This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa File: 366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa (raw, json) Hash identifier: PaAP845AZFzMzp8csUH7B5pQCX8mBCUq4mFHb3VPAEw= Subject key identifier: 85:1A:F3:6A:9F:28:21:92:0B:B3:66:EF:E3:80:39:EF:A6:B1:EF:3A Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2A65D117DB3B9BEC8CEFC0DA7A81CE87C148E7D7 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa Signing time: Sat 15 Nov 2025 05:41:29 +0000 ROA not before: Sat 15 Nov 2025 05:41:29 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:4040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:65:d1:17:db:3b:9b:ec:8c:ef:c0:da:7a:81:ce:87:c1:48:e7:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:41:29 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=9a7b0a3f6c5a2a5c65e7b43ae65d2f882d121223b3035d3423bbb3fab501343b, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a8:75:99:11:64:82:10:c9:ee:ce:f7:9e:e5: aa:0b:b7:4e:1c:7f:f1:9d:97:cb:95:8e:45:bc:2d: 9a:5d:ec:a7:86:1c:2a:46:d2:d0:42:4c:5f:0b:2a: 12:36:a4:de:94:bc:6a:02:e0:81:47:b2:74:28:54: 96:4e:70:45:98:67:88:d2:e7:8e:2e:f9:56:c1:d5: 3b:c7:58:5f:9d:2e:24:cd:ab:38:29:ee:e1:3e:f8: 02:dc:f3:0f:c5:eb:25:18:bf:a6:32:0b:39:56:5c: c9:b3:a3:74:61:b9:b8:99:80:7d:17:d3:d4:6e:0a: 80:bd:d5:fd:b1:a2:5c:ee:3d:48:03:b6:24:a2:91: 07:2a:00:7c:49:e6:53:9a:67:9f:31:67:d4:38:cd: fe:ab:5a:a6:9d:91:f2:46:4f:f3:79:f5:31:f7:fd: e9:ae:34:cc:b9:b7:74:f8:07:01:92:dd:e7:47:0d: a3:7c:77:ba:61:06:69:fc:80:c0:27:da:2c:16:bc: c2:07:6c:f7:fe:73:99:0f:04:ce:e3:f3:d7:3b:cb: c2:13:d3:68:50:91:89:0a:6a:09:65:be:96:54:f4: ce:54:b3:80:ed:8d:b6:24:4f:5a:1a:8b:e8:3b:6b: 57:a8:4b:d4:80:49:c6:68:1f:57:1d:62:83:13:a9: b0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1A:F3:6A:9F:28:21:92:0B:B3:66:EF:E3:80:39:EF:A6:B1:EF:3A X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:4040::/48 Signature Algorithm: sha256WithRSAEncryption 86:22:eb:6d:6c:a0:98:c4:f9:7a:d8:4e:c0:f6:04:01:ed:6b: 74:38:47:fc:c5:3a:f7:b9:76:d5:35:f6:c4:a9:b8:a8:54:ee: 82:6f:39:ec:f1:af:f9:06:b1:88:6c:bf:5f:17:a6:45:12:94: 8f:85:48:44:95:06:e6:55:3b:a2:a0:a2:7c:2a:cd:49:cb:5e: 7b:9c:86:64:31:f3:6a:fd:12:7e:fa:50:db:24:02:c1:dd:c9: 86:16:1d:6d:1f:5e:98:78:5d:9c:f7:01:db:f7:99:a8:68:0e: 47:26:f0:48:52:e3:99:0d:f1:ab:17:44:11:05:ad:39:50:59: 95:6f:89:af:54:c8:13:33:de:8c:d0:84:d8:00:58:86:a5:8f: 9b:8e:69:90:ca:ff:f2:75:bf:42:0b:3b:2a:17:05:ea:40:73: 78:03:31:2d:82:ba:aa:e8:70:2d:5f:75:6e:e4:0d:b7:f8:a3: 0e:9e:0d:6d:56:e0:a4:6e:bb:80:84:61:3a:09:64:b8:27:36: 26:a5:7b:c6:70:aa:f4:c1:dd:fe:21:8a:08:b0:9a:f2:86:fb: e8:c1:56:17:f1:84:3d:fc:f1:87:84:a9:82:3a:17:f5:7e:30: 2d:81:65:f5:3b:37:b5:bc:35:15:fa:1f:85:d1:a2:10:ad:6e: 16:ac:e6:d8 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUKmXRF9s7m+yM78DaeoHOh8FI59cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQxMjlaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDlhN2IwYTNmNmM1YTJhNWM2NWU3YjQzYWU2NWQyZjg4MmQxMjEyMjNiMzAz NWQzNDIzYmJiM2ZhYjUwMTM0M2IxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKiodZkRZIIQye7O957lqgu3Thx/8Z2Xy5WORbwtml3sp4YcKkbS0EJMXwsq Ejak3pS8agLggUeydChUlk5wRZhniNLnji75VsHVO8dYX50uJM2rOCnu4T74Atzz D8XrJRi/pjILOVZcybOjdGG5uJmAfRfT1G4KgL3V/bGiXO49SAO2JKKRByoAfEnm U5pnnzFn1DjN/qtapp2R8kZP83n1Mff96a40zLm3dPgHAZLd50cNo3x3umEGafyA wCfaLBa8wgds9/5zmQ8EzuPz1zvLwhPTaFCRiQpqCWW+llT0zlSzgO2NtiRPWhqL 6DtrV6hL1IBJxmgfVx1igxOpsFECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSFGvNq nyghkguzZu/jgDnvprHvOjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MzY2YzM4MGYtN2YzYy00OTFmLWE3Y2ItYmZmYzYyYWVkMWUwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DFA QDANBgkqhkiG9w0BAQsFAAOCAQEAhiLrbWygmMT5ethOwPYEAe1rdDhH/MU697l2 1TX2xKm4qFTugm857PGv+QaxiGy/XxemRRKUj4VIRJUG5lU7oqCifCrNSctee5yG ZDHzav0SfvpQ2yQCwd3JhhYdbR9emHhdnPcB2/eZqGgORybwSFLjmQ3xqxdEEQWt OVBZlW+Jr1TIEzPejNCE2ABYhqWPm45pkMr/8nW/Qgs7KhcF6kBzeAMxLYK6quhw LV91buQNt/ijDp4NbVbgpG67gIRhOglkuCc2JqV7xnCq9MHd/iGKCLCa8ob76MFW F/GEPfzxh4SpgjoX9X4wLYFl9Ts3tbw1FfofhdGiEK1uFqzm2A== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:51 2025 by rpki-client