This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/294e9347-de22-31e7-bfc5-75bd383b4a41.roa File: 294e9347-de22-31e7-bfc5-75bd383b4a41.roa (raw, json) Hash identifier: yNt9X06u1ZbFSXrdnAmiPvt1fpo9TY8TPzhvfIyCvF0= Subject key identifier: 51:81:FC:15:81:78:3E:8F:05:86:FB:B2:48:EE:18:0A:35:D6:04:C0 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584BDB906D12DE8C726E426FC9E0 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/294e9347-de22-31e7-bfc5-75bd383b4a41.roa Signing time: Fri 14 Nov 2025 14:00:37 +0000 ROA not before: Fri 14 Nov 2025 14:00:37 +0000 ROA not after: Thu 12 Feb 2026 14:00:37 +0000 asID: 8069 IP address blocks: 20.33.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:db:90:6d:12:de:8c:72:6e:42:6f:c9:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Nov 14 14:00:37 2025 GMT Not After : Feb 12 14:00:37 2026 GMT Subject: CN=f0a9b577-9ae1-4d5d-a0b5-17b8a257a55f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:92:86:d2:be:16:62:3f:cf:24:4d:9e:04:6f: 02:06:e0:92:61:09:bc:52:67:5e:35:b9:22:1e:f0: ad:84:43:47:06:82:2c:4b:e3:a5:50:ae:0d:4b:6c: 59:0a:45:52:47:a4:ed:42:f2:7b:10:21:07:7b:73: 86:6d:0f:35:bb:f0:be:41:a2:60:16:ef:3e:d8:0d: d1:0f:23:9b:3e:f5:22:17:fa:1d:13:e1:d2:b5:95: 00:f6:fb:6e:aa:f3:6e:e5:d8:87:01:cc:be:f4:b3: e9:5d:4f:9d:a9:13:3a:db:b9:d8:7b:62:c6:6d:80: 2c:42:34:02:8d:a6:17:50:40:62:71:50:ab:47:62: b1:65:7f:14:3d:99:09:b8:4c:56:28:8a:99:35:6d: 56:24:19:95:52:17:00:f7:1e:60:78:ca:f3:35:eb: 28:f6:3a:1d:cb:78:1b:eb:b5:fe:e8:dc:b3:79:5b: d8:c2:f8:cd:f4:d4:0d:95:a6:8c:5d:e4:32:4a:3a: 85:04:23:56:d1:cd:6e:cf:f0:72:5d:51:00:bb:b5: 70:1d:6d:85:c7:97:c9:ae:ad:ae:5a:e9:4a:85:27: 82:c5:86:33:87:ec:8c:0b:a4:e5:8b:de:ab:60:83: 7a:27:99:18:4f:c2:0e:be:bb:cb:13:30:64:b9:bf: 1e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:81:FC:15:81:78:3E:8F:05:86:FB:B2:48:EE:18:0A:35:D6:04:C0 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/294e9347-de22-31e7-bfc5-75bd383b4a41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.109.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 60:a9:0a:18:17:51:68:5d:99:4f:a8:e6:0f:73:e9:2d:8c:96: 12:63:d3:52:d0:09:ae:6f:54:43:d7:a0:0d:2d:60:15:91:94: d8:45:6a:c0:2f:93:06:8a:5c:64:19:b9:a2:e7:04:f3:f0:11: 83:10:6f:3e:1d:ac:84:4d:81:20:5e:03:a4:69:93:f9:eb:66: c0:eb:39:8b:68:4b:60:cd:56:3d:7a:8c:9e:42:d2:64:97:0d: e1:00:4a:57:20:25:58:7b:5e:63:19:5e:3c:44:dd:6e:03:5b: 9f:99:2e:f9:65:be:fa:47:c3:cc:46:d2:81:b7:13:a5:6e:71: 27:28:1f:f7:5b:2c:4f:c3:59:f2:13:17:93:6e:71:4c:5d:68: f1:da:a4:9d:f8:1b:34:f2:d5:80:66:d9:43:bf:82:50:ed:97: bd:9a:c9:f3:ae:d1:c1:89:cd:c3:1d:40:a4:1a:3e:56:b4:9b: 4c:ad:9f:1e:db:df:6e:9f:91:94:5f:30:08:25:8a:bc:2a:da: 2a:cb:d2:c0:6f:5c:e6:1f:91:d7:cb:32:46:8c:3e:ea:18:1e: 37:68:01:a9:73:d5:46:9c:3f:52:22:bd:96:c4:1b:4a:e8:26: 46:c8:7c:41:16:fc:21:70:47:f1:9f:ba:29:8b:18:00:82:1c: db:59:64:6e -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEvbkG0S3oxybkJvyeAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MTExNDE0MDAzN1oXDTI2MDIxMjE0MDAzN1owLzEtMCsGA1UEAxMk ZjBhOWI1NzctOWFlMS00ZDVkLWEwYjUtMTdiOGEyNTdhNTVmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhJKG0r4WYj/PJE2eBG8CBuCSYQm8UmdeNbki HvCthENHBoIsS+OlUK4NS2xZCkVSR6TtQvJ7ECEHe3OGbQ81u/C+QaJgFu8+2A3R DyObPvUiF/odE+HStZUA9vtuqvNu5diHAcy+9LPpXU+dqRM627nYe2LGbYAsQjQC jaYXUEBicVCrR2KxZX8UPZkJuExWKIqZNW1WJBmVUhcA9x5geMrzNeso9jody3gb 67X+6NyzeVvYwvjN9NQNlaaMXeQySjqFBCNW0c1uz/ByXVEAu7VwHW2Fx5fJrq2u WulKhSeCxYYzh+yMC6Tli96rYIN6J5kYT8IOvrvLEzBkub8e1QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFGB/BWBeD6PBYb7skjuGAo11gTAMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvMjk0ZTkzNDctZGUyMi0z MWU3LWJmYzUtNzViZDM4M2I0YTQxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCFtMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAGCpChgXUWhdmU+o5g9z6S2MlhJj01LQCa5vVEPXoA0tYBWRlNhFasAv kwaKXGQZuaLnBPPwEYMQbz4drIRNgSBeA6Rpk/nrZsDrOYtoS2DNVj16jJ5C0mSX DeEASlcgJVh7XmMZXjxE3W4DW5+ZLvllvvpHw8xG0oG3E6VucScoH/dbLE/DWfIT F5NucUxdaPHapJ34GzTy1YBm2UO/glDtl72ayfOu0cGJzcMdQKQaPla0m0ytnx7b 326fkZRfMAglirwq2irL0sBvXOYfkdfLMkaMPuoYHjdoAalz1UacP1IivZbEG0ro JkbIfEEW/CFwR/GfuimLGACCHNtZZG4= -----END CERTIFICATE-----Generated at Sat Dec 6 19:08:04 2025 by rpki-client