This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/19a2984e-942a-4280-ac0b-904c9860af2f.roa File: 19a2984e-942a-4280-ac0b-904c9860af2f.roa (raw, json) Hash identifier: Ko1An/eh+A4YGglD0PwlEaRLUSSkdt+UeyDnnhiSAAY= Subject key identifier: 1D:F4:03:17:B5:95:9F:8C:A6:7B:98:22:2D:12:C1:EE:1E:14:74:E3 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 49F78713BDA8CC6E15B1796A5CFFA1E85AB953A6 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/19a2984e-942a-4280-ac0b-904c9860af2f.roa Signing time: Sat 15 Nov 2025 06:00:06 +0000 ROA not before: Sat 15 Nov 2025 06:00:06 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:f7:87:13:bd:a8:cc:6e:15:b1:79:6a:5c:ff:a1:e8:5a:b9:53:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:00:06 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=ce7e7a3ae9a68d12ab955e1ff2601e25a105ddc98377bb645772e4512b448d83, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d2:98:fa:5c:3d:c3:35:4b:a4:ee:a2:cc:d5: 31:42:5a:6e:ae:77:a1:51:a0:80:85:e6:e4:27:e8: 50:80:e5:d1:a8:99:2c:07:ab:62:35:b6:a6:6d:76: ba:53:90:dd:ec:81:f7:e0:f0:f6:4e:fc:fb:da:18: af:75:47:dd:f2:46:17:57:c6:96:92:60:2d:c9:2c: 6c:54:8e:9f:46:88:ec:70:77:e7:06:9e:eb:76:bf: 8b:5f:7a:b1:de:bb:ec:16:83:b7:ea:9c:81:37:1c: 48:c7:7c:73:b3:17:6a:6b:df:0b:b7:4d:5d:0e:3c: fc:be:84:60:c2:39:36:1c:47:d2:04:40:cd:9b:17: 90:0c:0a:c1:1e:86:ca:a7:60:09:23:c8:3a:24:d5: 6e:f1:38:78:60:15:c4:7f:7a:f2:50:98:e7:b2:16: 70:41:54:c6:ba:35:7f:4a:87:3d:8c:d1:74:c7:03: c7:5b:03:d8:63:ae:77:b8:36:1a:75:50:99:ab:62: 07:cb:e5:38:50:ac:5c:31:a3:50:10:86:ee:cc:c7: 2a:9f:7e:26:68:e7:ec:ac:45:02:ce:8b:a6:9e:a3: 08:b3:94:3d:2d:f7:61:df:88:68:d6:17:04:aa:b3: 81:01:7d:a1:e6:de:63:13:e8:29:9e:1f:34:93:db: 8f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F4:03:17:B5:95:9F:8C:A6:7B:98:22:2D:12:C1:EE:1E:14:74:E3 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/19a2984e-942a-4280-ac0b-904c9860af2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:8020::/48 Signature Algorithm: sha256WithRSAEncryption 9f:dd:c2:3a:a0:e7:95:1e:df:59:ba:41:3d:28:62:bb:35:37: 71:ed:e6:37:c7:8b:af:7a:dd:22:c6:2f:1a:a3:d7:5d:2c:31: 4b:d4:e3:f2:e8:1b:7d:30:12:29:3f:32:49:7c:88:6e:02:a1: bd:cd:f4:6d:3f:3b:04:10:2a:e9:11:3a:a7:1c:73:71:e1:dd: 5c:04:48:a9:66:19:97:43:d8:7b:ab:77:26:c5:1a:9c:b8:73: 54:e0:64:ef:72:c0:9d:3e:5e:ec:2d:92:a5:d8:4f:3e:ac:d3: 0c:54:e5:98:c2:1a:f3:9a:70:48:0a:af:73:44:59:2b:2d:1f: 90:27:46:2e:80:03:9a:f7:19:8b:a4:d1:db:7a:1f:4c:a4:84: 9a:41:24:17:ee:cd:d8:4a:2c:11:4c:30:de:48:3a:7f:24:06: b6:91:f0:45:76:9c:32:fb:81:b0:d3:52:ac:a3:f1:7c:d2:69: a8:6d:54:b6:fe:e4:34:c5:62:63:a2:05:c6:f2:0b:19:1d:a9: 49:82:c1:c7:22:26:30:f8:12:9a:e4:40:22:1d:dd:fd:8a:0b: 1e:1f:ec:12:0c:82:04:e5:c5:40:42:f9:ef:13:2f:37:69:7b: fd:83:9a:99:9a:c0:9e:7a:1d:89:4d:45:64:06:a0:f3:12:c4: 59:c8:09:3b -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUSfeHE72ozG4VsXlqXP+h6Fq5U6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjAwMDZaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGNlN2U3YTNhZTlhNjhkMTJhYjk1NWUxZmYyNjAxZTI1YTEwNWRkYzk4Mzc3 YmI2NDU3NzJlNDUxMmI0NDhkODMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALDSmPpcPcM1S6TuoszVMUJabq53oVGggIXm5CfoUIDl0aiZLAerYjW2pm12 ulOQ3eyB9+Dw9k78+9oYr3VH3fJGF1fGlpJgLcksbFSOn0aI7HB35wae63a/i196 sd677BaDt+qcgTccSMd8c7MXamvfC7dNXQ48/L6EYMI5NhxH0gRAzZsXkAwKwR6G yqdgCSPIOiTVbvE4eGAVxH968lCY57IWcEFUxro1f0qHPYzRdMcDx1sD2GOud7g2 GnVQmatiB8vlOFCsXDGjUBCG7szHKp9+Jmjn7KxFAs6Lpp6jCLOUPS33Yd+IaNYX BKqzgQF9oebeYxPoKZ4fNJPbj/MCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQd9AMX tZWfjKZ7mCItEsHuHhR04zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTlhMjk4NGUtOTQyYS00MjgwLWFjMGItOTA0Yzk4NjBhZjJmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HKA IDANBgkqhkiG9w0BAQsFAAOCAQEAn93COqDnlR7fWbpBPShiuzU3ce3mN8eLr3rd IsYvGqPXXSwxS9Tj8ugbfTASKT8ySXyIbgKhvc30bT87BBAq6RE6pxxzceHdXARI qWYZl0PYe6t3JsUanLhzVOBk73LAnT5e7C2SpdhPPqzTDFTlmMIa85pwSAqvc0RZ Ky0fkCdGLoADmvcZi6TR23ofTKSEmkEkF+7N2EosEUww3kg6fyQGtpHwRXacMvuB sNNSrKPxfNJpqG1Utv7kNMViY6IFxvILGR2pSYLBxyImMPgSmuRAIh3d/YoLHh/s EgyCBOXFQEL57xMvN2l7/YOamZrAnnodiU1FZAag8xLEWcgJOw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:41 2025 by rpki-client