This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1977ffde-7d26-418c-800c-ccacd18fe560.roa File: 1977ffde-7d26-418c-800c-ccacd18fe560.roa (raw, json) Hash identifier: rSDbgnzi2cytn0O4TXdh1NEQDPEu0X1adKeJZOl9gRw= Subject key identifier: E8:D8:5F:7D:89:D7:AB:A8:AF:77:FE:9D:89:16:04:7D:99:A5:81:03 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6A28E175DC9D3966751C26AB5501E8BAF3DA12D9 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1977ffde-7d26-418c-800c-ccacd18fe560.roa Signing time: Tue 25 Nov 2025 20:00:59 +0000 ROA not before: Tue 25 Nov 2025 20:00:59 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2a05:d040::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:28:e1:75:dc:9d:39:66:75:1c:26:ab:55:01:e8:ba:f3:da:12:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:00:59 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=031119f5ef699172d8b4edab04a955389eac6a557f197808d5af7860f30f0968, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c6:7c:11:1d:b3:74:d7:e1:75:37:02:71:a1: 21:32:26:7e:62:73:d7:77:52:13:60:aa:d7:2c:68: 76:70:10:f4:1d:d1:1b:22:de:d8:5b:6e:63:75:d6: 4a:1e:2e:cf:2f:85:1e:99:d2:8a:b8:1b:37:13:dd: 25:f0:97:d0:d0:74:a9:e2:68:68:e1:fe:7a:ef:a9: b1:b8:84:cb:7f:0a:2d:d3:8a:4c:70:3f:d7:a2:b4: 59:a0:60:76:99:ea:ef:88:1e:65:58:22:e7:ae:61: 2c:a2:cc:05:d8:ea:a1:de:b5:94:26:ad:4f:8f:3a: 81:0e:9c:07:68:b6:b5:2f:8e:98:27:fa:d3:5b:7a: 60:86:4a:f5:50:17:b8:3d:bd:6b:44:31:81:b5:33: 0c:3f:80:d3:6b:0d:8f:25:c1:5f:c2:36:a3:fc:39: 7c:50:ec:6e:84:52:79:27:b3:fb:9e:77:0e:9d:ec: 52:68:46:e1:dc:78:3e:ac:66:b4:5e:05:6b:46:21: fc:a8:b7:43:f2:f2:34:3c:dd:66:91:18:a5:a4:ba: 60:b2:e8:02:3a:63:6c:71:81:01:dc:47:12:a6:5e: e2:0c:b8:98:f5:a0:b5:c7:e5:eb:fe:e9:f5:e5:bb: 98:f3:04:c8:d9:b0:b2:61:fa:7e:d4:85:54:fc:2a: c9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:D8:5F:7D:89:D7:AB:A8:AF:77:FE:9D:89:16:04:7D:99:A5:81:03 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1977ffde-7d26-418c-800c-ccacd18fe560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d040::/32 Signature Algorithm: sha256WithRSAEncryption 96:b7:76:10:06:4b:9d:c0:7a:9c:88:fb:93:dc:59:cf:1b:12: b5:7c:bb:73:f9:4b:53:0d:a2:46:1c:77:83:68:3b:45:52:a6: 58:33:1b:0e:be:ca:26:86:08:30:34:21:d0:eb:13:18:19:3c: 0a:23:0a:87:7a:6a:81:55:c3:59:90:da:08:5b:12:a0:30:cd: 49:08:94:6a:f4:25:c5:a0:28:bb:07:c6:f3:5a:c5:e6:89:d3: 55:b2:7f:1e:90:bb:46:70:0c:b3:1a:70:e8:c1:48:68:2e:17: 8e:cc:4f:cf:7a:a8:28:90:cf:08:ed:22:db:aa:32:91:c9:c3: f3:79:7d:4f:8e:45:e5:cb:05:9e:55:a6:35:2b:6d:e1:9b:e5: c5:1f:f6:c0:7d:61:41:74:56:c4:27:99:47:98:e9:33:c9:66: d2:45:1b:79:ca:0d:22:0c:b8:ee:06:36:04:b8:c5:b7:ff:0d: aa:93:ae:e1:b5:33:ce:48:8c:9a:a3:90:c4:f9:eb:3d:8c:d2: 89:08:51:f3:f3:21:2b:85:e3:dd:71:f1:08:74:9f:98:f8:77: b6:6e:03:8c:78:51:3f:48:eb:a1:e2:3e:e9:aa:ca:ad:1a:f7: f0:cf:35:ae:6f:8e:5f:bf:9c:aa:bb:f0:ad:0b:28:d4:88:ec: 21:79:3f:d6 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUaijhddydOWZ1HCarVQHouvPaEtkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAwNTlaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDAzMTExOWY1ZWY2OTkxNzJkOGI0ZWRhYjA0YTk1NTM4OWVhYzZhNTU3ZjE5 NzgwOGQ1YWY3ODYwZjMwZjA5NjgxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPGfBEds3TX4XU3AnGhITImfmJz13dSE2Cq1yxodnAQ9B3RGyLe2FtuY3XW Sh4uzy+FHpnSirgbNxPdJfCX0NB0qeJoaOH+eu+psbiEy38KLdOKTHA/16K0WaBg dpnq74geZVgi565hLKLMBdjqod61lCatT486gQ6cB2i2tS+OmCf601t6YIZK9VAX uD29a0QxgbUzDD+A02sNjyXBX8I2o/w5fFDsboRSeSez+553Dp3sUmhG4dx4Pqxm tF4Fa0Yh/Ki3Q/LyNDzdZpEYpaS6YLLoAjpjbHGBAdxHEqZe4gy4mPWgtcfl6/7p 9eW7mPMEyNmwsmH6ftSFVPwqydkCAwEAAaOCAiIwggIeMB0GA1UdDgQWBBTo2F99 iderqK93/p2JFgR9maWBAzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTk3N2ZmZGUtN2QyNi00MThjLTgwMGMtY2NhY2QxOGZlNTYwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoF0EAw DQYJKoZIhvcNAQELBQADggEBAJa3dhAGS53AepyI+5PcWc8bErV8u3P5S1MNokYc d4NoO0VSplgzGw6+yiaGCDA0IdDrExgZPAojCod6aoFVw1mQ2ghbEqAwzUkIlGr0 JcWgKLsHxvNaxeaJ01Wyfx6Qu0ZwDLMacOjBSGguF47MT896qCiQzwjtItuqMpHJ w/N5fU+OReXLBZ5VpjUrbeGb5cUf9sB9YUF0VsQnmUeY6TPJZtJFG3nKDSIMuO4G NgS4xbf/DaqTruG1M85IjJqjkMT56z2M0okIUfPzISuF491x8Qh0n5j4d7ZuA4x4 UT9I66HiPumqyq0a9/DPNa5vjl+/nKq78K0LKNSI7CF5P9Y= -----END CERTIFICATE-----Generated at Sat Dec 6 22:32:52 2025 by rpki-client