This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/144286ab-f239-401f-a4ef-706749b0d570.roa File: 144286ab-f239-401f-a4ef-706749b0d570.roa (raw, json) Hash identifier: k0Y55FKpkRZpWrAy8Q8sANFutD5LI1Ozn19Z6472Xb0= Subject key identifier: D3:D8:1A:72:DF:43:2B:F8:16:72:7F:A0:FB:16:98:BD:ED:FE:AF:F3 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6717BB422A38C65107BE63D381945920AD216B97 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/144286ab-f239-401f-a4ef-706749b0d570.roa Signing time: Sat 15 Nov 2025 05:40:42 +0000 ROA not before: Sat 15 Nov 2025 05:40:42 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d038:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:17:bb:42:2a:38:c6:51:07:be:63:d3:81:94:59:20:ad:21:6b:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:40:42 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=e150d0f95982f8211cf09a1b515d683c2239733f7bfe425004c61249705665d6, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6e:43:7b:88:9d:b1:35:61:71:70:f9:d6:65: 24:58:9f:8e:7c:0d:0b:cc:29:5e:5d:42:f4:e5:ad: e3:08:7d:6d:29:df:26:bd:dd:2e:e3:b3:92:82:cb: 12:e8:e4:92:d7:0a:0f:fc:5e:00:98:f0:7b:09:35: 4b:45:d7:41:ee:ad:9c:96:41:f0:6e:1c:a2:bf:37: 1a:ac:1d:db:92:ba:40:da:55:b3:38:c2:ce:7d:cc: d9:d5:58:61:3d:a7:1d:3d:27:1a:74:30:15:ec:d9: dc:17:72:d2:4b:b2:93:99:0e:72:2b:85:ed:29:d9: f1:b3:c0:03:82:52:d9:c6:ca:a1:f6:16:44:82:32: 61:bf:52:7e:6d:da:7d:2c:f5:ae:40:3b:8a:e9:b1: 6d:64:2a:4a:80:d9:c8:37:e2:9a:69:7a:7c:0c:ca: 16:fe:43:4a:ed:cf:0e:83:ac:52:8c:c0:ed:12:92: 20:a6:b6:b7:25:b6:b9:dd:70:42:28:8a:e1:be:fc: 6f:16:6a:58:35:c8:98:bd:da:25:97:81:c6:8d:9a: 25:3b:27:bc:73:71:4f:f4:68:d9:c0:b5:bd:2b:72: 0a:91:03:e9:a4:47:1b:a5:43:40:61:c8:36:9e:36: 40:98:cf:2f:a7:58:41:9e:f0:7d:a1:0a:cb:5a:91: bc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D8:1A:72:DF:43:2B:F8:16:72:7F:A0:FB:16:98:BD:ED:FE:AF:F3 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/144286ab-f239-401f-a4ef-706749b0d570.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d038:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 6b:18:ce:87:20:7f:2d:a8:76:e6:bf:0c:d6:e7:bd:30:e3:26: b6:41:3c:71:c5:a5:b4:27:a4:b7:44:bb:97:d9:09:d0:1d:52: 77:b4:4c:86:ae:07:53:ca:56:19:cf:34:41:28:73:d2:a3:01: 87:41:be:cc:f4:0a:3a:0d:13:48:cf:95:f0:fe:3e:39:33:d8: 93:a5:28:da:e3:18:4b:9d:c4:9d:7b:46:bc:40:ed:62:46:61: ba:72:67:0a:5f:4c:f6:4f:29:56:0b:ce:5f:a0:65:13:61:e2: 53:74:18:e7:73:8d:96:5c:b8:a1:70:bb:28:81:f6:4d:85:ec: 39:5f:b3:40:67:db:fa:c5:d2:ef:0f:aa:c2:ed:63:8a:f9:c6: d9:86:db:c9:ad:1d:2d:34:00:59:9e:fb:d6:e5:2d:d4:9f:3c: a3:db:96:ef:42:2a:a8:04:d6:eb:09:ed:7c:03:d4:e9:2d:d0: 26:38:dd:e6:3b:04:bc:32:60:13:cd:95:a7:21:9f:01:6a:ce: e4:0d:e6:9f:bf:f0:53:df:96:10:04:50:82:f3:36:c1:05:81: cf:88:6c:12:a6:56:47:ca:00:2d:63:04:69:cf:7e:a6:2c:f5: bd:57:34:c9:df:6d:20:26:a3:5e:51:a7:30:93:af:98:05:b2: 98:3a:52:74 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUZxe7Qio4xlEHvmPTgZRZIK0ha5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQwNDJaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGUxNTBkMGY5NTk4MmY4MjExY2YwOWExYjUxNWQ2ODNjMjIzOTczM2Y3YmZl NDI1MDA0YzYxMjQ5NzA1NjY1ZDYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ1uQ3uInbE1YXFw+dZlJFifjnwNC8wpXl1C9OWt4wh9bSnfJr3dLuOzkoLL EujkktcKD/xeAJjwewk1S0XXQe6tnJZB8G4cor83Gqwd25K6QNpVszjCzn3M2dVY YT2nHT0nGnQwFezZ3Bdy0kuyk5kOciuF7SnZ8bPAA4JS2cbKofYWRIIyYb9Sfm3a fSz1rkA7iumxbWQqSoDZyDfimml6fAzKFv5DSu3PDoOsUozA7RKSIKa2tyW2ud1w QiiK4b78bxZqWDXImL3aJZeBxo2aJTsnvHNxT/Ro2cC1vStyCpED6aRHG6VDQGHI Np42QJjPL6dYQZ7wfaEKy1qRvLMCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTT2Bpy 30Mr+BZyf6D7Fpi97f6v8zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTQ0Mjg2YWItZjIzOS00MDFmLWE0ZWYtNzA2NzQ5YjBkNTcwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DiA wDANBgkqhkiG9w0BAQsFAAOCAQEAaxjOhyB/Lah25r8M1ue9MOMmtkE8ccWltCek t0S7l9kJ0B1Sd7RMhq4HU8pWGc80QShz0qMBh0G+zPQKOg0TSM+V8P4+OTPYk6Uo 2uMYS53EnXtGvEDtYkZhunJnCl9M9k8pVgvOX6BlE2HiU3QY53ONlly4oXC7KIH2 TYXsOV+zQGfb+sXS7w+qwu1jivnG2Ybbya0dLTQAWZ771uUt1J88o9uW70IqqATW 6wntfAPU6S3QJjjd5jsEvDJgE82VpyGfAWrO5A3mn7/wU9+WEARQgvM2wQWBz4hs EqZWR8oALWMEac9+piz1vVc0yd9tICajXlGnMJOvmAWymDpSdA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:30 2025 by rpki-client