This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/216e1c1f-35c3-4c02-a0c3-0b5815c016d7.roa File: 216e1c1f-35c3-4c02-a0c3-0b5815c016d7.roa (raw, json) Hash identifier: iTpX/9qr701Z0YnR4LDplvjnx7uwEMYqTo1UYGOTdqQ= Subject key identifier: 41:D9:95:20:6E:11:60:09:AB:B4:79:83:30:97:38:E2:04:34:2C:7B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5E0036CF4DCAEB20449660AE5D2291BFD166EF5E Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/216e1c1f-35c3-4c02-a0c3-0b5815c016d7.roa Signing time: Sat 15 Nov 2025 05:30:55 +0000 ROA not before: Sat 15 Nov 2025 05:30:55 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:00:36:cf:4d:ca:eb:20:44:96:60:ae:5d:22:91:bf:d1:66:ef:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:30:55 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=ef87e7e08038390c61c4c8d977f588c82e4339da9acc835093329471923a34cc, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:e5:04:f3:8c:90:d0:00:5a:4c:ca:c1:85:0f: 63:9e:2e:eb:e5:0b:00:df:e7:6b:dd:3a:f3:38:09: d5:91:e6:68:e0:8b:68:f0:0d:97:f0:7b:27:34:40: cc:73:26:84:36:23:e7:2e:b8:1f:52:ef:a4:ab:0a: 09:40:d4:2a:11:28:8d:f9:65:86:bf:46:cd:05:ef: af:96:c6:5a:94:46:8c:3d:5c:bd:25:c8:77:7f:19: ae:3d:67:1f:a9:eb:63:10:d5:9c:ab:54:9e:01:a8: 09:65:c4:8d:ef:58:33:d5:b9:2c:98:bd:44:3c:48: 24:c7:8e:e9:d4:74:c6:97:17:81:ca:33:aa:4d:9e: aa:8d:20:07:2d:32:6a:43:3a:08:6a:d3:56:1a:18: 03:3a:2c:81:f2:7b:39:cc:bf:ad:8a:f5:47:ef:55: 9d:f2:97:cb:80:17:80:45:56:ac:3e:24:eb:ab:a3: 97:aa:99:09:d5:f4:54:50:34:ae:60:7c:69:77:48: 6c:52:2a:4d:20:d4:81:7e:03:44:f2:5d:07:5a:16: 13:95:17:c4:d4:89:cd:fe:08:16:3f:97:52:30:fb: 59:4b:58:48:8b:0f:c5:02:1f:b3:39:65:49:2b:8f: 8d:da:4f:7d:18:0c:a0:f2:06:b9:20:28:24:a6:68: c1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D9:95:20:6E:11:60:09:AB:B4:79:83:30:97:38:E2:04:34:2C:7B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/216e1c1f-35c3-4c02-a0c3-0b5815c016d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 61:c8:7a:e9:ed:40:28:41:fe:5a:fb:02:12:fc:2f:1a:58:4d: d5:d2:96:97:34:9b:b5:6b:51:b7:f5:45:da:e1:d8:3a:38:9c: 91:ca:12:9f:35:a2:6d:22:28:82:36:ae:16:86:df:19:fc:93: 6e:ce:72:17:04:93:d2:8c:dc:7b:84:b8:21:12:4a:2c:33:99: 05:44:0e:a9:17:18:3e:3b:2a:33:5b:30:f3:f6:c8:5a:78:d3: 8c:50:5a:5a:22:1f:03:d2:83:71:f9:50:05:83:cc:40:9a:aa: e8:e9:da:c0:53:e1:1a:26:ba:4f:4b:c9:63:ff:09:7f:45:23: 8c:4e:ee:9b:e5:6f:23:84:0c:cd:2e:54:78:77:d9:6e:3e:6a: 7c:87:1b:e5:6c:d5:1e:3f:fc:c8:5f:fd:c0:39:98:71:79:9a: ec:a4:82:4e:2f:fa:da:3e:be:6e:95:7e:a2:2a:7a:e6:52:27: 5c:43:40:ea:84:df:0b:59:3b:77:ff:00:a5:76:b8:29:ff:17: 9f:23:1e:1e:b2:d9:37:c2:d4:3c:e0:8b:14:f8:d4:22:9c:a1: 96:72:26:f4:f7:0b:b2:b8:f3:4a:c3:e5:04:7f:2f:46:ca:8d: fa:1b:e2:3d:41:01:4d:d9:64:17:7e:ac:9f:36:1d:7b:36:c9: 35:dd:b1:73 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUXgA2z03K6yBElmCuXSKRv9Fm714wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMwNTVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGVmODdlN2UwODAzODM5MGM2MWM0YzhkOTc3ZjU4OGM4MmU0MzM5ZGE5YWNj ODM1MDkzMzI5NDcxOTIzYTM0Y2MxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIzlBPOMkNAAWkzKwYUPY54u6+ULAN/na9068zgJ1ZHmaOCLaPANl/B7JzRA zHMmhDYj5y64H1LvpKsKCUDUKhEojfllhr9GzQXvr5bGWpRGjD1cvSXId38Zrj1n H6nrYxDVnKtUngGoCWXEje9YM9W5LJi9RDxIJMeO6dR0xpcXgcozqk2eqo0gBy0y akM6CGrTVhoYAzosgfJ7Ocy/rYr1R+9VnfKXy4AXgEVWrD4k66ujl6qZCdX0VFA0 rmB8aXdIbFIqTSDUgX4DRPJdB1oWE5UXxNSJzf4IFj+XUjD7WUtYSIsPxQIfszll SSuPjdpPfRgMoPIGuSAoJKZowX8CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRB2ZUg bhFgCau0eYMwlzjiBDQsezAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MjE2ZTFjMWYtMzVjMy00YzAyLWEwYzMtMGI1ODE1YzAxNmQ3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HJA wDANBgkqhkiG9w0BAQsFAAOCAQEAYch66e1AKEH+WvsCEvwvGlhN1dKWlzSbtWtR t/VF2uHYOjickcoSnzWibSIogjauFobfGfyTbs5yFwST0ozce4S4IRJKLDOZBUQO qRcYPjsqM1sw8/bIWnjTjFBaWiIfA9KDcflQBYPMQJqq6OnawFPhGia6T0vJY/8J f0UjjE7um+VvI4QMzS5UeHfZbj5qfIcb5WzVHj/8yF/9wDmYcXma7KSCTi/62j6+ bpV+oip65lInXENA6oTfC1k7d/8ApXa4Kf8XnyMeHrLZN8LUPOCLFPjUIpyhlnIm 9PcLsrjzSsPlBH8vRsqN+hviPUEBTdlkF36snzYdezbJNd2xcw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:08 2025 by rpki-client