This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e59813d-926c-4866-9022-8b9ec2fee201.roa File: 0e59813d-926c-4866-9022-8b9ec2fee201.roa (raw, json) Hash identifier: oCIWnXTLfNPgSehoItXl2OLCb+A5g7xUcuaij4C84Bw= Subject key identifier: 52:96:EE:F8:26:C3:C4:BD:83:11:77:83:A2:36:9C:5D:0B:1F:07:98 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 329C4643B9DF03104A72D3D2E880B8C08911E62D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e59813d-926c-4866-9022-8b9ec2fee201.roa Signing time: Tue 18 Nov 2025 00:30:09 +0000 ROA not before: Tue 18 Nov 2025 00:30:09 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2631:0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 23 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:9c:46:43:b9:df:03:10:4a:72:d3:d2:e8:80:b8:c0:89:11:e6:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 18 00:30:09 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=ddbe2867102cec7c5579b970f50583f65ada90e05bc4a2e619033053377b7235, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c9:b3:b7:39:37:24:b2:47:f0:8e:68:d2:1d: 4b:61:6d:70:66:9b:77:fb:57:22:48:03:5c:64:3d: e8:1e:11:5c:2d:55:cd:b9:43:13:59:ff:d5:a1:3e: ff:b9:bc:21:7f:55:5c:64:f0:4c:d7:09:17:fb:e1: c7:f8:2b:00:de:4f:0f:ef:7b:2e:44:bb:ef:7a:e0: 54:f6:19:34:2a:9a:fc:d8:c6:5c:9b:19:53:7b:69: 7a:97:aa:52:b5:df:bf:58:40:70:e3:fc:08:1e:1a: 19:e1:0f:22:3b:aa:1d:d3:64:dc:71:6e:54:91:da: 54:6a:50:52:d7:b7:f5:11:9b:45:20:aa:54:55:db: 12:81:12:43:29:76:0b:65:7a:52:8a:6b:80:f5:75: 64:71:28:ec:08:02:b7:c5:bb:ed:ac:ba:b7:c8:9b: 97:4d:f3:d8:63:9b:3f:56:4e:aa:98:7b:36:69:c9: 34:6d:37:cb:65:04:f5:23:67:32:ee:4e:7d:af:d7: e0:3d:ce:6d:e1:af:04:2d:c1:de:fb:19:56:01:dd: 4c:34:ff:24:ac:55:7f:5a:ff:50:c6:03:15:8c:ec: b9:c0:d3:08:1e:ca:fd:d8:b1:03:2d:a7:f9:1f:70: 8a:db:48:65:ca:6e:72:e1:b7:04:a6:f0:fb:02:d1: b3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:96:EE:F8:26:C3:C4:BD:83:11:77:83:A2:36:9C:5D:0B:1F:07:98 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e59813d-926c-4866-9022-8b9ec2fee201.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2631:0:1::/48 Signature Algorithm: sha256WithRSAEncryption 32:58:4f:81:40:3f:b3:73:17:66:1e:65:29:d4:3e:09:2e:a7: 6a:0d:cc:ba:79:4f:fa:fb:a0:b3:30:04:28:2a:e2:66:ec:d5: 45:9c:15:73:ce:b0:f7:97:b0:e6:19:1c:5e:80:5c:0c:84:6c: c8:83:90:b0:6e:16:23:6e:b9:47:bb:51:76:2f:94:8a:d4:96: 1b:fc:dc:07:a1:07:77:7f:26:91:3d:e4:b7:62:23:95:2f:8c: de:f2:c6:2b:fb:26:da:ca:2e:01:ee:cf:f7:29:ec:5d:41:d9: 86:db:3e:40:f7:53:ee:52:bc:aa:50:6b:8a:44:a1:01:6d:84: e5:90:74:e2:e6:b2:98:92:d8:e7:e5:b8:a4:5a:26:46:fd:90: 20:0f:3b:5a:c5:78:ee:10:83:1b:e4:33:5d:a7:93:a1:02:89: e8:f1:9f:15:58:84:fa:18:61:92:58:3d:7d:da:30:35:4b:68: 48:46:49:88:82:48:ee:a5:0d:28:e1:c3:0d:ac:4e:4e:c8:e4: bc:b2:3a:71:4a:08:19:cb:2f:69:d4:e1:6f:0b:71:d9:ed:36: 79:e6:7a:1b:fd:ed:f6:f9:d8:08:c9:ec:04:57:dc:19:2d:33: 68:a8:26:22:75:54:e5:f3:4b:8e:66:e6:fa:62:01:07:0f:65: fa:3e:24:ac -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMpxGQ7nfAxBKctPS6IC4wIkR5i0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTE4MDAzMDA5WhcNMjYwMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGJlMjg2NzEwMmNlYzdjNTU3OWI5NzBmNTA1ODNmNjVh ZGE5MGUwNWJjNGEyZTYxOTAzMzA1MzM3N2I3MjM1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCybO3OTckskfwjmjSHUthbXBmm3f7VyJIA1xkPegeEVwt Vc25QxNZ/9WhPv+5vCF/VVxk8EzXCRf74cf4KwDeTw/vey5Eu+964FT2GTQqmvzY xlybGVN7aXqXqlK1379YQHDj/AgeGhnhDyI7qh3TZNxxblSR2lRqUFLXt/URm0Ug qlRV2xKBEkMpdgtlelKKa4D1dWRxKOwIArfFu+2surfIm5dN89hjmz9WTqqYezZp yTRtN8tlBPUjZzLuTn2v1+A9zm3hrwQtwd77GVYB3Uw0/ySsVX9a/1DGAxWM7LnA 0wgeyv3YsQMtp/kfcIrbSGXKbnLhtwSm8PsC0bMJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUpbu+CbDxL2DEXeDojacXQsfB5gwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBlNTk4MTNkLTkyNmMtNDg2Ni05MDIyLThiOWVjMmZlZTIwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmMQAAAAEwDQYJKoZIhvcNAQELBQADggEBADJYT4FAP7NzF2YeZSnUPgku p2oNzLp5T/r7oLMwBCgq4mbs1UWcFXPOsPeXsOYZHF6AXAyEbMiDkLBuFiNuuUe7 UXYvlIrUlhv83AehB3d/JpE95LdiI5UvjN7yxiv7JtrKLgHuz/cp7F1B2YbbPkD3 U+5SvKpQa4pEoQFthOWQdOLmspiS2OfluKRaJkb9kCAPO1rFeO4QgxvkM12nk6EC iejxnxVYhPoYYZJYPX3aMDVLaEhGSYiCSO6lDSjhww2sTk7I5LyyOnFKCBnLL2nU 4W8LcdntNnnmehv97fb52AjJ7ARX3BktM2ioJiJ1VOXzS45m5vpiAQcPZfo+JKw= -----END CERTIFICATE-----Generated at Fri Nov 21 17:45:29 2025 by rpki-client