This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa File: da1fbb90-a595-4798-8d13-e5183edbf500.roa (raw, json) Hash identifier: 2f5lCmCOMaisRD3Q+vgh/ks9iUYBj2yDOlhp/9gasqs= Subject key identifier: DD:EC:7C:0C:A3:BB:4D:AC:BE:5C:1D:C6:4A:4C:97:61:AB:45:29:E5 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2F601EB7866CD867D92591C7271D577E09ECBD4D Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa Signing time: Tue 25 Nov 2025 19:31:06 +0000 ROA not before: Tue 25 Nov 2025 19:31:06 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:612::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 30 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:60:1e:b7:86:6c:d8:67:d9:25:91:c7:27:1d:57:7e:09:ec:bd:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 25 19:31:06 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=488baf6c6223240449332abf8db8df6e0562aa6deea72a39f6bad9ae5f091753, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:43:88:b8:69:2d:a8:a0:82:8e:6f:f1:a2:50: 22:30:e9:6d:d7:b3:16:dd:ef:a1:f3:47:0f:63:26: ea:25:5b:37:08:f1:8e:99:87:15:7a:82:ac:fb:35: 51:b7:73:c9:79:36:3e:cb:24:9d:15:2c:a5:30:c6: c9:89:f8:5a:ec:42:59:9e:9e:06:6a:c2:ba:fc:57: e8:d3:23:e1:e6:67:e7:e2:76:e2:04:3b:45:96:35: e9:98:d4:f5:e9:0b:e2:77:bf:1b:91:7b:5c:b7:f8: ad:3d:e9:d8:bc:43:0c:14:e2:10:ec:2d:89:96:c7: 94:14:6f:b6:6d:bf:18:f0:ff:c1:53:02:c4:92:6d: c9:7c:a0:31:f7:60:fa:22:ee:d7:93:6f:59:a4:23: bf:c5:c2:90:81:72:05:89:b2:2a:be:54:cf:8e:6c: 0a:8d:9c:fb:e8:43:b1:1a:d9:8a:ed:b7:4f:e8:4b: 7b:d2:46:d5:b0:1c:82:56:da:9d:ac:22:76:c6:1c: 6e:85:8d:3e:ca:79:86:4c:05:ff:c9:b8:fd:37:23: 86:e7:a1:c3:00:b8:82:37:93:8e:41:8e:dc:4d:25: 2f:04:cb:2c:01:9b:e0:b6:70:98:1e:2a:81:c4:ed: 27:d7:a2:28:53:a0:19:19:cd:2e:af:a7:db:4b:09: fc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:EC:7C:0C:A3:BB:4D:AC:BE:5C:1D:C6:4A:4C:97:61:AB:45:29:E5 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:612::/48 Signature Algorithm: sha256WithRSAEncryption 93:ea:43:f4:ef:06:11:0b:a4:51:a1:93:f7:b2:23:95:7d:ba: 28:5b:cb:9c:00:39:be:0e:09:9a:cf:6b:2d:6a:f6:1b:e6:16: 93:c5:f1:be:19:0a:a8:09:6b:20:6d:bc:10:c9:8a:48:0b:9c: 03:f3:3b:db:26:41:96:6a:41:85:60:6e:88:1f:1c:db:d9:fd: 39:73:8e:5a:93:7c:8f:5e:35:79:ff:0f:66:41:e6:de:a4:dd: 27:31:fe:b7:8e:38:6c:55:f0:be:e8:da:6d:18:f8:e9:31:12: b9:bc:98:9b:8d:90:35:c4:06:b7:59:25:e6:32:1e:f5:44:32: 40:bd:cc:5d:21:22:bc:81:c6:b9:fa:a2:27:84:87:e4:69:22: 74:6e:72:13:bf:b1:55:4a:4e:d9:ae:0b:d6:70:f8:92:19:a1: 62:44:dc:7c:04:6e:f9:cc:6e:49:91:c7:88:1f:bc:c8:07:1a: c0:63:aa:f9:b2:04:df:e5:fd:d2:58:f5:e6:a4:44:eb:e7:0d: bb:44:ed:b1:89:a3:ae:5f:0a:c1:b1:96:fb:ec:13:9b:2c:31: e9:77:53:de:c5:33:8a:64:dd:75:59:8e:c5:d4:0f:15:5d:a4: 0b:fc:98:fd:01:31:82:1a:b8:b8:09:15:c7:59:1a:a5:ce:d2: 3e:cc:f0:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUL2Aet4Zs2GfZJZHHJx1XfgnsvU0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUxMTI1MTkzMTA2WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODhiYWY2YzYyMjMyNDA0NDkzMzJhYmY4ZGI4ZGY2ZTA1 NjJhYTZkZWVhNzJhMzlmNmJhZDlhZTVmMDkxNzUzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNQ4i4aS2ooIKOb/GiUCIw6W3Xsxbd76HzRw9jJuolWzcI 8Y6ZhxV6gqz7NVG3c8l5Nj7LJJ0VLKUwxsmJ+FrsQlmengZqwrr8V+jTI+HmZ+fi duIEO0WWNemY1PXpC+J3vxuRe1y3+K096di8QwwU4hDsLYmWx5QUb7Ztvxjw/8FT AsSSbcl8oDH3YPoi7teTb1mkI7/FwpCBcgWJsiq+VM+ObAqNnPvoQ7Ea2Yrtt0/o S3vSRtWwHIJW2p2sInbGHG6FjT7KeYZMBf/JuP03I4bnocMAuII3k45BjtxNJS8E yywBm+C2cJgeKoHE7SfXoihToBkZzS6vp9tLCfzjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3ex8DKO7Tay+XB3GSkyXYatFKeUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RhMWZiYjkwLWE1OTUtNDc5OC04ZDEzLWU1MTgzZWRiZjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhIwDQYJKoZIhvcNAQELBQADggEBAJPqQ/TvBhELpFGhk/eyI5V9 uihby5wAOb4OCZrPay1q9hvmFpPF8b4ZCqgJayBtvBDJikgLnAPzO9smQZZqQYVg bogfHNvZ/TlzjlqTfI9eNXn/D2ZB5t6k3Scx/reOOGxV8L7o2m0Y+OkxErm8mJuN kDXEBrdZJeYyHvVEMkC9zF0hIryBxrn6oieEh+RpInRuchO/sVVKTtmuC9Zw+JIZ oWJE3HwEbvnMbkmRx4gfvMgHGsBjqvmyBN/l/dJY9eakROvnDbtE7bGJo65fCsGx lvvsE5ssMel3U97FM4pk3XVZjsXUDxVdpAv8mP0BMYIauLgJFcdZGqXO0j7M8OU= -----END CERTIFICATE-----Generated at Sat Nov 29 14:31:33 2025 by rpki-client