This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/8aa0414c-8126-3e49-be44-eb2af2892430.roa File: 8aa0414c-8126-3e49-be44-eb2af2892430.roa (raw, json) Hash identifier: fQuCvxZBTvDOE9Lkv9rLRdx15vD0UHAZBYkywDt82HE= Subject key identifier: 09:6C:A8:62:C0:80:C6:F7:E7:34:5E:1E:AA:63:D8:E1:62:49:BE:B9 Certificate issuer: /CN=2bc601f7-daff-4d8b-8556-b61503268309 Certificate serial: 010D0C9F4328584C45A6BE5837774CE8409DE820 Authority key identifier: DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/8aa0414c-8126-3e49-be44-eb2af2892430.roa Signing time: Mon 22 Dec 2025 14:00:39 +0000 ROA not before: Mon 22 Dec 2025 14:00:39 +0000 ROA not after: Sun 22 Mar 2026 13:00:39 +0000 asID: 7155 IP address blocks: 72.173.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 28 Jan 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:45:a6:be:58:37:77:4c:e8:40:9d:e8:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bc601f7-daff-4d8b-8556-b61503268309 Validity Not Before: Dec 22 14:00:39 2025 GMT Not After : Mar 22 13:00:39 2026 GMT Subject: CN=57bb02ff-fffc-4be1-9df0-312bed287605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fd:0d:6a:e0:45:86:88:4a:cd:9b:b1:20:a7: 9b:a2:ab:9e:56:95:4a:c8:d1:66:de:e9:51:09:d0: e5:db:a2:e4:0c:d0:47:64:01:c3:06:07:24:56:df: c0:3d:49:f5:83:c5:5c:bf:99:64:33:78:51:f1:54: 01:9b:fe:26:5e:b9:92:0b:c7:10:53:9c:a7:e2:27: 16:e1:1a:62:07:59:23:31:73:77:eb:c5:35:cb:3f: 71:5f:fb:2d:fc:7e:80:df:7a:72:30:e3:18:60:3e: 89:70:c6:c8:f9:f7:70:a1:a8:34:3d:fa:5c:4c:1f: e7:b7:05:7f:6e:49:ed:f5:c2:7a:24:28:11:57:9f: cb:b2:65:ee:6a:86:81:c0:d6:28:a4:5d:16:bc:93: aa:fe:09:ae:c5:0c:ad:89:ba:3b:7b:62:f8:19:1d: 3e:8f:6c:a4:f0:34:39:7a:ac:4d:c5:37:32:9e:d7: 2b:46:89:54:fb:eb:da:61:da:2f:64:eb:d1:d2:70: 2d:10:08:38:3c:d5:b6:d8:8d:9e:5e:e6:41:96:41: 7d:39:af:04:ca:e7:79:92:73:d8:a7:7d:72:7c:f1: 67:22:20:81:31:9c:8e:eb:4f:ee:04:37:c6:8d:ab: 97:ae:6e:65:8b:0b:a1:3c:fc:dc:c8:67:b6:a3:b6: 69:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:6C:A8:62:C0:80:C6:F7:E7:34:5E:1E:AA:63:D8:E1:62:49:BE:B9 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/8aa0414c-8126-3e49-be44-eb2af2892430.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl X509v3 Authority Key Identifier: keyid:DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer sbgp-ipAddrBlock: critical IPv4: 72.173.42.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 9b:4f:10:7b:14:b1:d7:1b:a2:15:58:1f:e7:73:11:79:4f:ec: 2f:9c:a0:9b:fd:e9:a1:c4:f6:d4:13:bd:62:93:f7:3b:a2:2b: 82:cc:ab:40:76:c5:6a:5a:f5:a0:a4:90:ad:a9:8d:04:7a:75: d0:38:01:21:bc:79:2c:6e:a3:25:73:be:a7:69:47:b1:6b:eb: 0a:be:3d:8e:75:15:fe:fc:13:72:55:d6:e6:eb:0d:c2:34:36: de:71:3a:10:33:75:d9:16:2d:9c:a1:8e:58:ce:3c:0d:be:8a: f4:cd:0a:ba:c9:e2:60:cb:29:26:5e:5a:5b:5a:f0:92:a1:ba: 0e:a4:e2:00:5e:02:db:93:47:53:04:86:e6:74:98:7c:0a:42: 7b:af:b5:56:3b:23:2f:95:ac:9b:a4:47:dd:2f:02:45:26:ff: 43:b9:f8:55:ed:1a:be:47:f0:94:9c:26:01:6a:62:bf:8a:ed: 94:17:0b:3a:b9:df:b7:c1:f5:f2:fe:6c:81:2d:3d:0f:d7:bb: 8c:8f:73:dc:8d:fd:8f:bb:8e:28:8b:d6:17:36:5e:a4:1c:58: 61:93:af:33:78:96:58:d2:fd:76:eb:35:4f:24:62:db:44:16: d2:04:f6:f4:90:fb:e2:6f:88:94:f5:a5:a2:a8:09:18:e9:9f: fa:03:88:e7 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWExFpr5YN3dM6ECd6CAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmJjNjAxZjctZGFmZi00ZDhiLTg1NTYtYjYxNTAzMjY4 MzA5MB4XDTI1MTIyMjE0MDAzOVoXDTI2MDMyMjEzMDAzOVowLzEtMCsGA1UEAxMk NTdiYjAyZmYtZmZmYy00YmUxLTlkZjAtMzEyYmVkMjg3NjA1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEApv0NauBFhohKzZuxIKeboqueVpVKyNFm3ulR CdDl26LkDNBHZAHDBgckVt/APUn1g8Vcv5lkM3hR8VQBm/4mXrmSC8cQU5yn4icW 4RpiB1kjMXN368U1yz9xX/st/H6A33pyMOMYYD6JcMbI+fdwoag0PfpcTB/ntwV/ bknt9cJ6JCgRV5/LsmXuaoaBwNYopF0WvJOq/gmuxQytibo7e2L4GR0+j2yk8DQ5 eqxNxTcyntcrRolU++vaYdovZOvR0nAtEAg4PNW22I2eXuZBlkF9Oa8Eyud5knPY p31yfPFnIiCBMZyO60/uBDfGjauXrm5liwuhPPzcyGe2o7ZpUQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFAlsqGLAgMb35zReHqpj2OFiSb65MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2 MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1MDMyNjgzMDkvOGFhMDQxNGMtODEyNi0z ZTQ5LWJlNDQtZWIyYWYyODkyNDMwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvMmJjNjAxZjctZGFmZi00ZDhiLTg1 NTYtYjYxNTAzMjY4MzA5LzJiYzYwMWY3LWRhZmYtNGQ4Yi04NTU2LWI2MTUwMzI2 ODMwOS5jcmwwHwYDVR0jBBgwFoAU2sjvKarps5Jjg0Ir3yR6haVOgxcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1 MDMyNjgzMDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASK0qMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJtPEHsUsdcbohVYH+dzEXlP7C+coJv96aHE9tQTvWKT9zuiK4LMq0B2 xWpa9aCkkK2pjQR6ddA4ASG8eSxuoyVzvqdpR7Fr6wq+PY51Ff78E3JV1ubrDcI0 Nt5xOhAzddkWLZyhjljOPA2+ivTNCrrJ4mDLKSZeWlta8JKhug6k4gBeAtuTR1ME huZ0mHwKQnuvtVY7Iy+VrJukR90vAkUm/0O5+FXtGr5H8JScJgFqYr+K7ZQXCzq5 37fB9fL+bIEtPQ/Xu4yPc9yN/Y+7jiiL1hc2XqQcWGGTrzN4lljS/XbrNU8kYttE FtIE9vSQ++JviJT1paKoCRjpn/oDiOc= -----END CERTIFICATE-----Generated at Tue Jan 27 04:33:17 2026 by rpki-client