This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0ffa6bfd-cc78-4a05-ad58-fd42ec48307e.roa File: 0ffa6bfd-cc78-4a05-ad58-fd42ec48307e.roa (raw, json) Hash identifier: qtJQTNft1sXviGktEOJ1zemAglWkmFmV9ZY+gWDPhw4= Subject key identifier: FD:C5:C3:BC:8C:88:C8:59:48:2C:96:2B:81:58:66:C3:72:B8:5C:1B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 78C7CB8D9BB9CD41BA497CD51259D09C6E7CED01 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0ffa6bfd-cc78-4a05-ad58-fd42ec48307e.roa Signing time: Tue 25 Nov 2025 20:00:08 +0000 ROA not before: Tue 25 Nov 2025 20:00:08 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:9080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c7:cb:8d:9b:b9:cd:41:ba:49:7c:d5:12:59:d0:9c:6e:7c:ed:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:00:08 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=d236acebe6e76e9cad2736894a43745312a6902a9487f7794480a4663aebb0e7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:60:fb:ad:94:73:56:e3:f6:9f:56:da:8a:82: 69:d2:68:cc:de:4b:06:6a:04:41:9d:05:ff:c3:41: e2:04:a0:fe:fd:30:80:e6:dc:9e:b0:1b:d9:97:dd: 63:56:b1:4a:55:d9:20:36:d8:d5:31:90:8b:75:b8: 49:10:6e:7c:02:21:14:aa:04:a6:d5:ea:78:47:16: ac:35:5c:69:ee:46:d7:ac:ab:13:29:29:51:e6:cf: 55:3a:9a:6e:47:ef:8a:97:d7:92:4b:a8:c7:0a:cb: de:53:74:11:82:b9:51:1b:48:f0:a0:d8:46:70:00: 1c:95:55:f4:d3:7f:93:2d:c7:e9:e7:f0:a9:da:62: a7:a6:a1:5d:61:8b:bd:58:b6:e7:6f:99:15:e3:b5: 17:92:76:04:2b:f5:20:e7:a1:72:c0:0c:08:1c:73: 73:a2:9d:c8:f7:c1:e8:18:62:2d:7c:43:79:16:c4: 1a:51:62:58:54:19:97:7d:2a:a6:9c:e7:0b:55:93: 66:9c:3b:f5:e8:e4:85:e3:45:82:3e:de:b4:48:2c: 6e:89:2a:a6:3e:43:66:2d:3b:28:12:6c:7a:3f:25: 12:eb:89:cf:a5:03:e7:df:4d:67:48:d1:7b:fa:af: b8:7f:2a:05:62:4b:73:dc:50:bb:39:7c:4b:b6:13: ca:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C5:C3:BC:8C:88:C8:59:48:2C:96:2B:81:58:66:C3:72:B8:5C:1B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0ffa6bfd-cc78-4a05-ad58-fd42ec48307e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:9080::/46 Signature Algorithm: sha256WithRSAEncryption 74:e1:1f:39:84:b6:09:74:ff:ab:e5:2d:68:3c:94:67:fd:51: ce:49:cf:4e:cc:6b:6c:f6:44:de:e3:0e:f2:59:17:c2:12:f3: a9:3e:05:84:63:0f:cb:26:59:8b:86:4d:79:dd:ce:b5:9e:33: aa:f6:0e:74:da:b7:62:ff:2d:5e:55:4c:4f:55:f4:20:12:31: 7a:3a:e9:66:f1:6c:de:d5:80:a8:d5:ca:05:3d:9c:c6:4a:cb: 8d:2c:9d:c1:8b:ab:71:da:63:e8:a8:3e:56:87:28:b9:49:de: 52:32:e4:46:a1:98:55:94:4b:d3:74:83:64:76:b9:04:3a:99: 9c:40:ef:3f:38:66:b6:a7:5d:1b:b4:ac:c5:ff:2b:d7:b7:2a: f9:c4:3a:ca:c8:99:e4:58:23:0d:f5:4b:cd:da:82:df:e8:4e: fc:8b:2c:f8:b1:bc:f9:64:5d:1e:a7:0e:24:91:de:b1:22:9a: 9c:74:15:83:7e:a9:1d:dc:81:1b:4b:fa:47:5a:96:7b:08:20: bc:5f:0e:cd:31:0f:9d:ad:80:df:d9:bc:98:54:80:7f:5e:61: 6b:d0:a7:ab:11:15:6f:49:ae:cd:31:35:8f:c0:08:92:41:88: 43:9f:96:77:91:3e:82:37:59:6e:a6:b9:10:b9:89:4f:fd:01: 56:29:79:0a -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUeMfLjZu5zUG6SXzVElnQnG587QEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAwMDhaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQGQyMzZhY2ViZTZlNzZlOWNhZDI3MzY4OTRhNDM3NDUzMTJhNjkwMmE5NDg3 Zjc3OTQ0ODBhNDY2M2FlYmIwZTcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKRg+62Uc1bj9p9W2oqCadJozN5LBmoEQZ0F/8NB4gSg/v0wgObcnrAb2Zfd Y1axSlXZIDbY1TGQi3W4SRBufAIhFKoEptXqeEcWrDVcae5G16yrEykpUebPVTqa bkfvipfXkkuoxwrL3lN0EYK5URtI8KDYRnAAHJVV9NN/ky3H6efwqdpip6ahXWGL vVi252+ZFeO1F5J2BCv1IOehcsAMCBxzc6KdyPfB6BhiLXxDeRbEGlFiWFQZl30q ppznC1WTZpw79ejkheNFgj7etEgsbokqpj5DZi07KBJsej8lEuuJz6UD599NZ0jR e/qvuH8qBWJLc9xQuzl8S7YTyjcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBT9xcO8 jIjIWUgsliuBWGbDcrhcGzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MGZmYTZiZmQtY2M3OC00YTA1LWFkNTgtZmQ0MmVjNDgzMDdlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HOQ gDANBgkqhkiG9w0BAQsFAAOCAQEAdOEfOYS2CXT/q+UtaDyUZ/1RzknPTsxrbPZE 3uMO8lkXwhLzqT4FhGMPyyZZi4ZNed3OtZ4zqvYOdNq3Yv8tXlVMT1X0IBIxejrp ZvFs3tWAqNXKBT2cxkrLjSydwYurcdpj6Kg+VocouUneUjLkRqGYVZRL03SDZHa5 BDqZnEDvPzhmtqddG7Ssxf8r17cq+cQ6ysiZ5FgjDfVLzdqC3+hO/Iss+LG8+WRd HqcOJJHesSKanHQVg36pHdyBG0v6R1qWewggvF8OzTEPna2A39m8mFSAf15ha9Cn qxEVb0muzTE1j8AIkkGIQ5+Wd5E+gjdZbqa5ELmJT/0BVil5Cg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:35 2025 by rpki-client