This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/17797fbe-976b-3a44-971c-5db64cddcfc1.roa File: 17797fbe-976b-3a44-971c-5db64cddcfc1.roa (raw, json) Hash identifier: LrSS012QW208bzBEKSTllW5SuLd4cblxQWm4PIeuGbw= Subject key identifier: 79:A4:65:52:42:7D:33:08:0F:11:EB:74:2C:E7:9B:A8:E9:96:5B:29 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584BEDB5E4EB8A46D570C6376700 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/17797fbe-976b-3a44-971c-5db64cddcfc1.roa Signing time: Fri 21 Nov 2025 02:00:30 +0000 ROA not before: Fri 21 Nov 2025 02:00:30 +0000 ROA not after: Thu 19 Feb 2026 02:00:30 +0000 asID: 8069 IP address blocks: 20.33.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:ed:b5:e4:eb:8a:46:d5:70:c6:37:67:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Nov 21 02:00:30 2025 GMT Not After : Feb 19 02:00:30 2026 GMT Subject: CN=abec5b5b-1b7e-4269-8d62-9d425814830e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1c:86:e1:6c:79:1b:e8:a9:7b:ae:03:10:60: 4c:31:aa:cb:89:9f:02:85:21:ae:e5:1b:01:4e:c7: 06:97:92:a3:a0:e7:8d:46:b9:79:ed:2c:e4:f2:00: 91:a4:e1:e7:71:5f:ff:a0:33:06:06:da:26:f2:92: e0:ab:28:5f:de:b3:e4:48:0c:f9:43:e7:f5:85:84: 1e:84:fb:f6:91:e0:e0:d3:bc:db:7e:6f:3c:5b:b3: 1a:7f:9b:b7:eb:4d:e7:30:02:74:91:17:80:86:c2: 55:a5:28:4f:10:53:8d:ed:4e:cf:16:70:ae:f6:4d: cb:be:b0:18:c5:bb:5b:f1:76:3a:fd:ac:52:19:d3: cb:f6:21:9f:a5:b9:70:17:8e:8f:7b:4d:01:e6:e2: dc:ec:8a:9f:30:1c:42:cc:94:4c:78:48:b7:9f:33: 21:eb:fb:02:57:42:03:8d:e5:7c:8a:c8:a4:5e:95: ae:6e:3a:8d:a7:70:cf:a8:8e:09:59:b3:0b:15:a7: f6:9a:cd:9f:e8:f6:0b:8a:12:ea:4f:61:c9:1b:e9: f3:52:33:6f:a4:ca:87:f8:95:b5:72:ac:ec:71:eb: 8d:47:0f:fe:aa:31:8a:3b:05:76:30:8b:70:cb:de: 06:2a:31:f4:dd:0f:e3:eb:58:d2:3c:cd:fa:80:be: c4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A4:65:52:42:7D:33:08:0F:11:EB:74:2C:E7:9B:A8:E9:96:5B:29 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/17797fbe-976b-3a44-971c-5db64cddcfc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.20.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6a:8e:2e:64:78:0f:c6:12:5d:01:54:f6:ef:15:ae:42:3b:53: 70:cf:1c:b6:36:3b:51:2e:e0:e8:3c:74:46:65:da:db:4d:9e: 8f:3b:87:d4:30:dc:94:29:86:86:08:ac:41:0b:e5:1c:2f:a1: 01:69:3d:3f:11:7c:65:c3:9c:73:74:4b:70:c2:0a:8f:25:00: c1:6b:f6:b6:e4:33:72:b1:e4:a0:78:9b:c9:fe:83:95:e6:28: 6b:d6:50:79:f3:f7:95:40:39:14:c4:02:a8:fe:9b:c2:fa:3a: 73:d8:29:f3:4f:8d:80:be:6a:6c:b7:59:7f:4a:d8:32:a7:80: 75:00:b6:9c:43:1d:73:60:1d:9e:1c:f3:9b:90:8f:fd:d0:42: 2f:e8:37:2e:3d:7e:49:c9:87:07:97:97:9e:6d:28:06:5e:06: f8:94:14:a6:ae:14:67:db:ad:1c:89:c6:fa:0b:a3:0b:5d:49: 4f:34:58:f3:2a:ba:ba:a1:b7:9f:ae:3d:89:e3:00:31:62:8c: bb:3e:0a:e3:20:44:59:4a:22:03:68:6f:2b:75:07:77:42:84: 36:32:e1:1f:1b:fa:04:8b:60:53:ef:85:47:47:fc:0b:de:d2: 51:e3:61:bc:18:d3:a3:2a:02:94:de:53:6f:48:47:0c:d8:c3: 8d:83:c9:87 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEvtteTrikbVcMY3ZwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MTEyMTAyMDAzMFoXDTI2MDIxOTAyMDAzMFowLzEtMCsGA1UEAxMk YWJlYzViNWItMWI3ZS00MjY5LThkNjItOWQ0MjU4MTQ4MzBlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtxyG4Wx5G+ipe64DEGBMMarLiZ8ChSGu5RsB TscGl5KjoOeNRrl57Szk8gCRpOHncV//oDMGBtom8pLgqyhf3rPkSAz5Q+f1hYQe hPv2keDg07zbfm88W7Maf5u3603nMAJ0kReAhsJVpShPEFON7U7PFnCu9k3LvrAY xbtb8XY6/axSGdPL9iGfpblwF46Pe00B5uLc7IqfMBxCzJRMeEi3nzMh6/sCV0ID jeV8isikXpWubjqNp3DPqI4JWbMLFaf2ms2f6PYLihLqT2HJG+nzUjNvpMqH+JW1 cqzsceuNRw/+qjGKOwV2MItwy94GKjH03Q/j61jSPM36gL7ESwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHmkZVJCfTMIDxHrdCznm6jpllspMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvMTc3OTdmYmUtOTc2Yi0z YTQ0LTk3MWMtNWRiNjRjZGRjZmMxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCEUMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAGqOLmR4D8YSXQFU9u8VrkI7U3DPHLY2O1Eu4Og8dEZl2ttNno87h9Qw 3JQphoYIrEEL5RwvoQFpPT8RfGXDnHN0S3DCCo8lAMFr9rbkM3Kx5KB4m8n+g5Xm KGvWUHnz95VAORTEAqj+m8L6OnPYKfNPjYC+amy3WX9K2DKngHUAtpxDHXNgHZ4c 85uQj/3QQi/oNy49fknJhweXl55tKAZeBviUFKauFGfbrRyJxvoLowtdSU80WPMq urqht5+uPYnjADFijLs+CuMgRFlKIgNobyt1B3dChDYy4R8b+gSLYFPvhUdH/Ave 0lHjYbwY06MqApTeU29IRwzYw42DyYc= -----END CERTIFICATE-----Generated at Sat Dec 6 16:59:43 2025 by rpki-client