This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/9aa5a3a7-cdb0-30a9-93bc-a7385bd61034.roa File: 9aa5a3a7-cdb0-30a9-93bc-a7385bd61034.roa (raw, json) Hash identifier: LllObzT2AEd32Kd9cTrWcuO2hFPGH3+00Yi8kd6pPG4= Subject key identifier: 55:7C:A9:E1:E9:83:9F:28:76:B6:BB:ED:02:F7:12:10:6B:BB:7D:DF Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584BF615EE40268CE90A97BBE4F0 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/9aa5a3a7-cdb0-30a9-93bc-a7385bd61034.roa Signing time: Mon 24 Nov 2025 02:00:32 +0000 ROA not before: Mon 24 Nov 2025 02:00:32 +0000 ROA not after: Sun 22 Feb 2026 02:00:32 +0000 asID: 8069 IP address blocks: 20.153.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:f6:15:ee:40:26:8c:e9:0a:97:bb:e4:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Nov 24 02:00:32 2025 GMT Not After : Feb 22 02:00:32 2026 GMT Subject: CN=72407ef3-74cf-4f80-bbff-817dadce630b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a7:56:ee:49:2c:1e:23:98:09:f3:fe:1d:9a: e0:10:06:e0:c7:62:d3:c8:6f:df:00:b6:f5:bb:2e: 70:0b:4d:b6:b0:f9:3c:88:09:d5:98:ab:4d:f1:6e: f0:12:5c:a6:61:53:bc:dd:79:c7:90:24:4c:95:d9: 0e:08:56:7c:00:a3:6d:8e:e6:56:75:c9:e7:40:16: 83:c7:38:ae:98:09:52:90:4d:d8:3b:1c:2b:90:b6: 88:43:95:46:24:9d:d9:cd:d7:8f:87:89:1b:ca:f0: 1e:c1:28:90:eb:13:69:3e:41:7b:e6:db:b0:e1:a5: c5:0d:f4:10:ac:42:ec:90:c2:56:fb:c3:ac:f5:e8: c2:06:37:27:15:1c:7d:cd:d8:a9:a1:cb:c1:6c:ec: 32:f4:d3:36:e0:c6:d7:3b:0f:7a:1a:39:08:04:f2: c7:b3:32:0e:03:cd:8c:a8:a7:6c:76:59:e7:05:15: c2:d8:ad:28:35:5a:0f:ed:8f:f9:62:b4:5b:41:2f: 9a:d8:0b:f0:41:9b:8e:54:28:df:1a:39:24:ee:b4: 48:e8:f3:28:5f:c1:e9:99:1f:57:ae:ed:0f:26:eb: 0e:0f:10:11:2b:c7:e9:11:3b:71:0c:2e:3d:27:a2: d7:75:86:ba:60:4c:de:56:d5:04:f0:de:ce:aa:74: 52:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:7C:A9:E1:E9:83:9F:28:76:B6:BB:ED:02:F7:12:10:6B:BB:7D:DF Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/9aa5a3a7-cdb0-30a9-93bc-a7385bd61034.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.136.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption a1:4b:32:98:e6:81:c1:f0:8f:ee:7d:b7:cf:2b:0b:60:b6:b1: 30:df:9c:bf:91:16:40:3f:18:5c:87:a5:05:5c:ad:bb:0a:3d: d2:d0:99:3c:f9:90:6f:86:ec:b8:25:2a:87:e9:0e:7a:d8:23: 97:01:5b:e4:98:67:10:47:f6:9a:f7:fd:1f:60:e0:f5:bb:a2: 2f:7d:ec:35:1b:20:4d:34:7a:bd:36:0a:4e:ef:5a:e5:af:96: 42:49:e6:e1:8f:d6:fb:11:65:e8:12:9f:82:f9:4c:4a:6e:fe: 39:2e:f1:57:44:3c:20:98:9c:8a:fe:f3:ed:0c:60:cc:00:4d: 0f:77:af:4c:03:be:ad:60:24:58:83:27:91:90:bf:40:d6:f5: 4e:0b:3b:ed:1a:70:a2:b1:a7:1d:ba:69:cb:e3:b6:54:08:3e: d6:72:4c:4a:b8:1e:86:94:60:65:0f:06:e2:0a:5e:2a:b9:1b: a6:e3:b4:56:82:fa:21:dc:17:6f:a6:07:d6:2d:85:1a:4b:97: 26:0b:1e:08:39:b7:21:20:e9:2e:1a:59:70:20:f4:16:c2:9a: 4e:5a:85:d7:b3:14:22:b7:5c:64:4b:70:20:d7:6e:17:e3:59: fa:6d:67:75:1d:3c:db:ee:b5:72:81:c7:d6:ce:60:15:0b:e1: 94:4f:90:16 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEv2Fe5AJozpCpe75PAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MTEyNDAyMDAzMloXDTI2MDIyMjAyMDAzMlowLzEtMCsGA1UEAxMk NzI0MDdlZjMtNzRjZi00ZjgwLWJiZmYtODE3ZGFkY2U2MzBiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6dW7kksHiOYCfP+HZrgEAbgx2LTyG/fALb1 uy5wC022sPk8iAnVmKtN8W7wElymYVO83XnHkCRMldkOCFZ8AKNtjuZWdcnnQBaD xziumAlSkE3YOxwrkLaIQ5VGJJ3ZzdePh4kbyvAewSiQ6xNpPkF75tuw4aXFDfQQ rELskMJW+8Os9ejCBjcnFRx9zdipocvBbOwy9NM24MbXOw96GjkIBPLHszIOA82M qKdsdlnnBRXC2K0oNVoP7Y/5YrRbQS+a2AvwQZuOVCjfGjkk7rRI6PMoX8HpmR9X ru0PJusODxARK8fpETtxDC49J6LXdYa6YEzeVtUE8N7OqnRS+wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFV8qeHpg58odra77QL3EhBru33fMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvOWFhNWEzYTctY2RiMC0z MGE5LTkzYmMtYTczODViZDYxMDM0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFJmIMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAKFLMpjmgcHwj+59t88rC2C2sTDfnL+RFkA/GFyHpQVcrbsKPdLQmTz5 kG+G7LglKofpDnrYI5cBW+SYZxBH9pr3/R9g4PW7oi997DUbIE00er02Ck7vWuWv lkJJ5uGP1vsRZegSn4L5TEpu/jku8VdEPCCYnIr+8+0MYMwATQ93r0wDvq1gJFiD J5GQv0DW9U4LO+0acKKxpx26acvjtlQIPtZyTEq4HoaUYGUPBuIKXiq5G6bjtFaC +iHcF2+mB9YthRpLlyYLHgg5tyEg6S4aWXAg9BbCmk5ahdezFCK3XGRLcCDXbhfj WfptZ3UdPNvutXKBx9bOYBUL4ZRPkBY= -----END CERTIFICATE-----Generated at Sat Dec 6 16:59:43 2025 by rpki-client