This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/08e9f311-ee3f-4a72-94cd-4b4eeae736f4.roa File: 08e9f311-ee3f-4a72-94cd-4b4eeae736f4.roa (raw, json) Hash identifier: 3hEhftsFEY5Q1dFsd3n5/qEo/NJ7JCEEMS0uEA3cnJY= Subject key identifier: 10:3C:A3:3B:92:8C:07:03:5F:22:00:DD:DE:15:52:C1:E3:F8:01:DF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 06849947D132FC70EB64B4ED2277229704F396DE Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/08e9f311-ee3f-4a72-94cd-4b4eeae736f4.roa Signing time: Wed 12 Nov 2025 03:00:07 +0000 ROA not before: Wed 12 Nov 2025 03:00:07 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d035:b000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:84:99:47:d1:32:fc:70:eb:64:b4:ed:22:77:22:97:04:f3:96:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 12 03:00:07 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=d7d9d5161deb805bfdecc66acad26f1758cd65b34e720de8d514bbb0fd4e4cbc, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:31:73:7d:ad:cd:10:c3:f3:18:22:dd:a6:3f: 83:7c:c9:05:f8:06:0b:6b:f5:16:62:bc:61:58:f9: 9b:e9:1a:fa:75:45:2f:6c:f4:6e:48:e6:29:9e:79: 8b:a8:d3:ad:2c:0a:36:14:32:a8:98:b5:d3:f2:0e: f0:66:01:b6:22:b2:ab:e7:a0:13:9f:47:8c:70:36: aa:98:fd:bd:c6:5f:b3:02:59:6f:95:89:71:db:39: ba:2b:67:5e:45:0b:ee:a4:6b:bf:9c:b6:8d:d6:3a: 1a:8e:c4:c1:5c:79:86:3f:75:c7:42:56:40:eb:f7: e2:ac:0d:af:44:e1:7f:b3:0a:fb:50:d2:4c:76:d2: 30:1c:7f:47:93:45:29:fc:b4:77:fc:07:09:4f:f7: 2e:62:ae:15:ba:dd:a7:a2:c9:1f:f3:8e:51:54:c0: 30:17:fb:e0:f2:b0:f3:56:01:87:95:e1:8c:d5:48: 0b:1c:8f:c6:47:03:b8:03:cf:51:45:e1:62:0d:ef: 03:ab:b0:c1:f0:3a:08:a7:b5:9e:0c:6f:97:f0:56: b4:3d:d2:9c:bf:d4:3e:b6:d1:b4:f5:f1:73:54:0c: 65:24:66:e8:10:26:21:1a:b1:e9:73:68:bc:8e:17: 67:3e:f1:c5:df:b3:06:a9:3e:87:b5:5d:85:f5:48: b0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:3C:A3:3B:92:8C:07:03:5F:22:00:DD:DE:15:52:C1:E3:F8:01:DF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/08e9f311-ee3f-4a72-94cd-4b4eeae736f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d035:b000::/40 Signature Algorithm: sha256WithRSAEncryption 18:8d:29:c4:54:bf:9a:22:22:b9:2f:88:53:94:5d:dd:08:7d: 0b:bd:31:93:2b:ae:ba:52:c0:ae:63:52:11:e6:4a:3c:28:ba: eb:77:4e:b4:f4:d7:be:9f:a6:68:87:c0:1c:d5:c7:35:46:e6: e2:15:f0:86:d8:28:af:1d:ae:c3:a4:02:d8:cc:a1:31:c4:33: 1c:e6:54:6f:0d:cf:ea:86:10:a6:6e:ff:ba:5d:a6:3b:2a:9f: aa:3f:ff:3c:b0:28:63:3b:ca:f0:34:0c:48:d6:a3:07:63:20: 66:08:92:6c:37:b5:36:ec:ff:48:d3:2a:07:10:7e:d1:9b:ee: 4b:f2:85:fe:b9:e5:bd:c4:32:ca:3a:00:1d:07:d0:cf:a2:d9: ef:72:59:de:e8:8c:30:e5:7a:54:a4:17:dd:b5:1a:b8:f9:35: 02:3e:92:71:f6:ed:2c:23:3e:28:07:17:9d:49:f4:7e:84:71: 19:f3:b3:bc:78:ab:0f:69:26:bc:12:5f:83:73:85:69:bf:84: 19:3c:cf:52:85:a7:2e:07:91:2b:0c:62:af:55:73:d3:5f:1a: ee:79:b6:6d:ca:f0:1d:3f:46:df:db:a8:dd:bc:32:60:01:82: 9c:7d:61:92:b0:ef:46:8a:08:d9:f7:6d:90:74:73:17:6d:4e: f5:4c:96:f6 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUBoSZR9Ey/HDrZLTtIncilwTzlt4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTIwMzAwMDdaFw0yNTEyMTcyMzU5NTlaMHoxSTBHBgNV BAUTQGQ3ZDlkNTE2MWRlYjgwNWJmZGVjYzY2YWNhZDI2ZjE3NThjZDY1YjM0ZTcy MGRlOGQ1MTRiYmIwZmQ0ZTRjYmMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUxc32tzRDD8xgi3aY/g3zJBfgGC2v1FmK8YVj5m+ka+nVFL2z0bkjmKZ55 i6jTrSwKNhQyqJi10/IO8GYBtiKyq+egE59HjHA2qpj9vcZfswJZb5WJcds5uitn XkUL7qRrv5y2jdY6Go7EwVx5hj91x0JWQOv34qwNr0Thf7MK+1DSTHbSMBx/R5NF Kfy0d/wHCU/3LmKuFbrdp6LJH/OOUVTAMBf74PKw81YBh5XhjNVICxyPxkcDuAPP UUXhYg3vA6uwwfA6CKe1ngxvl/BWtD3SnL/UPrbRtPXxc1QMZSRm6BAmIRqx6XNo vI4XZz7xxd+zBqk+h7VdhfVIsIcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQQPKM7 kowHA18iAN3eFVLB4/gB3zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MDhlOWYzMTEtZWUzZi00YTcyLTk0Y2QtNGI0ZWVhZTczNmY0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DWw MA0GCSqGSIb3DQEBCwUAA4IBAQAYjSnEVL+aIiK5L4hTlF3dCH0LvTGTK666UsCu Y1IR5ko8KLrrd0609Ne+n6Zoh8Ac1cc1RubiFfCG2CivHa7DpALYzKExxDMc5lRv Dc/qhhCmbv+6XaY7Kp+qP/88sChjO8rwNAxI1qMHYyBmCJJsN7U27P9I0yoHEH7R m+5L8oX+ueW9xDLKOgAdB9DPotnvclne6Iww5XpUpBfdtRq4+TUCPpJx9u0sIz4o BxedSfR+hHEZ87O8eKsPaSa8El+Dc4Vpv4QZPM9ShacuB5ErDGKvVXPTXxruebZt yvAdP0bf26jdvDJgAYKcfWGSsO9GigjZ922QdHMXbU71TJb2 -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:28 2025 by rpki-client