This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3f5cc1ca-0dba-44a7-8bb3-efe848cc79ba.roa File: 3f5cc1ca-0dba-44a7-8bb3-efe848cc79ba.roa (raw, json) Hash identifier: z1dO+H9Gk2gc+5BYgNSDc9+ssn6CM2y88juI37kHGHM= Subject key identifier: CD:50:95:A3:8B:95:E8:A0:A6:F1:16:09:04:59:3B:B3:AE:54:BD:2B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2B0C1F89463D86BA0F5E85C3C99C6CF126196BB0 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3f5cc1ca-0dba-44a7-8bb3-efe848cc79ba.roa Signing time: Sat 15 Nov 2025 06:30:16 +0000 ROA not before: Sat 15 Nov 2025 06:30:16 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:0c:1f:89:46:3d:86:ba:0f:5e:85:c3:c9:9c:6c:f1:26:19:6b:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:30:16 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=a6c9e46f3f17fd4e67c2cdc130790a63681c41f1365d6e25a2ff8d00e8c0ed06, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cc:6c:ee:b9:45:61:d7:74:1e:e7:c7:eb:76: 9b:8c:61:b4:eb:42:3e:bb:b1:e5:b4:5b:90:4a:23: 70:8f:9b:57:0d:07:d3:5a:1d:97:aa:e9:c1:91:c1: 12:96:46:7e:22:e9:fe:d2:39:8a:db:bc:7c:0e:df: 17:82:56:d9:14:b5:c8:8a:41:4f:26:98:8e:3e:c4: e6:81:da:2b:fa:1c:ba:3e:eb:44:a3:78:c2:8c:a9: 16:8a:1c:ef:ad:fa:33:24:16:2a:2d:73:93:65:16: 5c:a9:22:67:f6:4a:2f:be:a8:6f:0c:22:9f:4f:c2: 5b:04:78:ed:3f:93:ad:f5:20:68:c3:27:28:19:29: 2c:6c:74:a1:11:ba:77:5b:39:32:f9:41:59:85:80: af:e8:f0:5f:4e:29:10:92:d3:8b:15:69:b7:fb:8a: 78:fc:39:26:30:95:07:c0:00:d8:aa:ac:1a:8b:00: c5:b3:8e:16:dd:f2:23:e3:39:52:b6:16:5a:57:8b: 00:33:c0:fa:37:c2:cf:f0:ae:4f:82:94:43:14:8e: 1a:68:28:25:8b:db:50:f9:89:77:e3:ae:6a:72:21: 17:fc:78:8d:a2:55:d4:8a:68:64:84:13:aa:00:0e: d7:b1:28:c5:17:6f:90:f1:ef:13:24:1d:f8:fe:0a: 8a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:50:95:A3:8B:95:E8:A0:A6:F1:16:09:04:59:3B:B3:AE:54:BD:2B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3f5cc1ca-0dba-44a7-8bb3-efe848cc79ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:8040::/48 Signature Algorithm: sha256WithRSAEncryption 4e:7c:ad:7f:8b:38:8a:2a:ad:ee:4d:e0:69:f0:47:11:6f:33: 8e:c2:58:cb:0c:7d:e0:ab:8e:cd:43:d9:cc:7a:a9:4d:07:2c: bd:e1:53:ad:05:0d:74:c4:af:b9:2c:91:4d:05:70:40:98:87: a1:2d:ca:47:84:d7:2c:6a:2c:d3:27:db:d7:8c:b9:9f:2f:28: b3:72:10:5b:d0:a9:97:de:d2:14:0b:61:e2:fc:19:7c:a5:2b: 9b:8d:62:93:fa:68:1e:41:d6:fe:c7:3a:7c:43:9e:14:56:9a: 94:ee:7f:0d:e2:fb:3a:09:cc:c6:b1:cd:91:57:05:a2:a2:53: ad:da:9e:bf:e6:7d:0e:a0:1d:7a:17:66:09:68:5d:1b:2c:78: 4e:95:dd:3d:c9:74:9a:c0:92:0c:a4:8c:f1:18:ff:3d:97:0a: 61:b0:6f:4c:0d:d1:55:37:16:ba:e8:9a:b1:3f:67:73:2b:23: 50:17:d2:94:07:4b:3f:2f:4b:8d:ca:32:38:d7:16:b0:26:a6: 52:b0:14:ac:0d:ea:92:bf:54:dc:3c:33:7c:d8:e1:5a:0d:cb: a1:71:cb:3b:7b:20:1f:10:da:10:a6:0c:69:8d:d5:97:6d:e9: 93:16:95:b3:b2:8b:3f:2d:4b:91:52:e5:db:e4:2d:9b:ff:43: 34:68:f3:2c -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUKwwfiUY9hroPXoXDyZxs8SYZa7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjMwMTZaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGE2YzllNDZmM2YxN2ZkNGU2N2MyY2RjMTMwNzkwYTYzNjgxYzQxZjEzNjVk NmUyNWEyZmY4ZDAwZThjMGVkMDYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMvMbO65RWHXdB7nx+t2m4xhtOtCPrux5bRbkEojcI+bVw0H01odl6rpwZHB EpZGfiLp/tI5itu8fA7fF4JW2RS1yIpBTyaYjj7E5oHaK/ocuj7rRKN4woypFooc 7636MyQWKi1zk2UWXKkiZ/ZKL76obwwin0/CWwR47T+TrfUgaMMnKBkpLGx0oRG6 d1s5MvlBWYWAr+jwX04pEJLTixVpt/uKePw5JjCVB8AA2KqsGosAxbOOFt3yI+M5 UrYWWleLADPA+jfCz/CuT4KUQxSOGmgoJYvbUPmJd+OuanIhF/x4jaJV1IpoZIQT qgAO17EoxRdvkPHvEyQd+P4Kir0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTNUJWj i5XooKbxFgkEWTuzrlS9KzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv M2Y1Y2MxY2EtMGRiYS00NGE3LThiYjMtZWZlODQ4Y2M3OWJhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HKA QDANBgkqhkiG9w0BAQsFAAOCAQEATnytf4s4iiqt7k3gafBHEW8zjsJYywx94KuO zUPZzHqpTQcsveFTrQUNdMSvuSyRTQVwQJiHoS3KR4TXLGos0yfb14y5ny8os3IQ W9Cpl97SFAth4vwZfKUrm41ik/poHkHW/sc6fEOeFFaalO5/DeL7OgnMxrHNkVcF oqJTrdqev+Z9DqAdehdmCWhdGyx4TpXdPcl0msCSDKSM8Rj/PZcKYbBvTA3RVTcW uuiasT9ncysjUBfSlAdLPy9LjcoyONcWsCamUrAUrA3qkr9U3DwzfNjhWg3LoXHL O3sgHxDaEKYMaY3Vl23pkxaVs7KLPy1LkVLl2+Qtm/9DNGjzLA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:58 2025 by rpki-client