This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/14c60b75-8947-47da-9c6d-7045cbbbea55.roa File: 14c60b75-8947-47da-9c6d-7045cbbbea55.roa (raw, json) Hash identifier: 8W3cwApwrrd0GalVQYkkRASLM3TdVDrvmOuz0ZLRfU4= Subject key identifier: 77:38:64:49:AF:6F:BA:22:CF:6C:48:8D:C8:07:9D:CE:66:88:A2:40 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6A618E571550EF808CEE985CA9D7AC26232B0815 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/14c60b75-8947-47da-9c6d-7045cbbbea55.roa Signing time: Sat 15 Nov 2025 05:40:44 +0000 ROA not before: Sat 15 Nov 2025 05:40:44 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06f:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:61:8e:57:15:50:ef:80:8c:ee:98:5c:a9:d7:ac:26:23:2b:08:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:40:44 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=a492cb9c8a6a507242c9b3d141d56ecc3ccba76c3c69b34459f6d56a49093359, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:86:0b:0f:44:9a:83:a5:89:6e:92:53:4f:a8: ab:31:2f:68:9d:5c:4e:68:df:e6:f3:89:da:66:f8: ce:c6:ac:8b:05:e3:19:96:64:47:02:1e:1a:5b:11: c9:47:d5:b2:05:ab:5e:a7:ac:bf:6a:9c:67:59:b4: 61:58:f2:b2:08:35:9d:96:a1:1b:54:f3:1c:b9:3e: 47:f9:e1:27:98:f6:ab:a7:b4:5b:b6:75:44:1c:ab: bf:20:0e:7b:0f:0e:4e:15:21:59:57:7d:6f:51:ea: 8d:44:dd:bb:64:6a:3f:16:fb:fc:eb:aa:84:dc:ac: 95:cf:1a:04:bf:ff:2b:0b:65:24:7d:ef:53:38:61: 07:dc:bc:6d:10:2f:ff:e1:98:c3:69:72:6d:12:80: b1:8e:29:86:d5:b5:7c:58:9a:a9:07:e4:4a:77:b4: 8b:bf:9f:aa:c2:65:c3:16:88:7c:b8:c1:2b:70:ff: dc:22:95:83:3e:59:6a:d1:04:b0:7d:8a:bd:0e:a7: e4:47:24:a6:6d:c8:f3:45:d4:d1:c4:e7:0e:b1:81: 9b:35:47:78:c8:b2:06:94:67:9f:87:26:46:39:54: 65:5c:c5:aa:67:76:16:23:3e:b4:7b:eb:80:46:ad: 66:8b:4c:d5:a3:c9:ee:b8:6e:5c:c5:2e:17:39:a7: 76:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:38:64:49:AF:6F:BA:22:CF:6C:48:8D:C8:07:9D:CE:66:88:A2:40 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/14c60b75-8947-47da-9c6d-7045cbbbea55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06f:1000::/40 Signature Algorithm: sha256WithRSAEncryption c4:94:e3:e1:89:f1:2d:74:b8:7c:09:5a:42:22:81:6d:0d:d6: ef:18:74:94:ab:28:5b:26:13:44:e3:9e:26:81:bd:27:d4:36: 7c:27:ab:f5:15:50:1c:92:0b:ad:e6:b3:f2:89:b4:37:8d:bd: 10:ca:c7:ec:64:38:fc:c5:83:ee:d1:13:9f:cc:a4:b8:69:0c: b3:5f:02:5c:e5:4c:45:91:2a:66:59:77:70:fc:8f:b6:37:1c: ae:24:e4:fb:fd:98:d0:11:92:36:20:41:e0:28:fe:26:62:60: 79:f2:8d:82:ce:b4:f2:5c:44:08:9a:e6:25:0f:2c:dd:69:1b: 60:e4:55:66:79:12:56:47:1e:3a:f5:5e:e9:01:60:96:fe:40: 1e:b8:7b:e8:e4:e4:80:ff:1b:06:b3:49:25:a6:e7:50:5f:d0: c9:54:23:0d:d2:5e:20:5e:cd:38:60:ec:6f:32:89:99:79:7c: 68:77:4c:37:f6:db:a3:4a:d6:ee:f4:bd:58:17:a6:6f:2e:ff: f2:d7:81:41:7a:ec:5b:22:d2:39:25:66:39:e6:5c:85:fa:b4: 78:c0:53:19:15:96:56:c9:26:3d:35:65:0b:5e:f6:e1:34:06: 5e:0d:4a:8e:80:49:5b:94:c3:20:3a:99:7f:52:d1:99:6b:a1: 03:c0:42:ea -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUamGOVxVQ74CM7phcqdesJiMrCBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQwNDRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGE0OTJjYjljOGE2YTUwNzI0MmM5YjNkMTQxZDU2ZWNjM2NjYmE3NmMzYzY5 YjM0NDU5ZjZkNTZhNDkwOTMzNTkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSGCw9EmoOliW6SU0+oqzEvaJ1cTmjf5vOJ2mb4zsasiwXjGZZkRwIeGlsR yUfVsgWrXqesv2qcZ1m0YVjysgg1nZahG1TzHLk+R/nhJ5j2q6e0W7Z1RByrvyAO ew8OThUhWVd9b1HqjUTdu2RqPxb7/OuqhNyslc8aBL//KwtlJH3vUzhhB9y8bRAv /+GYw2lybRKAsY4phtW1fFiaqQfkSne0i7+fqsJlwxaIfLjBK3D/3CKVgz5ZatEE sH2KvQ6n5Eckpm3I80XU0cTnDrGBmzVHeMiyBpRnn4cmRjlUZVzFqmd2FiM+tHvr gEatZotM1aPJ7rhuXMUuFzmndjcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBR3OGRJ r2+6Is9sSI3IB53OZoiiQDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTRjNjBiNzUtODk0Ny00N2RhLTljNmQtNzA0NWNiYmJlYTU1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0G8Q MA0GCSqGSIb3DQEBCwUAA4IBAQDElOPhifEtdLh8CVpCIoFtDdbvGHSUqyhbJhNE 454mgb0n1DZ8J6v1FVAckgut5rPyibQ3jb0QysfsZDj8xYPu0ROfzKS4aQyzXwJc 5UxFkSpmWXdw/I+2NxyuJOT7/ZjQEZI2IEHgKP4mYmB58o2CzrTyXEQImuYlDyzd aRtg5FVmeRJWRx469V7pAWCW/kAeuHvo5OSA/xsGs0klpudQX9DJVCMN0l4gXs04 YOxvMomZeXxod0w39tujStbu9L1YF6ZvLv/y14FBeuxbItI5JWY55lyF+rR4wFMZ FZZWySY9NWULXvbhNAZeDUqOgElblMMgOpl/UtGZa6EDwELq -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:43 2025 by rpki-client