This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa File: a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa (raw, json) Hash identifier: GkzNHocBjBLyQB+4zNvwdnYhr2aUVvYPVePZ3zEXEUA= Subject key identifier: 0D:3B:00:D1:FD:13:AB:9E:67:A5:14:07:F0:7F:76:C4:31:0C:67:1D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5431668D13D97E126D16AE4CC2044B752BF04889 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa Signing time: Wed 10 Dec 2025 04:50:05 +0000 ROA not before: Wed 10 Dec 2025 04:50:05 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:31:66:8d:13:d9:7e:12:6d:16:ae:4c:c2:04:4b:75:2b:f0:48:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 04:50:05 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=0d253e98fb1cd12e409af28a3ae9b968903dd7cb11c6fc039cf222004deef839, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e9:07:ef:76:91:12:68:38:72:94:a1:da:fd: a0:e2:c9:ac:32:3b:f4:ee:8d:67:f7:0a:db:66:00: 78:62:e7:ae:d3:0e:8f:be:a0:b8:9f:fc:5e:6c:f1: 0d:23:0f:3d:d6:14:84:23:e9:eb:38:9c:0c:00:d9: eb:cd:ee:35:b5:8f:80:78:49:c8:0b:a6:60:34:a0: cf:c6:12:51:58:ba:0a:1f:70:a4:0a:b7:58:95:9d: 6a:8a:35:42:65:ec:67:ba:51:8d:f2:5e:08:3d:4a: e4:55:e1:12:71:e9:72:21:a3:10:3e:01:82:aa:d7: 37:d0:94:85:30:29:47:c8:6a:67:7d:d2:e5:66:92: 31:b3:f8:43:94:50:67:0f:a5:bd:71:06:2b:18:10: c3:6c:71:1d:06:2c:4f:5a:ea:34:85:0e:4f:e7:94: c7:f9:73:74:a8:58:0f:25:b5:6d:7b:38:d1:38:88: 04:b1:63:92:7b:36:51:cc:12:8a:cb:e7:8b:e1:82: de:69:bd:3e:2d:c8:57:11:a5:70:9a:ec:0d:08:16: 41:bf:95:d4:ee:d4:d8:1e:14:e9:c5:eb:19:29:2e: a1:b5:50:88:1c:c2:eb:cf:48:4a:6c:1b:7e:49:28: e4:11:92:a4:78:6c:19:15:f4:4c:a7:dd:30:41:fa: 87:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:3B:00:D1:FD:13:AB:9E:67:A5:14:07:F0:7F:76:C4:31:0C:67:1D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 2e:cb:ce:f7:60:fb:92:03:37:c6:dc:14:be:48:b0:a5:f8:fc: 08:ec:ea:65:f1:95:f5:f2:18:10:dd:7a:7e:44:2b:e3:f5:60: c5:a6:f3:a1:6c:72:d3:75:7b:9a:85:b1:2f:8e:d1:2a:37:d7: c5:74:1d:d0:e8:81:a7:af:9a:33:f1:4a:76:25:88:b6:6d:98: 9d:9c:92:2e:29:7a:83:e4:6c:25:e0:38:8e:55:3c:1b:b3:1e: d1:3a:79:c6:58:91:00:79:cb:78:11:2c:df:c9:c1:fb:b3:e0: 75:82:52:ed:67:83:3c:ff:e1:c6:89:cb:b9:52:c6:0f:3f:40: f2:02:c9:0b:f1:81:2e:25:4f:8c:9c:a4:89:b2:49:45:1c:2c: b2:2b:73:6b:a7:aa:55:6c:38:9b:69:eb:96:7f:16:55:b7:d9: 10:92:64:40:54:87:f2:52:bf:2e:b1:02:75:35:03:97:ac:73: 0e:4d:88:6f:6d:be:be:ea:50:33:e4:a4:6c:99:f1:6a:03:cc: 17:c1:88:40:e1:24:d8:fb:83:26:d8:ed:58:ea:0b:12:02:de: c4:25:0d:03:39:e8:31:3b:42:2f:5c:ce:5a:14:ed:4e:1c:3b: cf:52:dd:ea:8c:11:34:30:c6:0c:8f:03:52:0d:21:b5:ea:70: ac:57:a1:a4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVDFmjRPZfhJtFq5MwgRLdSvwSIkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDQ1MDA1WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDI1M2U5OGZiMWNkMTJlNDA5YWYyOGEzYWU5Yjk2ODkw M2RkN2NiMTFjNmZjMDM5Y2YyMjIwMDRkZWVmODM5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC66QfvdpESaDhylKHa/aDiyawyO/TujWf3CttmAHhi567T Do++oLif/F5s8Q0jDz3WFIQj6es4nAwA2evN7jW1j4B4ScgLpmA0oM/GElFYugof cKQKt1iVnWqKNUJl7Ge6UY3yXgg9SuRV4RJx6XIhoxA+AYKq1zfQlIUwKUfIamd9 0uVmkjGz+EOUUGcPpb1xBisYEMNscR0GLE9a6jSFDk/nlMf5c3SoWA8ltW17ONE4 iASxY5J7NlHMEorL54vhgt5pvT4tyFcRpXCa7A0IFkG/ldTu1NgeFOnF6xkpLqG1 UIgcwuvPSEpsG35JKOQRkqR4bBkV9Eyn3TBB+oc7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDTsA0f0Tq55npRQH8H92xDEMZx0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2NWRjNTc5LTU1ZDAtNDY0MC04ZWU1LTZiZDcwZTNkZDcyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAC7Lzvdg+5IDN8bcFL5IsKX4 /Ajs6mXxlfXyGBDden5EK+P1YMWm86FsctN1e5qFsS+O0So318V0HdDogaevmjPx SnYliLZtmJ2cki4peoPkbCXgOI5VPBuzHtE6ecZYkQB5y3gRLN/Jwfuz4HWCUu1n gzz/4caJy7lSxg8/QPICyQvxgS4lT4ycpImySUUcLLIrc2unqlVsOJtp65Z/FlW3 2RCSZEBUh/JSvy6xAnU1A5escw5NiG9tvr7qUDPkpGyZ8WoDzBfBiEDhJNj7gybY 7VjqCxIC3sQlDQM56DE7Qi9czloU7U4cO89S3eqMETQwxgyPA1INIbXqcKxXoaQ= -----END CERTIFICATE-----Generated at Sat Dec 20 00:20:08 2025 by rpki-client