This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/493f1269-3ba4-4dea-829a-985dda6749ee.roa File: 493f1269-3ba4-4dea-829a-985dda6749ee.roa (raw, json) Hash identifier: OuFId2G2w8S6wjRN39GTTtnpl9O/E3AGIXkvJNz+hqs= Subject key identifier: 28:82:E2:77:5A:D1:4B:95:2D:85:03:DE:C0:BC:29:48:A2:BC:7B:2B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 14A5E5A78D0F0E4210EDB3B5564ECE33376142DF Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/493f1269-3ba4-4dea-829a-985dda6749ee.roa Signing time: Sat 15 Nov 2025 05:30:31 +0000 ROA not before: Sat 15 Nov 2025 05:30:31 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d075::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a5:e5:a7:8d:0f:0e:42:10:ed:b3:b5:56:4e:ce:33:37:61:42:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:30:31 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=0f1fc8bac354ab6347781032a65e3a6353b2f3a76ce60804b780b36b1c27d486, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7c:3e:d1:cf:3f:76:6e:bb:a7:bf:2c:0d:4e: f9:9a:69:19:e4:32:3c:c6:fc:58:c7:c3:09:79:c3: 56:fd:f9:9d:60:a2:a6:85:e6:1f:18:1f:33:06:1a: 5e:48:63:c2:37:e3:a1:63:4f:40:c8:b6:e7:a9:ce: 8b:e1:a7:97:cc:2c:9b:f1:e2:2e:0c:27:e2:61:50: 78:e8:19:e8:47:8b:64:18:28:f5:ba:a4:54:34:52: 5f:e1:14:02:15:0b:cd:83:df:29:56:2c:9a:67:34: 1e:d0:b6:ba:e2:37:9b:83:aa:e7:87:af:24:9e:ef: 75:18:92:02:d3:38:fd:36:d6:6a:fe:16:99:ec:02: 07:c7:60:a1:fd:b2:3f:56:72:93:5f:5c:42:16:71: e4:57:52:31:9f:e4:85:b4:1c:af:9b:9f:b2:a7:57: 18:fe:e1:4f:b0:67:ee:59:8f:6f:17:b1:20:7b:cd: 58:d0:23:91:88:99:e6:80:bb:2e:8c:51:62:b2:1c: 41:b1:d9:80:13:69:0c:c2:6a:3f:f3:6b:7f:e1:0f: d9:4c:e3:12:62:3e:21:6a:9b:4e:8f:1f:07:65:f7: 12:2b:9b:3d:fc:94:3f:8b:dd:3f:14:fa:03:6c:65: 9e:ca:9a:88:b1:88:c9:53:c5:6f:b4:6f:28:08:3c: 9f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:82:E2:77:5A:D1:4B:95:2D:85:03:DE:C0:BC:29:48:A2:BC:7B:2B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/493f1269-3ba4-4dea-829a-985dda6749ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d075::/32 Signature Algorithm: sha256WithRSAEncryption 3e:8e:15:2d:06:67:f2:0c:ce:2e:4f:a6:b5:63:c0:9e:c4:87: 71:50:62:72:5a:4b:86:46:21:51:c9:da:77:97:af:70:45:6e: ae:fc:a1:c6:1f:32:b8:13:d9:79:6e:d5:b3:c8:2f:b2:18:46: 40:6f:38:00:5e:fa:4c:44:e5:4b:a8:19:77:e4:80:91:ca:63: 78:f6:c9:2f:ab:4d:82:fd:f7:27:9e:04:61:ae:e9:83:8b:25: 8c:6d:7f:5e:28:47:c7:8c:00:b9:f0:3f:f6:5a:d6:6a:83:7b: ad:ca:6b:e9:74:04:33:7f:2d:e1:85:3b:a8:1e:0c:4e:88:1f: 82:6a:6d:e6:fc:67:ec:c6:95:38:21:b3:60:48:7f:18:34:7e: c3:20:ad:06:e8:06:8c:e2:73:27:16:d0:db:b6:df:10:7d:5b: bc:4a:ea:a9:39:ff:5b:21:eb:cc:0a:aa:82:dd:67:cb:e8:2c: d1:c7:d5:90:8a:94:31:1c:98:9b:8f:b4:bd:1d:87:fa:85:50: 8f:e5:1a:a5:2f:85:f6:87:69:35:13:69:93:5a:4c:be:48:f2: 6b:62:94:79:4d:9c:1e:de:66:c5:46:8e:48:47:f2:b3:da:8c: c9:b3:25:16:2b:56:6f:bf:19:10:5f:23:29:b6:dd:91:0d:f9: 1a:ca:1c:b9 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUFKXlp40PDkIQ7bO1Vk7OMzdhQt8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMwMzFaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDBmMWZjOGJhYzM1NGFiNjM0Nzc4MTAzMmE2NWUzYTYzNTNiMmYzYTc2Y2U2 MDgwNGI3ODBiMzZiMWMyN2Q0ODYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANB8PtHPP3Zuu6e/LA1O+ZppGeQyPMb8WMfDCXnDVv35nWCipoXmHxgfMwYa XkhjwjfjoWNPQMi256nOi+Gnl8wsm/HiLgwn4mFQeOgZ6EeLZBgo9bqkVDRSX+EU AhULzYPfKVYsmmc0HtC2uuI3m4Oq54evJJ7vdRiSAtM4/TbWav4WmewCB8dgof2y P1Zyk19cQhZx5FdSMZ/khbQcr5ufsqdXGP7hT7Bn7lmPbxexIHvNWNAjkYiZ5oC7 LoxRYrIcQbHZgBNpDMJqP/Nrf+EP2UzjEmI+IWqbTo8fB2X3EiubPfyUP4vdPxT6 A2xlnsqaiLGIyVPFb7RvKAg8n+cCAwEAAaOCAiIwggIeMB0GA1UdDgQWBBQoguJ3 WtFLlS2FA97AvClIorx7KzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NDkzZjEyNjktM2JhNC00ZGVhLTgyOWEtOTg1ZGRhNjc0OWVlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoF0HUw DQYJKoZIhvcNAQELBQADggEBAD6OFS0GZ/IMzi5PprVjwJ7Eh3FQYnJaS4ZGIVHJ 2neXr3BFbq78ocYfMrgT2Xlu1bPIL7IYRkBvOABe+kxE5UuoGXfkgJHKY3j2yS+r TYL99yeeBGGu6YOLJYxtf14oR8eMALnwP/Za1mqDe63Ka+l0BDN/LeGFO6geDE6I H4Jqbeb8Z+zGlTghs2BIfxg0fsMgrQboBozicycW0Nu23xB9W7xK6qk5/1sh68wK qoLdZ8voLNHH1ZCKlDEcmJuPtL0dh/qFUI/lGqUvhfaHaTUTaZNaTL5I8mtilHlN nB7eZsVGjkhH8rPajMmzJRYrVm+/GRBfIym23ZEN+RrKHLk= -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:01 2025 by rpki-client