This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa File: de58c588-4488-3729-a7e1-98130f91c66c.roa (raw, json) Hash identifier: gvShCbOHlvkKASn1Ujn0wQjrFMNtVv9ZKR8fxsPC+BY= Subject key identifier: 11:F7:27:A9:81:8E:DC:D7:A8:82:C5:5B:CF:D5:89:7E:6E:1E:C5:17 Certificate issuer: /CN=ca2c0e73-f7f7-4070-98aa-c78ef1752849 Certificate serial: 010D0C9F4328584BEC508B661356C263AE25F1C0 Authority key identifier: 76:CE:90:F2:9A:98:0C:BD:C1:58:74:E2:1C:58:59:B7:53:0A:4E:6A Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa Signing time: Thu 20 Nov 2025 14:00:39 +0000 ROA not before: Thu 20 Nov 2025 14:00:39 +0000 ROA not after: Wed 18 Feb 2026 14:00:39 +0000 asID: 32867 IP address blocks: 64.5.64.0/20 maxlen: 20 64.186.16.0/21 maxlen: 21 66.172.192.0/18 maxlen: 18 74.221.32.0/20 maxlen: 20 199.116.180.0/22 maxlen: 22 199.247.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/ca2c0e73-f7f7-4070-98aa-c78ef1752849.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/ca2c0e73-f7f7-4070-98aa-c78ef1752849.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 26 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:ec:50:8b:66:13:56:c2:63:ae:25:f1:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca2c0e73-f7f7-4070-98aa-c78ef1752849 Validity Not Before: Nov 20 14:00:39 2025 GMT Not After : Feb 18 14:00:39 2026 GMT Subject: CN=45d09a09-15e8-4401-b81b-99a67ce66332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:68:c3:5d:0b:67:00:fe:7a:98:1d:2f:23:a9: b6:d1:3d:a5:94:f1:05:ad:db:69:be:1c:f6:ef:81: 46:29:77:cc:ad:a1:2f:9a:88:86:69:34:f9:89:18: b8:82:52:4d:fd:be:82:f9:90:de:ea:34:99:8c:22: 2e:25:7f:f8:e4:da:eb:2b:ac:81:d7:66:4b:d6:98: 1f:2a:ee:ba:5e:fa:ce:a8:c8:4c:0a:2a:ba:91:6f: ff:02:d6:10:6d:10:fa:f9:52:cd:95:2c:bc:42:8a: 90:93:b9:ab:73:ce:1d:08:87:14:8e:bf:c5:92:fc: 55:32:19:55:23:01:8a:6e:4c:80:12:bb:e6:47:88: 7c:b9:bf:f4:8c:4e:69:a2:bb:2e:db:d1:db:ed:3f: 9c:ff:dd:d3:2c:5e:6d:67:80:d0:b5:04:e5:e3:65: 80:f8:7a:4d:92:de:19:5a:4c:be:04:f4:d5:51:e6: 33:56:64:17:5d:bf:38:c8:2b:19:c9:d0:16:56:50: 36:57:aa:a0:ce:22:df:84:21:aa:9c:be:18:17:02: 87:b3:cc:8e:18:9f:e6:f5:f8:3c:99:d2:b6:4c:ca: 31:13:31:eb:6a:a7:37:9a:45:c5:ee:81:9f:eb:d3: 92:f8:bd:43:53:6d:cb:24:77:88:d6:8f:0a:37:15: cb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:F7:27:A9:81:8E:DC:D7:A8:82:C5:5B:CF:D5:89:7E:6E:1E:C5:17 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/ca2c0e73-f7f7-4070-98aa-c78ef1752849.crl X509v3 Authority Key Identifier: keyid:76:CE:90:F2:9A:98:0C:BD:C1:58:74:E2:1C:58:59:B7:53:0A:4E:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer sbgp-ipAddrBlock: critical IPv4: 64.5.64.0/20 64.186.16.0/21 66.172.192.0/18 74.221.32.0/20 199.116.180.0/22 199.247.64.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 49:42:df:cc:cd:ff:fd:83:69:2b:72:d9:23:c0:22:11:70:32: 43:d4:e5:6b:0b:b1:5f:51:fa:ad:d8:88:32:b3:77:53:76:f1: f2:59:8a:91:49:1d:54:0f:a8:a5:9c:a4:37:37:9c:97:2b:30: 04:c9:dc:4e:df:77:7e:3d:84:d1:fd:11:b3:a5:49:bb:85:4f: 5b:ab:a6:59:c3:ad:2a:c2:b7:83:55:59:b5:79:76:44:12:5c: c6:e6:1e:2e:aa:dc:e9:4b:30:2d:ba:78:96:71:54:90:0d:38: 81:54:91:a1:7a:0c:32:14:97:6c:02:19:f3:57:76:a5:de:f6: 8f:65:84:06:39:5a:ac:08:2b:6e:f0:75:37:b1:08:ea:87:92: ad:f1:a2:be:06:07:8f:ee:8a:0e:4d:c6:3d:d3:c6:97:1f:c7: fe:8c:69:48:3f:d6:ea:c7:4b:92:e5:e0:79:4d:8f:de:d2:9d: ed:18:d8:84:ca:b8:f9:9a:cf:ff:c2:d0:1e:da:63:11:57:0d: d3:ed:91:25:ab:b8:be:2d:87:95:55:a3:f2:a7:ce:6c:d2:57: a7:98:d8:fd:a3:a6:14:b2:20:97:67:64:68:5a:6d:5f:91:3c: 8b:06:e9:67:d6:53:a5:b2:0d:9d:ae:6e:98:ee:7a:2c:52:e2: 1a:28:b4:0d -----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgIUAQ0Mn0MoWEvsUItmE1bCY64l8cAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkY2EyYzBlNzMtZjdmNy00MDcwLTk4YWEtYzc4ZWYxNzUy ODQ5MB4XDTI1MTEyMDE0MDAzOVoXDTI2MDIxODE0MDAzOVowLzEtMCsGA1UEAxMk NDVkMDlhMDktMTVlOC00NDAxLWI4MWItOTlhNjdjZTY2MzMyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhWjDXQtnAP56mB0vI6m20T2llPEFrdtpvhz2 74FGKXfMraEvmoiGaTT5iRi4glJN/b6C+ZDe6jSZjCIuJX/45NrrK6yB12ZL1pgf Ku66XvrOqMhMCiq6kW//AtYQbRD6+VLNlSy8QoqQk7mrc84dCIcUjr/FkvxVMhlV IwGKbkyAErvmR4h8ub/0jE5porsu29Hb7T+c/93TLF5tZ4DQtQTl42WA+HpNkt4Z Wky+BPTVUeYzVmQXXb84yCsZydAWVlA2V6qgziLfhCGqnL4YFwKHs8yOGJ/m9fg8 mdK2TMoxEzHraqc3mkXF7oGf69OS+L1DU23LJHeI1o8KNxXLRQIDAQABo4IDczCC A28wHQYDVR0OBBYEFBH3J6mBjtzXqILFW8/ViX5uHsUXMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9jYTJj MGU3My1mN2Y3LTQwNzAtOThhYS1jNzhlZjE3NTI4NDkvZGU1OGM1ODgtNDQ4OC0z NzI5LWE3ZTEtOTgxMzBmOTFjNjZjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvY2EyYzBlNzMtZjdmNy00MDcwLTk4 YWEtYzc4ZWYxNzUyODQ5L2NhMmMwZTczLWY3ZjctNDA3MC05OGFhLWM3OGVmMTc1 Mjg0OS5jcmwwHwYDVR0jBBgwFoAUds6Q8pqYDL3BWHTiHFhZt1MKTmowDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9jYTJjMGU3My1mN2Y3LTQwNzAtOThhYS1jNzhl ZjE3NTI4NDkuY2VyMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQEQAVAAwQD QLoQAwQGQqzAAwQESt0gAwQCx3S0AwQEx/dAMFQGA1UdIAEB/wRKMEgwRgYIKwYB BQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3Vy Y2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBAElC38zN//2DaSty 2SPAIhFwMkPU5WsLsV9R+q3YiDKzd1N28fJZipFJHVQPqKWcpDc3nJcrMATJ3E7f d349hNH9EbOlSbuFT1urplnDrSrCt4NVWbV5dkQSXMbmHi6q3OlLMC26eJZxVJAN OIFUkaF6DDIUl2wCGfNXdqXe9o9lhAY5WqwIK27wdTexCOqHkq3xor4GB4/uig5N xj3Txpcfx/6MaUg/1urHS5Ll4HlNj97Sne0Y2ITKuPmaz//C0B7aYxFXDdPtkSWr uL4th5VVo/KnzmzSV6eY2P2jphSyIJdnZGhabV+RPIsG6WfWU6WyDZ2ubpjueixS 4hootA0= -----END CERTIFICATE-----Generated at Tue Nov 25 09:12:58 2025 by rpki-client