This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa File: 28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa (raw, json) Hash identifier: +JiDvMn2MinYloUSHou/+kceX4j0y1zkHqhtVpbliUE= Subject key identifier: 6F:89:48:B3:51:4E:30:4E:BC:67:28:6C:81:1F:27:44:75:5F:5A:8F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5A7F0CC7972395BD5F197174CE19D235610D0D8C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa Signing time: Sat 22 Nov 2025 00:00:06 +0000 ROA not before: Sat 22 Nov 2025 00:00:06 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f2:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 06 Dec 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:7f:0c:c7:97:23:95:bd:5f:19:71:74:ce:19:d2:35:61:0d:0d:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 22 00:00:06 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=3e9d13111197c698c30d9c2ee48a130b3a7312c24cf0e305d48070020e0de1c6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a7:a3:0f:33:9b:5c:63:51:91:c5:a3:06:df: 9b:ad:a5:94:a1:4d:d9:ab:f0:37:9e:33:9f:cc:70: 6d:6d:c9:04:af:8f:e0:98:9b:20:57:8d:d0:a7:fb: 9a:1a:b9:80:06:72:7f:9e:21:99:af:49:d9:46:6b: ed:38:78:c7:15:02:dc:ce:a6:b4:fb:6d:16:23:3c: cb:99:57:d6:ef:15:3a:95:46:e0:59:d0:8c:ed:8c: ec:10:b2:75:a0:1b:69:0f:9b:06:2c:c6:c9:04:ad: a8:9e:a4:64:88:4f:57:ce:15:3c:1a:6b:a5:7f:9f: e4:8d:c3:d6:e0:71:56:c9:f9:d9:98:df:6a:c3:10: bb:22:0b:d2:db:b1:5e:a9:c4:3f:30:d0:45:8f:6b: 6a:14:7c:a1:7e:7a:a5:3a:a7:4a:65:61:e0:5b:a4: df:29:a7:68:39:80:0d:14:5c:be:5a:6d:5e:e8:0d: 32:cd:06:47:87:a4:66:44:11:e0:55:b2:a5:03:d3: 87:cb:0f:0f:57:08:02:fe:c1:a1:17:de:f8:f4:61: 06:d6:8b:25:aa:48:ce:8a:09:1d:f7:ae:49:bb:ae: fc:9d:43:02:98:d3:8e:94:fc:89:e0:5d:40:3b:06: ef:34:aa:0d:89:c5:07:2f:b8:60:94:09:a6:4b:06: be:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:89:48:B3:51:4E:30:4E:BC:67:28:6C:81:1F:27:44:75:5F:5A:8F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7100::/40 Signature Algorithm: sha256WithRSAEncryption 8b:90:55:45:56:51:33:4c:1a:67:13:40:a1:97:0a:8f:95:b2: ab:d9:bf:35:70:37:35:36:c0:b7:ad:9f:b5:47:49:ff:43:80: fd:16:0d:32:e9:b5:02:eb:d7:d7:b8:cd:98:ce:7c:12:22:56: c3:62:9e:da:ca:5b:dc:55:fc:f0:29:a7:99:9f:a7:c6:6f:8e: 2d:1e:74:f1:8a:30:23:18:d3:fd:ad:3a:e4:04:75:7e:d9:59: 7f:77:d4:4a:9b:a6:06:6b:8b:63:40:ea:58:28:9a:b0:bd:d5: 5a:8e:f7:7a:76:e8:82:15:c6:3a:3e:68:b6:e7:8e:1e:1d:23: 17:49:e3:da:9d:c7:03:a3:ee:15:e7:0b:65:61:83:51:9e:71: 01:24:b9:12:c0:49:2f:37:68:c5:d8:60:f6:43:e6:29:be:bf: b6:67:a4:1c:3d:c5:60:c6:c8:ff:03:e8:f8:f7:69:3e:0c:f1: 4c:74:91:ca:cc:99:d9:1d:ce:2f:a3:48:9a:eb:31:64:73:53: fb:9c:36:b1:41:3c:9d:9e:14:f9:4f:42:2e:06:61:4a:5c:c1: e8:16:60:71:c4:87:2d:82:af:93:b3:bb:ed:eb:bd:17:5a:41: fe:f8:82:32:67:b3:55:64:ef:a7:83:ec:96:ae:5f:7d:35:6d: 44:86:4b:77 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWn8Mx5cjlb1fGXF0zhnSNWENDYwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTIyMDAwMDA2WhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTlkMTMxMTExOTdjNjk4YzMwZDljMmVlNDhhMTMwYjNh NzMxMmMyNGNmMGUzMDVkNDgwNzAwMjBlMGRlMWM2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJp6MPM5tcY1GRxaMG35utpZShTdmr8DeeM5/McG1tyQSv j+CYmyBXjdCn+5oauYAGcn+eIZmvSdlGa+04eMcVAtzOprT7bRYjPMuZV9bvFTqV RuBZ0IztjOwQsnWgG2kPmwYsxskEraiepGSIT1fOFTwaa6V/n+SNw9bgcVbJ+dmY 32rDELsiC9LbsV6pxD8w0EWPa2oUfKF+eqU6p0plYeBbpN8pp2g5gA0UXL5abV7o DTLNBkeHpGZEEeBVsqUD04fLDw9XCAL+waEX3vj0YQbWiyWqSM6KCR33rkm7rvyd QwKY046U/IngXUA7Bu80qg2JxQcvuGCUCaZLBr6NAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUb4lIs1FOME68ZyhsgR8nRHVfWo8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI4ZGFiZmUyLTM3NzAtNGZjNi1hN2E5LTViMGE4ZWRhZjExYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDycTANBgkqhkiG9w0BAQsFAAOCAQEAi5BVRVZRM0waZxNAoZcKj5Wy q9m/NXA3NTbAt62ftUdJ/0OA/RYNMum1AuvX17jNmM58EiJWw2Ke2spb3FX88Cmn mZ+nxm+OLR508YowIxjT/a065AR1ftlZf3fUSpumBmuLY0DqWCiasL3VWo73enbo ghXGOj5otueOHh0jF0nj2p3HA6PuFecLZWGDUZ5xASS5EsBJLzdoxdhg9kPmKb6/ tmekHD3FYMbI/wPo+PdpPgzxTHSRysyZ2R3OL6NImusxZHNT+5w2sUE8nZ4U+U9C LgZhSlzB6BZgccSHLYKvk7O77eu9F1pB/viCMmezVWTvp4Pslq5ffTVtRIZLdw== -----END CERTIFICATE-----Generated at Fri Dec 5 07:28:56 2025 by rpki-client