This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1ba2d063-915b-4ef5-b1b8-00d73dc8a31a.roa File: 1ba2d063-915b-4ef5-b1b8-00d73dc8a31a.roa (raw, json) Hash identifier: sQrEx1uq94NIjLX0Ad/0a17ozIwZyFbInyBWeyEA4mI= Subject key identifier: 7B:91:8F:E9:45:CE:FD:0E:72:F9:38:9D:04:4F:9C:14:9B:32:AF:20 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4C32F0263997B9195611BD403357E5577A1D3190 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1ba2d063-915b-4ef5-b1b8-00d73dc8a31a.roa Signing time: Tue 18 Nov 2025 00:40:23 +0000 ROA not before: Tue 18 Nov 2025 00:40:23 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d034:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:32:f0:26:39:97:b9:19:56:11:bd:40:33:57:e5:57:7a:1d:31:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 18 00:40:23 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=992c915712f48e600d1f9386043e1d7b9587aee00f27358f8d589f802bec9636, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:35:46:9b:a6:5d:ea:7d:fc:e9:72:e0:00:45: ce:f9:c5:72:62:94:1e:c3:c3:ef:d0:44:0d:b2:08: a2:81:32:78:b0:b8:1b:90:e2:7f:14:f5:e1:a8:d7: 95:66:f9:cd:6d:04:b9:9e:28:17:f7:c5:13:45:fe: aa:2e:0b:84:4e:b7:a6:64:1f:43:2b:c1:5c:e3:49: 4e:6a:21:50:49:0a:5f:64:4a:16:04:d2:08:3f:23: c9:42:87:19:51:de:de:30:8f:ff:b1:62:5f:e7:4d: f8:93:94:a9:65:68:a3:d2:30:c9:5b:77:31:f6:bc: c3:da:04:5f:37:6f:90:7e:0c:69:59:6c:7f:16:99: c5:a4:69:d6:db:bd:12:77:84:8c:dc:66:89:a8:00: da:fe:39:fc:25:a1:3a:9b:8d:eb:2d:c5:2e:ca:9c: c5:ae:57:17:14:8f:bf:ac:6e:6b:da:81:9c:50:4a: 83:fc:91:95:78:6d:fc:e0:3d:90:ca:0d:21:18:fb: e8:53:ff:bd:03:82:39:99:d2:47:16:8e:37:f8:29: ea:04:0f:dd:33:f6:37:eb:6b:f0:c4:1b:9f:62:a0: e3:7f:3c:3f:fd:d6:37:75:46:09:2c:f9:3a:7e:ad: 81:6a:03:e9:22:e8:6d:15:5e:3b:28:5c:34:45:5f: ca:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:91:8F:E9:45:CE:FD:0E:72:F9:38:9D:04:4F:9C:14:9B:32:AF:20 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1ba2d063-915b-4ef5-b1b8-00d73dc8a31a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d034:6000::/40 Signature Algorithm: sha256WithRSAEncryption 17:11:64:5b:b3:fd:5e:4b:71:38:b7:45:85:ce:18:05:db:30: 76:9d:7b:39:f2:a6:8f:68:d6:db:f7:b7:c8:94:e8:92:1a:38: 05:18:a3:7a:73:be:51:cc:38:e2:fa:2d:df:42:cb:51:dc:79: f2:81:80:32:e7:44:6b:3a:57:fa:ec:7e:7b:91:a7:5a:a6:86: e1:f6:db:5d:b7:a7:30:9d:08:44:af:18:6b:ef:94:dc:37:71: 1b:11:9c:b3:d3:26:26:49:dc:81:95:4c:9f:9b:a2:a1:10:e6: 02:61:6a:b3:2b:ae:e8:60:4a:a1:5f:c1:54:40:bc:a8:fa:0e: d1:e3:82:8d:20:a2:d2:be:f2:72:00:da:f6:f3:64:0f:69:ed: 4c:dd:d4:9d:86:38:63:13:7f:99:bd:12:67:e3:bb:53:7f:ae: 3d:5a:58:ab:77:14:47:f0:a7:57:b8:38:fc:24:bd:bc:c6:7a: 3a:1a:cc:04:9c:11:ea:64:87:ab:d7:14:67:bc:ba:3a:d7:7f: ae:7d:31:4c:2e:d2:bb:bd:db:d6:1d:5b:97:da:70:b5:45:09: f3:dd:19:f8:5a:8d:e2:47:73:fd:12:e0:e0:32:8b:44:46:1a: 4e:9c:ca:f4:4d:06:9e:0b:5a:9e:aa:93:71:d8:f6:39:d4:65: 69:eb:7d:10 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUTDLwJjmXuRlWEb1AM1flV3odMZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTgwMDQwMjNaFw0yNjAyMTYyMzU5NTlaMHoxSTBHBgNV BAUTQDk5MmM5MTU3MTJmNDhlNjAwZDFmOTM4NjA0M2UxZDdiOTU4N2FlZTAwZjI3 MzU4ZjhkNTg5ZjgwMmJlYzk2MzYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ81RpumXep9/Oly4ABFzvnFcmKUHsPD79BEDbIIooEyeLC4G5DifxT14ajX lWb5zW0EuZ4oF/fFE0X+qi4LhE63pmQfQyvBXONJTmohUEkKX2RKFgTSCD8jyUKH GVHe3jCP/7FiX+dN+JOUqWVoo9IwyVt3Mfa8w9oEXzdvkH4MaVlsfxaZxaRp1tu9 EneEjNxmiagA2v45/CWhOpuN6y3FLsqcxa5XFxSPv6xua9qBnFBKg/yRlXht/OA9 kMoNIRj76FP/vQOCOZnSRxaON/gp6gQP3TP2N+tr8MQbn2Kg4388P/3WN3VGCSz5 On6tgWoD6SLobRVeOyhcNEVfyiECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBR7kY/p Rc79DnL5OJ0ET5wUmzKvIDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MWJhMmQwNjMtOTE1Yi00ZWY1LWIxYjgtMDBkNzNkYzhhMzFhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DRg MA0GCSqGSIb3DQEBCwUAA4IBAQAXEWRbs/1eS3E4t0WFzhgF2zB2nXs58qaPaNbb 97fIlOiSGjgFGKN6c75RzDji+i3fQstR3HnygYAy50RrOlf67H57kadapobh9ttd t6cwnQhErxhr75TcN3EbEZyz0yYmSdyBlUyfm6KhEOYCYWqzK67oYEqhX8FUQLyo +g7R44KNIKLSvvJyANr282QPae1M3dSdhjhjE3+ZvRJn47tTf649WlirdxRH8KdX uDj8JL28xno6GswEnBHqZIer1xRnvLo613+ufTFMLtK7vdvWHVuX2nC1RQnz3Rn4 Wo3iR3P9EuDgMotERhpOnMr0TQaeC1qeqpNx2PY51GVp630Q -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:46 2025 by rpki-client