This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4d03f6d9-094a-4f2a-aa7c-73e66047c2a1.roa File: 4d03f6d9-094a-4f2a-aa7c-73e66047c2a1.roa (raw, json) Hash identifier: Av0wrycKdlbFIBDyRYuBTm1dzNWTOrhmcimn/hl4Tuw= Subject key identifier: 1B:8C:7C:41:83:13:B6:D7:C4:A4:0B:97:57:26:03:20:52:F6:B0:98 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6E43949372A24243CDEBA88BAF0BC98F1AC21E4B Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4d03f6d9-094a-4f2a-aa7c-73e66047c2a1.roa Signing time: Tue 25 Nov 2025 20:10:07 +0000 ROA not before: Tue 25 Nov 2025 20:10:07 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:10c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:43:94:93:72:a2:42:43:cd:eb:a8:8b:af:0b:c9:8f:1a:c2:1e:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:10:07 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=ddf94d327d227eb227d71a6829a9f98f1b3f946acc373d48cf8852e100fdabeb, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6e:63:7f:80:a2:97:88:e2:a4:cd:7d:1a:77: 63:dc:f8:52:97:06:22:10:4c:36:fc:35:a5:71:09: 25:be:b3:46:bf:0f:44:17:8b:a9:80:5e:49:6c:72: 11:89:6c:3a:f1:6e:36:18:23:2d:64:cb:d9:8b:d4: 6a:25:24:dd:42:45:da:14:0f:d5:c4:72:8d:9f:39: a4:62:f4:65:fa:3b:ce:a4:2f:52:bf:e2:38:66:4c: a3:54:04:43:29:1f:ce:2a:c1:3c:79:6f:e0:e5:7c: 36:53:77:e4:9d:8f:25:be:dc:8d:bd:3f:d7:37:88: 70:8c:2f:d8:4a:de:31:9f:57:3c:e2:1f:9e:02:23: 58:ac:05:63:7e:99:5f:7e:36:67:39:b8:47:b2:74: 76:d8:8d:74:d3:c0:ea:30:2f:8c:43:d1:1d:ab:00: 2d:b9:41:27:64:f5:af:18:50:46:3f:81:9b:98:d2: 4a:95:13:48:3b:e5:6c:ad:12:40:ce:25:fa:ab:89: 66:d6:a4:36:8f:57:b3:62:07:45:f4:58:5e:6f:69: 3a:25:cb:40:aa:94:55:45:7e:ba:cf:d7:70:50:3c: da:27:46:75:bc:55:6f:f1:00:9b:41:c8:94:e2:e3: 7d:82:74:f1:96:a9:94:30:8d:fa:31:bf:26:a5:a2: de:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:8C:7C:41:83:13:B6:D7:C4:A4:0B:97:57:26:03:20:52:F6:B0:98 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4d03f6d9-094a-4f2a-aa7c-73e66047c2a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:10c0::/46 Signature Algorithm: sha256WithRSAEncryption bd:92:56:93:a7:9d:85:f1:e1:15:ba:05:29:3f:ac:f6:ba:25: e2:b6:1a:f9:80:f7:97:2c:47:03:04:1c:56:2a:b0:78:b1:30: aa:26:55:2d:95:96:0d:55:7e:dd:21:88:93:2f:3e:ca:ad:a2: 9b:b8:5a:53:f0:7a:c7:cf:a7:25:d2:ba:cd:44:7b:0d:86:9e: 9f:05:84:4a:af:19:9e:39:c3:5d:be:a7:cc:bd:2f:5c:c2:bb: e4:c0:c4:96:3c:b4:18:dd:eb:be:90:82:78:9b:48:25:d2:96: b1:65:4d:16:dc:80:7c:51:6a:13:a5:cb:c4:ed:6e:ee:11:d4: 5b:3e:62:3e:03:5b:9f:8a:5b:66:ed:7b:86:dd:0c:9e:4b:89: da:fb:c3:0c:67:dc:75:17:a7:3a:43:3a:56:54:68:d7:ab:e5: b8:f6:c3:fc:d2:9e:10:43:de:78:0f:35:6a:53:4c:b7:c6:d6: f2:25:a3:90:c2:b2:84:2f:c4:15:dc:a1:8e:22:a3:e8:22:c9: 45:29:e7:38:27:3e:d9:04:7e:df:bb:3d:e6:db:fc:af:bb:a8: 3e:c6:fd:43:80:66:c3:3e:c8:62:60:aa:d5:9c:01:47:04:45: 93:12:ec:61:92:ab:2f:22:19:11:84:6a:a6:13:51:43:d2:52: 47:90:de:0f -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUbkOUk3KiQkPN66iLrwvJjxrCHkswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDEwMDdaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQGRkZjk0ZDMyN2QyMjdlYjIyN2Q3MWE2ODI5YTlmOThmMWIzZjk0NmFjYzM3 M2Q0OGNmODg1MmUxMDBmZGFiZWIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOduY3+AopeI4qTNfRp3Y9z4UpcGIhBMNvw1pXEJJb6zRr8PRBeLqYBeSWxy EYlsOvFuNhgjLWTL2YvUaiUk3UJF2hQP1cRyjZ85pGL0Zfo7zqQvUr/iOGZMo1QE QykfzirBPHlv4OV8NlN35J2PJb7cjb0/1zeIcIwv2EreMZ9XPOIfngIjWKwFY36Z X342Zzm4R7J0dtiNdNPA6jAvjEPRHasALblBJ2T1rxhQRj+Bm5jSSpUTSDvlbK0S QM4l+quJZtakNo9Xs2IHRfRYXm9pOiXLQKqUVUV+us/XcFA82idGdbxVb/EAm0HI lOLjfYJ08ZaplDCN+jG/JqWi3msCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQbjHxB gxO218SkC5dXJgMgUvawmDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NGQwM2Y2ZDktMDk0YS00ZjJhLWFhN2MtNzNlNjYwNDdjMmExLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HMQ wDANBgkqhkiG9w0BAQsFAAOCAQEAvZJWk6edhfHhFboFKT+s9rol4rYa+YD3lyxH AwQcViqweLEwqiZVLZWWDVV+3SGIky8+yq2im7haU/B6x8+nJdK6zUR7DYaenwWE Sq8ZnjnDXb6nzL0vXMK75MDEljy0GN3rvpCCeJtIJdKWsWVNFtyAfFFqE6XLxO1u 7hHUWz5iPgNbn4pbZu17ht0MnkuJ2vvDDGfcdRenOkM6VlRo16vluPbD/NKeEEPe eA81alNMt8bW8iWjkMKyhC/EFdyhjiKj6CLJRSnnOCc+2QR+37s95tv8r7uoPsb9 Q4Bmwz7IYmCq1ZwBRwRFkxLsYZKrLyIZEYRqphNRQ9JSR5DeDw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:45 2025 by rpki-client