This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/22cb20bc-8063-4169-9e4b-a3ad29aeedc7.roa File: 22cb20bc-8063-4169-9e4b-a3ad29aeedc7.roa (raw, json) Hash identifier: neBALGvYHfZ/PRW4XtZqlhyPJ6AIlqg0Ps6Qw7E5fYI= Subject key identifier: 65:9F:5A:FB:4C:FC:46:19:D2:D5:4F:8A:E2:E0:48:21:27:E4:F4:C9 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 55CD618568A42D92479F0A8B25ADD8FAEC36D7CE Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/22cb20bc-8063-4169-9e4b-a3ad29aeedc7.roa Signing time: Sat 15 Nov 2025 06:31:08 +0000 ROA not before: Sat 15 Nov 2025 06:31:08 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d050:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:cd:61:85:68:a4:2d:92:47:9f:0a:8b:25:ad:d8:fa:ec:36:d7:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:31:08 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=fffd7f95bc44f842ab297391f1c499ef7e0274c19c2147e33c46a3621f118bfa, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c0:e6:0a:1d:b7:55:8d:78:4d:ea:5e:e6:60: c2:22:78:2b:80:3b:84:5a:50:08:5f:b3:d0:96:e3: 8b:0e:b7:59:0b:e2:18:3c:07:0d:43:5f:45:b4:84: 5a:97:67:98:2f:91:ab:e2:35:b6:df:c3:f5:2a:0b: b0:56:15:a9:eb:20:c4:c3:26:72:d9:84:d1:fa:9a: 06:d2:43:83:75:74:d9:a5:2e:bd:5d:fb:09:1a:90: f5:b0:15:bd:9d:f9:f9:9d:6a:11:f4:95:a9:96:69: 79:86:33:6a:ee:0c:0a:25:b1:47:90:cb:b8:01:76: 32:90:29:e3:60:40:90:8c:1f:8f:c9:61:46:67:54: 0a:6f:e6:a1:43:7d:c1:6b:23:4f:4f:4b:90:41:c8: 80:6a:bc:0b:77:4d:8b:17:3e:a2:f9:32:b4:69:c4: da:6e:4b:76:a5:d6:92:2a:39:d3:f2:84:0b:ec:8c: ae:2a:ff:ad:57:a0:18:e9:4f:88:11:7b:b9:a3:ea: fa:54:87:25:ac:b8:19:cb:8b:e8:a8:0a:58:07:18: 30:73:1c:63:64:21:0e:cc:f0:1b:22:e2:3a:1f:d5: 75:09:90:1e:2e:58:b7:e6:4c:d2:aa:ca:40:cf:46: 07:4c:be:fa:ee:28:3c:6a:d3:4d:38:7d:3d:79:8e: 53:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9F:5A:FB:4C:FC:46:19:D2:D5:4F:8A:E2:E0:48:21:27:E4:F4:C9 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/22cb20bc-8063-4169-9e4b-a3ad29aeedc7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d050:4000::/40 Signature Algorithm: sha256WithRSAEncryption a3:f4:e7:11:d5:f0:3a:d9:c3:ea:50:62:7a:3b:2d:0e:6e:e4: 9f:f8:a7:04:c3:a9:ff:04:be:e6:45:ca:43:58:14:71:06:21: ba:5e:06:fe:9d:76:e2:6b:7b:aa:47:ea:1b:6f:86:7b:6d:34: 9f:65:01:88:90:1c:c4:0d:d0:3a:48:e0:51:e3:8f:ab:5a:76: ea:0d:ce:2b:ef:12:8d:1c:40:04:4d:ac:1c:06:21:88:e8:5b: 32:1c:ba:48:d2:a5:e9:8e:26:5d:3b:8c:a2:83:87:6e:40:1d: 59:52:2e:63:12:23:66:8e:0e:80:e0:d5:b6:45:79:95:be:21: 1b:e3:9f:06:c0:3c:3f:ba:98:d0:2f:1d:f1:ca:24:18:71:29: db:93:7d:fd:c6:e2:58:da:25:61:3f:b9:25:03:9d:21:4c:ae: 6f:7b:ab:b3:22:ab:c1:2d:b9:10:af:1c:21:82:df:4c:72:62: a4:f9:72:70:fa:ad:7b:2e:c4:29:5f:47:47:f5:a0:c4:a5:4e: 26:7b:bc:7e:8f:bd:63:ab:11:19:b1:45:f3:ec:40:ae:59:7c: 62:46:c4:e2:c7:19:1c:b1:19:f0:f7:70:a5:ef:49:1a:ec:8e: eb:4d:66:39:4e:db:7b:44:a3:22:ab:a9:8f:cd:eb:82:39:66: ee:ff:75:56 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUVc1hhWikLZJHnwqLJa3Y+uw2184wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjMxMDhaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGZmZmQ3Zjk1YmM0NGY4NDJhYjI5NzM5MWYxYzQ5OWVmN2UwMjc0YzE5YzIx NDdlMzNjNDZhMzYyMWYxMThiZmExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTA5godt1WNeE3qXuZgwiJ4K4A7hFpQCF+z0Jbjiw63WQviGDwHDUNfRbSE WpdnmC+Rq+I1tt/D9SoLsFYVqesgxMMmctmE0fqaBtJDg3V02aUuvV37CRqQ9bAV vZ35+Z1qEfSVqZZpeYYzau4MCiWxR5DLuAF2MpAp42BAkIwfj8lhRmdUCm/moUN9 wWsjT09LkEHIgGq8C3dNixc+ovkytGnE2m5LdqXWkio50/KEC+yMrir/rVegGOlP iBF7uaPq+lSHJay4GcuL6KgKWAcYMHMcY2QhDszwGyLiOh/VdQmQHi5Yt+ZM0qrK QM9GB0y++u4oPGrTTTh9PXmOU40CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRln1r7 TPxGGdLVT4ri4EghJ+T0yTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MjJjYjIwYmMtODA2My00MTY5LTllNGItYTNhZDI5YWVlZGM3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0FBA MA0GCSqGSIb3DQEBCwUAA4IBAQCj9OcR1fA62cPqUGJ6Oy0ObuSf+KcEw6n/BL7m RcpDWBRxBiG6Xgb+nXbia3uqR+obb4Z7bTSfZQGIkBzEDdA6SOBR44+rWnbqDc4r 7xKNHEAETawcBiGI6FsyHLpI0qXpjiZdO4yig4duQB1ZUi5jEiNmjg6A4NW2RXmV viEb458GwDw/upjQLx3xyiQYcSnbk339xuJY2iVhP7klA50hTK5ve6uzIqvBLbkQ rxwhgt9McmKk+XJw+q17LsQpX0dH9aDEpU4me7x+j71jqxEZsUXz7ECuWXxiRsTi xxkcsRnw93Cl70ka7I7rTWY5Ttt7RKMiq6mPzeuCOWbu/3VW -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:31 2025 by rpki-client