This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4e84f0a8-9d20-4219-b641-9a6905a033d9.roa File: 4e84f0a8-9d20-4219-b641-9a6905a033d9.roa (raw, json) Hash identifier: 4w/QjEEvPlEWWZP8xGQlZEddgWEUsln4k58FfJiRv/8= Subject key identifier: 05:6B:65:68:43:4A:99:C8:87:26:EC:CD:B1:9A:5D:C9:EB:27:EC:C9 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 24E93A1472D93835700FF7AE4B06EB5796EAAB28 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4e84f0a8-9d20-4219-b641-9a6905a033d9.roa Signing time: Sat 15 Nov 2025 05:41:05 +0000 ROA not before: Sat 15 Nov 2025 05:41:05 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:e9:3a:14:72:d9:38:35:70:0f:f7:ae:4b:06:eb:57:96:ea:ab:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:41:05 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=cd0e2252f72a174e5175fd4b19f257682f2e709b5ddadeb6d7846eb6d44f6847, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5f:16:08:5a:ee:34:db:3a:25:d9:48:db:41: 6b:30:83:32:40:d5:00:83:27:ea:0e:3e:3f:b7:f4: 86:06:1c:94:ae:e2:55:6d:d0:a9:a3:8f:f4:4c:db: 43:6e:74:2c:01:9c:41:ef:36:d4:9b:93:2f:81:a0: 20:db:e7:3c:2e:d1:82:e6:6a:76:0f:06:ce:62:8a: d9:de:c7:28:76:62:04:d7:9b:f1:21:de:07:cc:c4: cf:69:30:8f:ab:24:f6:32:48:ca:2c:ef:14:a5:bc: f1:82:76:a5:37:f9:18:68:e0:25:8e:bd:71:03:6c: c1:78:10:8c:f7:ba:c9:45:de:89:9e:ad:b9:91:dd: ce:fa:46:04:9d:7e:7d:c1:9e:89:2c:b6:4d:90:fa: ad:f5:d4:37:70:7e:fd:d3:5e:63:8c:b4:ea:d8:0f: a8:97:93:20:c4:7d:d1:b2:01:61:84:9c:c3:e9:b2: 06:cf:11:9b:48:f8:f4:25:09:e4:ad:18:ea:18:06: 8b:d3:5c:e4:a3:4e:a7:00:6e:c6:83:44:6a:85:6b: cc:83:15:95:7a:36:28:25:f5:c5:6f:a4:10:22:bb: c5:f9:cf:ed:7c:1c:60:d1:99:02:bd:2b:81:14:f3: cf:75:b2:fb:41:45:55:4e:e5:97:53:37:60:a5:55: 1c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6B:65:68:43:4A:99:C8:87:26:EC:CD:B1:9A:5D:C9:EB:27:EC:C9 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4e84f0a8-9d20-4219-b641-9a6905a033d9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:a040::/48 Signature Algorithm: sha256WithRSAEncryption 4f:11:86:9f:8b:58:19:3b:d9:9a:e1:9d:6e:95:27:2f:6e:fd: 80:e2:06:b7:38:ad:17:e1:8b:eb:1d:6b:d7:36:29:e6:fa:1c: dc:07:13:f1:3c:52:44:55:5e:35:78:89:7b:54:0f:ef:ba:f2: a7:64:bc:4b:ea:4f:b8:6d:99:8c:5b:b8:b9:54:b3:c9:eb:f6: 56:16:b9:7a:48:4b:a6:b7:ad:83:18:84:a8:fa:0c:bc:ba:5e: c7:b8:d8:ad:be:32:39:0d:9a:47:31:c3:c3:a3:fb:35:a3:37: 1c:f3:41:c6:97:c4:9b:50:d7:d6:a5:b4:15:c2:70:f1:cd:41: 14:a5:50:fa:b9:a2:42:8d:8f:90:17:24:a6:b0:e6:2f:bd:db: 9c:b1:54:ca:4c:8d:5f:09:4b:d6:d0:2b:74:45:6d:55:17:d6: eb:cd:21:81:47:c6:5c:6a:1c:63:7b:5f:5f:40:e1:b5:56:26: 7f:72:5a:d6:7c:07:d4:06:6c:7e:a0:bd:ec:b5:45:7e:3e:32: 35:f3:5b:9d:fd:33:fe:bd:8e:a1:6f:05:f9:bf:91:97:f2:5d: 7a:fb:ca:f6:75:7e:8a:7f:fa:22:54:84:d3:5d:0f:d1:b5:83: d6:40:52:9f:c4:2c:61:df:3b:a4:42:61:91:f1:59:10:7f:65: 98:dc:7f:f4 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUJOk6FHLZODVwD/euSwbrV5bqqygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQxMDVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGNkMGUyMjUyZjcyYTE3NGU1MTc1ZmQ0YjE5ZjI1NzY4MmYyZTcwOWI1ZGRh ZGViNmQ3ODQ2ZWI2ZDQ0ZjY4NDcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdfFgha7jTbOiXZSNtBazCDMkDVAIMn6g4+P7f0hgYclK7iVW3QqaOP9Ezb Q250LAGcQe821JuTL4GgINvnPC7RguZqdg8GzmKK2d7HKHZiBNeb8SHeB8zEz2kw j6sk9jJIyizvFKW88YJ2pTf5GGjgJY69cQNswXgQjPe6yUXeiZ6tuZHdzvpGBJ1+ fcGeiSy2TZD6rfXUN3B+/dNeY4y06tgPqJeTIMR90bIBYYScw+myBs8Rm0j49CUJ 5K0Y6hgGi9Nc5KNOpwBuxoNEaoVrzIMVlXo2KCX1xW+kECK7xfnP7XwcYNGZAr0r gRTzz3Wy+0FFVU7ll1M3YKVVHB0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQFa2Vo Q0qZyIcm7M2xml3J6yfsyTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NGU4NGYwYTgtOWQyMC00MjE5LWI2NDEtOWE2OTA1YTAzM2Q5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HKg QDANBgkqhkiG9w0BAQsFAAOCAQEATxGGn4tYGTvZmuGdbpUnL279gOIGtzitF+GL 6x1r1zYp5voc3AcT8TxSRFVeNXiJe1QP77ryp2S8S+pPuG2ZjFu4uVSzyev2Vha5 ekhLpretgxiEqPoMvLpex7jYrb4yOQ2aRzHDw6P7NaM3HPNBxpfEm1DX1qW0FcJw 8c1BFKVQ+rmiQo2PkBckprDmL73bnLFUykyNXwlL1tArdEVtVRfW680hgUfGXGoc Y3tfX0DhtVYmf3Ja1nwH1AZsfqC97LVFfj4yNfNbnf0z/r2OoW8F+b+Rl/JdevvK 9nV+in/6IlSE010P0bWD1kBSn8QsYd87pEJhkfFZEH9lmNx/9A== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:50 2025 by rpki-client