This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa File: cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa (raw, json) Hash identifier: tZtlUUolAPuDlgbCVhqh2i49gj4JgWlZzNsAClH/Hmg= Subject key identifier: 62:80:95:C4:B6:80:13:D1:99:7A:50:86:01:13:E2:7D:40:0F:F7:1E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 44C62635DFB4290D5C275DECAD9C902E45F81B5E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa Signing time: Wed 10 Dec 2025 05:00:26 +0000 ROA not before: Wed 10 Dec 2025 05:00:26 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5518::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:c6:26:35:df:b4:29:0d:5c:27:5d:ec:ad:9c:90:2e:45:f8:1b:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 10 05:00:26 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=321d2a4bb8cebcbbba9f9b98f86b467cb61c6641dbc1a60d25da93e3d76873b7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c1:b5:a4:b2:60:54:a4:fe:32:dc:00:d7:95: 11:8d:6c:9c:7f:71:25:49:43:94:3c:ec:d3:a5:97: ce:52:97:09:1a:8a:4c:3d:cf:e3:4a:92:b7:ef:3a: 09:7c:c2:0e:20:7a:84:78:3c:a2:8d:f0:b9:4d:1c: fa:16:cd:3d:6b:b4:15:d6:81:3e:ac:9b:78:22:29: 06:f5:2b:a5:a2:1f:e3:34:2f:87:b5:ff:f7:8e:f9: 7e:d1:0f:a4:6f:12:32:e7:09:67:ee:ef:05:c1:68: dd:55:cd:02:05:6a:0e:bd:ad:b2:60:9d:c7:1d:f6: d1:c5:3a:8f:fa:41:b9:ff:63:b9:67:fe:e6:9f:f8: 54:71:81:d7:47:ab:76:95:bb:3b:f5:44:63:3e:23: d0:43:1b:71:de:2f:19:bd:bc:36:18:e2:47:90:1a: 06:7b:50:a5:c5:2a:8e:82:cd:98:67:d6:c8:92:f5: fe:b1:bc:e6:56:d2:ba:b9:89:39:37:9d:87:5a:5e: ec:e4:77:f0:d5:b8:fc:95:ea:e9:e6:7b:1d:21:2d: 55:74:a2:86:c5:52:19:59:9b:03:c6:23:75:23:60: 07:a8:79:e8:c6:31:df:c9:35:8b:2f:c3:7f:a8:6f: 9f:69:88:da:08:9c:5b:87:15:fd:d8:50:d2:93:d3: fd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:80:95:C4:B6:80:13:D1:99:7A:50:86:01:13:E2:7D:40:0F:F7:1E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5518::/48 Signature Algorithm: sha256WithRSAEncryption 4a:dc:59:50:2a:79:da:95:a9:ed:7c:d3:51:19:b6:34:f7:dc: 73:36:71:ab:88:d6:22:8f:cb:0c:2c:cf:3e:89:bb:76:09:f6: 4e:0a:c2:24:7a:2e:63:b2:14:5e:b1:2b:51:0a:f2:20:e1:b1: 91:26:ee:35:d7:66:9f:c0:1b:66:0e:a2:77:61:b0:1a:1c:7d: 5b:36:57:cd:71:00:62:c8:f2:5d:9e:63:00:82:83:d1:77:5e: 7b:2b:84:82:d8:97:7f:a4:82:b2:c6:c0:6a:23:89:21:6f:ac: a9:99:65:58:a4:aa:10:bc:98:00:5e:0e:c4:bb:a9:ee:48:98: 8d:47:44:4f:f3:ac:83:bb:2c:d0:1e:e4:a7:09:a1:f5:2c:ae: f0:38:04:1f:d6:d0:c8:c6:07:43:b6:ef:03:d9:cd:be:ed:c1: 9f:89:de:e2:1a:16:9f:b7:0d:ed:d6:0a:9b:d1:48:e9:07:ce: 04:f9:c6:f1:70:81:dd:ec:10:ff:7d:32:63:e7:91:cd:3d:17: ec:0c:ba:cc:39:0c:f5:db:87:49:df:be:62:38:ba:7c:3c:97: f6:55:04:9c:df:1d:03:cd:ac:de:4e:bf:54:ee:80:b1:68:28: 23:f9:c3:2d:96:75:0b:5c:f4:b0:cf:e4:b8:ef:06:6b:62:e6: 39:69:57:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURMYmNd+0KQ1cJ13srZyQLkX4G14wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjEwMDUwMDI2WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjFkMmE0YmI4Y2ViY2JiYmE5ZjliOThmODZiNDY3Y2I2 MWM2NjQxZGJjMWE2MGQyNWRhOTNlM2Q3Njg3M2I3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGwbWksmBUpP4y3ADXlRGNbJx/cSVJQ5Q87NOll85Slwka ikw9z+NKkrfvOgl8wg4geoR4PKKN8LlNHPoWzT1rtBXWgT6sm3giKQb1K6WiH+M0 L4e1//eO+X7RD6RvEjLnCWfu7wXBaN1VzQIFag69rbJgnccd9tHFOo/6Qbn/Y7ln /uaf+FRxgddHq3aVuzv1RGM+I9BDG3HeLxm9vDYY4keQGgZ7UKXFKo6CzZhn1siS 9f6xvOZW0rq5iTk3nYdaXuzkd/DVuPyV6unmex0hLVV0oobFUhlZmwPGI3UjYAeo eejGMd/JNYsvw3+ob59piNoInFuHFf3YUNKT0/3hAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYoCVxLaAE9GZelCGARPifUAP9x4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiZjQzZDk5LTRkMDEtNGQyNC1hZGE5LTZlMzQzNjhkMWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRgwDQYJKoZIhvcNAQELBQADggEBAErcWVAqedqVqe1801EZtjT3 3HM2cauI1iKPywwszz6Ju3YJ9k4KwiR6LmOyFF6xK1EK8iDhsZEm7jXXZp/AG2YO ondhsBocfVs2V81xAGLI8l2eYwCCg9F3XnsrhILYl3+kgrLGwGojiSFvrKmZZVik qhC8mABeDsS7qe5ImI1HRE/zrIO7LNAe5KcJofUsrvA4BB/W0MjGB0O27wPZzb7t wZ+J3uIaFp+3De3WCpvRSOkHzgT5xvFwgd3sEP99MmPnkc09F+wMusw5DPXbh0nf vmI4unw8l/ZVBJzfHQPNrN5Ov1TugLFoKCP5wy2WdQtc9LDP5LjvBmti5jlpV/E= -----END CERTIFICATE-----Generated at Sat Dec 20 13:43:29 2025 by rpki-client