This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0d8c280f-edb2-45fb-9207-8226dc900bb1.roa File: 0d8c280f-edb2-45fb-9207-8226dc900bb1.roa (raw, json) Hash identifier: 7VZDiSK9bipO3JiunsFWahQN/ljegWXyqJI0l6mnpYw= Subject key identifier: B5:26:AF:4A:A3:52:8F:C2:AD:64:E0:F3:70:E9:DD:79:E1:B8:6D:9C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 18A95EA2E4BA74B95A91642F4BAC5228576613F7 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0d8c280f-edb2-45fb-9207-8226dc900bb1.roa Signing time: Sat 15 Nov 2025 05:51:06 +0000 ROA not before: Sat 15 Nov 2025 05:51:06 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:5080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a9:5e:a2:e4:ba:74:b9:5a:91:64:2f:4b:ac:52:28:57:66:13:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:51:06 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=5b5fe5c922ac0cebcd4198fb52a6347141f2274da981124f202f8630816b82b9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3f:f2:74:e8:06:97:27:4d:d7:6f:47:f3:be: c7:ee:70:29:54:42:f4:50:20:b5:b9:5c:73:3c:1d: 44:16:bd:f4:5b:1b:7d:1d:dc:bd:ba:de:03:c7:8d: 3d:8f:18:66:d4:cc:24:4e:67:1a:3e:66:e0:41:b2: ff:68:52:75:29:ba:9e:1c:9e:29:0e:93:ed:0d:e4: 9a:ce:cb:80:a0:2f:f6:e8:c5:95:ad:d2:a3:41:97: 9d:8b:0e:db:9d:5e:bd:35:76:05:17:b2:e7:e7:1f: e6:b1:e1:90:e5:47:bb:34:45:41:d5:e7:cd:2d:be: 4b:83:04:d0:94:8e:e4:16:2d:06:03:a2:5b:32:02: 20:df:37:76:ab:ea:f8:70:5b:e4:3a:60:a3:f8:53: 53:5a:c1:26:1d:af:79:f2:0e:35:46:9b:60:ec:e7: 88:da:e4:7a:2b:a0:47:10:55:95:87:cf:63:94:6b: 2f:ec:7e:06:39:78:8b:0a:78:c6:5a:e7:6f:43:54: 9e:37:c3:96:a0:ae:53:0a:12:01:94:97:dc:37:ca: 40:57:b6:c3:06:0e:6c:7a:92:e6:06:f3:09:2f:b8: 00:72:75:73:c1:24:a9:b4:d5:07:c2:40:09:77:6b: ff:e9:e2:b3:6a:92:99:c6:5c:d8:19:7d:02:5a:53: 76:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:26:AF:4A:A3:52:8F:C2:AD:64:E0:F3:70:E9:DD:79:E1:B8:6D:9C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0d8c280f-edb2-45fb-9207-8226dc900bb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:5080::/48 Signature Algorithm: sha256WithRSAEncryption 0a:0e:b1:cb:2c:01:36:80:1a:da:b4:fc:9b:e2:23:9e:c6:b3: 88:03:79:58:f5:ed:23:de:90:5d:d1:9f:70:f3:5f:e9:90:40: 0d:d5:5c:a7:41:87:51:be:88:5d:3c:41:f1:7d:67:91:35:7f: a8:d0:0a:b0:3e:d9:ad:73:fb:d7:16:c9:46:94:2a:b0:23:67: e0:50:dc:e7:09:fb:ae:82:c3:a2:9e:d9:13:96:56:5e:6c:8c: e6:5e:f8:6c:7f:e7:e8:ba:56:f3:19:83:95:7d:3d:fa:eb:a8: 28:a2:13:47:91:20:03:f3:3e:41:ee:60:45:5e:8f:bd:89:92: 6b:d9:42:62:47:62:3d:f6:85:50:b3:fd:14:36:7e:4e:21:94: 1b:f3:30:b9:41:b5:8d:7a:79:ab:f3:54:d8:92:4d:c2:03:9c: 43:7c:d9:aa:22:9c:de:5d:42:ff:36:d8:ae:cf:c5:f1:93:25: 90:6b:5a:86:c7:9a:5a:3c:f0:39:20:5f:cd:c2:07:16:2f:ab: 3d:03:7e:fd:7c:6c:29:b4:13:8e:77:11:a5:98:48:76:42:a4: c9:ba:61:16:90:b4:da:41:17:1d:36:df:9c:ab:a7:d0:1b:c8: 83:e1:37:72:46:7a:15:1f:58:63:d0:92:5c:71:7e:be:95:13: c5:bc:e2:46 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUGKleouS6dLlakWQvS6xSKFdmE/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTUxMDZaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDViNWZlNWM5MjJhYzBjZWJjZDQxOThmYjUyYTYzNDcxNDFmMjI3NGRhOTgx MTI0ZjIwMmY4NjMwODE2YjgyYjkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOQ/8nToBpcnTddvR/O+x+5wKVRC9FAgtblcczwdRBa99FsbfR3cvbreA8eN PY8YZtTMJE5nGj5m4EGy/2hSdSm6nhyeKQ6T7Q3kms7LgKAv9ujFla3So0GXnYsO 251evTV2BRey5+cf5rHhkOVHuzRFQdXnzS2+S4ME0JSO5BYtBgOiWzICIN83dqvq +HBb5Dpgo/hTU1rBJh2vefIONUabYOzniNrkeiugRxBVlYfPY5RrL+x+Bjl4iwp4 xlrnb0NUnjfDlqCuUwoSAZSX3DfKQFe2wwYObHqS5gbzCS+4AHJ1c8EkqbTVB8JA CXdr/+nis2qSmcZc2Bl9AlpTdjMCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBS1Jq9K o1KPwq1k4PNw6d154bhtnDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MGQ4YzI4MGYtZWRiMi00NWZiLTkyMDctODIyNmRjOTAwYmIxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DFQ gDANBgkqhkiG9w0BAQsFAAOCAQEACg6xyywBNoAa2rT8m+IjnsaziAN5WPXtI96Q XdGfcPNf6ZBADdVcp0GHUb6IXTxB8X1nkTV/qNAKsD7ZrXP71xbJRpQqsCNn4FDc 5wn7roLDop7ZE5ZWXmyM5l74bH/n6LpW8xmDlX09+uuoKKITR5EgA/M+Qe5gRV6P vYmSa9lCYkdiPfaFULP9FDZ+TiGUG/MwuUG1jXp5q/NU2JJNwgOcQ3zZqiKc3l1C /zbYrs/F8ZMlkGtahseaWjzwOSBfzcIHFi+rPQN+/XxsKbQTjncRpZhIdkKkybph FpC02kEXHTbfnKun0BvIg+E3ckZ6FR9YY9CSXHF+vpUTxbziRg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:12 2025 by rpki-client