This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3401cced-770c-4585-9f39-cb17444bbb38.roa File: 3401cced-770c-4585-9f39-cb17444bbb38.roa (raw, json) Hash identifier: KC+URJ6XSzZaOsr9OZxZDTPRgcE1u4Rw1hl68bwxwKY= Subject key identifier: FC:B3:A5:56:C8:D8:9D:DE:48:A3:FD:A0:BC:50:5E:5E:06:A7:53:69 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 61BA98E96BA0A25EB48F6000B91C30701219629B Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3401cced-770c-4585-9f39-cb17444bbb38.roa Signing time: Tue 25 Nov 2025 20:00:58 +0000 ROA not before: Tue 25 Nov 2025 20:00:58 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d032::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ba:98:e9:6b:a0:a2:5e:b4:8f:60:00:b9:1c:30:70:12:19:62:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:00:58 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=6198a709b646f9a95fb86a2f327c7dc62d8dd0ddf30020ebd26b56693941aa8f, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:da:a7:c9:af:81:cd:44:78:51:4f:88:c6:b5: db:e0:ec:6e:84:3b:45:f0:d3:fd:07:1b:ad:c9:fc: 99:44:7e:fb:ad:22:9e:fb:9d:86:c2:b9:1b:ca:d4: d6:5d:d4:f5:df:82:5b:78:81:a9:20:7c:bb:3c:c0: 19:3f:fb:be:1e:31:1e:0d:34:79:b8:05:01:66:88: 86:69:58:f9:c9:60:ce:1d:21:37:73:83:51:73:62: 83:b5:4b:3f:59:72:fd:8c:f0:7b:ad:09:63:3c:4f: cf:9b:75:94:0d:7b:51:3f:63:b9:98:0d:e5:a5:63: e2:9a:50:c9:d0:fc:58:85:96:45:8c:ba:1d:13:18: 4b:ad:0f:42:b6:d6:29:9f:a0:ec:a2:27:9e:70:a1: a7:b0:dd:f8:06:3d:f5:e9:14:b1:c5:5c:14:a8:a0: ee:a4:a2:a1:a5:42:52:d0:10:50:25:03:19:c6:f0: 95:62:12:38:64:f8:20:93:c1:f9:cb:4d:c9:4b:95: 75:24:1b:19:17:b8:0d:e9:30:49:50:23:99:c1:b6: 47:23:be:a4:14:d8:24:1f:28:50:6c:d6:82:e8:db: 4f:5a:c0:14:08:e3:1d:10:35:60:1b:07:37:cd:fc: 9e:a7:1d:73:b5:ee:96:df:e9:54:47:33:9d:5b:f4: 44:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B3:A5:56:C8:D8:9D:DE:48:A3:FD:A0:BC:50:5E:5E:06:A7:53:69 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3401cced-770c-4585-9f39-cb17444bbb38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d032::/32 Signature Algorithm: sha256WithRSAEncryption 94:16:c5:29:43:67:5c:bc:74:40:13:e6:b5:10:c3:86:82:d4: 67:3e:de:28:00:cd:c8:ea:2a:2c:36:96:cd:eb:bf:35:69:9c: 04:21:98:0d:cd:aa:55:7d:00:4f:84:7b:cc:93:a7:77:19:59: a9:69:25:6f:74:b9:47:cb:d1:a3:6f:b0:b4:0a:2f:83:b8:f9: f8:66:26:f0:4b:c7:eb:c8:da:0c:9e:e2:ac:cb:82:f3:f4:15: 32:3d:28:85:60:a1:9d:50:a2:47:7b:c4:a6:aa:af:e4:2f:15: 4b:d2:fc:bd:a8:13:d8:76:a8:b7:3a:0b:ad:02:9b:88:bd:24: 46:02:35:5d:e7:c6:a2:3b:c7:43:59:17:d1:a6:00:af:4c:33: 06:b1:ea:b5:40:b4:ff:0c:5b:0f:40:72:0d:ed:8c:64:f0:f7: 10:51:41:f0:34:6b:ee:03:a6:68:c9:07:3c:94:17:a2:ac:a2: 4a:0a:67:4b:9b:f2:2f:c1:4a:77:18:e6:e8:b2:36:d2:43:5b: 12:b1:fd:1c:04:da:1b:a9:5d:3f:13:ca:55:b7:9a:ed:05:88: c6:89:cf:18:69:9a:d8:3c:4d:f7:02:df:30:f9:a2:dc:7c:bc: 3f:27:f0:c9:c9:91:91:18:7a:cc:fa:20:78:74:73:53:50:a0: 4e:d9:61:ab -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUYbqY6Wugol60j2AAuRwwcBIZYpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAwNThaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDYxOThhNzA5YjY0NmY5YTk1ZmI4NmEyZjMyN2M3ZGM2MmQ4ZGQwZGRmMzAw MjBlYmQyNmI1NjY5Mzk0MWFhOGYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKHap8mvgc1EeFFPiMa12+DsboQ7RfDT/Qcbrcn8mUR++60invudhsK5G8rU 1l3U9d+CW3iBqSB8uzzAGT/7vh4xHg00ebgFAWaIhmlY+clgzh0hN3ODUXNig7VL P1ly/Yzwe60JYzxPz5t1lA17UT9juZgN5aVj4ppQydD8WIWWRYy6HRMYS60PQrbW KZ+g7KInnnChp7Dd+AY99ekUscVcFKig7qSioaVCUtAQUCUDGcbwlWISOGT4IJPB +ctNyUuVdSQbGRe4DekwSVAjmcG2RyO+pBTYJB8oUGzWgujbT1rAFAjjHRA1YBsH N838nqcdc7Xult/pVEcznVv0RL8CAwEAAaOCAiIwggIeMB0GA1UdDgQWBBT8s6VW yNid3kij/aC8UF5eBqdTaTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MzQwMWNjZWQtNzcwYy00NTg1LTlmMzktY2IxNzQ0NGJiYjM4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoF0DIw DQYJKoZIhvcNAQELBQADggEBAJQWxSlDZ1y8dEAT5rUQw4aC1Gc+3igAzcjqKiw2 ls3rvzVpnAQhmA3NqlV9AE+Ee8yTp3cZWalpJW90uUfL0aNvsLQKL4O4+fhmJvBL x+vI2gye4qzLgvP0FTI9KIVgoZ1Qokd7xKaqr+QvFUvS/L2oE9h2qLc6C60Cm4i9 JEYCNV3nxqI7x0NZF9GmAK9MMwax6rVAtP8MWw9Acg3tjGTw9xBRQfA0a+4DpmjJ BzyUF6KsokoKZ0ub8i/BSncY5uiyNtJDWxKx/RwE2hupXT8TylW3mu0FiMaJzxhp mtg8TfcC3zD5otx8vD8n8MnJkZEYesz6IHh0c1NQoE7ZYas= -----END CERTIFICATE-----Generated at Sat Dec 6 13:37:57 2025 by rpki-client