This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/40a22eee-4031-3336-8b2d-96d68d61d8a9.roa File: 40a22eee-4031-3336-8b2d-96d68d61d8a9.roa (raw, json) Hash identifier: lcoedP/gOMfD3pUyB2i/jkjR5LLtXWgI5p57WtgyiVQ= Subject key identifier: C5:BA:38:24:5C:62:4A:5E:5E:6C:29:32:70:60:F5:A6:CC:58:3D:4E Certificate issuer: /CN=d44ce5f4-28a9-4c1f-b029-cc35b3e3950e Certificate serial: 010D0C9F4328584CAE5E79E202EA5BC73A0E8B00 Authority key identifier: D2:70:53:AA:1E:41:4B:CD:A4:FF:3C:F8:BC:B0:DC:1C:2B:B6:0C:52 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/40a22eee-4031-3336-8b2d-96d68d61d8a9.roa Signing time: Thu 29 Jan 2026 02:00:32 +0000 ROA not before: Thu 29 Jan 2026 02:00:32 +0000 ROA not after: Wed 29 Apr 2026 01:00:32 +0000 asID: 35998 IP address blocks: 67.21.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 12 Feb 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:ae:5e:79:e2:02:ea:5b:c7:3a:0e:8b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d44ce5f4-28a9-4c1f-b029-cc35b3e3950e Validity Not Before: Jan 29 02:00:32 2026 GMT Not After : Apr 29 01:00:32 2026 GMT Subject: CN=a6a9bb9c-f655-4499-abbe-271f00ac6928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e7:f9:db:03:52:20:7b:dc:ac:28:5e:f7:ca: be:b1:df:38:c5:32:d7:56:64:fb:95:38:39:c6:b2: 9e:0a:2e:e4:fa:7e:24:28:b4:68:b5:9a:c8:d4:fa: f2:3d:26:33:d7:09:66:62:7d:c4:f1:e3:fa:28:58: 27:a0:99:fd:db:e8:17:d1:c2:f6:ee:a3:7a:66:49: 20:56:99:3a:9c:c5:16:0b:ce:e1:33:d0:fc:f3:5c: 00:d8:53:a9:10:ad:b8:bb:4f:52:54:ed:cd:37:71: a7:0e:8d:3e:4c:30:75:e6:77:79:47:bf:f2:b0:2a: a7:98:85:21:49:b3:00:5d:a9:1e:17:4b:cf:96:87: 85:23:38:19:3b:e8:9d:7a:f3:32:37:24:9b:aa:68: d0:2a:09:5a:de:37:95:a8:86:60:79:38:81:14:7e: d2:76:d6:f5:07:62:4e:f2:37:0d:22:21:a3:89:78: 0f:48:a1:56:18:9a:ef:2a:db:84:34:ab:b2:b4:e7: 9d:6c:29:44:55:7a:ec:9b:d4:4d:f8:a3:e3:fa:17: 60:0e:3d:7b:49:f6:e8:9a:5f:a7:8c:38:7a:17:64: a7:5b:a2:c7:40:bc:04:2e:68:c3:3b:e6:af:db:9f: 1a:e3:0b:05:5f:40:6b:8e:fe:96:4b:84:d4:90:bb: c3:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:BA:38:24:5C:62:4A:5E:5E:6C:29:32:70:60:F5:A6:CC:58:3D:4E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/40a22eee-4031-3336-8b2d-96d68d61d8a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.crl X509v3 Authority Key Identifier: keyid:D2:70:53:AA:1E:41:4B:CD:A4:FF:3C:F8:BC:B0:DC:1C:2B:B6:0C:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.cer sbgp-ipAddrBlock: critical IPv4: 67.21.152.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 98:c6:dc:fc:2f:12:3c:3b:a5:e5:09:93:b7:7c:e6:f2:97:9c: e1:b9:9a:8d:1d:9f:de:75:9c:f3:f2:c9:d6:63:c3:99:d1:7e: e0:19:16:b3:b3:d6:2a:05:7b:97:3a:ed:8e:39:b4:c8:eb:7e: 1b:3f:d5:11:ef:04:3a:8e:49:c6:7e:eb:54:50:e0:6a:15:79: 23:b8:59:f8:22:97:da:1e:65:31:1c:a8:50:98:56:52:36:66: d9:d3:50:df:2e:9e:8d:3a:75:0d:8f:ac:1d:e0:35:16:d1:34: 0e:d7:52:0e:82:6c:17:7c:85:c1:b8:19:6a:fc:65:e9:8f:3f: ed:04:fb:e5:fb:b6:bb:2f:a4:52:0e:cc:c7:b1:87:70:4b:fa: 2c:c5:3d:1d:44:cc:a2:20:c1:b0:42:41:8d:90:20:f4:8e:00: 49:8c:d5:e3:f7:54:df:51:95:1e:cc:48:c9:c0:34:7a:01:b5: 41:1a:c4:90:89:56:2e:b1:5a:c2:c3:83:21:1b:66:15:6d:1d: de:f4:72:3b:3c:63:3d:69:2d:c7:62:50:52:e4:52:0a:59:b7: f8:fa:e6:38:64:10:11:7a:6a:b2:7d:30:71:00:b8:e1:52:ea: 00:a2:00:dc:b3:ce:ec:b4:77:ca:63:a9:19:04:6e:c6:ba:8e: 9c:18:62:4b -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEyuXnniAupbxzoOiwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDQ0Y2U1ZjQtMjhhOS00YzFmLWIwMjktY2MzNWIzZTM5 NTBlMB4XDTI2MDEyOTAyMDAzMloXDTI2MDQyOTAxMDAzMlowLzEtMCsGA1UEAxMk YTZhOWJiOWMtZjY1NS00NDk5LWFiYmUtMjcxZjAwYWM2OTI4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsef52wNSIHvcrChe98q+sd84xTLXVmT7lTg5 xrKeCi7k+n4kKLRotZrI1PryPSYz1wlmYn3E8eP6KFgnoJn92+gX0cL27qN6Zkkg Vpk6nMUWC87hM9D881wA2FOpEK24u09SVO3NN3GnDo0+TDB15nd5R7/ysCqnmIUh SbMAXakeF0vPloeFIzgZO+idevMyNySbqmjQKgla3jeVqIZgeTiBFH7Sdtb1B2JO 8jcNIiGjiXgPSKFWGJrvKtuENKuytOedbClEVXrsm9RN+KPj+hdgDj17Sfboml+n jDh6F2SnW6LHQLwELmjDO+av258a4wsFX0Brjv6WS4TUkLvDNQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFMW6OCRcYkpeXmwpMnBg9abMWD1OMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kNDRj ZTVmNC0yOGE5LTRjMWYtYjAyOS1jYzM1YjNlMzk1MGUvNDBhMjJlZWUtNDAzMS0z MzM2LThiMmQtOTZkNjhkNjFkOGE5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZDQ0Y2U1ZjQtMjhhOS00YzFmLWIw MjktY2MzNWIzZTM5NTBlL2Q0NGNlNWY0LTI4YTktNGMxZi1iMDI5LWNjMzViM2Uz OTUwZS5jcmwwHwYDVR0jBBgwFoAU0nBTqh5BS82k/zz4vLDcHCu2DFIwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kNDRjZTVmNC0yOGE5LTRjMWYtYjAyOS1jYzM1 YjNlMzk1MGUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCQxWYMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJjG3PwvEjw7peUJk7d85vKXnOG5mo0dn951nPPyydZjw5nRfuAZFrOz 1ioFe5c67Y45tMjrfhs/1RHvBDqOScZ+61RQ4GoVeSO4Wfgil9oeZTEcqFCYVlI2 ZtnTUN8uno06dQ2PrB3gNRbRNA7XUg6CbBd8hcG4GWr8ZemPP+0E++X7trsvpFIO zMexh3BL+izFPR1EzKIgwbBCQY2QIPSOAEmM1eP3VN9RlR7MSMnANHoBtUEaxJCJ Vi6xWsLDgyEbZhVtHd70cjs8Yz1pLcdiUFLkUgpZt/j65jhkEBF6arJ9MHEAuOFS 6gCiANyzzuy0d8pjqRkEbsa6jpwYYks= -----END CERTIFICATE-----Generated at Wed Feb 11 08:51:07 2026 by rpki-client