This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/455a2efe-3411-42cf-a196-73c25845d48c.roa File: 455a2efe-3411-42cf-a196-73c25845d48c.roa (raw, json) Hash identifier: RKKfyqE6AavrKDlnkdPgBpqsOp22ysb9/YttwOR6myE= Subject key identifier: A2:3E:BE:16:5F:FC:4F:DC:C1:CF:93:0E:21:38:57:D4:0E:19:48:47 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 177448683B48DB130237B655B3F11D8CF802A6F4 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/455a2efe-3411-42cf-a196-73c25845d48c.roa Signing time: Sat 15 Nov 2025 06:10:45 +0000 ROA not before: Sat 15 Nov 2025 06:10:45 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d058:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:74:48:68:3b:48:db:13:02:37:b6:55:b3:f1:1d:8c:f8:02:a6:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:10:45 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=61659bc096504c76f4e89365ea1580b3140bdcae38b0ca588ae216b27a3bcff7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:27:50:83:6d:0b:c0:cd:c1:a0:76:52:c6:2f: b6:ca:24:c9:a0:b6:2f:73:69:7e:63:c4:ba:b0:11: 9c:f6:8d:99:fe:dc:58:47:f5:47:36:9c:13:bd:70: 42:10:5b:42:8c:4a:b6:51:97:5f:bf:84:8f:77:6b: d0:9a:98:15:ee:1d:1e:e1:fa:1e:49:4c:6c:39:fc: e5:e7:14:df:d5:12:6e:e7:06:7c:f2:02:2e:58:04: 0c:02:1b:62:b3:89:72:11:de:08:fe:87:46:55:11: ea:02:1b:78:b3:2a:b8:9f:59:57:16:46:d4:ba:bc: 70:6f:19:12:62:d1:7f:70:0c:b9:2f:b9:c1:22:93: 5e:f6:28:eb:5b:7d:b0:ea:a9:60:35:80:fc:35:ed: 37:fe:18:b2:82:b4:15:72:a2:61:bb:bc:04:24:1c: 3e:32:ca:4d:01:d3:d6:66:59:55:56:2d:39:32:cc: 2e:c8:7b:72:a9:47:eb:57:77:62:47:42:1c:65:ef: 65:f4:17:f9:22:b8:2b:96:1c:d2:86:86:e3:f0:be: 7b:36:af:f4:00:3b:8c:ee:9e:42:20:00:cd:ee:63: 00:d5:00:9d:0b:50:35:87:d1:a6:67:5d:24:ee:02: 05:6f:12:33:aa:7c:d8:b5:b4:42:13:dc:52:c5:18: ee:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:3E:BE:16:5F:FC:4F:DC:C1:CF:93:0E:21:38:57:D4:0E:19:48:47 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/455a2efe-3411-42cf-a196-73c25845d48c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d058:2000::/40 Signature Algorithm: sha256WithRSAEncryption 72:d4:60:84:fd:85:f4:6c:a9:3a:c0:8f:22:fa:cf:53:36:3a: 03:76:46:ef:1d:37:13:8c:8b:57:f5:27:90:1f:bf:ec:73:25: 3e:bb:3d:c0:44:af:a1:47:bb:15:f7:cf:53:f8:9a:e5:f4:2d: ad:5f:19:dd:20:51:d7:76:30:a5:b3:5d:a3:89:08:98:38:6a: fb:61:09:2d:78:aa:37:df:1f:4c:33:8a:2e:cf:2e:8c:c7:da: a2:40:44:4c:f7:01:6e:4e:f9:d5:9a:3c:50:bf:eb:c4:59:80: 2e:75:ee:0e:29:0b:56:86:c9:44:5b:a6:f8:55:1c:25:14:6e: 66:8d:50:5e:d3:df:51:33:bf:33:43:e0:d2:e9:38:f0:ca:6c: a0:76:80:48:b7:74:d3:22:27:60:df:8c:fd:e0:75:cd:1b:02: a3:58:3f:ff:ed:6a:58:2d:74:8d:54:86:85:69:29:0c:49:04: 07:dd:8a:ee:f6:53:13:d7:76:99:82:93:2b:8a:bb:95:03:5d: 44:cc:eb:b6:6b:5b:b9:09:1e:d3:4e:2f:bb:40:0d:87:86:25: b8:72:e7:ce:38:8e:f7:48:d9:01:b8:0c:7d:21:85:dc:5e:ad: 4f:a5:ce:ab:86:f0:46:37:77:0b:a6:ed:cd:84:d0:86:e2:55: 7a:8c:01:6d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUF3RIaDtI2xMCN7ZVs/EdjPgCpvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjEwNDVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDYxNjU5YmMwOTY1MDRjNzZmNGU4OTM2NWVhMTU4MGIzMTQwYmRjYWUzOGIw Y2E1ODhhZTIxNmIyN2EzYmNmZjcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOsnUINtC8DNwaB2UsYvtsokyaC2L3NpfmPEurARnPaNmf7cWEf1RzacE71w QhBbQoxKtlGXX7+Ej3dr0JqYFe4dHuH6HklMbDn85ecU39USbucGfPICLlgEDAIb YrOJchHeCP6HRlUR6gIbeLMquJ9ZVxZG1Lq8cG8ZEmLRf3AMuS+5wSKTXvYo61t9 sOqpYDWA/DXtN/4YsoK0FXKiYbu8BCQcPjLKTQHT1mZZVVYtOTLMLsh7cqlH61d3 YkdCHGXvZfQX+SK4K5Yc0oaG4/C+ezav9AA7jO6eQiAAze5jANUAnQtQNYfRpmdd JO4CBW8SM6p82LW0QhPcUsUY7j8CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSiPr4W X/xP3MHPkw4hOFfUDhlIRzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NDU1YTJlZmUtMzQxMS00MmNmLWExOTYtNzNjMjU4NDVkNDhjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0Fgg MA0GCSqGSIb3DQEBCwUAA4IBAQBy1GCE/YX0bKk6wI8i+s9TNjoDdkbvHTcTjItX 9SeQH7/scyU+uz3ARK+hR7sV989T+Jrl9C2tXxndIFHXdjCls12jiQiYOGr7YQkt eKo33x9MM4ouzy6Mx9qiQERM9wFuTvnVmjxQv+vEWYAude4OKQtWhslEW6b4VRwl FG5mjVBe099RM78zQ+DS6TjwymygdoBIt3TTIidg34z94HXNGwKjWD//7WpYLXSN VIaFaSkMSQQH3Yru9lMT13aZgpMriruVA11EzOu2a1u5CR7TTi+7QA2HhiW4cufO OI73SNkBuAx9IYXcXq1Ppc6rhvBGN3cLpu3NhNCG4lV6jAFt -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:06 2025 by rpki-client