This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/507c534d-189b-43b3-945a-dd040ee200d5.roa File: 507c534d-189b-43b3-945a-dd040ee200d5.roa (raw, json) Hash identifier: gPQJHUP1Tmr41MUhJvz5PRTRNlIWBXT8UvbL6KtBFsc= Subject key identifier: CC:66:1A:93:44:06:6E:09:A8:9B:28:BD:F1:C9:4C:B4:72:20:56:55 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1CA9AE4BAEC7CE120313740A325AAD0D10EAB583 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/507c534d-189b-43b3-945a-dd040ee200d5.roa Signing time: Wed 10 Dec 2025 05:50:06 +0000 ROA not before: Wed 10 Dec 2025 05:50:06 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d03a:9000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 22:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:a9:ae:4b:ae:c7:ce:12:03:13:74:0a:32:5a:ad:0d:10:ea:b5:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:50:06 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=91006459bbe71d3a69da9d663f4fc7f4531d1528c6279abf2f78c69e40a8163e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:86:86:64:47:93:d6:48:5a:3c:ad:e2:d0:08: 5a:5b:0d:40:05:98:99:9d:4f:fe:eb:21:94:02:86: d1:70:07:41:ad:0f:27:d8:ca:c1:69:c7:39:2b:53: 26:a2:9e:e1:1c:39:ba:43:98:7e:75:e1:02:9c:66: 60:ff:3d:66:0a:34:b2:6d:78:b1:6d:01:c3:f0:d7: 17:04:9b:49:a6:25:25:31:c5:88:24:13:c5:f0:bd: 2e:ca:13:da:0c:ba:28:71:d4:77:7e:8a:92:7d:4a: 2b:3c:a9:02:5c:82:cf:f2:a0:20:74:a8:c3:84:59: ef:67:59:28:20:64:dd:e4:57:a8:6f:43:e0:3f:e3: 9a:91:53:b9:20:bc:09:aa:08:d8:8e:20:15:ad:17: 91:54:0b:e7:cb:91:f1:9b:24:8d:ee:55:ac:5f:da: 55:04:a7:92:74:db:1f:d7:90:59:fc:41:c0:2d:06: 2b:41:25:07:c6:94:60:5a:32:c2:f6:6d:39:83:55: ec:ec:e7:32:fd:c7:4a:c4:59:be:8b:60:e1:95:25: 03:29:b2:fc:51:b9:46:93:fd:c9:f3:3e:33:a0:5d: 5b:33:6d:6f:fe:d4:af:e1:83:a2:f3:f3:f2:3c:f9: 49:0b:78:14:e7:51:52:b3:36:16:e5:28:1f:7e:a0: 59:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:66:1A:93:44:06:6E:09:A8:9B:28:BD:F1:C9:4C:B4:72:20:56:55 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/507c534d-189b-43b3-945a-dd040ee200d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d03a:9000::/40 Signature Algorithm: sha256WithRSAEncryption 15:b9:90:9d:26:8a:f8:a4:bb:34:4f:cd:ae:d3:1f:37:67:d5: 08:b3:af:88:50:9a:e9:af:dc:4c:a5:82:3a:9e:10:5a:5c:8a: 19:12:ee:bd:c3:53:fa:72:1e:ee:bc:a2:fe:d7:f8:df:e9:cc: 25:9e:0e:e9:a0:4b:4c:68:38:1f:93:fd:be:4f:a0:7b:0e:11: 10:c3:b0:3e:3b:cd:6c:6e:f5:b9:36:c8:18:b8:d4:40:9b:6e: 08:7a:d7:09:99:ad:31:55:b8:b7:19:56:20:41:76:09:77:df: 89:fe:46:9a:27:f0:89:89:b6:08:83:a3:c7:de:18:62:ff:14: 41:a2:78:6e:dc:9a:f2:f0:d2:de:73:5c:09:5b:14:e5:f6:0f: 0e:76:f3:08:04:6a:a8:0e:4d:54:1e:63:b9:40:31:51:30:eb: d5:b4:ea:d6:fa:99:f7:dc:45:17:7a:00:3c:a7:b8:44:7c:7e: d0:6f:9b:37:da:91:b1:9b:f1:d4:48:e8:95:81:6c:e9:4c:df: db:e8:61:61:0d:a3:75:f8:92:2b:4c:e7:0b:25:94:a8:1b:fc: 5a:e2:a0:f1:72:ae:9f:22:74:05:97:64:48:55:a0:51:88:bf: 06:e6:05:ab:d8:15:fb:93:98:34:54:d5:be:7f:9e:0a:8e:0d: 54:78:70:59 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUHKmuS67HzhIDE3QKMlqtDRDqtYMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUwMDZaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDkxMDA2NDU5YmJlNzFkM2E2OWRhOWQ2NjNmNGZjN2Y0NTMxZDE1MjhjNjI3 OWFiZjJmNzhjNjllNDBhODE2M2UxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJmGhmRHk9ZIWjyt4tAIWlsNQAWYmZ1P/ushlAKG0XAHQa0PJ9jKwWnHOStT JqKe4Rw5ukOYfnXhApxmYP89Zgo0sm14sW0Bw/DXFwSbSaYlJTHFiCQTxfC9LsoT 2gy6KHHUd36Kkn1KKzypAlyCz/KgIHSow4RZ72dZKCBk3eRXqG9D4D/jmpFTuSC8 CaoI2I4gFa0XkVQL58uR8Zskje5VrF/aVQSnknTbH9eQWfxBwC0GK0ElB8aUYFoy wvZtOYNV7OznMv3HSsRZvotg4ZUlAymy/FG5RpP9yfM+M6BdWzNtb/7Ur+GDovPz 8jz5SQt4FOdRUrM2FuUoH36gWTECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTMZhqT RAZuCaibKL3xyUy0ciBWVTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTA3YzUzNGQtMTg5Yi00M2IzLTk0NWEtZGQwNDBlZTIwMGQ1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DqQ MA0GCSqGSIb3DQEBCwUAA4IBAQAVuZCdJor4pLs0T82u0x83Z9UIs6+IUJrpr9xM pYI6nhBaXIoZEu69w1P6ch7uvKL+1/jf6cwlng7poEtMaDgfk/2+T6B7DhEQw7A+ O81sbvW5NsgYuNRAm24IetcJma0xVbi3GVYgQXYJd9+J/kaaJ/CJibYIg6PH3hhi /xRBonhu3Jry8NLec1wJWxTl9g8OdvMIBGqoDk1UHmO5QDFRMOvVtOrW+pn33EUX egA8p7hEfH7Qb5s32pGxm/HUSOiVgWzpTN/b6GFhDaN1+JIrTOcLJZSoG/xa4qDx cq6fInQFl2RIVaBRiL8G5gWr2BX7k5g0VNW+f54Kjg1UeHBZ -----END CERTIFICATE-----Generated at Tue Dec 16 04:35:23 2025 by rpki-client