This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/81b84b72-b720-494f-b1f4-ec011eb6a41b.roa File: 81b84b72-b720-494f-b1f4-ec011eb6a41b.roa (raw, json) Hash identifier: CuA1aynVJVWIJ84Nz69pGIpVaxs8Ib4Y4xqfwPA/R5w= Subject key identifier: BC:BC:06:29:00:97:EF:1D:C5:1A:5B:2A:A7:4C:0F:85:9F:D1:14:61 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 38BF7A0DD3AEAADA888F66FEAEC53801D784D6C7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/81b84b72-b720-494f-b1f4-ec011eb6a41b.roa Signing time: Thu 13 Nov 2025 01:50:44 +0000 ROA not before: Thu 13 Nov 2025 01:50:44 +0000 ROA not after: Thu 18 Dec 2025 23:59:59 +0000 asID: 801 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 23 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:bf:7a:0d:d3:ae:aa:da:88:8f:66:fe:ae:c5:38:01:d7:84:d6:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 13 01:50:44 2025 GMT Not After : Dec 18 23:59:59 2025 GMT Subject: serialNumber=5d38c3d3723ff5434c285c6d63a70e253930046eecc38f187adc0663c603ad91, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:92:e5:c3:51:f5:79:d0:b6:04:69:7d:f3:0b: 7c:4c:fd:fd:f7:5a:1b:fc:4f:5a:73:aa:e7:25:9a: 83:42:91:72:be:5d:9d:2b:e0:89:8b:3a:48:17:0a: 6b:b9:9a:d6:19:c2:f3:90:dc:91:03:b4:a7:cf:b1: 81:3f:c1:61:43:d9:b5:36:31:6e:b8:13:c9:30:f6: 17:4f:35:23:69:15:de:36:49:31:ea:52:88:38:95: 70:be:1b:88:d3:e2:18:d6:66:e8:bf:0f:3b:eb:f0: 9a:62:df:b1:63:df:47:4d:b0:dc:90:68:0e:04:86: ec:fb:e8:a0:21:e1:f7:dd:ff:d2:16:06:a8:d4:94: 65:9d:9c:da:22:d5:a7:a1:86:6d:42:73:86:c7:5a: 4a:74:63:81:25:95:55:99:a6:b6:b5:1c:f3:bb:56: bf:16:a8:2d:cd:13:dc:0d:e8:02:40:54:81:cf:f9: 3a:6c:19:a9:01:85:01:80:2e:7d:2a:00:46:b9:13: fb:f1:5e:77:e7:a9:e0:7b:88:15:9e:a6:7c:7a:a0: b8:06:31:28:21:fb:c8:46:74:09:43:ac:af:eb:8d: 58:58:98:ae:05:9f:dd:6b:4c:c4:cc:e5:4a:71:81: 32:db:8e:d7:2f:1b:db:16:9a:36:22:49:97:77:db: 58:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:BC:06:29:00:97:EF:1D:C5:1A:5B:2A:A7:4C:0F:85:9F:D1:14:61 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/81b84b72-b720-494f-b1f4-ec011eb6a41b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 33:c3:74:79:7e:bb:e3:68:04:c5:23:a6:48:37:dd:7d:e7:8e: d7:e7:f6:a1:1b:a8:19:3a:af:64:f7:db:8f:24:d8:e5:63:33: 80:91:67:1c:62:86:95:08:7c:88:7e:3f:2a:90:ed:fc:47:56: fe:0e:ce:29:0b:36:9c:a9:82:a7:81:02:51:f7:da:ea:b5:27: e0:a6:e3:7e:58:d9:84:5d:52:12:c9:da:e3:a6:dd:a4:98:96: 6e:10:e8:97:53:62:84:f2:fb:80:12:4d:14:31:c6:f3:22:a2: 4b:98:31:ba:86:ac:2c:ee:82:15:38:66:a7:82:2c:ed:cd:29: e4:d1:24:32:fd:42:89:79:b7:8b:2d:6d:db:2f:f6:fa:f1:f9: 8e:b1:24:60:47:e0:ec:9d:f9:8a:ee:e9:21:e4:f9:8a:20:a4: b0:bf:fe:6b:cd:3b:d5:eb:01:4f:e0:e4:b0:ec:84:cb:2e:4b: 04:27:3f:c5:82:5b:60:b4:e7:42:2e:59:45:14:ff:74:de:4c: df:22:41:d7:d9:f9:17:fd:0e:25:f1:7d:ec:cd:17:b5:d8:f6: 62:03:a4:5d:62:68:c2:3a:b1:52:59:e1:25:19:dc:3b:77:c7: 5c:35:14:01:83:40:c0:fd:9c:4c:1e:8b:27:cb:eb:02:99:cb: 0f:07:9a:cd -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUOL96DdOuqtqIj2b+rsU4AdeE1scwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTEzMDE1MDQ0WhcNMjUxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDM4YzNkMzcyM2ZmNTQzNGMyODVjNmQ2M2E3MGUyNTM5 MzAwNDZlZWNjMzhmMTg3YWRjMDY2M2M2MDNhZDkxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAkuXDUfV50LYEaX3zC3xM/f33Whv8T1pzquclmoNCkXK+ XZ0r4ImLOkgXCmu5mtYZwvOQ3JEDtKfPsYE/wWFD2bU2MW64E8kw9hdPNSNpFd42 STHqUog4lXC+G4jT4hjWZui/Dzvr8Jpi37Fj30dNsNyQaA4Ehuz76KAh4ffd/9IW BqjUlGWdnNoi1aehhm1Cc4bHWkp0Y4EllVWZpra1HPO7Vr8WqC3NE9wN6AJAVIHP +TpsGakBhQGALn0qAEa5E/vxXnfnqeB7iBWepnx6oLgGMSgh+8hGdAlDrK/rjVhY mK4Fn91rTMTM5UpxgTLbjtcvG9sWmjYiSZd321gJAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUvLwGKQCX7x3FGlsqp0wPhZ/RFGEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzgxYjg0YjcyLWI3MjAtNDk0Zi1iMWY0LWVjMDExZWI2YTQxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQAzw3R5frvjaATFI6ZIN919547X 5/ahG6gZOq9k99uPJNjlYzOAkWccYoaVCHyIfj8qkO38R1b+Ds4pCzacqYKngQJR 99rqtSfgpuN+WNmEXVISydrjpt2kmJZuEOiXU2KE8vuAEk0UMcbzIqJLmDG6hqws 7oIVOGangiztzSnk0SQy/UKJebeLLW3bL/b68fmOsSRgR+DsnfmK7ukh5PmKIKSw v/5rzTvV6wFP4OSw7ITLLksEJz/FgltgtOdCLllFFP903kzfIkHX2fkX/Q4l8X3s zRe12PZiA6RdYmjCOrFSWeElGdw7d8dcNRQBg0DA/ZxMHosny+sCmcsPB5rN -----END CERTIFICATE-----Generated at Fri Nov 21 17:46:41 2025 by rpki-client