This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa File: 7200dfa9-d36f-44de-852a-1adda1bbb99c.roa (raw, json) Hash identifier: +lbcNheMB6QRPkl5Hh4BdMmN2+ib3QLeiw6NlnxVsao= Subject key identifier: B1:CB:42:A0:3C:25:09:9F:F1:B9:E7:9F:50:2C:C6:8F:FB:0E:62:AA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3388D7942A2E6C356FEC7B146EB95E3A6F30097D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa Signing time: Sat 15 Nov 2025 05:00:34 +0000 ROA not before: Sat 15 Nov 2025 05:00:34 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 23 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:88:d7:94:2a:2e:6c:35:6f:ec:7b:14:6e:b9:5e:3a:6f:30:09:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 05:00:34 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=b387e365baaede1adf32cb6b20122a32c9acbf33285222179acd018573c203f0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9a:08:7d:5c:22:41:33:0f:3a:08:32:b4:96: 4d:ad:a0:8a:a9:a4:0c:58:4e:16:61:2d:2b:f6:6d: ce:8e:53:e6:49:ed:d2:df:d8:b0:70:01:b9:5e:47: e4:80:e3:79:58:14:57:49:4f:b4:a5:87:a9:8c:77: 79:bf:bd:ac:9f:d7:09:d1:71:01:ea:77:fe:b0:e0: b5:6f:86:07:1a:38:72:08:84:25:17:72:82:2b:89: e3:ae:61:0e:76:86:5d:29:fb:ec:ad:6a:d4:d5:e3: 5f:22:d7:c1:52:70:a2:b5:cb:4c:fc:4c:b9:cd:57: aa:8e:44:f6:c9:11:3c:6c:0a:46:8b:93:b0:3e:4c: 3a:d6:54:fe:7d:42:b4:74:74:f9:ad:dd:d2:e8:df: a2:e7:eb:5d:69:7d:41:86:1c:1f:42:7b:9c:a4:9e: c8:7d:f4:00:b1:80:05:09:18:e6:65:78:f0:2a:f1: ec:96:e2:90:36:ad:ee:7c:b4:20:30:d6:90:cb:4b: aa:4d:e5:c5:2e:0d:2b:a9:9a:81:5e:59:7e:5f:e4: 1d:c6:d8:51:0a:ed:0b:74:09:1d:ac:ec:ac:f9:e9: 74:bc:6d:c5:c1:a5:4f:14:80:ef:e4:a6:2b:d4:ac: 5d:0a:f7:13:9c:7a:d0:3e:cf:9f:82:1f:20:f9:a6: 8d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:CB:42:A0:3C:25:09:9F:F1:B9:E7:9F:50:2C:C6:8F:FB:0E:62:AA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 1c:ab:15:98:f9:d7:6f:50:e0:00:55:7b:ae:6e:a7:fa:21:f4: 91:07:d5:5a:60:f3:4b:23:ab:03:7b:2c:27:a3:b8:0c:ae:2f: 53:a5:00:15:c0:f8:dd:15:78:8c:47:50:3a:00:4e:d7:14:c1: 7c:d9:62:b5:18:06:4f:75:05:75:81:79:ed:23:e1:a6:ec:f2: b8:ff:20:2d:0b:fe:72:22:96:cd:56:e1:09:a9:d4:f3:77:1a: b6:d3:02:ce:f0:41:5a:28:a5:06:1e:ef:bb:49:10:c7:50:10: 3b:0b:df:da:cf:7a:84:23:d8:8c:c7:34:3f:7b:5e:73:90:17: 2a:29:3b:72:cf:ea:e9:60:a6:c5:88:29:32:81:10:34:e0:3a: bf:04:76:3a:57:1c:8a:3e:ba:cc:6f:c7:f3:5b:04:59:bf:6c: 3b:50:f2:91:b9:f9:2e:c0:90:4c:46:d5:1c:b3:aa:b5:17:2a: a7:d6:1d:f2:08:22:17:0f:6d:ee:8a:fa:1c:a9:c3:51:cd:00: 69:4c:64:9d:84:68:15:7f:52:7f:dc:78:bf:d4:b1:42:f0:fd: a0:59:ac:ef:6f:2d:14:73:6c:c3:d3:44:eb:3a:fc:aa:3a:8d: 48:5d:c8:a9:9e:b6:c2:f2:00:95:f5:0b:a2:31:3d:fc:a6:7b: 6a:45:2e:60 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUM4jXlCoubDVv7HsUbrleOm8wCX0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTE1MDUwMDM0WhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzg3ZTM2NWJhYWVkZTFhZGYzMmNiNmIyMDEyMmEzMmM5 YWNiZjMzMjg1MjIyMTc5YWNkMDE4NTczYzIwM2YwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcmgh9XCJBMw86CDK0lk2toIqppAxYThZhLSv2bc6OU+ZJ 7dLf2LBwAbleR+SA43lYFFdJT7Slh6mMd3m/vayf1wnRcQHqd/6w4LVvhgcaOHII hCUXcoIrieOuYQ52hl0p++ytatTV418i18FScKK1y0z8TLnNV6qORPbJETxsCkaL k7A+TDrWVP59QrR0dPmt3dLo36Ln611pfUGGHB9Ce5yknsh99ACxgAUJGOZlePAq 8eyW4pA2re58tCAw1pDLS6pN5cUuDSupmoFeWX5f5B3G2FEK7Qt0CR2s7Kz56XS8 bcXBpU8UgO/kpivUrF0K9xOcetA+z5+CHyD5po07AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsctCoDwlCZ/xueefUCzGj/sOYqowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMDBkZmE5LWQzNmYtNDRkZS04NTJhLTFhZGRhMWJiYjk5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAByrFZj5129Q4ABVe65up/oh 9JEH1Vpg80sjqwN7LCejuAyuL1OlABXA+N0VeIxHUDoATtcUwXzZYrUYBk91BXWB ee0j4abs8rj/IC0L/nIils1W4Qmp1PN3GrbTAs7wQVoopQYe77tJEMdQEDsL39rP eoQj2IzHND97XnOQFyopO3LP6ulgpsWIKTKBEDTgOr8EdjpXHIo+usxvx/NbBFm/ bDtQ8pG5+S7AkExG1RyzqrUXKqfWHfIIIhcPbe6K+hypw1HNAGlMZJ2EaBV/Un/c eL/UsULw/aBZrO9vLRRzbMPTROs6/Ko6jUhdyKmetsLyAJX1C6IxPfyme2pFLmA= -----END CERTIFICATE-----Generated at Sat Nov 22 21:37:45 2025 by rpki-client