This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/113e55fd-9531-4700-bcdc-5abe9a806b41.roa File: 113e55fd-9531-4700-bcdc-5abe9a806b41.roa (raw, json) Hash identifier: NvUmBEZ10W7xBRVgFJZ7n8Et2G57MIgkeqdlpo+jbps= Subject key identifier: 6E:7C:06:6D:9A:93:19:A1:1E:64:C1:B2:AD:0B:0B:B6:C0:B2:E1:F3 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5D4F64F304B96C0F4B4B78F0A9E3B5A0BA348FB6 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/113e55fd-9531-4700-bcdc-5abe9a806b41.roa Signing time: Wed 12 Nov 2025 03:00:03 +0000 ROA not before: Wed 12 Nov 2025 03:00:03 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d076:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:4f:64:f3:04:b9:6c:0f:4b:4b:78:f0:a9:e3:b5:a0:ba:34:8f:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 12 03:00:03 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=e4bc00883e30e277f696080be464618d372e797f78b9816260e22843ba7835de, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3d:5e:f1:37:92:4e:6f:6b:48:0e:7f:ec:73: 02:85:23:81:a3:be:1f:34:ad:c6:bf:40:e6:1b:ab: 97:a8:f8:7e:e2:7d:34:97:0f:3c:f8:cf:13:9e:38: f1:11:54:ce:8c:6c:98:8e:51:d8:bc:a0:cd:1a:ae: 12:5b:2b:b9:8e:61:aa:2f:50:9b:19:0f:65:db:4f: ca:43:bd:96:bf:cc:ed:c0:82:98:10:d7:c7:a7:0f: 14:7a:59:25:e7:dd:ad:53:8e:ff:4a:ce:35:bf:ed: eb:b6:05:79:3e:fe:d7:77:f1:3d:d1:e3:ac:f4:e0: 84:71:d5:b3:d2:17:aa:04:c7:41:96:c3:c1:b4:a3: d9:ac:dd:45:0e:7d:f8:1c:0d:17:f1:1d:bf:47:ad: 7c:b6:d2:89:4d:cd:4c:c0:0c:71:2c:c0:36:21:d9: 44:ca:9e:4c:98:7a:0f:2b:42:2a:46:cf:71:4e:0a: ca:68:ca:8c:5e:47:9e:3c:b7:7f:87:c3:30:5a:db: 59:cd:95:a0:95:59:ae:f6:3f:52:35:92:eb:bf:8c: a5:26:9f:58:b1:9b:87:51:78:b6:06:b8:bc:a6:96: 00:8b:a8:37:3a:e7:22:60:8c:2d:a0:cc:b7:85:08: 9c:f7:32:aa:2f:da:a9:70:23:21:32:48:6d:de:6c: 52:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:7C:06:6D:9A:93:19:A1:1E:64:C1:B2:AD:0B:0B:B6:C0:B2:E1:F3 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/113e55fd-9531-4700-bcdc-5abe9a806b41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d076:800::/40 Signature Algorithm: sha256WithRSAEncryption a3:4a:90:37:ec:a1:6c:2c:7e:56:e1:46:16:65:f6:a4:0c:0d: bd:11:02:2a:eb:77:79:07:47:58:1d:cd:e9:7b:b3:05:95:2c: 52:88:b4:b9:17:c4:94:92:27:4d:68:5e:3d:48:78:35:7a:e3: 17:4b:70:cb:74:e0:0e:3a:65:e1:43:93:2d:c4:cd:aa:ac:a0: 57:20:86:69:13:a6:e7:ab:13:05:21:d9:ea:d1:fb:0f:7c:96: 3d:29:d3:d5:6d:74:32:36:a5:cc:22:ed:3f:31:89:ca:e6:b4: 68:bb:69:39:4e:1b:6e:b5:f2:7a:5c:e4:f8:57:13:96:6a:f0: ec:37:54:aa:be:5e:f5:89:11:7e:4c:07:51:9e:de:2b:64:24: e5:8d:d9:59:2c:51:db:8f:03:f6:1c:25:e1:ee:39:57:e3:0a: d3:ad:34:f8:4b:5d:5c:65:1f:0c:cf:8f:4e:cb:fe:0f:29:78: ac:ee:7b:b9:2f:88:25:af:9a:3b:fd:2b:24:5e:de:ca:93:df: fd:8b:54:54:5e:af:fc:8e:55:e1:49:25:8a:de:71:85:7f:ea: a6:8b:87:2a:3f:f8:af:85:98:8b:c4:88:2e:57:4a:97:b7:76: 0f:5d:30:f7:8e:ff:02:a6:34:cc:d6:98:74:ef:c1:8f:60:6c: a4:fa:99:6e -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUXU9k8wS5bA9LS3jwqeO1oLo0j7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTIwMzAwMDNaFw0yNTEyMTcyMzU5NTlaMHoxSTBHBgNV BAUTQGU0YmMwMDg4M2UzMGUyNzdmNjk2MDgwYmU0NjQ2MThkMzcyZTc5N2Y3OGI5 ODE2MjYwZTIyODQzYmE3ODM1ZGUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALg9XvE3kk5va0gOf+xzAoUjgaO+HzStxr9A5hurl6j4fuJ9NJcPPPjPE544 8RFUzoxsmI5R2LygzRquElsruY5hqi9QmxkPZdtPykO9lr/M7cCCmBDXx6cPFHpZ JefdrVOO/0rONb/t67YFeT7+13fxPdHjrPTghHHVs9IXqgTHQZbDwbSj2azdRQ59 +BwNF/Edv0etfLbSiU3NTMAMcSzANiHZRMqeTJh6DytCKkbPcU4KymjKjF5Hnjy3 f4fDMFrbWc2VoJVZrvY/UjWS67+MpSafWLGbh1F4tga4vKaWAIuoNzrnImCMLaDM t4UInPcyqi/aqXAjITJIbd5sUsUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRufAZt mpMZoR5kwbKtCwu2wLLh8zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTEzZTU1ZmQtOTUzMS00NzAwLWJjZGMtNWFiZTlhODA2YjQxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HYI MA0GCSqGSIb3DQEBCwUAA4IBAQCjSpA37KFsLH5W4UYWZfakDA29EQIq63d5B0dY Hc3pe7MFlSxSiLS5F8SUkidNaF49SHg1euMXS3DLdOAOOmXhQ5MtxM2qrKBXIIZp E6bnqxMFIdnq0fsPfJY9KdPVbXQyNqXMIu0/MYnK5rRou2k5ThtutfJ6XOT4VxOW avDsN1Sqvl71iRF+TAdRnt4rZCTljdlZLFHbjwP2HCXh7jlX4wrTrTT4S11cZR8M z49Oy/4PKXis7nu5L4glr5o7/SskXt7Kk9/9i1RUXq/8jlXhSSWK3nGFf+qmi4cq P/ivhZiLxIguV0qXt3YPXTD3jv8CpjTM1ph078GPYGyk+plu -----END CERTIFICATE-----Generated at Sat Dec 6 10:53:44 2025 by rpki-client