This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/493f1269-3ba4-4dea-829a-985dda6749ee.roa File: 493f1269-3ba4-4dea-829a-985dda6749ee.roa (raw, json) Hash identifier: 6NH2Hkb7gT4V5NFYHu/JMrxCEZqAlKn6mIFoYC/b/0Q= Subject key identifier: 1B:48:1C:47:18:B7:EA:30:21:D7:53:4D:A9:AE:F1:27:DD:76:24:71 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 38E160EC22C079C9179012C9437717B7824F3C87 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/493f1269-3ba4-4dea-829a-985dda6749ee.roa Signing time: Wed 10 Dec 2025 05:20:04 +0000 ROA not before: Wed 10 Dec 2025 05:20:04 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d075::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:e1:60:ec:22:c0:79:c9:17:90:12:c9:43:77:17:b7:82:4f:3c:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:20:04 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=97f4970f48caac5801a3abc2959cb09db233ed28fe00aae1d46d30f48a07dceb, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:67:01:f5:6b:59:ab:de:3f:e3:b4:4d:30:fc: 8d:61:5a:02:24:2e:0b:25:75:69:92:11:12:29:43: a0:2b:d5:21:ef:51:d5:33:df:6a:f9:b3:7d:5b:22: 90:42:8a:96:8a:31:48:c9:9f:0d:23:86:ef:62:ee: 40:6f:19:8e:dd:4a:86:d3:8d:c9:45:26:16:90:66: 0a:ec:e6:39:10:2b:a9:09:a8:bc:7f:cc:f3:12:39: 7b:8f:11:18:8e:47:d9:d8:6f:19:89:fd:c7:ec:1b: 25:31:88:ae:05:a8:45:65:1c:82:27:88:b3:bd:6b: 0e:97:ef:72:eb:e9:11:cb:75:d2:b2:ca:21:f9:3f: f4:eb:04:a1:54:b0:0c:56:73:9c:80:ba:b4:5b:d7: 3b:54:14:f5:ce:d3:58:b4:06:0d:8e:ad:af:72:55: 53:fd:2e:6c:7f:bf:76:52:ab:59:d3:c0:37:be:86: 45:2f:61:c8:c6:1b:49:ba:34:ec:1d:45:e1:75:70: 02:b1:96:69:93:3c:a3:92:be:57:ca:fe:9e:fb:54: af:e3:cd:82:ba:a8:68:28:e6:e8:91:71:e6:ca:33: 53:25:56:62:99:f0:f6:f6:ea:96:14:ea:bb:46:32: 02:1b:94:a3:30:9a:bb:a4:5f:80:c3:c8:a5:52:d7: e7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:48:1C:47:18:B7:EA:30:21:D7:53:4D:A9:AE:F1:27:DD:76:24:71 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/493f1269-3ba4-4dea-829a-985dda6749ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d075::/32 Signature Algorithm: sha256WithRSAEncryption 3a:d5:27:27:31:c2:35:4e:97:bf:8e:3f:1c:10:0f:d9:00:41: 01:4b:da:bc:e3:04:c2:26:16:c1:a8:07:1f:a3:7f:57:39:c3: f0:13:bf:37:66:02:33:1c:29:b3:b2:ce:5d:1c:5b:c1:33:af: 58:29:bb:4b:83:5d:b7:29:91:6a:69:bc:f8:a5:93:39:f7:25: 36:f5:68:a6:f5:24:01:63:1e:2b:01:18:1e:89:7c:88:09:d7: 3d:1d:d7:23:27:23:08:ec:b1:e9:31:9d:76:75:56:64:51:b1: c1:16:76:30:a5:4c:ca:a0:b6:14:7f:66:99:3f:a5:a9:df:97: ef:25:80:40:14:94:1f:a5:eb:8a:3b:32:51:e9:6d:6a:f8:9a: d3:33:e6:79:60:41:31:4d:cf:79:65:d7:d1:db:cc:08:04:d6: d3:07:ad:cb:b3:6b:62:5d:37:a5:68:e9:a9:48:f2:9a:f2:85: 2a:c6:18:29:f3:a5:f0:c0:42:9e:7f:7d:99:c0:b8:e1:ef:d9: 81:6d:55:a2:db:48:28:30:ff:e4:36:8c:ea:77:2e:15:f5:8b: 1e:c2:bb:8e:ff:42:e6:47:bb:0e:29:4b:fa:fb:3c:3c:4a:1e: 8e:02:ec:c6:41:d5:68:16:e4:33:46:ce:14:52:2a:92:6e:8e: ae:30:ae:3a -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUOOFg7CLAeckXkBLJQ3cXt4JPPIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTIwMDRaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDk3ZjQ5NzBmNDhjYWFjNTgwMWEzYWJjMjk1OWNiMDlkYjIzM2VkMjhmZTAw YWFlMWQ0NmQzMGY0OGEwN2RjZWIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1nAfVrWaveP+O0TTD8jWFaAiQuCyV1aZIREilDoCvVIe9R1TPfavmzfVsi kEKKlooxSMmfDSOG72LuQG8Zjt1KhtONyUUmFpBmCuzmORArqQmovH/M8xI5e48R GI5H2dhvGYn9x+wbJTGIrgWoRWUcgieIs71rDpfvcuvpEct10rLKIfk/9OsEoVSw DFZznIC6tFvXO1QU9c7TWLQGDY6tr3JVU/0ubH+/dlKrWdPAN76GRS9hyMYbSbo0 7B1F4XVwArGWaZM8o5K+V8r+nvtUr+PNgrqoaCjm6JFx5sozUyVWYpnw9vbqlhTq u0YyAhuUozCau6RfgMPIpVLX59kCAwEAAaOCAiIwggIeMB0GA1UdDgQWBBQbSBxH GLfqMCHXU02prvEn3XYkcTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NDkzZjEyNjktM2JhNC00ZGVhLTgyOWEtOTg1ZGRhNjc0OWVlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoF0HUw DQYJKoZIhvcNAQELBQADggEBADrVJycxwjVOl7+OPxwQD9kAQQFL2rzjBMImFsGo Bx+jf1c5w/ATvzdmAjMcKbOyzl0cW8Ezr1gpu0uDXbcpkWppvPilkzn3JTb1aKb1 JAFjHisBGB6JfIgJ1z0d1yMnIwjssekxnXZ1VmRRscEWdjClTMqgthR/Zpk/panf l+8lgEAUlB+l64o7MlHpbWr4mtMz5nlgQTFNz3ll19HbzAgE1tMHrcuza2JdN6Vo 6alI8pryhSrGGCnzpfDAQp5/fZnAuOHv2YFtVaLbSCgw/+Q2jOp3LhX1ix7Cu47/ QuZHuw4pS/r7PDxKHo4C7MZB1WgW5DNGzhRSKpJujq4wrjo= -----END CERTIFICATE-----Generated at Mon Dec 15 15:29:24 2025 by rpki-client