This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/11f67075-d744-49be-809b-fca0d72c41e0.roa File: 11f67075-d744-49be-809b-fca0d72c41e0.roa (raw, json) Hash identifier: 2LygFr9It38J+lWfv0VegpQFnn01pGlU5X0aV+X4xow= Subject key identifier: 22:C2:D1:E2:0C:35:D1:05:C7:EE:AD:68:EB:DD:0F:5E:A3:70:0E:FC Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 401D329AF9A3EF5786AA5A0B7FFD68431606CFD8 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/11f67075-d744-49be-809b-fca0d72c41e0.roa Signing time: Sat 15 Nov 2025 05:41:05 +0000 ROA not before: Sat 15 Nov 2025 05:41:05 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d078:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:1d:32:9a:f9:a3:ef:57:86:aa:5a:0b:7f:fd:68:43:16:06:cf:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:41:05 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=993c16ecf735260948a7279e9f9ff8433dac72cab1beafeb4e0f4277d00f851c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:67:cd:6f:81:b2:93:39:02:a3:71:a6:21:58: 9c:3d:e4:c5:b8:98:10:e2:f2:6e:3d:0b:1c:0e:68: d1:3d:1e:eb:7d:22:4d:ee:9e:3f:90:e6:a8:93:ff: 51:35:05:4e:6b:aa:ec:d6:35:ad:94:ee:ac:ca:1f: 07:68:3a:e5:ca:b9:99:55:d0:84:1f:c3:c2:06:d5: e7:3e:04:b2:5d:86:de:18:14:90:12:b6:33:84:4a: 7e:4a:bb:4c:29:90:86:b0:c2:ad:0d:0a:15:3c:02: 69:fc:5b:41:b3:55:55:5e:2b:ef:15:d9:6a:68:9f: 20:09:80:d9:de:fb:4d:1e:ee:bc:cf:45:a7:e7:c7: 0e:dd:bb:f1:b1:9a:09:9d:57:6c:21:4c:f4:cb:90: b5:a8:6f:80:80:78:76:00:e3:30:a1:fe:68:7a:ca: 5d:93:d5:c7:fa:33:7a:72:06:c9:93:e9:ee:ce:77: 6f:3c:41:b3:a6:c0:7b:96:e5:0e:16:38:47:1e:b2: 63:a4:52:98:0a:1b:6c:3d:cf:99:a6:e9:6a:39:7b: 1e:6c:62:61:55:30:d9:84:80:42:d0:21:a5:12:cb: ab:e6:1d:79:ce:ec:51:d0:16:ce:3f:11:5f:df:97: 21:86:0e:d1:f2:44:bb:a3:65:84:e6:d1:19:62:f9: 04:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C2:D1:E2:0C:35:D1:05:C7:EE:AD:68:EB:DD:0F:5E:A3:70:0E:FC X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/11f67075-d744-49be-809b-fca0d72c41e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d078:2000::/40 Signature Algorithm: sha256WithRSAEncryption a3:85:3b:f1:23:9b:cd:f2:c8:8b:08:ae:05:75:bd:ae:30:4f: dd:d3:09:06:c5:54:0f:f7:a9:d6:f4:0c:49:77:26:21:0c:4c: 9f:f5:96:de:28:b4:18:42:7b:94:11:8b:67:94:a7:dd:b7:5f: f3:ad:e9:88:77:1f:d3:76:9c:4d:b1:dd:2d:18:b3:ad:39:45: e7:91:57:93:a2:2d:bd:f4:d0:90:ed:e7:4c:3d:40:f4:f9:66: ad:c0:41:09:6b:3f:d2:6e:a9:d7:38:33:c2:72:11:66:dd:9a: 1e:d9:c9:1d:f4:ad:82:c8:c9:47:b3:2c:cc:5d:9d:5c:8f:ea: cf:ee:93:75:a4:ba:00:45:b2:12:27:87:0a:28:8c:a5:bb:90: dc:8b:e6:b8:20:97:77:52:84:a0:6c:ab:45:ed:57:90:d4:9f: 47:eb:dc:c9:8f:76:3d:b0:7c:94:40:96:f1:3d:e0:b1:94:3b: 19:50:08:f1:6b:b2:31:0a:3c:c5:5f:8d:44:35:f2:74:44:95: 19:24:4c:4c:09:7e:f9:4b:fd:4d:54:0e:bb:85:79:45:04:98: ee:d8:9e:e3:80:99:9f:d6:9f:e7:ee:a8:34:bb:9d:62:11:47: d8:6f:24:9e:df:eb:d4:0e:7e:a0:92:0e:48:f9:60:d8:da:c6: 8e:b1:79:1c -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUQB0ymvmj71eGqloLf/1oQxYGz9gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQxMDVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDk5M2MxNmVjZjczNTI2MDk0OGE3Mjc5ZTlmOWZmODQzM2RhYzcyY2FiMWJl YWZlYjRlMGY0Mjc3ZDAwZjg1MWMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9nzW+BspM5AqNxpiFYnD3kxbiYEOLybj0LHA5o0T0e630iTe6eP5DmqJP/ UTUFTmuq7NY1rZTurMofB2g65cq5mVXQhB/DwgbV5z4Esl2G3hgUkBK2M4RKfkq7 TCmQhrDCrQ0KFTwCafxbQbNVVV4r7xXZamifIAmA2d77TR7uvM9Fp+fHDt278bGa CZ1XbCFM9MuQtahvgIB4dgDjMKH+aHrKXZPVx/ozenIGyZPp7s53bzxBs6bAe5bl DhY4Rx6yY6RSmAobbD3Pmabpajl7HmxiYVUw2YSAQtAhpRLLq+Ydec7sUdAWzj8R X9+XIYYO0fJEu6NlhObRGWL5BAsCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQiwtHi DDXRBcfurWjr3Q9eo3AO/DAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTFmNjcwNzUtZDc0NC00OWJlLTgwOWItZmNhMGQ3MmM0MWUwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0Hgg MA0GCSqGSIb3DQEBCwUAA4IBAQCjhTvxI5vN8siLCK4Fdb2uME/d0wkGxVQP96nW 9AxJdyYhDEyf9ZbeKLQYQnuUEYtnlKfdt1/zremIdx/TdpxNsd0tGLOtOUXnkVeT oi299NCQ7edMPUD0+WatwEEJaz/SbqnXODPCchFm3Zoe2ckd9K2CyMlHsyzMXZ1c j+rP7pN1pLoARbISJ4cKKIylu5Dci+a4IJd3UoSgbKtF7VeQ1J9H69zJj3Y9sHyU QJbxPeCxlDsZUAjxa7IxCjzFX41ENfJ0RJUZJExMCX75S/1NVA67hXlFBJju2J7j gJmf1p/n7qg0u51iEUfYbySe3+vUDn6gkg5I+WDY2saOsXkc -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:36 2025 by rpki-client