This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/12099bf5-f9c1-463e-9fc9-eaf791e339e4.roa File: 12099bf5-f9c1-463e-9fc9-eaf791e339e4.roa (raw, json) Hash identifier: ah+vFzcqSJhPXtRc4oRNYIpSTUuhC5+ngWPZI+IzEb4= Subject key identifier: E5:56:68:02:F6:2C:F8:54:36:6E:20:56:39:2D:4E:02:08:D3:AB:67 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 210747DA1362D389596846B0A0F8CDA696BB0620 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/12099bf5-f9c1-463e-9fc9-eaf791e339e4.roa Signing time: Sat 15 Nov 2025 06:11:02 +0000 ROA not before: Sat 15 Nov 2025 06:11:02 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d011::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:07:47:da:13:62:d3:89:59:68:46:b0:a0:f8:cd:a6:96:bb:06:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:11:02 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=f9882b20c9ad26f469fa315351175f43f9c5ea4400c101c37843da005cb4fbc0, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8b:1e:00:4c:5a:56:4b:2f:57:4b:cf:37:40: 0f:69:70:09:dc:51:45:8d:06:ab:c0:01:5d:d6:96: 69:17:be:60:91:07:4e:34:99:7f:62:44:75:d8:4b: 37:db:c2:35:6e:f7:72:72:32:e2:c1:2e:94:7c:3b: a9:73:85:65:bf:c4:d5:37:51:09:79:36:65:d8:bd: 7c:91:27:0e:80:90:7f:73:62:10:cf:56:73:2d:90: c1:67:a3:ae:e6:31:2e:91:28:62:15:25:83:ab:04: 22:a5:2c:fd:62:66:d5:64:48:aa:94:3f:a2:f9:49: d7:00:01:a5:07:0a:a2:f1:9a:e5:48:11:a7:ed:67: ca:b6:dd:d7:56:5f:d6:bd:80:6c:a8:08:7b:f0:5b: a8:7e:35:7e:3c:70:e8:ee:f8:fd:39:78:8f:f6:89: e6:44:27:b5:6e:35:b6:c8:5b:2c:2f:24:7b:87:2d: 85:c8:27:c0:94:78:49:6f:9c:ee:99:2d:31:8e:99: 4a:8f:3e:66:0b:88:54:6b:e8:7b:0b:a3:77:94:99: b5:11:6e:f3:da:eb:99:7d:79:2e:50:9d:53:48:ef: cf:20:c7:a2:23:2b:cd:24:c3:7c:28:ee:cd:9c:98: 23:f5:5b:3d:08:59:ba:a7:f3:84:8d:8d:cc:38:03: 63:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:56:68:02:F6:2C:F8:54:36:6E:20:56:39:2D:4E:02:08:D3:AB:67 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/12099bf5-f9c1-463e-9fc9-eaf791e339e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d011::/38 Signature Algorithm: sha256WithRSAEncryption bf:67:d4:5d:6c:12:87:0f:dc:98:eb:47:1d:9d:12:45:1e:c9: 63:6e:8c:9e:40:11:28:39:26:2a:36:18:b7:6a:97:d5:6f:23: be:19:50:cc:9b:18:25:20:02:d7:fb:9b:c8:c4:89:1c:b4:4a: 62:a3:32:13:ab:d2:7d:b0:c6:62:03:e9:90:80:9f:85:82:70: 83:2c:67:c6:f8:47:25:15:7b:bc:f9:9c:a9:4f:0b:c1:3f:c7: fd:8f:70:4b:dc:e9:21:70:37:ef:70:21:4f:00:db:7e:89:a4: 77:a9:e1:9f:a7:69:26:92:0a:74:d6:c5:e6:46:51:bb:17:22: 48:52:1b:b9:56:3a:bc:d9:0a:88:61:91:9d:4d:7b:86:2a:46: 64:71:5c:ea:00:19:ff:bf:40:1d:10:05:62:52:f4:fc:3b:c8: a6:76:c7:ea:63:4a:de:f8:32:c0:f8:31:78:12:5e:6b:1b:f9: a7:7b:5b:3c:b8:58:95:db:93:80:5c:18:2f:a5:80:67:53:1e: 83:5e:a7:c6:76:93:18:cd:98:fe:69:a1:46:e9:51:21:64:4f: d0:34:86:6f:8e:1a:a4:60:44:58:77:6f:71:22:3e:9b:87:ee: d5:10:1e:3f:6f:91:c6:7e:41:6e:27:05:a0:82:0a:d8:70:9b: e4:f6:21:65 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUIQdH2hNi04lZaEawoPjNppa7BiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjExMDJaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGY5ODgyYjIwYzlhZDI2ZjQ2OWZhMzE1MzUxMTc1ZjQzZjljNWVhNDQwMGMx MDFjMzc4NDNkYTAwNWNiNGZiYzAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSLHgBMWlZLL1dLzzdAD2lwCdxRRY0Gq8ABXdaWaRe+YJEHTjSZf2JEddhL N9vCNW73cnIy4sEulHw7qXOFZb/E1TdRCXk2Zdi9fJEnDoCQf3NiEM9Wcy2QwWej ruYxLpEoYhUlg6sEIqUs/WJm1WRIqpQ/ovlJ1wABpQcKovGa5UgRp+1nyrbd11Zf 1r2AbKgIe/BbqH41fjxw6O74/Tl4j/aJ5kQntW41tshbLC8ke4cthcgnwJR4SW+c 7pktMY6ZSo8+ZguIVGvoewujd5SZtRFu89rrmX15LlCdU0jvzyDHoiMrzSTDfCju zZyYI/VbPQhZuqfzhI2NzDgDYwECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTlVmgC 9iz4VDZuIFY5LU4CCNOrZzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTIwOTliZjUtZjljMS00NjNlLTlmYzktZWFmNzkxZTMzOWU0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAioF0BEA MA0GCSqGSIb3DQEBCwUAA4IBAQC/Z9RdbBKHD9yY60cdnRJFHsljboyeQBEoOSYq Nhi3apfVbyO+GVDMmxglIALX+5vIxIkctEpiozITq9J9sMZiA+mQgJ+FgnCDLGfG +EclFXu8+ZypTwvBP8f9j3BL3OkhcDfvcCFPANt+iaR3qeGfp2kmkgp01sXmRlG7 FyJIUhu5Vjq82QqIYZGdTXuGKkZkcVzqABn/v0AdEAViUvT8O8imdsfqY0re+DLA +DF4El5rG/mne1s8uFiV25OAXBgvpYBnUx6DXqfGdpMYzZj+aaFG6VEhZE/QNIZv jhqkYERYd29xIj6bh+7VEB4/b5HGfkFuJwWgggrYcJvk9iFl -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:30 2025 by rpki-client