This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/44d8b686-7db5-4309-8f09-3af611be3753.roa File: 44d8b686-7db5-4309-8f09-3af611be3753.roa (raw, json) Hash identifier: EXvzhZm0A4ABg+9TgBB+CCqUvXdt9ZNolAebw+8NvxE= Subject key identifier: C0:CC:26:BC:B2:04:E5:65:D7:63:93:88:7F:B6:0B:45:3A:5E:B7:B8 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 72F4F157FFA212FC5962BFF89BE7731D70F71B66 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/44d8b686-7db5-4309-8f09-3af611be3753.roa Signing time: Sat 15 Nov 2025 05:20:14 +0000 ROA not before: Sat 15 Nov 2025 05:20:14 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07a:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f4:f1:57:ff:a2:12:fc:59:62:bf:f8:9b:e7:73:1d:70:f7:1b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:20:14 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=8e44166e4d9197f954b2a886a5ed9dd74d257dceb1260c43d3c88fba66d8bcd2, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8e:5b:ed:17:49:8a:54:88:7c:28:30:09:91: 69:24:17:4b:c0:d8:c4:28:f4:28:4b:8d:13:04:53: 7b:f3:f9:fd:61:a5:74:c7:ba:7a:0f:69:9d:da:8a: ff:39:84:67:e3:f9:1a:45:0e:5c:4d:98:6b:42:9b: 01:62:c2:08:5f:2d:4e:de:92:84:7e:a7:54:41:b0: 0b:eb:68:0d:2e:2b:46:57:a0:9a:7f:44:78:26:f5: 91:a7:10:f8:ac:98:7a:a6:16:39:44:8c:cf:4c:91: f3:25:b1:02:1c:06:ca:26:1b:e1:9e:38:72:5b:54: 70:d9:89:cc:90:e6:21:cc:e3:9a:b6:c0:c6:cb:24: 7d:c4:c9:eb:b9:86:32:f3:ef:cc:8a:5e:45:44:d2: ac:83:ea:99:22:e2:6d:ac:bb:17:f1:8c:10:b4:7b: 78:47:15:db:ef:54:a7:68:98:4a:d5:54:f2:b2:7e: 7e:17:35:85:b7:cf:1d:cf:1b:92:17:8e:41:63:22: ce:c1:40:81:53:b8:93:d6:fe:ec:46:da:08:80:d9: 25:d2:6a:66:dd:16:92:14:d5:05:c3:68:ed:0b:ed: bd:34:9d:c6:2e:85:7b:fa:a7:ce:09:25:d4:6e:92: fc:f1:18:90:a5:f4:b1:36:d3:8b:aa:a7:51:a6:71: a9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CC:26:BC:B2:04:E5:65:D7:63:93:88:7F:B6:0B:45:3A:5E:B7:B8 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/44d8b686-7db5-4309-8f09-3af611be3753.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07a:c000::/40 Signature Algorithm: sha256WithRSAEncryption 9a:f8:e5:7b:b8:5b:6a:88:de:4d:d0:e2:dc:b3:89:bb:25:97: 71:e1:36:13:bf:5f:b9:74:2c:53:ef:01:a1:d7:3d:5b:77:c1: af:14:b1:04:92:ab:87:b7:ab:ad:aa:66:02:b4:09:b7:c0:0e: 2c:5f:84:1c:fe:76:60:e7:b1:f7:f6:6e:b6:61:d8:1d:5d:6c: ad:33:cd:6b:9f:8e:00:77:67:49:06:35:bc:35:b0:94:65:48: 1c:28:cb:58:67:38:30:f0:1e:39:3f:31:45:ec:c0:11:49:fe: bf:3e:0e:50:44:2c:bf:31:c0:bf:e7:3b:9a:31:ee:f1:07:8c: 2a:ba:b5:28:13:96:41:db:5e:48:82:1c:a4:b8:39:e2:bd:71: 3c:25:25:f7:3d:b2:c4:90:2e:27:35:1b:e7:6c:62:6d:af:ac: e0:e7:24:56:f7:d2:03:bb:19:f4:7a:0f:5f:59:9c:9a:f8:ec: 79:4a:b1:3d:16:b9:23:e3:e3:54:0d:5d:20:22:85:5a:84:8f: 16:24:75:c6:1c:26:67:63:c3:4f:bb:d4:3a:2d:87:0c:10:f4: 23:8a:4d:44:0c:be:2c:dd:01:f3:9b:d7:33:fb:34:cc:3d:29: ef:3a:d7:c5:2c:77:be:a3:bb:18:52:20:b6:80:16:ea:aa:4f: e8:bd:42:e7 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUcvTxV/+iEvxZYr/4m+dzHXD3G2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTIwMTRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDhlNDQxNjZlNGQ5MTk3Zjk1NGIyYTg4NmE1ZWQ5ZGQ3NGQyNTdkY2ViMTI2 MGM0M2QzYzg4ZmJhNjZkOGJjZDIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCOW+0XSYpUiHwoMAmRaSQXS8DYxCj0KEuNEwRTe/P5/WGldMe6eg9pndqK /zmEZ+P5GkUOXE2Ya0KbAWLCCF8tTt6ShH6nVEGwC+toDS4rRlegmn9EeCb1kacQ +KyYeqYWOUSMz0yR8yWxAhwGyiYb4Z44cltUcNmJzJDmIczjmrbAxsskfcTJ67mG MvPvzIpeRUTSrIPqmSLibay7F/GMELR7eEcV2+9Up2iYStVU8rJ+fhc1hbfPHc8b kheOQWMizsFAgVO4k9b+7EbaCIDZJdJqZt0WkhTVBcNo7QvtvTSdxi6Fe/qnzgkl 1G6S/PEYkKX0sTbTi6qnUaZxqcECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTAzCa8 sgTlZddjk4h/tgtFOl63uDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NDRkOGI2ODYtN2RiNS00MzA5LThmMDktM2FmNjExYmUzNzUzLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HrA MA0GCSqGSIb3DQEBCwUAA4IBAQCa+OV7uFtqiN5N0OLcs4m7JZdx4TYTv1+5dCxT 7wGh1z1bd8GvFLEEkquHt6utqmYCtAm3wA4sX4Qc/nZg57H39m62YdgdXWytM81r n44Ad2dJBjW8NbCUZUgcKMtYZzgw8B45PzFF7MARSf6/Pg5QRCy/McC/5zuaMe7x B4wqurUoE5ZB215IghykuDnivXE8JSX3PbLEkC4nNRvnbGJtr6zg5yRW99IDuxn0 eg9fWZya+Ox5SrE9Frkj4+NUDV0gIoVahI8WJHXGHCZnY8NPu9Q6LYcMEPQjik1E DL4s3QHzm9cz+zTMPSnvOtfFLHe+o7sYUiC2gBbqqk/ovULn -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:43 2025 by rpki-client