This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/492ed8ca-efa4-4041-ac8d-b0a78ef05308.roa File: 492ed8ca-efa4-4041-ac8d-b0a78ef05308.roa (raw, json) Hash identifier: 66TAKeHz89SVN7DVE+t5o101Bc2e/49LwsByrqqX2QY= Subject key identifier: 69:F9:4B:4F:CC:1E:1A:1D:54:32:EC:53:DD:35:C1:09:8D:04:E0:3C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3250055783536FAC255480594011E7BC7438FA0C Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/492ed8ca-efa4-4041-ac8d-b0a78ef05308.roa Signing time: Sat 15 Nov 2025 06:10:07 +0000 ROA not before: Sat 15 Nov 2025 06:10:07 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06d:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:50:05:57:83:53:6f:ac:25:54:80:59:40:11:e7:bc:74:38:fa:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:10:07 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=ad5be9ff4603286313d5c91c9e23afeb1f34c70543f3e7c91073d80ca8a853df, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1c:c5:14:3c:ea:b4:d1:c5:46:6b:32:4d:29: e0:20:b3:dd:21:4a:0b:36:ee:d6:ad:01:e7:73:a0: ae:7b:40:e4:47:9b:ff:08:b0:5c:8e:8d:8e:f2:97: b9:26:a0:a4:8f:40:cd:9f:58:23:01:a2:be:e3:40: 0e:8e:d8:27:1f:3b:6b:1d:83:c6:68:f6:fa:79:a8: a3:1e:d1:46:0b:c1:51:21:aa:29:70:8c:d5:72:56: ab:68:91:42:2a:85:83:33:89:2e:95:2c:2c:ef:21: 39:38:97:c2:7b:b4:f7:45:45:49:9a:3e:e8:4f:a3: 53:c0:3d:1a:af:fa:af:7f:36:06:d6:5c:17:7d:f2: e2:15:9b:d6:16:ce:ba:6a:c9:11:60:5e:14:aa:55: 29:2f:0e:e8:d3:70:22:7e:8a:99:68:1c:a5:12:e6: 7a:f0:be:a3:fb:67:70:25:1f:78:94:21:6d:76:48: ba:bb:9b:9d:f2:b9:3d:d2:78:de:00:31:09:43:f0: 93:57:cc:2b:28:1a:e5:ab:ed:52:9b:d7:2c:e5:3e: b5:65:d9:2d:26:b8:53:55:61:e9:b3:1f:82:0e:8d: c3:7c:a0:68:14:3f:fa:83:de:13:89:8b:9d:7f:d8: eb:e5:24:98:95:4b:52:92:1e:8e:9c:91:e3:21:18: 68:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F9:4B:4F:CC:1E:1A:1D:54:32:EC:53:DD:35:C1:09:8D:04:E0:3C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/492ed8ca-efa4-4041-ac8d-b0a78ef05308.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06d:4000::/40 Signature Algorithm: sha256WithRSAEncryption 56:d9:40:90:35:c9:97:51:a7:07:1b:c5:d9:19:e5:ec:c5:28: ab:4a:c8:41:28:a8:b0:c4:4a:4b:30:ff:52:b9:63:a6:b6:ca: 38:07:7e:c0:5c:be:bf:3e:c2:ca:24:4a:7d:0b:db:9f:bc:0d: c8:ba:57:06:63:9d:76:69:2b:66:f3:7b:08:c2:d2:61:46:69: ba:b3:05:d2:b8:c1:08:92:f7:36:76:11:c9:61:25:15:53:7a: 1b:f8:e6:2e:ca:b5:6c:c5:6b:3b:fb:64:7d:a9:4e:6f:fc:64: 70:73:50:dd:04:e3:cc:e8:bf:7b:a9:26:51:e3:b5:6e:51:6a: 8a:02:f9:89:66:13:48:c0:42:09:cc:d2:e3:7e:eb:7b:17:74: 20:d5:f3:37:22:af:31:ea:1b:3e:83:94:78:fc:06:d0:11:fc: 6d:a2:a9:10:7b:7a:9c:20:90:ae:66:50:5a:a0:f3:b7:df:f0: da:da:6e:66:2f:c4:22:81:fd:06:d5:02:47:cf:3a:b5:76:59: 9c:6e:5b:ac:b6:b8:07:90:f4:d2:94:7a:5c:45:a7:c9:ad:21: d7:16:d3:65:eb:8a:cf:de:f9:d6:42:f1:cc:9b:30:73:24:6c: cd:bd:9b:4c:26:4b:74:66:48:21:01:fb:26:9f:ed:2d:a7:32: 35:36:20:60 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUMlAFV4NTb6wlVIBZQBHnvHQ4+gwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjEwMDdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGFkNWJlOWZmNDYwMzI4NjMxM2Q1YzkxYzllMjNhZmViMWYzNGM3MDU0M2Yz ZTdjOTEwNzNkODBjYThhODUzZGYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN4cxRQ86rTRxUZrMk0p4CCz3SFKCzbu1q0B53OgrntA5Eeb/wiwXI6NjvKX uSagpI9AzZ9YIwGivuNADo7YJx87ax2Dxmj2+nmoox7RRgvBUSGqKXCM1XJWq2iR QiqFgzOJLpUsLO8hOTiXwnu090VFSZo+6E+jU8A9Gq/6r382BtZcF33y4hWb1hbO umrJEWBeFKpVKS8O6NNwIn6KmWgcpRLmevC+o/tncCUfeJQhbXZIurubnfK5PdJ4 3gAxCUPwk1fMKyga5avtUpvXLOU+tWXZLSa4U1Vh6bMfgg6Nw3ygaBQ/+oPeE4mL nX/Y6+UkmJVLUpIejpyR4yEYaFcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRp+UtP zB4aHVQy7FPdNcEJjQTgPDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NDkyZWQ4Y2EtZWZhNC00MDQxLWFjOGQtYjBhNzhlZjA1MzA4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0G1A MA0GCSqGSIb3DQEBCwUAA4IBAQBW2UCQNcmXUacHG8XZGeXsxSirSshBKKiwxEpL MP9SuWOmtso4B37AXL6/PsLKJEp9C9ufvA3IulcGY512aStm83sIwtJhRmm6swXS uMEIkvc2dhHJYSUVU3ob+OYuyrVsxWs7+2R9qU5v/GRwc1DdBOPM6L97qSZR47Vu UWqKAvmJZhNIwEIJzNLjfut7F3Qg1fM3Iq8x6hs+g5R4/AbQEfxtoqkQe3qcIJCu ZlBaoPO33/Da2m5mL8Qigf0G1QJHzzq1dlmcblustrgHkPTSlHpcRafJrSHXFtNl 64rP3vnWQvHMmzBzJGzNvZtMJkt0ZkghAfsmn+0tpzI1NiBg -----END CERTIFICATE-----Generated at Sat Dec 6 10:55:25 2025 by rpki-client