This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1277c797-1181-445f-b798-ef72bbfc284c.roa File: 1277c797-1181-445f-b798-ef72bbfc284c.roa (raw, json) Hash identifier: Kpe/N9X42v291/LoXSiTVnvIJi4dSbXroBr2qD2t860= Subject key identifier: B0:00:EB:5A:96:45:C4:EA:CC:4B:58:74:69:E5:BA:23:B0:B0:AB:37 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 25BDBACA775BE5CDFCB15EC93355EFA819A88539 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1277c797-1181-445f-b798-ef72bbfc284c.roa Signing time: Sat 29 Nov 2025 03:00:25 +0000 ROA not before: Sat 29 Nov 2025 03:00:25 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2a05:d074:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:bd:ba:ca:77:5b:e5:cd:fc:b1:5e:c9:33:55:ef:a8:19:a8:85:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:25 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=2651a0d4cc4e1b233f827f0b73ca39efcb91cfe2dadcb7a8b5c45ce80302b10e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6a:4b:33:33:37:1c:28:dd:40:86:88:f1:e0: 7a:2a:d2:9b:23:96:7e:2f:64:38:c4:22:95:58:e3: 14:f9:92:6d:96:6a:ba:c5:ef:48:a1:75:38:da:df: 69:5e:83:76:e0:39:66:d0:b7:2c:24:85:3c:32:39: 19:cc:0d:14:3d:b6:a0:33:96:3c:a1:6d:ea:78:dd: 49:d9:5a:45:08:7f:0e:49:fe:01:1c:28:a2:5a:e7: 90:52:b7:b4:63:d6:2c:04:68:3f:91:7d:76:10:98: 76:94:33:3e:75:cb:a0:69:07:08:3c:8e:48:40:4d: bd:9c:c0:a2:eb:82:15:3f:f5:c0:aa:68:6f:57:15: 6f:3e:56:ea:4e:b4:72:64:cd:10:1c:1f:ac:55:52: e4:c2:d9:2f:99:2a:8c:6b:47:07:9e:dd:83:ad:57: e4:fe:d1:fb:f0:7e:d9:bb:04:41:c3:a4:30:ad:39: ef:16:76:b0:e6:71:ff:4f:69:3f:cd:47:1b:2b:4e: 69:03:e1:f5:b9:80:58:25:60:c2:9e:63:86:87:31: 7a:8f:13:2a:70:28:3d:d5:41:c5:b6:d2:59:e0:d0: e8:93:94:79:24:29:14:af:3b:35:31:5d:2d:99:6c: 41:de:53:e5:68:f6:23:2a:a9:7e:a8:6b:3a:ad:ed: c3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:00:EB:5A:96:45:C4:EA:CC:4B:58:74:69:E5:BA:23:B0:B0:AB:37 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1277c797-1181-445f-b798-ef72bbfc284c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d074:e000::/40 Signature Algorithm: sha256WithRSAEncryption 6f:94:21:43:de:e8:20:96:67:e1:09:e3:37:62:28:5d:91:d3: 39:d8:44:c6:6c:2b:97:c4:6d:bc:13:f7:71:b6:14:c5:47:bf: c9:27:c6:26:bd:f9:83:31:56:f2:38:77:b9:af:ec:bd:e3:5f: 4e:dd:3d:dc:fb:5f:d5:fb:ba:f3:9f:12:08:fd:ee:54:5f:5b: cf:94:56:5c:dd:9b:66:e3:6b:11:94:4b:6c:c3:6b:a4:34:ca: 9d:e1:7a:ed:a1:7c:6d:78:f5:da:a8:52:2b:31:d2:e7:6a:b5: 17:e0:a4:bf:d8:fc:06:58:53:53:3f:61:ff:a8:0c:23:44:b1: eb:b7:1c:35:1f:3c:d1:28:3b:5c:66:97:93:6c:77:43:52:f5: 62:bd:2b:88:7b:3b:76:ea:ba:f0:2b:50:a6:83:a3:9d:a2:3b: ca:8f:31:59:e7:67:94:91:69:45:48:40:8d:c9:28:3b:cf:12: 26:90:da:20:1a:f4:24:04:bb:3e:d6:71:b5:16:ab:50:bb:2b: 02:6a:cc:91:e5:51:1b:57:3c:8e:73:4d:19:eb:b2:1e:7e:da: 00:3c:b2:7a:e6:8b:00:d2:ca:a7:18:4d:1a:66:03:86:e3:31: c8:d2:67:ac:3d:ba:46:dc:01:fe:21:23:15:3c:09:31:0a:cf: 20:40:7b:35 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUJb26yndb5c38sV7JM1XvqBmohTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwMjVaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDI2NTFhMGQ0Y2M0ZTFiMjMzZjgyN2YwYjczY2EzOWVmY2I5MWNmZTJkYWRj YjdhOGI1YzQ1Y2U4MDMwMmIxMGUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtqSzMzNxwo3UCGiPHgeirSmyOWfi9kOMQilVjjFPmSbZZqusXvSKF1ONrf aV6DduA5ZtC3LCSFPDI5GcwNFD22oDOWPKFt6njdSdlaRQh/Dkn+ARwoolrnkFK3 tGPWLARoP5F9dhCYdpQzPnXLoGkHCDyOSEBNvZzAouuCFT/1wKpob1cVbz5W6k60 cmTNEBwfrFVS5MLZL5kqjGtHB57dg61X5P7R+/B+2bsEQcOkMK057xZ2sOZx/09p P81HGytOaQPh9bmAWCVgwp5jhocxeo8TKnAoPdVBxbbSWeDQ6JOUeSQpFK87NTFd LZlsQd5T5Wj2IyqpfqhrOq3tw6ECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSwAOta lkXE6sxLWHRp5bojsLCrNzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTI3N2M3OTctMTE4MS00NDVmLWI3OTgtZWY3MmJiZmMyODRjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HTg MA0GCSqGSIb3DQEBCwUAA4IBAQBvlCFD3ugglmfhCeM3YihdkdM52ETGbCuXxG28 E/dxthTFR7/JJ8YmvfmDMVbyOHe5r+y9419O3T3c+1/V+7rznxII/e5UX1vPlFZc 3Ztm42sRlEtsw2ukNMqd4XrtoXxtePXaqFIrMdLnarUX4KS/2PwGWFNTP2H/qAwj RLHrtxw1HzzRKDtcZpeTbHdDUvVivSuIezt26rrwK1Cmg6OdojvKjzFZ52eUkWlF SECNySg7zxImkNogGvQkBLs+1nG1FqtQuysCasyR5VEbVzyOc00Z67IeftoAPLJ6 5osA0sqnGE0aZgOG4zHI0mesPbpG3AH+ISMVPAkxCs8gQHs1 -----END CERTIFICATE-----Generated at Sat Dec 6 12:48:14 2025 by rpki-client