This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2a93bdc2-823c-416a-ac40-6f6c823bcef9.roa File: 2a93bdc2-823c-416a-ac40-6f6c823bcef9.roa (raw, json) Hash identifier: sT97rFy4qW20rgA9md6J9FUx6mECZrCJwvzXKp29nyk= Subject key identifier: 0F:73:43:CA:C9:F7:91:EC:80:5F:20:F4:99:34:9A:8F:F0:12:6E:5D Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 56A26F8357BD97F7DDDB2F8D72113CEF8D25EBEE Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2a93bdc2-823c-416a-ac40-6f6c823bcef9.roa Signing time: Sat 15 Nov 2025 06:10:55 +0000 ROA not before: Sat 15 Nov 2025 06:10:55 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:1080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:a2:6f:83:57:bd:97:f7:dd:db:2f:8d:72:11:3c:ef:8d:25:eb:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:10:55 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=d404ee448637ad28f678d41ac7ab6653f289fe9377252ae09d56a83f2d5ba5c9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:65:0b:ca:b2:94:24:a6:db:d7:38:79:89:48: 03:ff:5a:0e:9b:a6:d4:ba:f8:d3:18:a0:93:41:a2: 63:e9:77:f6:46:22:a0:72:68:9d:22:12:e0:ac:cc: ee:ec:d9:7d:bf:09:cc:9c:0c:37:83:53:59:96:cf: b0:19:bd:3e:ef:aa:7a:54:a9:fd:fb:cf:9b:b5:37: 1c:59:01:b3:a8:70:fe:ea:c8:0d:1f:f7:d0:20:6e: d6:f7:6f:b1:8b:75:a4:8a:b9:a9:50:fd:8b:3c:4d: ec:27:e1:28:57:63:04:ac:e1:7e:80:03:6e:19:f7: c7:85:8f:ff:76:ea:83:4c:63:8b:b7:ff:14:9f:4f: 6d:d3:a5:e5:02:1a:1b:c2:0d:6a:fe:a2:89:36:c3: 77:2f:12:e6:df:00:a1:6b:a7:9b:d7:02:ec:55:57: 90:61:fd:42:23:d0:2b:ff:1e:5d:14:12:6d:d1:ae: 11:ff:35:6d:8f:a0:7e:70:48:81:61:65:35:c3:d6: 0c:77:c3:a0:0e:7a:7b:7a:33:7a:32:3b:17:07:5c: 89:6e:f1:0a:c5:ee:bc:cb:d5:b8:73:95:0b:38:a5: ae:a2:1f:ed:42:fa:32:2e:7e:b1:f9:96:9a:3f:a0: 2b:91:d1:cd:8a:63:f8:ed:31:8e:48:14:b2:cf:8e: 14:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:73:43:CA:C9:F7:91:EC:80:5F:20:F4:99:34:9A:8F:F0:12:6E:5D X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2a93bdc2-823c-416a-ac40-6f6c823bcef9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:1080::/48 Signature Algorithm: sha256WithRSAEncryption 15:c1:b2:d7:1a:e9:f6:2e:cf:74:4e:8b:6e:d2:ca:3e:c3:0f: 05:d9:47:05:5a:09:4c:48:1b:e3:15:0c:b7:89:d9:9f:67:1c: 49:61:81:06:7a:3f:d6:44:f7:42:29:cd:73:18:64:ef:77:30: e4:21:42:28:e8:44:cc:c4:41:71:cc:54:e0:8e:6a:f8:d5:71: 14:6b:16:cc:60:f5:be:88:46:f9:8e:81:61:28:74:e6:58:13: 60:f3:6f:8b:56:df:13:1c:0b:8e:ac:5c:95:7f:ce:e0:e8:34: 4d:55:44:45:a5:a1:6c:52:0c:9a:c0:34:66:b5:78:96:15:1b: d3:89:fb:07:a5:86:db:5c:50:38:5f:85:83:83:a1:64:0d:77: 83:ff:cd:7a:c2:de:3f:ce:2a:d9:22:87:67:fe:2c:17:ca:79: 16:8c:8f:85:0b:e3:0b:8a:26:c4:4c:76:76:6f:b6:75:39:f7: 5a:bf:b2:1b:87:3c:e7:28:2f:d6:e7:e0:c1:4b:0f:fb:6c:c9: 89:6b:1b:e0:3c:ef:7a:58:4a:5a:57:63:22:3c:39:a8:a5:f4: 5b:33:6a:e3:bd:d1:0d:9e:ed:87:6f:ac:7b:76:3f:4f:52:7d: 2b:eb:8c:0b:0a:28:e8:80:25:5b:bf:a7:2c:72:bb:ca:e0:8e: b1:e3:da:15 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUVqJvg1e9l/fd2y+NchE8740l6+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjEwNTVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGQ0MDRlZTQ0ODYzN2FkMjhmNjc4ZDQxYWM3YWI2NjUzZjI4OWZlOTM3NzI1 MmFlMDlkNTZhODNmMmQ1YmE1YzkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKxlC8qylCSm29c4eYlIA/9aDpum1Lr40xigk0GiY+l39kYioHJonSIS4KzM 7uzZfb8JzJwMN4NTWZbPsBm9Pu+qelSp/fvPm7U3HFkBs6hw/urIDR/30CBu1vdv sYt1pIq5qVD9izxN7CfhKFdjBKzhfoADbhn3x4WP/3bqg0xji7f/FJ9PbdOl5QIa G8INav6iiTbDdy8S5t8AoWunm9cC7FVXkGH9QiPQK/8eXRQSbdGuEf81bY+gfnBI gWFlNcPWDHfDoA56e3ozejI7FwdciW7xCsXuvMvVuHOVCzilrqIf7UL6Mi5+sfmW mj+gK5HRzYpj+O0xjkgUss+OFKMCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQPc0PK yfeR7IBfIPSZNJqP8BJuXTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MmE5M2JkYzItODIzYy00MTZhLWFjNDAtNmY2YzgyM2JjZWY5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DEQ gDANBgkqhkiG9w0BAQsFAAOCAQEAFcGy1xrp9i7PdE6LbtLKPsMPBdlHBVoJTEgb 4xUMt4nZn2ccSWGBBno/1kT3QinNcxhk73cw5CFCKOhEzMRBccxU4I5q+NVxFGsW zGD1vohG+Y6BYSh05lgTYPNvi1bfExwLjqxclX/O4Og0TVVERaWhbFIMmsA0ZrV4 lhUb04n7B6WG21xQOF+Fg4OhZA13g//NesLeP84q2SKHZ/4sF8p5FoyPhQvjC4om xEx2dm+2dTn3Wr+yG4c85ygv1ufgwUsP+2zJiWsb4DzvelhKWldjIjw5qKX0WzNq 473RDZ7th2+se3Y/T1J9K+uMCwoo6IAlW7+nLHK7yuCOsePaFQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:30 2025 by rpki-client