c8:6a: d1:58:c1:6a:05:3e:9d:17:2e:75:f0:c8:b4:b6:3a: 35:6d:21:c7:8a:c8:07:34:6d:35:f1:d2:29:c0:5c: 30:1c:28:84:d1:b1:b1:53:73:51:99:f5:31:9b:4f: 2a:77:83:40:61:5e:ce:2d:9a:45:88:27:25:79:9b: 7c:54:72:b2:dd:1d:c2:32:50:5a:dc:8b:b1:70:a2: 87:ed:da:ea:56:c1:b0:fc:b8:39:e5:36:63:30:f0: cd:bc:f8:69:2f:2e:44:02:73:24:4d:d2:fb:dc:0e: 1b:ac:f7:d9:c2:07:38:a9:4a:4b:0f:f0:5c:19:ef: ba:a4:cc:4e:52:36:3f:9a:60:15:d4:02:cf:e9:d9: 71:10:cc:1f:d5:a8:91:fc:dc:c2:5d:e8:24:2f:57: 1a:43:32:bf:0d:20:0d:b7:a8:7e:4f:d9:6f:82:9c: 50:3f:3d:9f:a7:e8:3e:b6:6b:44:05:b2:68:ae:8e: ea:59:e3:91:14:11:49:6d:c9:53:54:fe:3e:c1:c4: 06:93:18:02:95:d6:c9:9c:02:61:6d:48:b1:ac:f5: c4:31:f8:20:97:11:66:26:7c:20:78:95:14:c6:e2: dd:08:de:44:12:4e:7d:92:78:02:d7:8e:44:5c:5b: 6c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:E6:12:B6:AE:03:09:FD:A8:97:2F:EF:E7:51:42:B1:0A:B3:35:C8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/24bd33fa-8526-478a-af3a-e24be01b6877.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7020::/44 Signature Algorithm: sha256WithRSAEncryption 5e:27:e4:14:cf:e1:aa:ba:f9:8d:83:ab:2e:9b:1e:28:a2:f6: c2:67:b9:c3:af:ff:39:a6:00:65:a0:61:58:8d:fb:0e:e5:ab: 27:5e:0d:73:c5:76:f5:93:70:4b:25:67:78:77:88:bf:a5:25: bc:30:29:0d:cd:cd:bd:60:70:03:50:ac:d6:83:ed:d6:0c:98: 8a:b6:3e:26:ba:06:d3:f8:64:78:d6:de:d6:8e:13:d4:28:18: 7e:24:d1:7f:c1:42:f6:f9:5b:89:c4:fa:9d:27:7d:18:26:a2: b6:66:f9:f0:05:f6:d4:c9:16:62:c8:8b:10:9b:59:83:10:22: a2:29:87:33:8a:ee:7f:95:17:74:99:c2:97:fa:59:89:72:e6: 4d:90:c5:36:d4:ba:70:92:b3:d6:e4:01:9d:23:2d:a0:36:c4: 21:aa:c9:8f:7c:11:c1:77:da:1f:ef:e1:4c:90:d7:de:5b:ef: 1d:a0:89:07:ee:bf:f5:0c:6c:86:c3:6f:dd:d1:7d:5d:85:24: 7e:c8:4e:f2:b0:dc:aa:dc:a7:98:16:cc:68:ed:89:d4:46:9f: 49:de:02:d6:88:9f:69:e6:1b:a4:c0:da:2c:1d:7e:65:ce:81: c9:dc:84:7b:da:83:de:45:1e:77:41:9f:dc:5f:3e:03:b0:29: 23:b5:2c:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUF4FwCGCq5SdNurpbUx2di4bm6/AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjIzMTcyMTU2WhcNMjYwMzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDMzODA2NTc3ODQ1NjVjMzc3MjI2ZmUzZmM5M2Y4MTdi Y2ExYjdhOGYzYThmNjdmN2NhYTgzMDkzYjdmYTMyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCfVy4NgXKjDEvuFTIatFYwWoFPp0XLnXwyLS2OjVtIceK yAc0bTXx0inAXDAcKITRsbFTc1GZ9TGbTyp3g0BhXs4tmkWIJyV5m3xUcrLdHcIy UFrci7Fwooft2upWwbD8uDnlNmMw8M28+GkvLkQCcyRN0vvcDhus99nCBzipSksP 8FwZ77qkzE5SNj+aYBXUAs/p2XEQzB/VqJH83MJd6CQvVxpDMr8NIA23qH5P2W+C nFA/PZ+n6D62a0QFsmiujupZ45EUEUltyVNU/j7BxAaTGAKV1smcAmFtSLGs9cQx +CCXEWYmfCB4lRTG4t0I3kQSTn2SeALXjkRcW2ydAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbOYStq4DCf2oly/v51FCsQqzNcgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI0YmQzM2ZhLTg1MjYtNDc4YS1hZjNhLWUyNGJlMDFiNjg3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycCAwDQYJKoZIhvcNAQELBQADggEBAF4n5BTP4aq6+Y2Dqy6bHiii 9sJnucOv/zmmAGWgYViN+w7lqydeDXPFdvWTcEslZ3h3iL+lJbwwKQ3Nzb1gcANQ rNaD7dYMmIq2Pia6BtP4ZHjW3taOE9QoGH4k0X/BQvb5W4nE+p0nfRgmorZm+fAF 9tTJFmLIixCbWYMQIqIphzOK7n+VF3SZwpf6WYly5k2QxTbUunCSs9bkAZ0jLaA2 xCGqyY98EcF32h/v4UyQ195b7x2giQfuv/UMbIbDb93RfV2FJH7ITvKw3Krcp5gW zGjtidRGn0neAtaIn2nmG6TA2iwdfmXOgcnchHvag95FHndBn9xfPgOwKSO1LOA= -----END CERTIFICATE-----Generated at Tue Dec 23 22:49:08 2025 by rpki-client