This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/455182aa-6d74-4447-81a6-6be09732e55d.roa File: 455182aa-6d74-4447-81a6-6be09732e55d.roa (raw, json) Hash identifier: 5H7BlFGTx0umfutmsiCb6xtbv+cLgniNX8glHeqh1wc= Subject key identifier: 05:F2:B2:6A:43:68:23:DC:FA:7E:F3:50:F9:31:C4:94:3E:0D:14:2C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 75351A38EDCD3CA5F983E4ACD8B6E0A0E08C2AAB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/455182aa-6d74-4447-81a6-6be09732e55d.roa Signing time: Sat 15 Nov 2025 05:50:10 +0000 ROA not before: Sat 15 Nov 2025 05:50:10 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d01e:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:35:1a:38:ed:cd:3c:a5:f9:83:e4:ac:d8:b6:e0:a0:e0:8c:2a:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:50:10 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=e7524c21bb5d85d746ce22e98bbbe0cd6cb12577da4e9e87d2bb6176b4a08bd5, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:73:d0:f8:06:37:8d:ec:65:f2:d6:4d:71:be: a8:9f:9f:18:d4:1b:a4:6c:c4:30:17:60:11:36:c2: 00:c4:75:77:1b:f3:f6:db:25:54:06:7d:74:cb:ed: 03:9a:b7:fb:23:35:fd:52:ad:10:e7:3a:14:2c:c3: d2:de:f0:52:f0:72:84:90:71:c4:3c:1d:9d:df:60: a3:4b:ec:f3:f7:14:32:7c:d2:bb:78:ff:aa:23:2d: 72:8b:70:26:3c:4a:f7:74:1e:ba:23:be:51:9e:b3: f8:d5:a0:b5:be:9f:72:4a:9c:89:95:09:7b:10:89: 42:32:1b:9b:d8:de:e3:95:f7:70:17:11:91:14:6f: 93:fe:3e:b9:33:40:dd:9f:91:71:e0:d9:93:58:f2: 2f:57:31:9d:44:4c:e3:4f:37:9f:c4:ab:af:b7:43: 61:56:8b:92:b9:35:e8:fe:22:49:2e:c8:8d:74:55: d7:cc:97:55:1c:66:ed:33:f8:30:b9:37:19:8d:c9: 26:9c:ed:a4:b0:ba:20:89:6f:46:35:ab:b1:1f:db: c4:a2:cd:f9:b7:42:a4:53:f5:6d:28:6a:b5:1c:95: 7d:a3:d7:1d:87:74:0d:0c:21:88:a4:dd:5f:ff:5d: 9d:39:88:86:9e:fd:3c:de:3a:ba:37:1f:8a:cf:85: e6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F2:B2:6A:43:68:23:DC:FA:7E:F3:50:F9:31:C4:94:3E:0D:14:2C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/455182aa-6d74-4447-81a6-6be09732e55d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d01e:c00::/38 Signature Algorithm: sha256WithRSAEncryption 6c:1b:f0:83:20:7c:5b:f3:dd:19:3a:ab:08:08:da:aa:19:01: ac:37:f2:04:66:b0:f0:0d:5e:44:82:7b:84:47:2f:1c:c8:cb: cc:33:b0:d7:d9:d6:4c:c8:24:3c:43:44:e4:63:78:fb:a3:f6: 37:3a:b9:a4:54:3c:74:f6:15:fd:61:68:15:8c:87:bf:0a:a3: 9f:66:38:73:44:fc:05:dd:51:36:c5:44:db:13:10:81:f7:5d: 83:d6:31:68:ac:64:b0:33:77:80:ad:7a:b6:97:60:c6:83:47: 2a:88:97:b5:7b:d1:0b:b9:01:ba:ad:3b:97:c7:65:06:51:39: 46:55:18:3d:22:c1:23:de:bf:4b:49:ef:54:22:de:f2:fc:42: e9:5f:94:be:84:3e:b3:77:2d:c1:5a:58:06:a8:f7:07:b9:56: ae:07:61:ce:a5:71:62:c9:3f:73:f0:f6:31:aa:90:c5:fe:a5: ab:ea:20:cc:9d:a6:18:0d:79:fb:1a:39:05:95:a6:ae:10:90: 07:11:b5:50:79:3c:7c:61:c6:da:0b:c2:64:c6:4b:a5:09:d6: 21:62:8f:80:06:e8:5e:df:2b:27:c5:27:5b:0d:09:25:ba:78: 35:b4:75:69:f6:aa:a3:72:2f:b0:f2:7a:a8:27:8b:e6:2b:0f: 47:5d:8f:a0 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUdTUaOO3NPKX5g+Ss2LbgoOCMKqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTUwMTBaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGU3NTI0YzIxYmI1ZDg1ZDc0NmNlMjJlOThiYmJlMGNkNmNiMTI1NzdkYTRl OWU4N2QyYmI2MTc2YjRhMDhiZDUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZz0PgGN43sZfLWTXG+qJ+fGNQbpGzEMBdgETbCAMR1dxvz9tslVAZ9dMvt A5q3+yM1/VKtEOc6FCzD0t7wUvByhJBxxDwdnd9go0vs8/cUMnzSu3j/qiMtcotw JjxK93QeuiO+UZ6z+NWgtb6fckqciZUJexCJQjIbm9je45X3cBcRkRRvk/4+uTNA 3Z+RceDZk1jyL1cxnURM4083n8Srr7dDYVaLkrk16P4iSS7IjXRV18yXVRxm7TP4 MLk3GY3JJpztpLC6IIlvRjWrsR/bxKLN+bdCpFP1bShqtRyVfaPXHYd0DQwhiKTd X/9dnTmIhp79PN46ujcfis+F5kcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQF8rJq Q2gj3Pp+81D5McSUPg0ULDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NDU1MTgyYWEtNmQ3NC00NDQ3LTgxYTYtNmJlMDk3MzJlNTVkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAioF0B4M MA0GCSqGSIb3DQEBCwUAA4IBAQBsG/CDIHxb890ZOqsICNqqGQGsN/IEZrDwDV5E gnuERy8cyMvMM7DX2dZMyCQ8Q0TkY3j7o/Y3OrmkVDx09hX9YWgVjIe/CqOfZjhz RPwF3VE2xUTbExCB912D1jForGSwM3eArXq2l2DGg0cqiJe1e9ELuQG6rTuXx2UG UTlGVRg9IsEj3r9LSe9UIt7y/ELpX5S+hD6zdy3BWlgGqPcHuVauB2HOpXFiyT9z 8PYxqpDF/qWr6iDMnaYYDXn7GjkFlaauEJAHEbVQeTx8YcbaC8JkxkulCdYhYo+A Buhe3ysnxSdbDQklung1tHVp9qqjci+w8nqoJ4vmKw9HXY+g -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:01 2025 by rpki-client