This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa File: 3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa (raw, json) Hash identifier: rYXTN54sQL9r91+gbVbtoTsNYkcn4MvEYGcK4OK915k= Subject key identifier: 5F:BE:C6:80:93:E6:84:89:8D:3F:9C:DB:F3:57:19:18:5F:E2:4A:EA Certificate issuer: /CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Certificate serial: 010D0C9F4328584C61915DE4FADD98084D0755CE Authority key identifier: 58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa Signing time: Thu 01 Jan 2026 14:00:38 +0000 ROA not before: Thu 01 Jan 2026 14:00:38 +0000 ROA not after: Wed 01 Apr 2026 13:00:38 +0000 asID: 46687 IP address blocks: 207.68.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 Jan 2026 11:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:61:91:5d:e4:fa:dd:98:08:4d:07:55:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Validity Not Before: Jan 1 14:00:38 2026 GMT Not After : Apr 1 13:00:38 2026 GMT Subject: CN=d3c9b25d-06e3-4fc8-90b4-0f3de535b46f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:a2:78:4c:11:fc:a1:37:40:76:a6:47:fa:b9: c1:fd:a7:eb:3d:65:63:67:7f:d3:62:6a:fd:bb:39: 82:e3:6d:b6:6d:f8:ce:d1:26:d3:5a:8f:ec:81:3b: b9:d7:22:29:0f:12:08:11:52:9c:fe:de:50:77:a5: e8:24:0f:ef:a6:ee:7c:ab:49:4b:4b:69:8d:5a:55: 77:38:10:ff:1a:39:a8:12:ef:d9:3e:8f:41:f7:c6: e5:a2:c7:78:88:f6:c4:e8:b0:9b:c9:42:bf:54:69: 95:80:3e:6f:00:54:89:0a:4b:01:c9:5e:da:8a:e7: 1a:66:be:05:62:57:08:64:dc:89:90:7b:c6:5e:66: 33:e9:e7:e2:a1:f6:8d:af:d5:5e:fc:45:6b:1d:47: b3:49:6b:97:fb:a4:91:50:65:ae:ac:74:8c:fe:35: 54:77:67:2b:38:b1:22:41:87:b8:25:6d:b0:47:32: b9:fe:9c:14:5f:8c:6e:26:ff:2f:f7:a0:45:c7:a0: 79:95:da:69:31:c9:14:e3:24:30:10:1f:4c:9c:a7: 67:db:d9:94:af:4a:f4:27:e8:ba:97:54:df:42:cc: ee:b9:b0:8d:e4:ac:7b:7d:da:25:58:a0:ff:56:9b: a4:bd:d0:3b:93:69:0c:c8:d5:9b:52:5a:2d:39:0a: d5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:BE:C6:80:93:E6:84:89:8D:3F:9C:DB:F3:57:19:18:5F:E2:4A:EA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl X509v3 Authority Key Identifier: keyid:58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer sbgp-ipAddrBlock: critical IPv4: 207.68.224.0/19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 10:a1:09:cb:19:0d:08:e7:86:e9:31:43:81:bb:a0:58:bc:40: ef:4d:74:1a:e8:80:93:01:c9:50:a4:b4:fd:ad:29:88:b7:1c: 80:e3:e4:3c:07:63:cf:20:81:4f:b3:ea:9e:30:19:0b:f5:2e: 00:97:15:24:59:bd:a3:68:d0:30:5a:8b:51:05:91:09:6a:92: 55:55:90:c0:45:ef:8a:47:dc:2c:b6:96:68:03:b1:db:80:ca: e9:13:5b:c5:ae:44:b1:41:18:3f:bd:4f:56:ae:b3:ed:e2:b2: bd:d9:fd:e0:15:24:97:01:74:a1:45:32:00:04:0f:80:79:2d: 2c:c0:64:97:42:02:15:86:35:bc:72:57:06:dc:e9:35:f4:04: 37:eb:40:c2:64:fb:78:05:60:54:33:ca:92:95:c4:f5:c0:d5: 37:91:7c:8b:07:d9:02:f0:28:1d:db:28:9a:9c:36:e7:fe:b1: 96:b8:e1:14:bc:b6:1a:b4:1b:4e:1a:0b:e2:66:85:86:d9:b7: 76:04:f5:72:9d:e0:86:af:02:26:0e:0f:36:0a:c8:c7:27:cd: 49:e4:d3:9c:ee:6a:31:32:12:78:56:9a:d0:d4:5b:1f:11:e4: 95:99:8c:8b:fe:1c:f0:09:07:ad:b5:e4:d8:74:33:35:f8:f2: 0e:e7:66:e6 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWExhkV3k+t2YCE0HVc4wDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWEzMWE0YTAtN2I3Ny00ZjU2LThmODktMDE1MjViNTA2 MTI5MB4XDTI2MDEwMTE0MDAzOFoXDTI2MDQwMTEzMDAzOFowLzEtMCsGA1UEAxMk ZDNjOWIyNWQtMDZlMy00ZmM4LTkwYjQtMGYzZGU1MzViNDZmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhaJ4TBH8oTdAdqZH+rnB/afrPWVjZ3/TYmr9 uzmC4222bfjO0SbTWo/sgTu51yIpDxIIEVKc/t5Qd6XoJA/vpu58q0lLS2mNWlV3 OBD/GjmoEu/ZPo9B98blosd4iPbE6LCbyUK/VGmVgD5vAFSJCksByV7aiucaZr4F YlcIZNyJkHvGXmYz6efiofaNr9Ve/EVrHUezSWuX+6SRUGWurHSM/jVUd2crOLEi QYe4JW2wRzK5/pwUX4xuJv8v96BFx6B5ldppMckU4yQwEB9MnKdn29mUr0r0J+i6 l1TfQszuubCN5Kx7fdolWKD/VpukvdA7k2kMyNWbUlotOQrVtQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFF++xoCT5oSJjT+c2/NXGRhf4krqMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9hYTMx YTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUyNWI1MDYxMjkvM2I3MGVmNDktNjFlOC0z YzFkLWEzM2EtNTFkMTk0YWNmZjVlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02 Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvYWEzMWE0YTAtN2I3Ny00ZjU2LThm ODktMDE1MjViNTA2MTI5L2FhMzFhNGEwLTdiNzctNGY1Ni04Zjg5LTAxNTI1YjUw NjEyOS5jcmwwHwYDVR0jBBgwFoAUWIlNWT2gnXPWliBuheubsbqbZj0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm Ny1iNTk5LWU5ZDBlOTgxZDliZi9hYTMxYTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUy NWI1MDYxMjkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFz0TgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBABChCcsZDQjnhukxQ4G7oFi8QO9NdBrogJMByVCktP2tKYi3HIDj5DwH Y88ggU+z6p4wGQv1LgCXFSRZvaNo0DBai1EFkQlqklVVkMBF74pH3Cy2lmgDsduA yukTW8WuRLFBGD+9T1aus+3isr3Z/eAVJJcBdKFFMgAED4B5LSzAZJdCAhWGNbxy Vwbc6TX0BDfrQMJk+3gFYFQzypKVxPXA1TeRfIsH2QLwKB3bKJqcNuf+sZa44RS8 thq0G04aC+JmhYbZt3YE9XKd4IavAiYODzYKyMcnzUnk05zuajEyEnhWmtDUWx8R 5JWZjIv+HPAJB6215Nh0MzX48g7nZuY= -----END CERTIFICATE-----Generated at Sun Jan 11 08:17:56 2026 by rpki-client