This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa File: 3562da89-c8ff-4159-8f92-365721d94405.roa (raw, json) Hash identifier: 6J4kNCyVslm7b8FDOLUz0xh44ew0XwATrr4ZDiqk3h8= Subject key identifier: 19:CF:52:75:62:BD:D8:1C:8C:C4:78:FF:C1:9B:88:14:FA:24:4D:48 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 726787C105452C695E387E7DC6428A394B8A8BBA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa Signing time: Tue 25 Nov 2025 19:40:12 +0000 ROA not before: Tue 25 Nov 2025 19:40:12 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 30 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:67:87:c1:05:45:2c:69:5e:38:7e:7d:c6:42:8a:39:4b:8a:8b:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 25 19:40:12 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=56ee6d1133f38f62cf60f3be87981425c0fd7f51092dd2a6a331cb519dcff7cc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4d:bf:a3:92:7b:23:fe:45:21:71:1a:08:5a: 10:76:32:d4:2d:1f:42:67:53:a6:7f:4c:1c:e8:58: 19:38:ad:42:d3:e4:5d:75:5b:a5:ef:c1:f7:e9:16: 2e:f0:92:e0:ba:21:18:2c:e5:e5:db:49:6b:ec:8e: b8:bb:92:8c:b8:c3:e8:6d:ab:7f:37:f7:2d:54:2a: 24:58:d4:3b:61:41:bf:46:60:64:0d:0e:ee:c4:76: 7f:1a:bd:99:60:74:d3:18:7c:46:f1:2a:c0:a8:37: 66:dd:e0:ad:bd:d7:44:f4:db:31:67:46:6d:21:f7: f6:13:08:24:1b:49:84:9d:47:30:b3:33:1f:39:e1: 94:39:16:ad:dc:f5:dc:a1:91:1a:8f:58:2f:9c:94: 54:a6:d7:2b:5f:47:aa:67:1b:d1:f7:c0:62:e5:06: a3:60:29:9e:82:58:f4:88:35:78:24:ab:14:04:be: f3:6d:c9:a7:bc:bf:e6:a3:7b:49:44:f7:19:0f:e8: fb:61:bb:74:6c:5f:08:12:fd:01:0f:f3:2d:2c:5d: 1d:46:d1:bc:22:4e:1d:cf:dd:70:90:fb:4d:f9:db: 69:76:37:d0:fe:04:5e:be:30:01:2d:27:a8:52:50: a9:8b:74:94:79:81:0a:33:e8:e2:28:f6:44:03:d8: 30:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:CF:52:75:62:BD:D8:1C:8C:C4:78:FF:C1:9B:88:14:FA:24:4D:48 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f030::/44 Signature Algorithm: sha256WithRSAEncryption 02:16:2e:96:08:5b:c4:fb:83:c2:84:78:5a:eb:94:4f:af:25: d0:52:db:ba:c0:1d:6a:37:ad:cf:2d:3c:e1:6a:dd:e6:bc:2a: db:37:42:68:6d:6e:8b:40:b0:88:96:5f:71:cf:3a:cc:5f:d8: 4d:44:2b:4c:b2:66:44:b0:c8:60:11:aa:f5:73:8c:a0:cf:3a: 05:d2:60:e4:96:2a:e7:9a:b0:ed:3f:75:c3:2d:62:f0:a6:fd: 16:f7:0b:61:4e:aa:2d:67:8f:8d:ff:de:a8:79:0a:cf:8a:0f: a2:8b:2b:ba:d3:08:e8:cc:67:e4:e9:dc:4c:c1:7e:f1:58:51: 44:76:51:7d:d4:81:63:c5:fd:7f:f8:5f:b6:31:10:6a:37:95: 9f:b2:53:56:bd:85:4f:a3:e3:5b:9e:ff:2d:01:e2:06:15:ab: 0f:1e:d7:fd:16:58:95:14:01:8f:7c:ae:0d:2e:ae:b7:1b:d0: de:6c:8a:d3:75:e0:4d:b1:af:82:22:17:73:33:bc:be:b5:9a: 3b:bc:59:97:ed:2f:ca:9a:3c:a0:67:fb:22:6a:7b:8a:4f:ef: 8d:e6:a5:04:29:74:a2:a7:1b:bc:e9:b9:01:85:1e:70:35:3b: f5:be:bd:35:3e:08:62:3a:f1:e0:38:2c:44:43:bf:a6:7b:d6: c8:88:07:49 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcmeHwQVFLGleOH59xkKKOUuKi7owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTI1MTk0MDEyWhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NmVlNmQxMTMzZjM4ZjYyY2Y2MGYzYmU4Nzk4MTQyNWMw ZmQ3ZjUxMDkyZGQyYTZhMzMxY2I1MTlkY2ZmN2NjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3Tb+jknsj/kUhcRoIWhB2MtQtH0JnU6Z/TBzoWBk4rULT 5F11W6XvwffpFi7wkuC6IRgs5eXbSWvsjri7koy4w+htq3839y1UKiRY1DthQb9G YGQNDu7Edn8avZlgdNMYfEbxKsCoN2bd4K2910T02zFnRm0h9/YTCCQbSYSdRzCz Mx854ZQ5Fq3c9dyhkRqPWC+clFSm1ytfR6pnG9H3wGLlBqNgKZ6CWPSINXgkqxQE vvNtyae8v+aje0lE9xkP6Pthu3RsXwgS/QEP8y0sXR1G0bwiTh3P3XCQ+03522l2 N9D+BF6+MAEtJ6hSUKmLdJR5gQoz6OIo9kQD2DD5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGc9SdWK92ByMxHj/wZuIFPokTUgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM1NjJkYTg5LWM4ZmYtNDE1OS04ZjkyLTM2NTcyMWQ5NDQwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78DAwDQYJKoZIhvcNAQELBQADggEBAAIWLpYIW8T7g8KEeFrrlE+v JdBS27rAHWo3rc8tPOFq3ea8Kts3QmhtbotAsIiWX3HPOsxf2E1EK0yyZkSwyGAR qvVzjKDPOgXSYOSWKueasO0/dcMtYvCm/Rb3C2FOqi1nj43/3qh5Cs+KD6KLK7rT COjMZ+Tp3EzBfvFYUUR2UX3UgWPF/X/4X7YxEGo3lZ+yU1a9hU+j41ue/y0B4gYV qw8e1/0WWJUUAY98rg0urrcb0N5sitN14E2xr4IiF3MzvL61mju8WZftL8qaPKBn +yJqe4pP743mpQQpdKKnG7zpuQGFHnA1O/W+vTU+CGI68eA4LERDv6Z71siIB0k= -----END CERTIFICATE-----Generated at Sat Nov 29 11:52:48 2025 by rpki-client