This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa File: 0ec55b55-70d8-4c9a-a949-98332400c54c.roa (raw, json) Hash identifier: n6RDPWYGAf/cw3d6yYS62usJ338T9d96HpyjEEyTJE4= Subject key identifier: 5B:88:3A:EA:4F:3A:6E:2F:DF:A0:BC:BD:CC:B1:29:F3:11:19:21:BD Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 16FA5F71AEDB9FFFC473D9A5124262F2EB5D7F47 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa Signing time: Wed 10 Dec 2025 00:00:07 +0000 ROA not before: Wed 10 Dec 2025 00:00:07 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 31 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:fa:5f:71:ae:db:9f:ff:c4:73:d9:a5:12:42:62:f2:eb:5d:7f:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Dec 10 00:00:07 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=60e6bcfe22d328c5a3d4938367bfb7a84c6a24f12cae1979254915c90a831405, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cd:74:65:28:ea:70:02:2b:2d:96:cf:55:d9: d9:8d:1f:d2:b2:55:fc:5f:ed:30:3e:26:d3:65:ec: 6b:d8:2c:f1:2b:28:b4:84:58:59:31:76:80:ef:00: 55:69:bd:c1:84:34:97:cd:67:42:7d:14:5e:93:42: 34:b5:86:1e:9c:b7:21:14:4a:77:77:a3:9a:6e:c7: 15:71:fd:7a:ee:b5:0c:8c:1a:00:3f:00:b4:34:69: e1:33:67:5a:2a:d9:12:50:6b:ca:e8:f3:e7:98:23: e0:6c:90:88:07:f1:8b:fb:4a:61:fc:dc:33:b4:7d: 76:be:80:eb:6e:e9:03:ec:d6:88:47:62:28:36:37: 05:1c:ac:41:ea:41:13:46:e7:9a:b0:7c:9f:67:2f: ca:db:6a:c4:4d:40:90:b0:a9:96:a1:9b:c1:10:59: 14:41:f6:ea:3b:90:87:21:40:0e:5c:0f:55:63:41: df:94:c2:8f:98:91:e2:57:d3:e7:e2:40:a4:58:c6: 4a:f4:25:c0:6b:2c:ff:64:fb:f3:fe:00:be:4e:b0: 0d:18:4d:e5:10:5d:c7:0f:d5:f0:cb:00:6b:c3:0b: 28:5b:9c:94:37:1e:6c:d5:c1:62:63:b6:73:fa:57: 8f:66:37:53:59:bf:13:c0:6b:16:fa:a2:ba:95:34: f8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:88:3A:EA:4F:3A:6E:2F:DF:A0:BC:BD:CC:B1:29:F3:11:19:21:BD X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/48 Signature Algorithm: sha256WithRSAEncryption 7a:a1:da:81:18:05:59:c1:e5:ec:a4:b9:fa:0b:79:6e:67:fc: 62:0c:da:8f:e2:4d:0a:1a:12:92:17:a4:34:fb:3a:a1:3b:87: 28:3a:03:a8:59:b6:f7:85:35:eb:5e:b1:8a:e4:31:23:b4:2d: 43:2f:ff:3d:93:46:bd:0f:05:16:f6:eb:f0:62:54:ed:9a:c7: 81:b1:1b:43:25:20:99:3d:5d:ee:a5:7d:77:b8:f0:e8:6d:3a: 74:fc:e8:3c:b6:98:03:4e:37:ad:ca:de:b9:f9:33:55:bf:10: af:23:a8:7f:35:2c:67:df:16:fd:ea:20:0d:71:c3:06:be:8e: 51:d0:ac:94:ed:1a:e3:35:5a:6d:cb:58:26:2e:42:a1:32:71: b9:76:b0:c8:33:e0:a4:67:0b:ad:d5:73:9f:d5:aa:3c:a9:14: 3a:35:28:32:9f:cc:ba:f3:8d:32:70:6b:7b:17:3c:fe:ab:b2: 79:67:d4:b5:e2:a3:79:35:67:b0:68:91:b0:9b:8d:02:6f:32: ce:66:aa:65:06:70:89:33:5e:2c:53:bb:76:1f:04:b4:21:6c: 83:b5:f6:f6:9a:dc:8f:68:23:7e:6f:fb:60:e9:ae:66:88:9c: 72:29:9e:49:e7:e5:73:1f:62:a2:f4:ed:fd:e5:d6:68:89:83: 56:19:0e:2d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFvpfca7bn//Ec9mlEkJi8utdf0cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUxMjEwMDAwMDA3WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MGU2YmNmZTIyZDMyOGM1YTNkNDkzODM2N2JmYjdhODRj NmEyNGYxMmNhZTE5NzkyNTQ5MTVjOTBhODMxNDA1MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7zXRlKOpwAistls9V2dmNH9KyVfxf7TA+JtNl7GvYLPEr KLSEWFkxdoDvAFVpvcGENJfNZ0J9FF6TQjS1hh6ctyEUSnd3o5puxxVx/XrutQyM GgA/ALQ0aeEzZ1oq2RJQa8ro8+eYI+BskIgH8Yv7SmH83DO0fXa+gOtu6QPs1ohH Yig2NwUcrEHqQRNG55qwfJ9nL8rbasRNQJCwqZahm8EQWRRB9uo7kIchQA5cD1Vj Qd+Uwo+YkeJX0+fiQKRYxkr0JcBrLP9k+/P+AL5OsA0YTeUQXccP1fDLAGvDCyhb nJQ3HmzVwWJjtnP6V49mN1NZvxPAaxb6orqVNPg1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUW4g66k86bi/foLy9zLEp8xEZIb0wHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzBlYzU1YjU1LTcwZDgtNGM5YS1hOTQ5LTk4MzMyNDAwYzU0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBAHqh2oEYBVnB5eykufoLeW5n /GIM2o/iTQoaEpIXpDT7OqE7hyg6A6hZtveFNetesYrkMSO0LUMv/z2TRr0PBRb2 6/BiVO2ax4GxG0MlIJk9Xe6lfXe48OhtOnT86Dy2mANON63K3rn5M1W/EK8jqH81 LGffFv3qIA1xwwa+jlHQrJTtGuM1Wm3LWCYuQqEycbl2sMgz4KRnC63Vc5/Vqjyp FDo1KDKfzLrzjTJwa3sXPP6rsnln1LXio3k1Z7BokbCbjQJvMs5mqmUGcIkzXixT u3YfBLQhbIO19vaa3I9oI35v+2DprmaInHIpnknn5XMfYqL07f3l1miJg1YZDi0= -----END CERTIFICATE-----Generated at Mon Dec 29 14:51:20 2025 by rpki-client