This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/12fa0094-3721-4a61-a72f-8cdeff5e5f37.roa File: 12fa0094-3721-4a61-a72f-8cdeff5e5f37.roa (raw, json) Hash identifier: dmL5wFqeQT0ibi7AugODpwn/lc3ktjwO//zEMLDQtLA= Subject key identifier: 24:15:86:8E:8D:7D:19:A6:7E:25:B5:78:12:B2:AC:43:52:DE:80:BB Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 03E09498E65711729EA857DFAF6A9D0EBA5B0E8F Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/12fa0094-3721-4a61-a72f-8cdeff5e5f37.roa Signing time: Sat 15 Nov 2025 05:20:08 +0000 ROA not before: Sat 15 Nov 2025 05:20:08 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:80b0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:e0:94:98:e6:57:11:72:9e:a8:57:df:af:6a:9d:0e:ba:5b:0e:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:20:08 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=b2c31cde47480b411c9e4a878de126e314c2b1d73344dee6e4c5da9cecc736b9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:fd:ab:8b:a2:49:43:f8:04:93:24:4d:77:d9: fb:cb:04:ee:18:e1:90:08:4a:ff:f3:28:3b:b5:1e: 4a:b3:9b:a2:ef:27:90:5c:39:e7:05:bb:54:45:de: 14:4f:7a:37:13:50:77:a9:e3:7e:4a:b7:59:7f:42: 67:5d:ef:3b:68:46:d4:ab:63:97:11:8b:7d:1f:d0: 8d:7c:d3:60:ea:73:07:ab:1b:15:7a:b5:21:2e:6b: 28:0d:f5:52:c4:86:83:8b:c2:f8:5e:db:3c:16:ee: 8a:f2:02:f1:df:14:30:b9:9b:5e:f7:11:6a:73:26: f4:fa:63:2e:79:93:c3:3c:ec:3c:4b:c2:eb:84:c2: a6:33:5f:5a:b6:02:92:ca:7e:00:4a:ed:a7:d4:24: e4:8f:c7:6b:24:23:b1:b2:42:76:a0:3a:6e:42:69: 8b:f3:c5:30:29:11:7d:33:33:55:bc:33:8e:1d:2e: 3e:86:e4:b1:7a:23:f9:2c:3f:de:eb:9b:ef:23:a5: 5b:4e:6b:b4:b6:41:85:c3:91:81:b3:82:c4:b7:f3: 4c:1f:fb:4f:2c:08:4d:82:f9:19:48:17:8a:d0:68: d4:46:95:8a:f2:b5:44:1c:2b:14:ad:ad:2a:50:e0: d4:ca:d0:c9:f6:03:e0:c0:9d:5a:44:83:82:0f:f2: 16:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:15:86:8E:8D:7D:19:A6:7E:25:B5:78:12:B2:AC:43:52:DE:80:BB X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/12fa0094-3721-4a61-a72f-8cdeff5e5f37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:80b0::/48 Signature Algorithm: sha256WithRSAEncryption 80:47:bc:63:b3:b3:74:cd:70:2b:f7:ae:b5:0c:cb:49:71:87: be:45:bf:34:97:d8:27:41:3e:2b:b0:6a:1c:14:7b:5d:09:39: 8a:4b:d6:c2:cc:23:d3:c8:8e:4f:13:56:1e:23:a4:f2:90:c6: 3d:de:6c:ad:ae:1c:e7:a6:85:03:86:33:d6:c9:68:75:16:f7: c8:2a:28:19:3b:7e:aa:6e:32:76:e7:5e:a8:c4:f0:e4:f1:6d: 14:52:10:7e:39:dd:bf:63:de:51:b6:a1:f1:d5:8b:f5:6f:d9: 47:7b:9f:bf:ad:2b:0e:7c:16:78:f6:eb:e2:13:59:11:68:09: fa:cc:a9:4e:70:b4:46:ff:60:72:fe:cd:4e:75:63:bf:6e:77: bc:1d:e2:18:6f:23:af:26:0d:c9:a7:b3:70:d5:16:6e:7a:39: 52:93:72:0d:c2:16:9a:a8:b0:4c:6f:61:3b:60:76:53:ad:b2: 7b:4f:c1:a9:77:e3:ad:eb:94:43:10:e3:55:4d:54:50:42:02: 58:04:56:b7:41:95:03:8a:ed:60:31:29:29:0c:02:8e:88:07: 72:8f:ed:d6:79:a3:04:7c:26:5b:9c:e0:f3:2c:58:70:2a:02: 77:29:87:25:42:d5:dd:e7:d4:f8:3b:04:37:4c:25:0a:2f:46: 2a:44:ab:c1 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUA+CUmOZXEXKeqFffr2qdDrpbDo8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTIwMDhaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGIyYzMxY2RlNDc0ODBiNDExYzllNGE4NzhkZTEyNmUzMTRjMmIxZDczMzQ0 ZGVlNmU0YzVkYTljZWNjNzM2YjkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJj9q4uiSUP4BJMkTXfZ+8sE7hjhkAhK//MoO7UeSrObou8nkFw55wW7VEXe FE96NxNQd6njfkq3WX9CZ13vO2hG1KtjlxGLfR/QjXzTYOpzB6sbFXq1IS5rKA31 UsSGg4vC+F7bPBbuivIC8d8UMLmbXvcRanMm9PpjLnmTwzzsPEvC64TCpjNfWrYC ksp+AErtp9Qk5I/HayQjsbJCdqA6bkJpi/PFMCkRfTMzVbwzjh0uPobksXoj+Sw/ 3uub7yOlW05rtLZBhcORgbOCxLfzTB/7TywITYL5GUgXitBo1EaVivK1RBwrFK2t KlDg1MrQyfYD4MCdWkSDgg/yFkMCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQkFYaO jX0Zpn4ltXgSsqxDUt6AuzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTJmYTAwOTQtMzcyMS00YTYxLWE3MmYtOGNkZWZmNWU1ZjM3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ACA sDANBgkqhkiG9w0BAQsFAAOCAQEAgEe8Y7OzdM1wK/eutQzLSXGHvkW/NJfYJ0E+ K7BqHBR7XQk5ikvWwswj08iOTxNWHiOk8pDGPd5sra4c56aFA4Yz1slodRb3yCoo GTt+qm4ydudeqMTw5PFtFFIQfjndv2PeUbah8dWL9W/ZR3ufv60rDnwWePbr4hNZ EWgJ+sypTnC0Rv9gcv7NTnVjv253vB3iGG8jryYNyaezcNUWbno5UpNyDcIWmqiw TG9hO2B2U62ye0/BqXfjreuUQxDjVU1UUEICWARWt0GVA4rtYDEpKQwCjogHco/t 1nmjBHwmW5zg8yxYcCoCdymHJULV3efU+DsEN0wlCi9GKkSrwQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:57 2025 by rpki-client