This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/b640e40a-1d4d-3423-99a0-815a476ab16e.roa File: b640e40a-1d4d-3423-99a0-815a476ab16e.roa (raw, json) Hash identifier: 1pUC+T0MKILHhGWsZ7qVJSMbqpprIlquhiLxevdEReE= Subject key identifier: 5C:4D:06:34:46:72:7A:6D:BA:4C:4F:D3:D3:5E:92:5E:DB:9D:F3:DF Certificate issuer: /CN=28df346d-3f66-4555-b2ab-67f450efdcb3 Certificate serial: 010D0C9F4328584C24263FFFB29851DBAD831910 Authority key identifier: D1:31:34:B4:B4:77:2C:0C:8A:FF:F5:82:03:50:28:76:EA:E5:1D:9E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/b640e40a-1d4d-3423-99a0-815a476ab16e.roa Signing time: Wed 10 Dec 2025 14:00:38 +0000 ROA not before: Wed 10 Dec 2025 14:00:38 +0000 ROA not after: Tue 10 Mar 2026 13:00:38 +0000 asID: 14230 IP address blocks: 2604:9b00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/28df346d-3f66-4555-b2ab-67f450efdcb3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/28df346d-3f66-4555-b2ab-67f450efdcb3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:24:26:3f:ff:b2:98:51:db:ad:83:19:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28df346d-3f66-4555-b2ab-67f450efdcb3 Validity Not Before: Dec 10 14:00:38 2025 GMT Not After : Mar 10 13:00:38 2026 GMT Subject: CN=11f08751-5689-4a6d-a9b7-51424469c046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:f8:ca:62:fc:57:07:21:35:89:05:ed:cd:d3: 73:72:77:35:7f:97:dd:eb:75:4e:1b:f6:70:c4:17: 16:ae:cb:1d:b0:ad:41:67:bd:0a:75:14:2e:d5:ef: 54:d6:2f:53:b7:af:59:5f:8e:a1:d2:7c:8f:da:76: 83:38:04:b4:35:43:91:e0:cb:05:2f:73:d1:97:ca: 4c:88:92:a3:cb:31:a7:54:04:3a:f9:bd:16:56:3d: 99:fc:40:06:37:a6:5e:e1:b1:6d:ce:6b:e6:9f:68: 01:13:15:17:7d:0e:ed:af:22:e4:a0:36:19:42:be: 40:a1:f8:a7:b7:3d:c1:52:eb:73:17:89:11:9e:61: a8:a4:97:d3:18:cd:da:34:99:90:5a:0a:25:c7:81: 8c:7e:34:08:9c:eb:56:87:8a:2a:25:20:e4:c5:17: a9:79:03:ed:5c:3b:8e:60:39:65:05:dc:98:e8:13: 31:79:a8:55:af:53:12:39:07:a7:1e:33:f6:68:a3: e0:ec:35:18:3e:09:df:57:27:c3:5c:89:78:aa:fb: 8f:7b:95:ee:6b:96:99:20:22:ca:02:2d:ae:73:68: 76:63:ab:6e:ae:1c:6f:d7:f3:78:02:75:c6:ef:82: 19:fd:83:ac:f5:45:aa:68:34:d2:12:d1:cc:44:89: de:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4D:06:34:46:72:7A:6D:BA:4C:4F:D3:D3:5E:92:5E:DB:9D:F3:DF Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/b640e40a-1d4d-3423-99a0-815a476ab16e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/28df346d-3f66-4555-b2ab-67f450efdcb3.crl X509v3 Authority Key Identifier: keyid:D1:31:34:B4:B4:77:2C:0C:8A:FF:F5:82:03:50:28:76:EA:E5:1D:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3.cer sbgp-ipAddrBlock: critical IPv6: 2604:9b00::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3e:4c:19:24:e1:a0:69:dc:f0:4c:96:0e:11:f6:58:e3:c4:cd: 60:ad:1a:b7:50:25:17:83:8d:7e:36:e6:0c:5a:2f:ec:b6:c9: e5:f7:5f:cd:b0:c5:ab:29:84:66:05:05:8d:77:c6:f4:32:35: 20:e0:49:a9:8a:4a:68:9f:50:af:69:33:d2:38:25:c0:a0:4a: 4c:b5:f8:b0:67:9b:9c:e3:3d:91:21:d3:27:e3:46:7a:23:5a: 82:52:85:2b:e0:c9:4c:46:48:0c:12:91:28:96:97:80:6d:91: f8:10:12:c1:eb:88:62:07:67:42:31:08:57:06:11:b6:37:d5: 6b:aa:34:be:cb:26:b3:00:84:68:9e:83:36:04:d9:f5:64:b9: ea:82:e3:72:d7:3c:d2:c9:a0:70:af:c9:bd:38:76:c0:15:d0: 28:1b:29:33:61:b9:2b:61:50:13:d3:94:7b:96:b8:a2:69:46: fa:7f:07:cb:cb:ab:b8:b1:28:ce:ab:39:54:61:9a:a1:a9:21: 66:3f:4b:ba:74:33:af:ac:bc:f6:cb:96:27:4b:c2:4a:34:81: cc:fd:e0:03:ba:29:e9:3d:c8:27:18:18:01:6b:ea:3f:65:7a: d1:0a:4c:e8:61:14:41:c3:31:64:5a:7d:77:d2:91:84:c1:2d: e9:1a:8d:a3 -----BEGIN CERTIFICATE----- MIIGRDCCBSygAwIBAgIUAQ0Mn0MoWEwkJj//sphR262DGRAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjhkZjM0NmQtM2Y2Ni00NTU1LWIyYWItNjdmNDUwZWZk Y2IzMB4XDTI1MTIxMDE0MDAzOFoXDTI2MDMxMDEzMDAzOFowLzEtMCsGA1UEAxMk MTFmMDg3NTEtNTY4OS00YTZkLWE5YjctNTE0MjQ0NjljMDQ2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkfjKYvxXByE1iQXtzdNzcnc1f5fd63VOG/Zw xBcWrssdsK1BZ70KdRQu1e9U1i9Tt69ZX46h0nyP2naDOAS0NUOR4MsFL3PRl8pM iJKjyzGnVAQ6+b0WVj2Z/EAGN6Ze4bFtzmvmn2gBExUXfQ7tryLkoDYZQr5Aofin tz3BUutzF4kRnmGopJfTGM3aNJmQWgolx4GMfjQInOtWh4oqJSDkxRepeQPtXDuO YDllBdyY6BMxeahVr1MSOQenHjP2aKPg7DUYPgnfVyfDXIl4qvuPe5Xua5aZICLK Ai2uc2h2Y6turhxv1/N4AnXG74IZ/YOs9UWqaDTSEtHMRInelwIDAQABo4IDVjCC A1IwHQYDVR0OBBYEFFxNBjRGcnptukxP09Nekl7bnfPfMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8yOGRm MzQ2ZC0zZjY2LTQ1NTUtYjJhYi02N2Y0NTBlZmRjYjMvYjY0MGU0MGEtMWQ0ZC0z NDIzLTk5YTAtODE1YTQ3NmFiMTZlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMjhkZjM0NmQtM2Y2Ni00NTU1LWIy YWItNjdmNDUwZWZkY2IzLzI4ZGYzNDZkLTNmNjYtNDU1NS1iMmFiLTY3ZjQ1MGVm ZGNiMy5jcmwwHwYDVR0jBBgwFoAU0TE0tLR3LAyK//WCA1AodurlHZ4wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8yOGRmMzQ2ZC0zZjY2LTQ1NTUtYjJhYi02N2Y0 NTBlZmRjYjMuY2VyMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJgSbADBU BgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8v d3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEB CwUAA4IBAQA+TBkk4aBp3PBMlg4R9ljjxM1grRq3UCUXg41+NuYMWi/stsnl91/N sMWrKYRmBQWNd8b0MjUg4Empikpon1CvaTPSOCXAoEpMtfiwZ5uc4z2RIdMn40Z6 I1qCUoUr4MlMRkgMEpEolpeAbZH4EBLB64hiB2dCMQhXBhG2N9VrqjS+yyazAIRo noM2BNn1ZLnqguNy1zzSyaBwr8m9OHbAFdAoGykzYbkrYVAT05R7lriiaUb6fwfL y6u4sSjOqzlUYZqhqSFmP0u6dDOvrLz2y5YnS8JKNIHM/eADuinpPcgnGBgBa+o/ ZXrRCkzoYRRBwzFkWn130pGEwS3pGo2j -----END CERTIFICATE-----Generated at Fri Dec 19 23:12:11 2025 by rpki-client