This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa File: c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa (raw, json) Hash identifier: V0xYbetLK6uWau6D485u5QIW9kTWyZqXqh+m2wZdO9g= Subject key identifier: 7D:A8:05:BE:B8:81:7B:F0:E2:89:FF:B7:89:9B:05:3E:07:EB:96:29 Certificate issuer: /CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Certificate serial: 010D0C9F4328584C61915D6A7EAA6A425B894A40 Authority key identifier: 58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa Signing time: Thu 01 Jan 2026 14:00:38 +0000 ROA not before: Thu 01 Jan 2026 14:00:38 +0000 ROA not after: Wed 01 Apr 2026 13:00:38 +0000 asID: 46687 IP address blocks: 24.213.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 Jan 2026 11:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:61:91:5d:6a:7e:aa:6a:42:5b:89:4a:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Validity Not Before: Jan 1 14:00:38 2026 GMT Not After : Apr 1 13:00:38 2026 GMT Subject: CN=730c408b-6d6c-47a5-a53a-fcd466a6b528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:dc:5a:df:08:94:c7:a1:fe:a1:43:e2:39:67: fa:ff:e1:b6:58:7f:8f:1d:2c:6d:59:fb:da:ee:a8: ee:92:0c:ed:78:14:80:69:4e:cd:90:39:6b:dd:0d: 15:e3:45:47:c9:2f:51:b6:e1:ae:ec:f3:e1:96:ef: 45:39:82:88:ef:c9:ec:b9:d9:48:e6:19:a8:7d:14: be:3d:05:ff:7d:88:36:2b:df:8b:87:a5:24:16:a4: 39:99:df:7d:eb:9b:f2:c9:f0:22:cb:50:9f:33:de: 5d:d2:4c:8b:c8:3a:ee:1a:d9:29:92:b0:62:26:01: a3:7b:b0:5f:e5:ae:1c:aa:ed:a4:d0:0c:cf:ff:69: c8:95:ca:af:29:b1:40:7a:1d:5b:d4:33:76:8a:49: ac:79:eb:5e:8d:ea:20:e0:9b:a4:6f:d4:b9:ba:c5: 5a:14:38:68:ea:06:5e:fa:24:3b:ca:3f:6d:5b:95: 44:bb:af:1a:3e:6a:4a:5d:db:40:e0:41:c5:a8:e8: 2d:5c:ce:91:61:23:6f:5a:f9:1d:8f:c5:4b:c9:a6: 8e:4e:1b:96:39:bf:c1:d3:ea:80:35:26:52:87:99: d7:74:02:dc:cd:8a:37:aa:11:d8:f3:08:9d:5d:05: a5:fe:32:b1:48:54:10:f6:0e:6a:d1:9b:51:18:0b: 37:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A8:05:BE:B8:81:7B:F0:E2:89:FF:B7:89:9B:05:3E:07:EB:96:29 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl X509v3 Authority Key Identifier: keyid:58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer sbgp-ipAddrBlock: critical IPv4: 24.213.96.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 5b:d7:fb:46:5e:77:87:ed:69:19:5c:da:6d:e3:31:ba:f2:ba: a5:18:96:a7:f5:97:b2:9a:11:29:fa:cb:ab:87:2d:88:3b:ea: 85:c2:5a:6b:4d:2a:17:1d:71:1e:a7:8e:8a:ff:04:30:8d:6c: 11:e8:32:e5:5c:ce:f0:43:38:96:67:e8:f1:29:cf:1d:6f:06: 6c:fb:7b:ca:8d:fd:9e:c5:15:5b:57:22:0b:9d:60:c5:06:58: 7f:a9:91:f8:e4:bf:c9:97:20:63:ab:6a:1d:54:b4:aa:3f:a8: d9:eb:68:9e:d2:52:bc:ad:cf:63:e2:56:f7:ad:d2:93:2f:5e: a0:8d:ca:0b:d4:84:cf:cc:98:47:83:11:10:45:f2:34:68:6c: 57:0d:ee:26:5a:ab:24:04:99:9e:29:75:37:13:a9:9b:0a:80: 3b:ee:e0:29:bb:1b:78:7b:92:3d:51:98:09:ea:b0:0f:cd:ee: d4:9c:4d:db:17:97:03:66:34:25:12:a8:fb:84:55:35:3e:68: 1b:ae:c5:0f:33:de:e0:7a:9b:39:91:e4:37:7b:7f:ff:de:82: 3e:0b:6c:fd:5e:1e:80:03:6f:6f:1a:42:cd:41:94:f5:20:78: d2:be:e0:6d:4e:78:cd:2a:70:66:f6:ea:f6:f6:e2:7c:08:63: bf:2b:8f:39 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWExhkV1qfqpqQluJSkAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWEzMWE0YTAtN2I3Ny00ZjU2LThmODktMDE1MjViNTA2 MTI5MB4XDTI2MDEwMTE0MDAzOFoXDTI2MDQwMTEzMDAzOFowLzEtMCsGA1UEAxMk NzMwYzQwOGItNmQ2Yy00N2E1LWE1M2EtZmNkNDY2YTZiNTI4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNxa3wiUx6H+oUPiOWf6/+G2WH+PHSxtWfva 7qjukgzteBSAaU7NkDlr3Q0V40VHyS9RtuGu7PPhlu9FOYKI78nsudlI5hmofRS+ PQX/fYg2K9+Lh6UkFqQ5md9965vyyfAiy1CfM95d0kyLyDruGtkpkrBiJgGje7Bf 5a4cqu2k0AzP/2nIlcqvKbFAeh1b1DN2ikmseetejeog4Jukb9S5usVaFDho6gZe +iQ7yj9tW5VEu68aPmpKXdtA4EHFqOgtXM6RYSNvWvkdj8VLyaaOThuWOb/B0+qA NSZSh5nXdALczYo3qhHY8widXQWl/jKxSFQQ9g5q0ZtRGAs3LQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFH2oBb64gXvw4on/t4mbBT4H65YpMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9hYTMx YTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUyNWI1MDYxMjkvYzEzMzdlZjAtZjdlNi0z ODRmLWEzNDktNTJiN2FiM2FmOWRlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02 Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvYWEzMWE0YTAtN2I3Ny00ZjU2LThm ODktMDE1MjViNTA2MTI5L2FhMzFhNGEwLTdiNzctNGY1Ni04Zjg5LTAxNTI1YjUw NjEyOS5jcmwwHwYDVR0jBBgwFoAUWIlNWT2gnXPWliBuheubsbqbZj0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm Ny1iNTk5LWU5ZDBlOTgxZDliZi9hYTMxYTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUy NWI1MDYxMjkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEGNVgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFvX+0Zed4ftaRlc2m3jMbryuqUYlqf1l7KaESn6y6uHLYg76oXCWmtN KhcdcR6njor/BDCNbBHoMuVczvBDOJZn6PEpzx1vBmz7e8qN/Z7FFVtXIgudYMUG WH+pkfjkv8mXIGOrah1UtKo/qNnraJ7SUrytz2PiVvet0pMvXqCNygvUhM/MmEeD ERBF8jRobFcN7iZaqyQEmZ4pdTcTqZsKgDvu4Cm7G3h7kj1RmAnqsA/N7tScTdsX lwNmNCUSqPuEVTU+aBuuxQ8z3uB6mzmR5Dd7f//egj4LbP1eHoADb28aQs1BlPUg eNK+4G1OeM0qcGb26vb24nwIY78rjzk= -----END CERTIFICATE-----Generated at Sun Jan 11 08:18:10 2026 by rpki-client