This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/02484022-c79f-4464-827b-2127faff0b06.roa File: 02484022-c79f-4464-827b-2127faff0b06.roa (raw, json) Hash identifier: ZlSBxb1oWTNtTjuF6G1KRCVhs/8McohckPYv0YY1p5A= Subject key identifier: 36:01:F3:9A:80:27:22:2F:9C:B4:23:C5:0F:B9:CE:3B:1C:B2:99:FF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1B8FA3268DE206DB87D9102EF8A738FB404EE74C Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/02484022-c79f-4464-827b-2127faff0b06.roa Signing time: Tue 02 Dec 2025 01:50:13 +0000 ROA not before: Tue 02 Dec 2025 01:50:13 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d030::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:8f:a3:26:8d:e2:06:db:87:d9:10:2e:f8:a7:38:fb:40:4e:e7:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:50:13 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=03510bb8217a9c6ad06f8d14d8ad1114dc29641f4f6f82661ba7a62d597bd386, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b0:4e:2f:10:5d:70:62:6f:da:03:cd:75:63: 9d:49:b8:93:7a:95:bb:e6:a7:1e:ee:54:d0:4c:7d: 2c:d7:80:0e:0f:90:df:b3:4b:6a:4a:bc:64:09:41: f7:c6:61:64:de:56:4d:ba:fe:c3:11:97:f5:bf:82: c4:74:09:7c:be:d0:fa:53:da:33:7f:97:fb:44:de: ad:97:37:fb:e3:59:67:95:11:f3:13:8d:22:8e:30: f9:0c:cb:93:0b:79:44:74:c3:6f:60:d7:a7:65:1f: e6:e0:17:d8:f5:ce:b3:20:26:6d:a0:a4:a5:f0:d1: 76:53:02:bc:44:2f:6e:cb:4d:9a:95:f2:5a:c1:8a: e4:49:8d:16:ed:42:fb:f0:54:7b:6a:17:b3:71:e1: b1:05:17:2a:91:5c:97:88:1c:a4:87:d0:7a:49:12: a2:37:38:43:73:1a:65:8d:67:c3:62:20:cd:e8:41: 85:2b:b8:b7:50:f9:7f:46:1c:4c:1e:6e:66:5d:72: 76:b1:e5:71:0c:9d:7b:4d:27:78:c0:c5:3f:49:81: a3:52:fa:55:53:1f:3e:9c:37:0e:e5:cb:a5:a6:e2: 62:71:d8:62:0b:22:bc:1d:94:2d:f4:4c:65:01:48: f1:c2:0b:90:b3:af:84:a0:52:7b:75:93:30:86:2e: 6c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:01:F3:9A:80:27:22:2F:9C:B4:23:C5:0F:B9:CE:3B:1C:B2:99:FF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/02484022-c79f-4464-827b-2127faff0b06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d030::/32 Signature Algorithm: sha256WithRSAEncryption 37:ec:72:56:18:33:09:80:75:c1:6c:ee:82:cd:57:7b:10:a7: 20:05:2f:14:a8:d6:59:1e:1f:bb:42:43:85:24:9c:f9:27:94: 74:29:33:af:58:21:c1:43:b1:7e:8b:91:e8:1d:13:26:42:36: 24:5f:40:d7:5b:67:cf:cb:d5:f2:76:23:da:67:84:99:d8:b5: c9:86:8b:a4:4f:3f:5b:ae:bf:1e:2e:f3:99:22:18:0d:70:01: e3:39:d1:44:b2:1a:65:c3:40:fe:26:71:0f:8d:0f:3b:eb:e3: 1a:7a:47:e7:3d:f7:00:09:9c:06:0c:13:82:68:47:e1:02:ec: 24:fa:66:aa:0f:2f:e2:dc:7e:04:2f:fd:21:02:fc:dd:a6:6f: 5b:7f:bc:05:45:5e:a6:4c:88:43:a2:db:a9:8b:ed:b8:7d:c0: 37:ab:c0:98:14:21:1c:14:e6:e2:cb:a0:27:8d:e2:57:af:41: d2:64:ef:00:74:5c:5e:aa:b9:0f:75:5b:fe:7b:37:67:a0:b4: bf:6e:5d:de:e9:a5:3c:67:68:1f:2f:c3:b3:4c:3e:af:52:71: 63:30:64:49:c2:84:d2:2c:38:c6:8f:24:9a:28:34:d4:ca:7a: c8:63:66:19:3c:46:a7:71:b7:12:69:73:25:bb:ee:e2:38:dd: 5b:fc:21:43 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUG4+jJo3iBtuH2RAu+Kc4+0BO50wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUwMTNaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDAzNTEwYmI4MjE3YTljNmFkMDZmOGQxNGQ4YWQxMTE0ZGMyOTY0MWY0ZjZm ODI2NjFiYTdhNjJkNTk3YmQzODYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmwTi8QXXBib9oDzXVjnUm4k3qVu+anHu5U0Ex9LNeADg+Q37NLakq8ZAlB 98ZhZN5WTbr+wxGX9b+CxHQJfL7Q+lPaM3+X+0TerZc3++NZZ5UR8xONIo4w+QzL kwt5RHTDb2DXp2Uf5uAX2PXOsyAmbaCkpfDRdlMCvEQvbstNmpXyWsGK5EmNFu1C +/BUe2oXs3HhsQUXKpFcl4gcpIfQekkSojc4Q3MaZY1nw2IgzehBhSu4t1D5f0Yc TB5uZl1ydrHlcQyde00neMDFP0mBo1L6VVMfPpw3DuXLpabiYnHYYgsivB2ULfRM ZQFI8cILkLOvhKBSe3WTMIYubFsCAwEAAaOCAiIwggIeMB0GA1UdDgQWBBQ2AfOa gCciL5y0I8UPuc47HLKZ/zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MDI0ODQwMjItYzc5Zi00NDY0LTgyN2ItMjEyN2ZhZmYwYjA2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoF0DAw DQYJKoZIhvcNAQELBQADggEBADfsclYYMwmAdcFs7oLNV3sQpyAFLxSo1lkeH7tC Q4UknPknlHQpM69YIcFDsX6LkegdEyZCNiRfQNdbZ8/L1fJ2I9pnhJnYtcmGi6RP P1uuvx4u85kiGA1wAeM50USyGmXDQP4mcQ+NDzvr4xp6R+c99wAJnAYME4JoR+EC 7CT6ZqoPL+LcfgQv/SEC/N2mb1t/vAVFXqZMiEOi26mL7bh9wDerwJgUIRwU5uLL oCeN4levQdJk7wB0XF6quQ91W/57N2egtL9uXd7ppTxnaB8vw7NMPq9ScWMwZEnC hNIsOMaPJJooNNTKeshjZhk8RqdxtxJpcyW77uI43Vv8IUM= -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:07 2025 by rpki-client