This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37b00c63-4d48-46a2-a2ac-c6d3bf6953bd.roa File: 37b00c63-4d48-46a2-a2ac-c6d3bf6953bd.roa (raw, json) Hash identifier: zCZBzS5W5BanI5CRx9VxKIcV7Lk7h58Ewst87chb8k8= Subject key identifier: AC:CA:36:BC:ED:CB:B3:2F:B4:65:92:FD:E7:6C:AF:A0:C9:0C:5B:82 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 62853C9D666E459E1E851B055BFFBF1427D363AD Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37b00c63-4d48-46a2-a2ac-c6d3bf6953bd.roa Signing time: Tue 02 Dec 2025 01:50:13 +0000 ROA not before: Tue 02 Dec 2025 01:50:13 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d076:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:85:3c:9d:66:6e:45:9e:1e:85:1b:05:5b:ff:bf:14:27:d3:63:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:50:13 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=9b8b351c79ce8273650642ee6e57ac3bb942c9609311c942bfa3ce8862372474, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:80:f3:94:50:f5:8d:99:5e:94:0b:03:39:92: b4:cf:d4:48:c1:fa:37:3f:1d:74:79:65:d2:47:9f: e3:c4:1f:0d:e8:ce:c2:8f:d3:85:0f:54:88:2a:60: fa:d2:ad:2a:1c:a3:02:a4:cf:1f:31:52:c3:df:f4: 53:f8:43:cd:a3:e8:43:47:cc:fa:82:96:b9:63:35: 69:cf:df:7e:33:88:e3:61:36:58:52:cf:9d:8f:69: d5:f6:54:c6:f9:8c:e9:4a:11:84:2e:a0:46:9e:b3: 3c:07:d8:35:0c:cd:f3:3e:38:55:94:a6:f8:d9:47: ad:4b:54:f1:6a:ac:8e:ce:e2:d7:ea:1a:b8:5e:00: 5d:b6:69:9b:09:61:2d:a8:b3:c3:cc:af:1a:06:7d: 13:5c:67:56:54:49:93:b0:a1:1f:a9:0f:ec:c1:ac: 75:4e:8f:9a:4c:51:72:7b:33:84:77:12:4b:e8:d1: 50:29:a0:c6:15:4e:1c:90:be:fe:fd:16:1c:fe:5b: 77:46:78:06:53:9c:50:81:4b:9d:62:7c:e9:18:2f: a2:51:84:2b:0f:37:68:e2:8e:ce:64:41:df:d1:94: bf:ea:cf:d9:14:04:69:a0:39:cc:fe:da:d2:bf:3e: 75:5d:07:3c:1d:f0:df:8c:a7:b4:3b:5b:9f:58:56: 59:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CA:36:BC:ED:CB:B3:2F:B4:65:92:FD:E7:6C:AF:A0:C9:0C:5B:82 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37b00c63-4d48-46a2-a2ac-c6d3bf6953bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d076:8000::/48 Signature Algorithm: sha256WithRSAEncryption 5c:57:3e:fe:d3:9a:ba:97:60:75:8a:76:ca:36:59:3f:67:6b: 01:04:4f:3f:cd:6b:46:86:3a:4a:24:a9:ae:c2:33:de:b9:29: 81:68:0d:94:83:18:51:6f:b9:cb:cb:e4:0c:02:c7:bc:01:b1: 60:0e:d6:d0:de:93:e2:42:a4:4f:70:6b:44:a6:72:73:61:9f: ee:5f:cf:1a:73:92:71:31:c3:d2:be:31:c6:e7:e0:fc:82:0d: 9e:b7:13:2d:56:1d:98:5c:cf:54:55:84:30:ea:22:a2:1c:cb: ac:f9:50:15:3f:ab:77:b1:0a:7c:02:d2:a7:f4:0a:c2:f7:be: 23:58:f2:0a:7e:80:0b:e8:03:9e:9f:87:f3:87:ab:3c:1c:33: 0b:b3:68:d7:26:e1:c1:73:9f:67:b5:66:c9:61:87:9e:b2:1d: d6:db:95:1e:ae:56:38:1e:c1:b8:73:f1:83:f9:7a:7b:94:ad: b3:ac:f1:c6:5c:2c:d6:52:c5:29:09:8a:a1:df:42:72:d6:28: 08:d5:3c:63:35:b1:e5:11:c0:e3:1d:f4:da:6c:e4:25:fe:ae: 7e:a3:35:4f:ac:98:ea:86:ee:39:76:60:e0:f2:19:92:ac:ca: 81:3d:64:94:5c:5f:04:01:59:38:0e:c1:6e:c2:64:af:3c:e5: f6:09:17:9c -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUYoU8nWZuRZ4ehRsFW/+/FCfTY60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUwMTNaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDliOGIzNTFjNzljZTgyNzM2NTA2NDJlZTZlNTdhYzNiYjk0MmM5NjA5MzEx Yzk0MmJmYTNjZTg4NjIzNzI0NzQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyA85RQ9Y2ZXpQLAzmStM/USMH6Nz8ddHll0kef48QfDejOwo/ThQ9UiCpg +tKtKhyjAqTPHzFSw9/0U/hDzaPoQ0fM+oKWuWM1ac/ffjOI42E2WFLPnY9p1fZU xvmM6UoRhC6gRp6zPAfYNQzN8z44VZSm+NlHrUtU8Wqsjs7i1+oauF4AXbZpmwlh Laizw8yvGgZ9E1xnVlRJk7ChH6kP7MGsdU6PmkxRcnszhHcSS+jRUCmgxhVOHJC+ /v0WHP5bd0Z4BlOcUIFLnWJ86RgvolGEKw83aOKOzmRB39GUv+rP2RQEaaA5zP7a 0r8+dV0HPB3w34yntDtbn1hWWVcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSsyja8 7cuzL7Rlkv3nbK+gyQxbgjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MzdiMDBjNjMtNGQ0OC00NmEyLWEyYWMtYzZkM2JmNjk1M2JkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HaA ADANBgkqhkiG9w0BAQsFAAOCAQEAXFc+/tOaupdgdYp2yjZZP2drAQRPP81rRoY6 SiSprsIz3rkpgWgNlIMYUW+5y8vkDALHvAGxYA7W0N6T4kKkT3BrRKZyc2Gf7l/P GnOScTHD0r4xxufg/IINnrcTLVYdmFzPVFWEMOoiohzLrPlQFT+rd7EKfALSp/QK wve+I1jyCn6AC+gDnp+H84erPBwzC7No1ybhwXOfZ7VmyWGHnrId1tuVHq5WOB7B uHPxg/l6e5Sts6zxxlws1lLFKQmKod9CctYoCNU8YzWx5RHA4x302mzkJf6ufqM1 T6yY6obuOXZg4PIZkqzKgT1klFxfBAFZOA7BbsJkrzzl9gkXnA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:02 2025 by rpki-client