This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/09a66d07-54a4-4c26-8a49-e43710070e4d.roa File: 09a66d07-54a4-4c26-8a49-e43710070e4d.roa (raw, json) Hash identifier: jA2d3RCpvo+GVILtUsLQbB77ZZSlZMJkjEC3BnLrC+Q= Subject key identifier: 00:6E:F8:23:F6:FE:14:45:D1:53:47:82:64:BA:8C:E2:66:73:19:BF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3522D10C67956733B1CAFB7BD4207E01258803CD Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/09a66d07-54a4-4c26-8a49-e43710070e4d.roa Signing time: Sat 15 Nov 2025 06:10:44 +0000 ROA not before: Sat 15 Nov 2025 06:10:44 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:1080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:22:d1:0c:67:95:67:33:b1:ca:fb:7b:d4:20:7e:01:25:88:03:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:10:44 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=d2f5522a8f96183a1cea8a4632b140c46fa6fec048aeae227ee0771331573190, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:63:7e:c9:18:2c:d4:df:4e:52:36:07:09:5d: d2:3a:8e:5f:3c:50:09:f8:11:aa:d0:77:4f:e0:d8: 57:24:a8:b5:3d:fa:ca:57:f7:c2:4d:29:8d:3e:a9: 4f:2c:ce:cf:47:ad:1f:5a:19:44:86:76:9f:84:87: dc:35:f6:26:cf:5b:45:98:25:35:68:cb:f9:78:79: af:26:71:52:ee:88:b2:d2:7b:45:93:d4:1e:fd:86: c9:7c:0f:60:36:73:e3:aa:9b:81:30:cd:37:86:69: fa:9c:cb:07:1d:28:51:8e:3e:94:ad:38:99:4b:0f: 95:5d:24:09:7d:40:c0:ed:61:75:f3:bf:f2:02:90: e2:70:04:88:53:48:f4:57:88:a4:ed:9f:3f:2f:42: 2d:c3:bf:40:7b:a4:b2:ea:33:1f:da:73:2f:c6:0b: 0e:61:ba:88:42:6d:11:c9:74:bd:db:95:18:cf:06: bc:a6:03:72:28:87:00:09:56:88:23:77:f9:4a:87: ff:ea:4b:42:88:3c:04:16:89:7b:9b:d5:a6:d2:a2: a9:34:e9:2c:52:68:ff:b6:f7:7a:a1:53:74:cf:dc: cf:09:2b:26:07:0a:a8:0a:0b:d1:2f:7c:72:ad:fd: dd:d4:0e:f6:57:43:a9:4c:54:ce:8f:c3:51:aa:ed: 97:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6E:F8:23:F6:FE:14:45:D1:53:47:82:64:BA:8C:E2:66:73:19:BF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/09a66d07-54a4-4c26-8a49-e43710070e4d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:1080::/48 Signature Algorithm: sha256WithRSAEncryption 84:7f:98:35:77:3f:32:ef:ec:da:7d:e7:9b:a0:2a:e0:84:4d: b7:8d:25:3f:d6:e4:ef:e9:e8:d1:de:66:2f:43:98:c7:85:bd: a2:c5:61:26:34:d0:b5:29:50:22:25:55:0f:0c:70:a3:cc:af: f9:94:a8:4c:90:f0:33:0a:7a:52:5e:e2:4c:ae:c3:fe:a3:3b: b2:d6:04:14:eb:ec:10:b2:b5:83:ba:c2:9c:14:1a:4b:11:d3: ef:1b:48:c6:98:52:d7:f0:91:5d:5d:71:e8:e6:38:30:01:0b: a9:7c:c2:90:2d:6a:22:c3:88:5f:4f:3a:f0:1f:48:11:a8:cc: 46:d2:f6:93:ee:2a:c5:a6:bf:b2:44:28:a6:a1:c1:1d:9d:95: d2:c2:28:ea:e1:7e:18:54:42:aa:21:4a:00:0b:7b:c0:5d:a6: 65:65:9b:f0:cd:8a:03:6a:95:21:f4:e1:91:f0:37:1b:b7:9c: 87:1d:2b:e1:90:5d:28:8e:de:65:58:3a:06:81:29:99:b6:08: fe:16:76:7c:ea:f2:fe:0b:99:1f:8c:d7:67:73:6c:c3:9f:37: 3b:e0:72:e2:d9:b0:fd:a6:e4:92:a7:f0:9b:c1:25:0b:d0:00: 94:c3:59:6f:e7:c5:9a:13:6e:aa:97:d1:c8:ea:11:20:b7:1d: bb:2d:81:fb -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUNSLRDGeVZzOxyvt71CB+ASWIA80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjEwNDRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGQyZjU1MjJhOGY5NjE4M2ExY2VhOGE0NjMyYjE0MGM0NmZhNmZlYzA0OGFl YWUyMjdlZTA3NzEzMzE1NzMxOTAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALRjfskYLNTfTlI2Bwld0jqOXzxQCfgRqtB3T+DYVySotT36ylf3wk0pjT6p TyzOz0etH1oZRIZ2n4SH3DX2Js9bRZglNWjL+Xh5ryZxUu6IstJ7RZPUHv2GyXwP YDZz46qbgTDNN4Zp+pzLBx0oUY4+lK04mUsPlV0kCX1AwO1hdfO/8gKQ4nAEiFNI 9FeIpO2fPy9CLcO/QHuksuozH9pzL8YLDmG6iEJtEcl0vduVGM8GvKYDciiHAAlW iCN3+UqH/+pLQog8BBaJe5vVptKiqTTpLFJo/7b3eqFTdM/czwkrJgcKqAoL0S98 cq393dQO9ldDqUxUzo/DUartl70CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQAbvgj 9v4URdFTR4JkuoziZnMZvzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MDlhNjZkMDctNTRhNC00YzI2LThhNDktZTQzNzEwMDcwZTRkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H8Q gDANBgkqhkiG9w0BAQsFAAOCAQEAhH+YNXc/Mu/s2n3nm6Aq4IRNt40lP9bk7+no 0d5mL0OYx4W9osVhJjTQtSlQIiVVDwxwo8yv+ZSoTJDwMwp6Ul7iTK7D/qM7stYE FOvsELK1g7rCnBQaSxHT7xtIxphS1/CRXV1x6OY4MAELqXzCkC1qIsOIX0868B9I EajMRtL2k+4qxaa/skQopqHBHZ2V0sIo6uF+GFRCqiFKAAt7wF2mZWWb8M2KA2qV IfThkfA3G7echx0r4ZBdKI7eZVg6BoEpmbYI/hZ2fOry/guZH4zXZ3Nsw583O+By 4tmw/abkkqfwm8ElC9AAlMNZb+fFmhNuqpfRyOoRILcduy2B+w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:22 2025 by rpki-client