This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/452f19af-8187-465e-9ab8-4e678c11315e.roa File: 452f19af-8187-465e-9ab8-4e678c11315e.roa (raw, json) Hash identifier: GL64Nhl3NdtnRFcnzgUcgTN5oir2b7+0AHWtlXK4Yi8= Subject key identifier: 6B:E9:80:51:7C:76:46:E5:09:26:00:5E:F7:F6:F1:69:26:26:0E:85 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 51A2401A473ECF2B21D23DA0C1EFB175122D0613 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/452f19af-8187-465e-9ab8-4e678c11315e.roa Signing time: Sat 15 Nov 2025 06:30:37 +0000 ROA not before: Sat 15 Nov 2025 06:30:37 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d02b::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:a2:40:1a:47:3e:cf:2b:21:d2:3d:a0:c1:ef:b1:75:12:2d:06:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:30:37 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=bf6cd4b40d2ac27cc4755def98d33530471fa9a5e455550aa43f47a10aca0747, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1a:eb:06:f7:d3:9d:da:6f:3e:e8:61:a4:0e: 31:6a:e0:af:82:b4:d3:ce:18:a0:40:76:35:f7:40: 76:8f:c5:1b:1d:e5:88:06:a5:f7:a3:2f:9e:58:d4: e9:f1:92:f2:65:4f:89:ae:d6:46:87:04:42:fb:21: d6:7f:fc:a8:aa:f2:16:ad:ef:5b:be:c6:bb:ef:47: 0a:9b:65:f7:1e:53:b8:32:e2:7f:58:31:56:f5:4c: 25:f9:1a:8b:73:f3:7d:9f:36:03:48:58:fe:2e:4c: e1:52:b4:f9:8c:64:c0:60:ff:21:e3:08:fc:31:5d: cc:b3:8a:37:18:7f:27:37:e5:4b:6a:07:e7:11:8e: b5:48:71:61:ae:59:80:00:95:01:e5:f5:b5:da:e6: a0:d3:48:ed:00:59:33:c8:63:38:40:81:90:a2:c8: 79:91:59:ea:31:30:a1:27:92:a4:21:85:c0:01:65: f8:85:9a:f4:64:4d:1b:27:75:07:68:e6:6d:f8:98: 6c:37:1b:e2:fb:1d:6a:10:5a:8a:f2:10:3e:71:ac: 1f:60:a8:6e:0e:1f:11:f1:d7:05:fe:d2:d6:9a:9e: 70:12:28:95:4c:9a:83:c1:f2:9c:b8:77:c1:03:f1: f2:39:e9:18:09:22:cb:bb:de:05:33:8b:06:98:77: 3d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E9:80:51:7C:76:46:E5:09:26:00:5E:F7:F6:F1:69:26:26:0E:85 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/452f19af-8187-465e-9ab8-4e678c11315e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d02b::/37 Signature Algorithm: sha256WithRSAEncryption 84:0d:44:28:68:9f:a7:43:e9:79:d3:f2:3f:3d:fa:85:59:31: b7:ec:17:92:f3:53:48:8b:02:7b:c4:d2:3a:d0:76:07:12:90: 40:d5:2f:1f:95:05:45:06:b3:ab:fc:35:9a:1e:9e:48:fa:17: 59:5f:32:98:07:a0:a3:89:f6:1a:6c:52:c4:39:b4:30:f6:47: 0a:b4:d5:76:10:2a:1a:29:48:c8:b5:d3:f4:21:16:cc:e2:72: ff:e4:7d:1b:74:a1:56:d7:98:48:3f:79:d0:4b:99:aa:f9:2c: ad:68:37:63:de:eb:07:3e:73:a5:f2:66:49:32:ec:2e:a1:d0: f1:90:b6:67:c5:09:ae:e0:42:9e:1c:57:9f:5f:07:08:8e:6a: d2:02:df:15:9b:16:6d:60:f4:72:83:bb:99:b8:1c:65:7e:da: 70:80:77:bf:b0:70:2a:5f:e5:9a:9c:0a:76:da:60:b3:5e:c5: 21:b3:a3:9b:6a:fb:63:d6:df:53:aa:9a:0b:a5:b0:31:6a:cb: 5f:d4:22:7f:d8:3a:45:9f:c6:fd:3c:81:34:bb:23:2a:07:13: a8:39:21:0c:92:7b:6c:0c:a4:d1:df:73:c0:e3:6b:86:0e:f4: d8:ac:52:7c:b0:77:a2:f1:87:6d:09:d0:78:3f:4b:87:3d:92: cf:13:b3:d3 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUUaJAGkc+zysh0j2gwe+xdRItBhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjMwMzdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGJmNmNkNGI0MGQyYWMyN2NjNDc1NWRlZjk4ZDMzNTMwNDcxZmE5YTVlNDU1 NTUwYWE0M2Y0N2ExMGFjYTA3NDcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQa6wb3053abz7oYaQOMWrgr4K0084YoEB2NfdAdo/FGx3liAal96MvnljU 6fGS8mVPia7WRocEQvsh1n/8qKryFq3vW77Gu+9HCptl9x5TuDLif1gxVvVMJfka i3PzfZ82A0hY/i5M4VK0+YxkwGD/IeMI/DFdzLOKNxh/JzflS2oH5xGOtUhxYa5Z gACVAeX1tdrmoNNI7QBZM8hjOECBkKLIeZFZ6jEwoSeSpCGFwAFl+IWa9GRNGyd1 B2jmbfiYbDcb4vsdahBaivIQPnGsH2Cobg4fEfHXBf7S1pqecBIolUyag8HynLh3 wQPx8jnpGAkiy7veBTOLBph3PZMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRr6YBR fHZG5QkmAF739vFpJiYOhTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NDUyZjE5YWYtODE4Ny00NjVlLTlhYjgtNGU2NzhjMTEzMTVlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAyoF0CsA MA0GCSqGSIb3DQEBCwUAA4IBAQCEDUQoaJ+nQ+l50/I/PfqFWTG37BeS81NIiwJ7 xNI60HYHEpBA1S8flQVFBrOr/DWaHp5I+hdZXzKYB6CjifYabFLEObQw9kcKtNV2 ECoaKUjItdP0IRbM4nL/5H0bdKFW15hIP3nQS5mq+SytaDdj3usHPnOl8mZJMuwu odDxkLZnxQmu4EKeHFefXwcIjmrSAt8VmxZtYPRyg7uZuBxlftpwgHe/sHAqX+Wa nAp22mCzXsUhs6Obavtj1t9TqpoLpbAxastf1CJ/2DpFn8b9PIE0uyMqBxOoOSEM kntsDKTR33PA42uGDvTYrFJ8sHei8YdtCdB4P0uHPZLPE7PT -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:09 2025 by rpki-client