This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/376be0fe-aebc-4855-80a4-ea95cf413b51.roa File: 376be0fe-aebc-4855-80a4-ea95cf413b51.roa (raw, json) Hash identifier: tgI6D+3S+LlIs7wqoXuVfHxbFOhI/WRtXCDr6HyqySo= Subject key identifier: B0:75:5B:E6:70:EA:E9:A6:23:BA:3C:8D:48:24:EB:B3:5C:4F:1D:C5 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 046504F0BFAB1F2BE275790D6D9A1FDDFC338139 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/376be0fe-aebc-4855-80a4-ea95cf413b51.roa Signing time: Tue 25 Nov 2025 20:10:07 +0000 ROA not before: Tue 25 Nov 2025 20:10:07 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d032:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:65:04:f0:bf:ab:1f:2b:e2:75:79:0d:6d:9a:1f:dd:fc:33:81:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:10:07 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=ba3fe929fa915dac5badcb31b31327d8e72fcabb87ce71340d0ed198199f4e35, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0f:4c:94:50:2b:b9:30:bb:6d:98:b8:8c:f6: e7:33:a1:60:2f:68:b3:e4:02:e5:1f:4b:26:7e:c4: f2:fd:54:71:51:cb:14:9a:38:49:07:94:37:7a:58: c0:19:d4:df:21:e2:30:ee:42:c7:56:b7:90:cc:f4: 6f:b6:8a:f9:b7:cf:ee:99:71:66:40:25:c3:48:36: 09:36:57:7b:2e:86:fc:bf:a9:fe:f7:2a:fe:eb:93: 86:21:f6:e8:b9:1f:81:1b:a3:a3:99:62:48:5f:70: 7f:88:8b:4a:64:ec:fa:14:4b:a5:28:40:83:6e:a6: 8f:59:f7:70:8b:e0:42:47:f6:f9:e8:3f:f1:74:59: 18:4c:d6:2e:49:49:36:85:e0:94:40:72:c0:79:f1: f2:28:ab:6c:07:ef:04:28:e8:12:6e:d5:9d:d6:25: e8:77:23:e6:e3:ba:fa:11:3e:8f:c5:5d:e6:60:77: d3:77:52:1c:61:12:24:ca:00:9c:d4:90:e9:05:0c: ab:8d:00:f9:3f:5c:16:dd:6a:2b:a5:fc:ac:e5:7c: 80:a6:81:4e:9c:90:10:46:77:90:fc:e4:03:da:9d: 88:98:18:a5:d2:b9:ca:f5:c0:df:10:ee:19:50:26: 6b:f8:b6:14:4b:f8:45:9f:28:14:10:27:38:30:a2: 2a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:75:5B:E6:70:EA:E9:A6:23:BA:3C:8D:48:24:EB:B3:5C:4F:1D:C5 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/376be0fe-aebc-4855-80a4-ea95cf413b51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d032:5000::/40 Signature Algorithm: sha256WithRSAEncryption 72:2a:a2:5d:62:a6:a5:88:b1:7f:73:4f:21:98:16:96:94:3e: dc:c0:9f:7e:2f:ee:81:0c:9a:5f:7f:c4:d8:be:4f:82:ab:a1: 2a:f6:f3:e6:b5:f4:dc:de:4e:03:5f:8b:65:71:e1:5b:8e:58: c5:01:be:83:ab:21:50:07:b1:63:d1:69:47:bc:73:cf:5f:01: 13:fb:f7:0e:4a:4d:c5:6f:f0:ce:38:4c:d9:b0:ed:c0:56:01: 03:e4:9f:94:b9:79:ee:e5:7b:43:30:43:dc:43:a6:b9:63:a8: 32:a1:e0:8c:24:e9:7e:be:80:39:cb:b2:41:ab:3b:4c:8a:91: d6:eb:84:92:f7:7d:f4:c3:b7:5f:e0:c0:58:07:e2:57:f8:bb: 1b:ae:41:7b:e2:d4:34:11:26:21:b2:6d:eb:17:a8:85:48:a7: 45:0e:1c:83:62:e9:bd:ac:91:b6:fe:3b:71:51:b2:ab:27:7f: 8a:64:e4:f2:91:c0:3f:87:94:a5:50:c0:e2:fb:51:ed:ba:5e: 6e:d6:62:2a:00:db:37:c5:05:71:ee:1f:34:5f:af:d0:e2:9d: 14:b3:72:e9:eb:3d:96:65:0e:38:b2:f9:70:ab:a3:08:8e:05: 01:6a:96:7b:e0:a4:40:2d:b8:c1:11:ce:c1:a9:62:67:93:c3: 40:fd:d7:40 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUBGUE8L+rHyvidXkNbZof3fwzgTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDEwMDdaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQGJhM2ZlOTI5ZmE5MTVkYWM1YmFkY2IzMWIzMTMyN2Q4ZTcyZmNhYmI4N2Nl NzEzNDBkMGVkMTk4MTk5ZjRlMzUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOAPTJRQK7kwu22YuIz25zOhYC9os+QC5R9LJn7E8v1UcVHLFJo4SQeUN3pY wBnU3yHiMO5Cx1a3kMz0b7aK+bfP7plxZkAlw0g2CTZXey6G/L+p/vcq/uuThiH2 6LkfgRujo5liSF9wf4iLSmTs+hRLpShAg26mj1n3cIvgQkf2+eg/8XRZGEzWLklJ NoXglEBywHnx8iirbAfvBCjoEm7VndYl6Hcj5uO6+hE+j8Vd5mB303dSHGESJMoA nNSQ6QUMq40A+T9cFt1qK6X8rOV8gKaBTpyQEEZ3kPzkA9qdiJgYpdK5yvXA3xDu GVAma/i2FEv4RZ8oFBAnODCiKg0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSwdVvm cOrppiO6PI1IJOuzXE8dxTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv Mzc2YmUwZmUtYWViYy00ODU1LTgwYTQtZWE5NWNmNDEzYjUxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DJQ MA0GCSqGSIb3DQEBCwUAA4IBAQByKqJdYqaliLF/c08hmBaWlD7cwJ9+L+6BDJpf f8TYvk+Cq6Eq9vPmtfTc3k4DX4tlceFbjljFAb6DqyFQB7Fj0WlHvHPPXwET+/cO Sk3Fb/DOOEzZsO3AVgED5J+UuXnu5XtDMEPcQ6a5Y6gyoeCMJOl+voA5y7JBqztM ipHW64SS9330w7df4MBYB+JX+LsbrkF74tQ0ESYhsm3rF6iFSKdFDhyDYum9rJG2 /jtxUbKrJ3+KZOTykcA/h5SlUMDi+1Htul5u1mIqANs3xQVx7h80X6/Q4p0Us3Lp 6z2WZQ44svlwq6MIjgUBapZ74KRALbjBEc7BqWJnk8NA/ddA -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:12 2025 by rpki-client