This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa File: 183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa (raw, json) Hash identifier: wUeged+XufXjs1mnlCJcSt8g+39HHi2Q0GI6FWKPlJM= Subject key identifier: FF:8C:AB:A2:C5:96:B5:EC:D1:B9:89:58:B8:3E:CC:C5:AE:BD:37:56 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6397DA6E34F934819951FC47C705EFDCED38621B Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa Signing time: Sat 15 Nov 2025 06:21:11 +0000 ROA not before: Sat 15 Nov 2025 06:21:11 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d058:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:97:da:6e:34:f9:34:81:99:51:fc:47:c7:05:ef:dc:ed:38:62:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:21:11 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=1a1f35b181b0e602fb26a13414c4e68d9f840cab4b11efd63844fd2b46de2f83, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:97:59:08:7f:ee:6c:0f:46:a5:96:91:d8:c0: 87:5a:cb:5c:fe:31:10:3e:56:8a:a6:e3:08:4b:9b: da:10:97:4c:28:e6:a1:99:70:ac:13:4f:88:73:2c: 6a:ea:08:f4:c5:92:79:0a:e7:f4:d3:f9:87:1a:fd: c8:45:97:d4:09:80:b5:17:b4:44:8e:a8:0c:f0:50: 90:ca:8b:8d:99:1a:96:20:f9:f8:70:28:9b:71:99: 41:60:28:dc:f9:01:14:bb:a8:04:44:01:a8:0f:bd: a2:a5:81:de:a3:01:b6:41:8d:14:7b:27:13:4e:9f: 0a:b1:10:85:ed:fe:26:3b:ce:4f:b3:87:22:ee:9d: 12:85:5a:ce:ba:b4:a7:20:1c:1f:59:e9:73:4d:aa: 07:e3:6c:78:67:5b:36:24:a9:0a:65:7f:eb:37:7a: a7:63:cb:b3:aa:e8:63:59:9d:1d:78:82:d5:57:d0: b2:0f:9e:d0:d9:12:b7:8d:84:b5:a1:5c:61:f0:08: a0:5d:5f:94:e2:8d:a7:f6:e2:3f:e5:50:06:f1:ae: 2f:53:c8:da:eb:8c:fa:23:e8:7c:1f:1e:6a:5c:5b: ab:c9:52:7e:b0:af:76:3a:31:a3:47:8b:d8:1f:a5: 96:63:96:bf:3a:91:c9:2f:d8:04:e0:27:c2:ef:30: 09:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:8C:AB:A2:C5:96:B5:EC:D1:B9:89:58:B8:3E:CC:C5:AE:BD:37:56 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d058:1000::/40 Signature Algorithm: sha256WithRSAEncryption aa:25:0a:d3:50:88:d0:dc:3c:c1:00:44:92:26:d3:be:55:48: 73:4c:0c:dc:ea:1d:c7:31:b7:9e:f2:30:8f:32:de:75:a0:02: e7:97:94:60:e9:00:a3:7d:8e:e6:e8:62:5c:df:72:68:f1:e4: f5:ef:ec:86:16:2a:53:63:62:d8:ea:71:58:fc:6f:c7:9e:35: 7f:45:d2:25:5d:aa:72:2e:9d:c3:f5:eb:b9:ef:10:cd:e6:c6: 76:ac:c2:f2:c6:f7:4f:14:82:15:31:20:05:d5:9c:46:f1:b0: 1f:b2:8b:60:fd:5f:26:ed:52:77:03:cf:8e:45:b0:45:c5:6b: 3f:05:57:41:2b:15:9b:d7:18:03:a9:2c:a4:f3:3b:db:1d:e2: c9:53:11:91:bb:7e:1d:e9:82:b1:d1:2f:91:11:bd:65:0f:e2: 9b:03:26:4f:dc:47:27:90:1c:0f:ee:d4:59:0d:bb:2e:11:1d: 94:fb:2f:63:84:46:4b:2e:50:8d:b8:bb:2a:c0:c8:49:ff:9e: fb:03:51:25:bb:55:bb:94:19:b5:64:06:2f:04:8d:8d:1e:29: 4f:77:0e:86:4d:fc:d0:2d:ce:8f:4f:89:33:9a:a7:d5:f6:08: ff:34:90:97:d0:e1:64:82:0a:02:69:02:0b:01:f2:23:96:f7: 0c:2b:56:90 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUY5fabjT5NIGZUfxHxwXv3O04YhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjIxMTFaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDFhMWYzNWIxODFiMGU2MDJmYjI2YTEzNDE0YzRlNjhkOWY4NDBjYWI0YjEx ZWZkNjM4NDRmZDJiNDZkZTJmODMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJOXWQh/7mwPRqWWkdjAh1rLXP4xED5WiqbjCEub2hCXTCjmoZlwrBNPiHMs auoI9MWSeQrn9NP5hxr9yEWX1AmAtRe0RI6oDPBQkMqLjZkaliD5+HAom3GZQWAo 3PkBFLuoBEQBqA+9oqWB3qMBtkGNFHsnE06fCrEQhe3+JjvOT7OHIu6dEoVazrq0 pyAcH1npc02qB+NseGdbNiSpCmV/6zd6p2PLs6roY1mdHXiC1VfQsg+e0NkSt42E taFcYfAIoF1flOKNp/biP+VQBvGuL1PI2uuM+iPofB8ealxbq8lSfrCvdjoxo0eL 2B+llmOWvzqRyS/YBOAnwu8wCUMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBT/jKui xZa17NG5iVi4PszFrr03VjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTgzZWI1ODMtM2ZiMy00YzNhLWJhZGItOWZlMGE0ZTUwZmQyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0FgQ MA0GCSqGSIb3DQEBCwUAA4IBAQCqJQrTUIjQ3DzBAESSJtO+VUhzTAzc6h3HMbee 8jCPMt51oALnl5Rg6QCjfY7m6GJc33Jo8eT17+yGFipTY2LY6nFY/G/HnjV/RdIl XapyLp3D9eu57xDN5sZ2rMLyxvdPFIIVMSAF1ZxG8bAfsotg/V8m7VJ3A8+ORbBF xWs/BVdBKxWb1xgDqSyk8zvbHeLJUxGRu34d6YKx0S+REb1lD+KbAyZP3EcnkBwP 7tRZDbsuER2U+y9jhEZLLlCNuLsqwMhJ/577A1Elu1W7lBm1ZAYvBI2NHilPdw6G TfzQLc6PT4kzmqfV9gj/NJCX0OFkggoCaQILAfIjlvcMK1aQ -----END CERTIFICATE-----Generated at Sat Dec 6 18:34:12 2025 by rpki-client