This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/46510026-3bc6-4802-9977-5875dcaffcac.roa File: 46510026-3bc6-4802-9977-5875dcaffcac.roa (raw, json) Hash identifier: BR7gumcUN6f/QdM/wnVWIbQbtun7e8TyM54+6FUUoUc= Subject key identifier: C1:7B:3D:ED:83:E6:5A:69:DD:60:9A:12:51:E9:5D:87:3F:C1:DA:69 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 44C88170985E3F8B7E2B87A0021B120049054B88 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/46510026-3bc6-4802-9977-5875dcaffcac.roa Signing time: Sat 06 Dec 2025 04:00:04 +0000 ROA not before: Sat 06 Dec 2025 04:00:04 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d035:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:c8:81:70:98:5e:3f:8b:7e:2b:87:a0:02:1b:12:00:49:05:4b:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 6 04:00:04 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=27338fd79fd108260552d32d3cb5e62c28cad0bd8a324900a0e33c5d314dc6b3, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a6:eb:ad:da:18:6a:f3:3a:3e:a3:6a:70:a2: b9:80:57:e4:07:00:15:74:c1:fa:18:19:88:7a:64: 55:8f:7a:c5:15:30:a4:8b:56:27:cf:48:f6:20:e0: 0b:02:cb:6c:d9:d0:2d:cd:12:3a:5a:1b:93:cd:db: 34:2f:92:dd:42:5b:48:d8:5b:5f:f2:6c:5b:db:19: 07:c5:4e:56:74:42:54:63:ba:9b:83:d3:67:e5:50: 59:fc:bb:61:f9:5f:33:4c:79:7a:b7:91:b2:59:f4: bb:79:1d:ab:34:6a:6b:10:8a:b4:b2:c9:8f:c6:7e: 53:c6:da:29:b6:4f:9e:44:1d:eb:68:97:83:fb:61: 2e:e3:9c:a1:e6:bb:0c:d6:6e:bd:c7:1f:0d:0b:7e: cd:a9:f8:18:03:3f:32:26:4f:5e:d4:d1:ea:e3:a6: e3:e0:85:71:55:60:63:c0:37:64:1b:ad:61:02:7d: 0f:b8:d0:78:06:18:7d:93:19:ca:0f:14:bb:79:d4: c3:e4:17:58:6c:bc:94:ab:e1:71:b5:b6:6a:52:92: d4:cf:c2:1f:34:1c:bc:43:94:fb:bb:1c:39:24:6d: 58:29:bc:d7:65:64:57:26:5e:78:32:96:fb:f5:64: df:9d:bc:98:a3:c6:08:67:e5:77:a0:e1:1d:58:77: 80:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7B:3D:ED:83:E6:5A:69:DD:60:9A:12:51:E9:5D:87:3F:C1:DA:69 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/46510026-3bc6-4802-9977-5875dcaffcac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d035:a000::/40 Signature Algorithm: sha256WithRSAEncryption 20:bf:44:ac:67:d4:75:fa:34:c3:df:b3:42:7e:18:ac:b1:76: 33:1c:d8:6c:35:06:e8:2c:21:52:65:ee:1a:46:82:96:23:cc: f6:3a:bd:53:5e:33:b1:ac:a2:89:60:b7:af:d2:09:b2:92:12: 60:fa:c3:7e:7e:21:a2:2b:df:6a:ff:26:dd:47:10:8c:6d:b0: f9:b0:07:63:d3:0b:e1:12:b2:50:85:c1:ae:cb:d7:38:bd:51: cc:52:15:16:96:83:64:1b:bb:fd:fb:ae:df:02:f9:07:55:8a: 73:01:49:d6:4b:4c:80:3e:a0:82:35:53:e4:3c:fb:b0:15:34: 3d:6a:94:e2:fd:f0:f8:6c:cf:39:98:08:77:eb:19:5d:0a:9c: 2a:d8:35:80:7c:1b:1c:57:c7:1b:f7:fc:de:39:c6:b2:b4:d4: 2a:a4:ba:18:93:11:ec:fa:bb:2f:f7:96:53:6b:ab:76:63:de: 8b:4e:73:0c:dd:66:c4:91:ba:91:b1:05:a0:96:23:1d:52:a1: c7:ce:94:9f:45:e8:10:57:76:9a:4c:61:46:eb:76:0d:a2:46: 07:c8:2e:b5:17:de:aa:fe:03:68:c9:50:ad:99:f7:a4:b2:dc: bc:04:04:42:de:63:26:97:09:48:23:2a:92:f2:2a:3e:48:ed: a7:10:7d:1e -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIURMiBcJheP4t+K4egAhsSAEkFS4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDYwNDAwMDRaFw0yNjAzMDYyMzU5NTlaMHoxSTBHBgNV BAUTQDI3MzM4ZmQ3OWZkMTA4MjYwNTUyZDMyZDNjYjVlNjJjMjhjYWQwYmQ4YTMy NDkwMGEwZTMzYzVkMzE0ZGM2YjMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKam663aGGrzOj6janCiuYBX5AcAFXTB+hgZiHpkVY96xRUwpItWJ89I9iDg CwLLbNnQLc0SOlobk83bNC+S3UJbSNhbX/JsW9sZB8VOVnRCVGO6m4PTZ+VQWfy7 YflfM0x5ereRsln0u3kdqzRqaxCKtLLJj8Z+U8baKbZPnkQd62iXg/thLuOcoea7 DNZuvccfDQt+zan4GAM/MiZPXtTR6uOm4+CFcVVgY8A3ZButYQJ9D7jQeAYYfZMZ yg8Uu3nUw+QXWGy8lKvhcbW2alKS1M/CHzQcvEOU+7scOSRtWCm812VkVyZeeDKW +/Vk3528mKPGCGfld6DhHVh3gGMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTBez3t g+Zaad1gmhJR6V2HP8HaaTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NDY1MTAwMjYtM2JjNi00ODAyLTk5NzctNTg3NWRjYWZmY2FjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DWg MA0GCSqGSIb3DQEBCwUAA4IBAQAgv0SsZ9R1+jTD37NCfhissXYzHNhsNQboLCFS Ze4aRoKWI8z2Or1TXjOxrKKJYLev0gmykhJg+sN+fiGiK99q/ybdRxCMbbD5sAdj 0wvhErJQhcGuy9c4vVHMUhUWloNkG7v9+67fAvkHVYpzAUnWS0yAPqCCNVPkPPuw FTQ9apTi/fD4bM85mAh36xldCpwq2DWAfBscV8cb9/zeOcaytNQqpLoYkxHs+rsv 95ZTa6t2Y96LTnMM3WbEkbqRsQWgliMdUqHHzpSfRegQV3aaTGFG63YNokYHyC61 F96q/gNoyVCtmfeksty8BARC3mMmlwlIIyqS8io+SO2nEH0e -----END CERTIFICATE-----Generated at Sat Dec 6 12:46:45 2025 by rpki-client