This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/43de5aff-1abc-4ba4-ac76-194395f6be8f.roa File: 43de5aff-1abc-4ba4-ac76-194395f6be8f.roa (raw, json) Hash identifier: lQg+6P5jTqaIS3yy0yV5noDa9+6IeitDuOV8LXN28hI= Subject key identifier: BC:0E:13:C1:50:11:F3:22:3D:5D:43:02:0C:F1:3A:C0:44:A2:DD:89 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 33AF5B021D1315846E7FFE4E85E002098F2960A9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/43de5aff-1abc-4ba4-ac76-194395f6be8f.roa Signing time: Tue 11 Nov 2025 00:30:08 +0000 ROA not before: Tue 11 Nov 2025 00:30:08 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1:8b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 23 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:af:5b:02:1d:13:15:84:6e:7f:fe:4e:85:e0:02:09:8f:29:60:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 11 00:30:08 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=a5c5d1414db9cde42fb6387e8db548acbf245ecdebdb753f924e8ee63c5dcb08, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:78:d3:ea:ae:c9:96:fb:22:b7:fb:c1:af:7a: a1:fe:7b:b3:d2:55:57:cd:dd:b1:c5:f1:e3:34:d9: 73:cc:51:75:03:21:94:47:eb:70:48:d0:ce:69:4d: d1:1e:d3:98:d0:b9:2b:95:6b:3a:98:eb:4c:86:b7: ca:1b:f7:f3:bb:0e:94:cf:45:87:f7:82:72:bb:93: 0c:6a:e2:c6:d4:51:6c:e9:4d:35:44:ef:2a:d8:36: 48:82:f9:8d:6e:88:45:fb:9d:00:ea:6d:2a:db:b0: 22:36:6d:67:8a:14:bd:4f:df:50:7f:07:02:36:81: f7:34:8a:6b:f0:cc:9b:4e:8d:5e:ea:9e:31:d3:2f: af:bb:23:cf:5a:a8:35:55:78:d6:b0:34:60:21:e5: ab:63:b1:56:61:f3:e0:34:17:25:ba:e0:f5:2f:16: 38:a1:e9:18:96:54:6b:eb:2f:90:c5:40:7d:af:0a: 70:d6:7d:49:26:2e:02:fc:e2:d8:17:bf:5b:7b:d8: da:e9:0b:ad:e1:a7:39:81:16:be:8e:09:1c:33:ee: 3d:92:83:33:d8:29:5a:7a:01:a3:c6:9f:18:03:f5: 53:41:d0:ca:aa:0a:aa:16:2f:48:f1:92:99:53:eb: c4:61:2d:8f:d3:cf:1f:bc:2c:9a:4d:3e:97:4c:2a: c3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0E:13:C1:50:11:F3:22:3D:5D:43:02:0C:F1:3A:C0:44:A2:DD:89 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/43de5aff-1abc-4ba4-ac76-194395f6be8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b00::/48 Signature Algorithm: sha256WithRSAEncryption 81:e7:7c:02:6a:6d:6e:dc:13:2b:c5:17:69:e3:88:8b:19:e1: 2d:31:01:ac:6a:4e:d3:41:b1:b7:98:ab:67:57:f3:06:ba:83: 89:6d:8c:92:ce:22:22:e1:78:2c:17:14:d0:13:37:fe:13:d1: 02:7f:38:59:76:57:49:2e:18:83:0a:da:d9:61:8a:66:57:b0: e5:f2:61:82:29:7b:9d:b0:49:92:4d:50:c6:35:5d:a9:3b:d5: 7a:1d:6a:5f:6c:2b:aa:87:02:dd:0b:fb:b6:c3:9c:8d:32:e8: f1:a7:f9:34:5e:68:d8:ad:1b:e3:b5:04:47:0f:78:13:45:e2: b5:b0:e5:ea:1f:1a:69:ec:f3:71:e6:e1:36:2b:f6:f3:d1:82: e0:3b:b8:54:3d:59:75:e4:d6:d0:3f:6e:7f:d5:2e:1c:e4:10: 22:28:e2:1b:f2:52:62:d8:67:13:cd:36:c6:2c:17:a7:2c:37: fa:3a:24:77:9a:18:6a:77:fb:21:bb:c0:00:14:72:6e:19:15: c7:ac:ab:b3:e4:50:0b:68:df:9f:03:09:3c:b5:a4:80:74:7c: 10:8f:46:34:dc:bd:69:a5:77:9b:b8:a5:5f:48:a9:99:5b:2d: 59:07:1f:13:0e:b2:ad:4e:13:b3:49:f6:91:69:0b:18:c4:ef: 80:f7:81:60 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUM69bAh0TFYRuf/5OheACCY8pYKkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTExMDAzMDA4WhcNMjUxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNWM1ZDE0MTRkYjljZGU0MmZiNjM4N2U4ZGI1NDhhY2Jm MjQ1ZWNkZWJkYjc1M2Y5MjRlOGVlNjNjNWRjYjA4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+eNPqrsmW+yK3+8GveqH+e7PSVVfN3bHF8eM02XPMUXUD IZRH63BI0M5pTdEe05jQuSuVazqY60yGt8ob9/O7DpTPRYf3gnK7kwxq4sbUUWzp TTVE7yrYNkiC+Y1uiEX7nQDqbSrbsCI2bWeKFL1P31B/BwI2gfc0imvwzJtOjV7q njHTL6+7I89aqDVVeNawNGAh5atjsVZh8+A0FyW64PUvFjih6RiWVGvrL5DFQH2v CnDWfUkmLgL84tgXv1t72NrpC63hpzmBFr6OCRwz7j2SgzPYKVp6AaPGnxgD9VNB 0MqqCqoWL0jxkplT68RhLY/Tzx+8LJpNPpdMKsNxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvA4TwVAR8yI9XUMCDPE6wESi3YkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQzZGU1YWZmLTFhYmMtNGJhNC1hYzc2LTE5NDM5NWY2YmU4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiwAwDQYJKoZIhvcNAQELBQADggEBAIHnfAJqbW7cEyvFF2njiIsZ 4S0xAaxqTtNBsbeYq2dX8wa6g4ltjJLOIiLheCwXFNATN/4T0QJ/OFl2V0kuGIMK 2tlhimZXsOXyYYIpe52wSZJNUMY1Xak71Xodal9sK6qHAt0L+7bDnI0y6PGn+TRe aNitG+O1BEcPeBNF4rWw5eofGmns83Hm4TYr9vPRguA7uFQ9WXXk1tA/bn/VLhzk ECIo4hvyUmLYZxPNNsYsF6csN/o6JHeaGGp3+yG7wAAUcm4ZFcesq7PkUAto358D CTy1pIB0fBCPRjTcvWmld5u4pV9IqZlbLVkHHxMOsq1OE7NJ9pFpCxjE74D3gWA= -----END CERTIFICATE-----Generated at Sat Nov 22 21:30:29 2025 by rpki-client