This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/60d13554-0aae-450a-879a-816f0a4209ac.roa File: 60d13554-0aae-450a-879a-816f0a4209ac.roa (raw, json) Hash identifier: ohy+hM8JqLevqSE6e1UsH/TfOtndVbFd4V31jAr/cUs= Subject key identifier: A1:F5:28:A8:AA:59:D5:32:81:D6:1D:33:77:0A:11:EA:92:3F:DC:D3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 507D6F36A6DD1FD6B15581CED133A11B240FB066 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/60d13554-0aae-450a-879a-816f0a4209ac.roa Signing time: Sat 22 Nov 2025 00:00:05 +0000 ROA not before: Sat 22 Nov 2025 00:00:05 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 23 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:7d:6f:36:a6:dd:1f:d6:b1:55:81:ce:d1:33:a1:1b:24:0f:b0:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 22 00:00:05 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=985ef7dd478a61f4aab1daa76d4e0079bf5dc9de8aca26591e6123ff9c4518d8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:45:10:f7:1f:99:64:ad:5b:35:e0:8f:1a:94: 31:0b:d1:de:05:e9:74:cf:15:84:79:fd:05:7f:59: 1f:fc:1f:cd:3a:8c:51:c2:93:99:57:20:00:bf:c7: d4:39:3b:20:91:79:f0:4e:55:ce:cd:99:9d:94:21: 7e:68:7a:b9:a9:21:b4:78:53:5f:64:03:aa:55:fb: 2d:8d:9e:53:0e:36:77:56:d0:a1:9f:2b:a3:0d:35: ff:85:77:be:35:06:af:90:c5:84:4a:3b:66:96:ba: 92:2a:2f:82:eb:4a:2e:4a:88:b6:f7:61:e5:e0:cd: 87:b1:3d:67:4e:ff:50:36:1e:25:b9:76:17:dc:4b: d7:0f:60:d9:04:ed:38:7b:7a:95:18:ea:63:88:4a: 63:82:8b:fd:d0:36:1f:91:c7:e5:78:48:a4:1b:34: 68:4c:a8:4b:0a:c8:10:cb:87:fb:4d:17:c1:7c:bd: 73:0d:6e:25:f3:76:ce:f0:a0:c1:c3:ac:f3:ea:02: 51:fd:2a:bb:5d:29:54:5c:f6:56:ba:9f:cf:b4:31: c2:f2:62:76:03:20:9e:10:5c:dd:1b:eb:12:e0:fd: f1:35:9e:00:37:29:64:50:ac:83:21:a5:b2:a4:8a: ef:52:0b:d6:4d:aa:1d:6a:4a:84:a4:7a:92:21:5a: 19:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F5:28:A8:AA:59:D5:32:81:D6:1D:33:77:0A:11:EA:92:3F:DC:D3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/60d13554-0aae-450a-879a-816f0a4209ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6101::/48 Signature Algorithm: sha256WithRSAEncryption a2:79:e4:9d:6b:16:a1:1f:a0:5f:5f:b4:6f:12:d0:8a:56:a7: 75:dd:85:be:78:0e:55:c3:26:50:80:32:a3:0f:57:36:38:fb: a6:38:26:a9:ba:36:c4:d0:8a:ce:02:25:49:cb:96:20:54:c0: 91:e6:bb:b1:7c:54:d7:9f:8c:38:b6:56:d4:0e:50:90:51:9c: 9d:9a:85:e5:05:5b:a8:89:55:62:16:23:a9:63:9b:1b:98:60: b4:10:b5:fc:68:70:b6:1e:a1:29:7e:bf:64:10:e3:d8:05:c5: 43:c2:8d:f2:5a:61:e4:88:e8:19:6e:d2:72:d4:4d:ef:29:da: 13:76:41:31:a8:33:8d:5d:a5:75:3f:0d:bd:e3:18:c8:ff:48: ad:12:5a:66:86:31:a3:29:b0:74:7d:01:ba:a0:90:e9:a4:61: 13:0d:d8:a9:a7:b4:0c:79:1b:af:c3:ad:4e:7e:02:cc:8b:24: 8d:af:22:77:7a:e7:f8:e8:14:4f:9d:2f:cb:5a:52:3a:3c:c9: 79:80:cd:8d:f0:2f:d3:71:3b:5e:9d:9c:8c:d0:a6:6b:1c:ca: b2:b1:cd:60:84:7f:74:55:94:a1:05:fe:cb:5e:80:60:77:23: f0:ee:33:24:5b:a5:f7:b3:d0:35:54:81:99:8c:03:e7:9c:85: 73:dc:7d:ed -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUH1vNqbdH9axVYHO0TOhGyQPsGYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTIyMDAwMDA1WhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODVlZjdkZDQ3OGE2MWY0YWFiMWRhYTc2ZDRlMDA3OWJm NWRjOWRlOGFjYTI2NTkxZTYxMjNmZjljNDUxOGQ4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5RRD3H5lkrVs14I8alDEL0d4F6XTPFYR5/QV/WR/8H806 jFHCk5lXIAC/x9Q5OyCRefBOVc7NmZ2UIX5oermpIbR4U19kA6pV+y2NnlMONndW 0KGfK6MNNf+Fd741Bq+QxYRKO2aWupIqL4LrSi5KiLb3YeXgzYexPWdO/1A2HiW5 dhfcS9cPYNkE7Th7epUY6mOISmOCi/3QNh+Rx+V4SKQbNGhMqEsKyBDLh/tNF8F8 vXMNbiXzds7woMHDrPPqAlH9KrtdKVRc9la6n8+0McLyYnYDIJ4QXN0b6xLg/fE1 ngA3KWRQrIMhpbKkiu9SC9ZNqh1qSoSkepIhWhlHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUofUoqKpZ1TKB1h0zdwoR6pI/3NMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzYwZDEzNTU0LTBhYWUtNDUwYS04NzlhLTgxNmYwYTQyMDlhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQEwDQYJKoZIhvcNAQELBQADggEBAKJ55J1rFqEfoF9ftG8S0IpW p3Xdhb54DlXDJlCAMqMPVzY4+6Y4Jqm6NsTQis4CJUnLliBUwJHmu7F8VNefjDi2 VtQOUJBRnJ2aheUFW6iJVWIWI6ljmxuYYLQQtfxocLYeoSl+v2QQ49gFxUPCjfJa YeSI6Blu0nLUTe8p2hN2QTGoM41dpXU/Db3jGMj/SK0SWmaGMaMpsHR9AbqgkOmk YRMN2KmntAx5G6/DrU5+AsyLJI2vInd65/joFE+dL8taUjo8yXmAzY3wL9NxO16d nIzQpmscyrKxzWCEf3RVlKEF/stegGB3I/DuMyRbpfez0DVUgZmMA+echXPcfe0= -----END CERTIFICATE-----Generated at Sat Nov 22 21:30:44 2025 by rpki-client