This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/11758a9b-0e07-4929-92b2-ff867af4fa4f.roa File: 11758a9b-0e07-4929-92b2-ff867af4fa4f.roa (raw, json) Hash identifier: v5ic6Blor1UKj9/mDZBsXSWwjJwIvA5Xg5EusFIL/Yc= Subject key identifier: 19:5E:3B:87:29:24:73:F5:C2:97:D7:40:21:F9:B1:11:57:4E:B1:65 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1C0DB429CDA40749525C5B4F95CEF3B7F46BF064 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/11758a9b-0e07-4929-92b2-ff867af4fa4f.roa Signing time: Tue 02 Dec 2025 01:51:03 +0000 ROA not before: Tue 02 Dec 2025 01:51:03 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d074:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:0d:b4:29:cd:a4:07:49:52:5c:5b:4f:95:ce:f3:b7:f4:6b:f0:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:51:03 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=92b7b5e682c1cfdc1b6a20ddd0d9c02bda9534f4e9012f3d35146c4bb3ca93d9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:16:46:fe:2a:52:dd:e0:75:dd:63:e8:67:c4: 11:75:bc:e9:fa:4f:83:63:e3:74:15:66:5c:4d:37: 90:ae:f1:b2:1e:4e:24:c2:b9:08:c8:4a:93:0c:ae: 18:1d:f5:a4:47:89:4c:22:44:32:22:6a:09:b6:65: bc:c2:8a:8c:69:2b:a8:9d:a4:ce:22:e6:d7:92:35: 06:f1:26:72:8c:f3:ee:85:49:d0:2c:8c:31:bf:27: bb:62:80:54:e3:19:0c:e6:84:ab:87:3b:3b:b6:1b: 08:66:8a:9c:5f:ff:00:2e:bc:28:69:97:f6:42:36: f2:ce:39:e1:28:94:6f:f8:72:ff:35:9d:8b:0c:88: 0b:37:9f:dd:18:41:96:4a:8c:8a:f5:a3:24:d8:7f: 8f:c2:31:c5:52:d5:74:8b:2c:a7:6b:dd:2d:a4:84: 61:df:06:dc:1e:bd:ee:49:0d:51:50:1f:5c:1a:c2: 82:a5:10:18:b5:fd:ad:05:da:30:fb:33:ae:0e:cc: e1:31:5d:69:87:68:68:b7:a2:8c:c8:31:e3:02:1f: e6:73:74:f7:b2:61:45:af:7e:f8:c1:36:49:30:6c: 40:38:62:83:89:1e:80:05:92:4d:ef:3d:e9:83:a9: 5d:a1:17:95:41:49:78:fa:31:a7:f0:d8:e5:b1:24: fa:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:5E:3B:87:29:24:73:F5:C2:97:D7:40:21:F9:B1:11:57:4E:B1:65 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/11758a9b-0e07-4929-92b2-ff867af4fa4f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d074:2000::/40 Signature Algorithm: sha256WithRSAEncryption 86:0b:47:f4:7c:69:a3:f9:f2:99:9a:c3:65:25:e0:75:18:9b: e5:28:b2:44:2a:c5:e3:94:62:cc:61:01:05:95:13:e7:fd:58: 28:93:a3:bc:2c:df:15:7f:0f:aa:0b:36:b4:78:d9:af:1b:1e: 3f:91:33:79:30:cc:81:d8:c4:9e:29:0a:9f:99:97:bc:80:77: 79:ed:2f:58:a3:94:3f:cc:71:f6:c9:a4:eb:07:8d:4a:ea:51: eb:d6:7d:1b:bb:e3:74:43:2b:40:d2:b4:3a:22:40:b6:40:ef: 04:d9:82:86:6d:b7:80:ae:93:26:6c:7b:6a:e9:11:28:8d:fd: a3:f2:64:ea:38:b3:34:53:ad:32:31:7e:92:12:32:06:e3:72: 2e:79:7e:eb:75:50:87:c0:a4:25:19:62:f9:9a:27:38:86:c3: 50:00:cd:ad:93:6d:d3:7d:02:e2:10:f5:e9:16:b8:49:d9:66: 76:88:e0:d4:c5:95:58:ab:76:5e:dc:05:db:99:9b:16:e0:5b: 47:93:25:c5:44:04:d9:e6:43:de:6b:bd:3b:95:bd:ce:bc:41: ad:63:f8:30:ed:71:50:f9:83:e0:cb:2b:83:f3:05:9a:6c:e6: c7:b2:be:d0:0d:4a:0c:21:20:32:50:f9:5f:87:c8:fe:f1:6e: c7:7b:26:2d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUHA20Kc2kB0lSXFtPlc7zt/Rr8GQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUxMDNaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDkyYjdiNWU2ODJjMWNmZGMxYjZhMjBkZGQwZDljMDJiZGE5NTM0ZjRlOTAx MmYzZDM1MTQ2YzRiYjNjYTkzZDkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKsWRv4qUt3gdd1j6GfEEXW86fpPg2PjdBVmXE03kK7xsh5OJMK5CMhKkwyu GB31pEeJTCJEMiJqCbZlvMKKjGkrqJ2kziLm15I1BvEmcozz7oVJ0CyMMb8nu2KA VOMZDOaEq4c7O7YbCGaKnF//AC68KGmX9kI28s454SiUb/hy/zWdiwyICzef3RhB lkqMivWjJNh/j8IxxVLVdIssp2vdLaSEYd8G3B697kkNUVAfXBrCgqUQGLX9rQXa MPszrg7M4TFdaYdoaLeijMgx4wIf5nN097JhRa9++ME2STBsQDhig4kegAWSTe89 6YOpXaEXlUFJePoxp/DY5bEk+hcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQZXjuH KSRz9cKX10Ah+bERV06xZTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTE3NThhOWItMGUwNy00OTI5LTkyYjItZmY4NjdhZjRmYTRmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HQg MA0GCSqGSIb3DQEBCwUAA4IBAQCGC0f0fGmj+fKZmsNlJeB1GJvlKLJEKsXjlGLM YQEFlRPn/Vgok6O8LN8Vfw+qCza0eNmvGx4/kTN5MMyB2MSeKQqfmZe8gHd57S9Y o5Q/zHH2yaTrB41K6lHr1n0bu+N0QytA0rQ6IkC2QO8E2YKGbbeArpMmbHtq6REo jf2j8mTqOLM0U60yMX6SEjIG43IueX7rdVCHwKQlGWL5mic4hsNQAM2tk23TfQLi EPXpFrhJ2WZ2iODUxZVYq3Ze3AXbmZsW4FtHkyXFRATZ5kPea707lb3OvEGtY/gw 7XFQ+YPgyyuD8wWabObHsr7QDUoMISAyUPlfh8j+8W7HeyYt -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:35 2025 by rpki-client