This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37f8478f-5ef8-4fe5-b9a2-1bbd605a6adf.roa File: 37f8478f-5ef8-4fe5-b9a2-1bbd605a6adf.roa (raw, json) Hash identifier: uabuS7Z/pDY2ZPW0TqeSLNpt4hUrP9K9x88r+JO2sLc= Subject key identifier: 50:95:9E:2C:6A:55:E9:65:AD:86:12:5A:34:3C:19:2A:1A:FA:AE:5B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4E334F329AE4371663EE59C4F50F486242479836 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37f8478f-5ef8-4fe5-b9a2-1bbd605a6adf.roa Signing time: Sat 15 Nov 2025 06:31:04 +0000 ROA not before: Sat 15 Nov 2025 06:31:04 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d036:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:33:4f:32:9a:e4:37:16:63:ee:59:c4:f5:0f:48:62:42:47:98:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:31:04 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=a6d7dc7c06b5ac4bc38c28493e66ab655eb648bd9f23bdd2b410d7936f275e97, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:14:85:7b:f6:f0:bb:4e:19:66:97:24:19:77: 4e:2d:54:c1:ec:04:20:f0:c8:f2:ae:a3:3c:a5:b5: c9:f7:34:13:b3:86:27:4d:6e:87:fe:ef:ea:bf:81: fa:83:5e:de:a1:fc:6d:1a:94:cb:ed:ff:bf:0e:04: db:58:72:18:dc:65:5d:2d:17:d3:f3:93:88:67:fc: e0:57:d5:64:4f:cd:3e:63:fc:c4:5c:6c:a3:db:92: ff:de:36:d3:9f:f6:53:a8:29:e7:ae:62:60:23:73: c0:82:01:a5:71:57:ae:fd:7d:f9:81:da:c7:8d:fc: de:d0:37:5d:51:a9:0a:d2:7c:fa:b8:76:28:41:59: 82:52:cc:62:92:86:26:bd:85:bd:b9:0b:6d:c8:42: a4:1e:8e:87:08:c2:84:10:d0:17:7b:5d:fe:11:72: 89:b6:aa:49:a9:2a:c7:77:13:15:a0:eb:00:a6:b5: 1f:ed:18:ad:8a:b5:75:a7:31:be:ad:c0:8e:95:d6: 7e:df:3b:bc:f9:da:a4:ea:4f:5d:03:3f:f5:be:e3: ea:35:85:d9:2f:57:b5:05:72:13:73:7a:27:49:50: 79:95:62:60:c0:2a:e8:8b:b9:48:e8:ae:7e:df:9b: fe:6e:2b:3d:41:4d:34:a7:64:f9:3f:99:8a:ce:49: 58:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:95:9E:2C:6A:55:E9:65:AD:86:12:5A:34:3C:19:2A:1A:FA:AE:5B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37f8478f-5ef8-4fe5-b9a2-1bbd605a6adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d036:8000::/40 Signature Algorithm: sha256WithRSAEncryption 72:e7:a8:6d:8f:81:33:63:15:c2:b1:45:6d:cb:6f:90:d9:28: bd:78:c7:2e:52:30:9e:54:7f:af:80:91:bc:15:57:9a:56:ec: ae:8c:c7:59:c0:be:b9:21:7c:1a:31:7b:84:64:53:5d:c9:08: c0:dc:be:75:cd:78:8c:c4:ed:85:7e:7e:da:17:2e:c4:c4:41: d5:d3:92:1a:a6:c5:96:51:ba:bf:00:4e:33:79:67:6d:14:8d: 97:78:61:ed:66:73:fd:0d:ce:45:17:e6:f8:15:07:a3:0f:b9: 79:bd:3d:9a:d7:7b:55:4b:2a:06:e3:4e:51:5b:b8:30:a2:9e: a4:09:16:b7:bd:33:7a:8f:7b:b4:ca:f7:64:31:cc:27:7c:9d: 09:d9:9d:c0:15:77:80:d3:72:39:13:ce:f3:85:1d:97:ba:c4: c7:ad:04:85:10:26:d6:da:f8:5d:06:95:cc:54:e7:30:ed:86: 35:06:2c:50:a8:f2:ac:c3:e9:d3:62:26:54:fc:be:97:3c:ba: be:4c:79:17:49:4c:ef:38:73:31:02:4b:de:90:10:2f:d8:21: 07:ab:63:f1:a0:1f:9f:fc:54:62:4b:2f:ab:f4:92:1d:b3:88: 19:1a:b1:8b:9c:c8:b2:9a:dd:d3:60:45:65:97:44:bc:0c:f7: bd:75:7f:b8 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUTjNPMprkNxZj7lnE9Q9IYkJHmDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjMxMDRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGE2ZDdkYzdjMDZiNWFjNGJjMzhjMjg0OTNlNjZhYjY1NWViNjQ4YmQ5ZjIz YmRkMmI0MTBkNzkzNmYyNzVlOTcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALEUhXv28LtOGWaXJBl3Ti1UwewEIPDI8q6jPKW1yfc0E7OGJ01uh/7v6r+B +oNe3qH8bRqUy+3/vw4E21hyGNxlXS0X0/OTiGf84FfVZE/NPmP8xFxso9uS/942 05/2U6gp565iYCNzwIIBpXFXrv19+YHax4383tA3XVGpCtJ8+rh2KEFZglLMYpKG Jr2FvbkLbchCpB6OhwjChBDQF3td/hFyibaqSakqx3cTFaDrAKa1H+0YrYq1dacx vq3AjpXWft87vPnapOpPXQM/9b7j6jWF2S9XtQVyE3N6J0lQeZViYMAq6Iu5SOiu ft+b/m4rPUFNNKdk+T+Zis5JWNUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRQlZ4s alXpZa2GElo0PBkqGvquWzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MzdmODQ3OGYtNWVmOC00ZmU1LWI5YTItMWJiZDYwNWE2YWRmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DaA MA0GCSqGSIb3DQEBCwUAA4IBAQBy56htj4EzYxXCsUVty2+Q2Si9eMcuUjCeVH+v gJG8FVeaVuyujMdZwL65IXwaMXuEZFNdyQjA3L51zXiMxO2Ffn7aFy7ExEHV05Ia psWWUbq/AE4zeWdtFI2XeGHtZnP9Dc5FF+b4FQejD7l5vT2a13tVSyoG405RW7gw op6kCRa3vTN6j3u0yvdkMcwnfJ0J2Z3AFXeA03I5E87zhR2XusTHrQSFECbW2vhd BpXMVOcw7YY1BixQqPKsw+nTYiZU/L6XPLq+THkXSUzvOHMxAkvekBAv2CEHq2Px oB+f/FRiSy+r9JIds4gZGrGLnMiymt3TYEVll0S8DPe9dX+4 -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:55 2025 by rpki-client