This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2270e26b-c2b1-4cc3-800b-33825c0d723b.roa File: 2270e26b-c2b1-4cc3-800b-33825c0d723b.roa (raw, json) Hash identifier: knvdS7gVjQBn4/osS/4jNXObiHG/lRSyqPMDcm57R0s= Subject key identifier: EA:F9:EB:BB:C9:62:3A:18:01:0F:22:46:C2:B1:3B:81:C0:47:24:83 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1B6F25F28987A2BEB4F33238A229D25ED55350AD Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2270e26b-c2b1-4cc3-800b-33825c0d723b.roa Signing time: Wed 10 Dec 2025 06:11:27 +0000 ROA not before: Wed 10 Dec 2025 06:11:27 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06f:b000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:6f:25:f2:89:87:a2:be:b4:f3:32:38:a2:29:d2:5e:d5:53:50:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:11:27 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=6e1b568a3203be456b4c9775edec66f9fbb34dd3dd8758f8f1449e0e2d7aef70, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:8a:89:cb:ea:2f:2b:c7:e1:27:f5:1b:73: 50:ca:0a:e8:71:eb:d1:f4:4a:50:56:82:10:69:5d: 2c:da:44:08:58:79:a1:1c:53:0a:9e:a3:65:5c:fb: 73:11:80:3f:ca:4c:a5:0b:10:fd:70:c0:47:18:64: 36:98:0b:0f:b2:95:35:56:ba:50:73:56:13:ad:87: ae:6a:cc:3c:87:4f:1f:76:16:1e:5f:1e:02:cd:29: 97:d2:fc:3e:80:f8:c9:7e:6d:5f:7d:a5:6b:1d:78: f9:4a:5e:7d:0b:fc:79:8e:bf:7d:76:4a:9e:23:6c: 37:90:dc:df:ec:27:d4:4f:4c:ea:68:f9:42:f7:30: 76:12:a5:55:1e:24:f1:fe:28:dd:27:c7:93:58:9a: 8c:fb:f4:63:6e:d7:92:d8:9f:f7:23:48:af:e8:dd: 34:2b:aa:6d:f6:ec:42:d3:3b:1d:71:cc:76:52:fa: 65:b3:6e:5d:74:00:05:6d:03:91:71:44:55:d7:57: 26:c6:52:62:d0:ac:7b:4f:83:49:5d:c1:9e:58:6f: 22:a0:eb:87:9b:b5:48:19:0a:b7:fe:fc:2d:d2:7d: 07:55:a8:a1:64:4d:4e:6e:a3:c1:26:d3:e9:f4:6c: 7d:7b:c1:bb:8b:dd:16:a2:0d:15:51:e7:bb:81:99: 50:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F9:EB:BB:C9:62:3A:18:01:0F:22:46:C2:B1:3B:81:C0:47:24:83 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2270e26b-c2b1-4cc3-800b-33825c0d723b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06f:b000::/40 Signature Algorithm: sha256WithRSAEncryption 89:ca:7b:6e:42:7b:bd:6d:47:8c:ec:10:66:f8:7e:12:20:75: ab:70:b5:24:35:70:0a:44:6f:7f:23:17:ad:25:ad:85:0a:9b: 86:6c:e4:f0:e3:ce:42:85:95:72:c3:f2:83:0d:d6:02:1a:88: 13:8c:8e:4a:e0:dc:1c:c0:fe:ed:5a:d8:78:5f:38:94:77:49: 75:d8:d1:71:96:f8:32:db:0b:63:f6:b7:c3:f2:05:36:1b:1b: 33:bd:95:8c:f3:59:3f:90:0d:aa:4d:c9:c7:4d:2a:87:ec:4b: 50:da:23:2a:d9:e4:c8:86:24:ca:8a:70:3f:f2:19:e5:46:67: a6:b3:c5:b9:ab:ca:90:e4:ac:7f:86:5a:56:6b:85:57:da:dc: 6a:7e:18:aa:84:12:5d:0d:e9:e1:65:37:8a:57:b4:83:6b:f9: 1f:cf:e9:f6:ad:71:9c:69:ce:2f:b9:e2:b3:f6:a0:6b:c5:40: 6d:ac:77:ac:1e:50:af:05:fb:81:84:ef:30:67:c0:ed:5b:a6: 1e:55:b0:ee:03:36:db:0d:69:ba:1d:b0:2d:ca:60:23:62:b8: e1:b0:f9:ab:d1:ea:f1:81:7d:85:9a:ad:3f:a6:4c:43:5e:f0: b0:b1:48:0e:8d:34:b4:60:e2:4c:4a:cd:97:43:fc:b2:1c:f4: dd:b3:db:59 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUG28l8omHor608zI4oinSXtVTUK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjExMjdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDZlMWI1NjhhMzIwM2JlNDU2YjRjOTc3NWVkZWM2NmY5ZmJiMzRkZDNkZDg3 NThmOGYxNDQ5ZTBlMmQ3YWVmNzAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMruionL6i8rx+En9RtzUMoK6HHr0fRKUFaCEGldLNpECFh5oRxTCp6jZVz7 cxGAP8pMpQsQ/XDARxhkNpgLD7KVNVa6UHNWE62HrmrMPIdPH3YWHl8eAs0pl9L8 PoD4yX5tX32lax14+UpefQv8eY6/fXZKniNsN5Dc3+wn1E9M6mj5QvcwdhKlVR4k 8f4o3SfHk1iajPv0Y27Xktif9yNIr+jdNCuqbfbsQtM7HXHMdlL6ZbNuXXQABW0D kXFEVddXJsZSYtCse0+DSV3BnlhvIqDrh5u1SBkKt/78LdJ9B1WooWRNTm6jwSbT 6fRsfXvBu4vdFqINFVHnu4GZUAUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTq+eu7 yWI6GAEPIkbCsTuBwEckgzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MjI3MGUyNmItYzJiMS00Y2MzLTgwMGItMzM4MjVjMGQ3MjNiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0G+w MA0GCSqGSIb3DQEBCwUAA4IBAQCJyntuQnu9bUeM7BBm+H4SIHWrcLUkNXAKRG9/ IxetJa2FCpuGbOTw485ChZVyw/KDDdYCGogTjI5K4NwcwP7tWth4XziUd0l12NFx lvgy2wtj9rfD8gU2GxszvZWM81k/kA2qTcnHTSqH7EtQ2iMq2eTIhiTKinA/8hnl Rmems8W5q8qQ5Kx/hlpWa4VX2txqfhiqhBJdDenhZTeKV7SDa/kfz+n2rXGcac4v ueKz9qBrxUBtrHesHlCvBfuBhO8wZ8DtW6YeVbDuAzbbDWm6HbAtymAjYrjhsPmr 0erxgX2Fmq0/pkxDXvCwsUgOjTS0YOJMSs2XQ/yyHPTds9tZ -----END CERTIFICATE-----Generated at Mon Dec 15 15:34:47 2025 by rpki-client