This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4b6a7c0a-3e4a-4737-b92b-fac22de8757f.roa File: 4b6a7c0a-3e4a-4737-b92b-fac22de8757f.roa (raw, json) Hash identifier: VN2EHOzailZ7j3mK6AzQMUtKBkZGn3fNchg3fOE+hEY= Subject key identifier: 57:EE:0D:F1:D8:D5:07:73:5E:C0:AA:77:BE:98:4C:C2:57:F4:9C:08 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1E8DB236ABB7E23EC59379D39DF42319280CF660 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4b6a7c0a-3e4a-4737-b92b-fac22de8757f.roa Signing time: Thu 13 Nov 2025 02:00:41 +0000 ROA not before: Thu 13 Nov 2025 02:00:41 +0000 ROA not after: Thu 18 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d038:8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:8d:b2:36:ab:b7:e2:3e:c5:93:79:d3:9d:f4:23:19:28:0c:f6:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 13 02:00:41 2025 GMT Not After : Dec 18 23:59:59 2025 GMT Subject: serialNumber=3a4ad23bde322d0abe87cf711fb200d606e9aa212bef9dd54b2f95dfea2d1a32, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3b:6b:e9:a7:d9:3e:41:48:02:50:08:f4:39: 3e:46:c0:0b:77:ce:3e:a6:ef:82:67:79:31:ed:96: ed:76:98:15:f7:b3:71:44:54:9d:bc:eb:9a:0c:3f: 54:eb:0b:08:a8:90:13:9b:6a:53:54:dc:5e:f7:12: 5f:ae:b5:16:2a:58:87:ef:f0:52:3d:c3:67:b2:b2: fd:16:d2:bc:4d:01:2d:b8:29:34:c5:cf:11:32:0e: 10:14:ef:d3:81:39:63:32:97:04:79:0c:b6:9e:0d: 71:a3:f5:77:a3:a0:8c:91:77:69:fd:fa:31:81:7b: 00:c4:e9:28:a4:08:83:cf:81:56:63:c5:f7:fb:30: a7:ea:dc:9b:3e:7b:cf:41:c5:d4:29:0c:08:f4:47: 63:8f:08:d1:6d:b7:85:e1:a9:1a:19:bd:02:e9:81: 38:8e:89:d8:7f:0d:fb:86:e3:be:7c:c7:a4:55:ed: e1:d1:e7:74:5b:c6:d9:2d:a9:a4:07:70:57:af:64: 7b:de:f8:99:94:eb:d4:a8:2e:35:2c:75:de:fe:e1: 6f:9a:17:98:e5:45:aa:ef:60:47:c1:d9:de:bd:59: 08:d6:ce:8d:24:46:d7:58:ad:cf:eb:d9:94:9d:1d: 64:e1:8c:6e:81:49:7e:90:1c:78:70:49:0b:53:c8: 0a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:EE:0D:F1:D8:D5:07:73:5E:C0:AA:77:BE:98:4C:C2:57:F4:9C:08 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4b6a7c0a-3e4a-4737-b92b-fac22de8757f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d038:8c0::/48 Signature Algorithm: sha256WithRSAEncryption ab:db:b9:bd:a2:9d:19:5d:27:2a:f0:a1:c2:14:09:33:13:ea: 43:6e:27:4c:ae:94:54:b4:de:4c:91:fd:0c:7c:34:bf:b4:f0: 95:ac:7b:e0:9d:30:23:69:ef:61:f4:d9:90:f9:3f:26:4a:0c: 29:bb:98:97:05:ba:81:ec:64:5f:9a:f3:01:23:58:cb:6d:e0: 3b:f5:5a:af:51:4d:53:da:17:bc:e9:6f:b9:1c:d8:25:8b:63: 0a:4b:1a:1e:a5:5a:04:24:b7:f6:8c:d8:76:51:6c:b8:c6:40: 56:36:49:cb:1b:70:d6:e9:31:21:a9:b5:1f:20:b1:32:82:67: bd:fb:79:24:85:0f:87:d0:66:a5:8f:d4:26:67:34:65:a1:8a: 05:09:0a:9e:60:99:14:1b:77:87:ed:04:1f:00:bf:ac:11:10: e4:c6:e7:90:1c:2a:ec:8b:4f:34:c5:74:bf:8e:8d:c9:5d:44: ee:9b:1d:96:1d:3b:e3:18:4a:c1:77:ec:50:72:88:68:22:b6: b0:ae:51:d1:a8:f5:61:ff:2d:fd:ac:96:6b:6a:d4:d6:c2:52: b7:1e:a7:00:b5:9f:57:75:e3:41:52:e9:f9:9b:77:cd:b5:c8: 8e:70:98:fb:f8:f6:42:ae:02:83:6b:5e:30:78:10:34:e5:c7: bd:95:67:6a -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUHo2yNqu34j7Fk3nTnfQjGSgM9mAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTMwMjAwNDFaFw0yNTEyMTgyMzU5NTlaMHoxSTBHBgNV BAUTQDNhNGFkMjNiZGUzMjJkMGFiZTg3Y2Y3MTFmYjIwMGQ2MDZlOWFhMjEyYmVm OWRkNTRiMmY5NWRmZWEyZDFhMzIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKs7a+mn2T5BSAJQCPQ5PkbAC3fOPqbvgmd5Me2W7XaYFfezcURUnbzrmgw/ VOsLCKiQE5tqU1TcXvcSX661FipYh+/wUj3DZ7Ky/RbSvE0BLbgpNMXPETIOEBTv 04E5YzKXBHkMtp4NcaP1d6OgjJF3af36MYF7AMTpKKQIg8+BVmPF9/swp+rcmz57 z0HF1CkMCPRHY48I0W23heGpGhm9AumBOI6J2H8N+4bjvnzHpFXt4dHndFvG2S2p pAdwV69ke974mZTr1KguNSx13v7hb5oXmOVFqu9gR8HZ3r1ZCNbOjSRG11itz+vZ lJ0dZOGMboFJfpAceHBJC1PICtECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRX7g3x 2NUHc17Aqne+mEzCV/ScCDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NGI2YTdjMGEtM2U0YS00NzM3LWI5MmItZmFjMjJkZTg3NTdmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DgI wDANBgkqhkiG9w0BAQsFAAOCAQEAq9u5vaKdGV0nKvChwhQJMxPqQ24nTK6UVLTe TJH9DHw0v7Twlax74J0wI2nvYfTZkPk/JkoMKbuYlwW6gexkX5rzASNYy23gO/Va r1FNU9oXvOlvuRzYJYtjCksaHqVaBCS39ozYdlFsuMZAVjZJyxtw1ukxIam1HyCx MoJnvft5JIUPh9BmpY/UJmc0ZaGKBQkKnmCZFBt3h+0EHwC/rBEQ5MbnkBwq7ItP NMV0v46NyV1E7psdlh074xhKwXfsUHKIaCK2sK5R0aj1Yf8t/ayWa2rU1sJStx6n ALWfV3XjQVLp+Zt3zbXIjnCY+/j2Qq4Cg2teMHgQNOXHvZVnag== -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:01 2025 by rpki-client