This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/507c534d-189b-43b3-945a-dd040ee200d5.roa File: 507c534d-189b-43b3-945a-dd040ee200d5.roa (raw, json) Hash identifier: PD3WpkVz+8gAvZjOP2QztuFAB3yO9GcKc02TDw3BuV8= Subject key identifier: 00:CA:44:70:67:60:64:26:3A:C1:D3:09:44:0C:D3:9F:0B:4B:17:A3 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 7764C2630676FFD74CDDAFA144FF60A238CE89A8 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/507c534d-189b-43b3-945a-dd040ee200d5.roa Signing time: Sat 15 Nov 2025 06:00:09 +0000 ROA not before: Sat 15 Nov 2025 06:00:09 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d03a:9000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:64:c2:63:06:76:ff:d7:4c:dd:af:a1:44:ff:60:a2:38:ce:89:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:00:09 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=b5015d1708659d95d4eba7cda13d764617a93dbafaae6ac00c18b1d6aaf5d254, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9b:3a:4b:a1:31:39:67:fb:51:ca:c6:86:9c: 65:f4:53:a1:3e:07:89:c7:3d:87:a9:e8:ad:bb:23: 06:6d:57:06:21:1d:d3:fd:55:6c:de:8e:34:be:36: f2:1f:66:d4:cc:c7:43:50:ea:fd:b6:75:45:43:5a: cc:cb:68:f0:c8:ae:40:32:c1:6d:2a:fe:ce:7a:ba: 75:e7:54:4b:c6:e7:a5:1e:35:7f:c6:13:23:cf:ba: 4d:b1:eb:d7:4b:1a:00:ad:3c:94:af:65:95:32:5b: 97:fb:2e:b9:dc:59:2f:5c:c4:43:f5:88:ea:c8:19: 25:92:c8:2f:73:f2:c8:3a:3e:75:09:db:7b:54:7a: eb:ee:db:5d:25:bb:f1:ba:68:5d:fd:a0:8a:bb:08: 49:1b:79:12:f6:fa:f5:dc:e6:c1:ac:84:f9:6e:61: 0b:7f:11:cf:8f:29:a6:52:e9:1c:21:f2:a7:c9:4c: b4:f6:61:25:29:6c:29:ac:b2:57:e5:63:2f:44:ea: b8:58:7c:07:ed:e3:82:f8:0f:8e:26:87:30:9c:70: 75:7d:e9:4a:56:a3:1a:36:1f:59:90:af:a2:7d:0a: c5:0a:6c:12:39:c2:75:5c:b5:3f:e1:ec:c5:39:48: d6:16:9a:cf:28:88:00:9f:59:86:c4:a6:cb:2a:ba: 68:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CA:44:70:67:60:64:26:3A:C1:D3:09:44:0C:D3:9F:0B:4B:17:A3 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/507c534d-189b-43b3-945a-dd040ee200d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d03a:9000::/40 Signature Algorithm: sha256WithRSAEncryption 45:57:03:4d:3e:23:74:b4:71:61:6d:a1:1f:98:67:c6:a0:c6: 91:2b:89:ef:bf:02:c2:9f:7a:b8:73:0f:80:b8:de:56:48:a8: 97:03:30:7b:ed:dc:2a:f8:6a:c8:47:e4:4d:f6:65:3f:d5:d2: 05:a6:a3:69:d9:eb:c3:31:5b:64:1e:dc:e9:77:73:58:78:dd: 05:3e:7f:ca:b8:ce:df:d5:2c:cd:b0:e5:41:81:33:05:96:f3: 72:39:11:00:1f:9e:30:62:6d:65:48:e7:99:ba:41:ad:b5:76: 52:e4:3c:d8:87:7c:c5:23:5c:54:4f:a8:e7:e1:5e:8b:d5:85: 70:4c:03:a9:c7:d3:40:57:65:06:95:25:ac:70:3e:20:32:a2: 74:5d:f5:87:5c:49:b8:3f:b6:5c:a1:12:6d:2a:02:8e:0a:c8: 9d:29:97:f7:bc:ae:8a:df:ee:3e:8f:6f:e8:a8:90:62:e0:03: 4d:4f:76:42:4e:14:71:a4:18:1d:23:55:ab:61:45:b3:f0:9f: a0:7b:af:c3:12:59:60:94:45:32:08:89:a5:6b:c0:c6:79:4a: 78:93:24:00:57:d5:7f:e4:44:ca:87:18:0c:ba:57:48:51:8d: 66:3d:07:dd:23:30:61:0e:d0:bf:6f:be:a4:98:ac:b0:b8:d8: 29:1f:18:b3 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUd2TCYwZ2/9dM3a+hRP9gojjOiagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjAwMDlaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGI1MDE1ZDE3MDg2NTlkOTVkNGViYTdjZGExM2Q3NjQ2MTdhOTNkYmFmYWFl NmFjMDBjMThiMWQ2YWFmNWQyNTQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2bOkuhMTln+1HKxoacZfRToT4Hicc9h6norbsjBm1XBiEd0/1VbN6ONL42 8h9m1MzHQ1Dq/bZ1RUNazMto8MiuQDLBbSr+znq6dedUS8bnpR41f8YTI8+6TbHr 10saAK08lK9llTJbl/suudxZL1zEQ/WI6sgZJZLIL3PyyDo+dQnbe1R66+7bXSW7 8bpoXf2girsISRt5Evb69dzmwayE+W5hC38Rz48pplLpHCHyp8lMtPZhJSlsKayy V+VjL0TquFh8B+3jgvgPjiaHMJxwdX3pSlajGjYfWZCvon0KxQpsEjnCdVy1P+Hs xTlI1haazyiIAJ9ZhsSmyyq6aPUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQAykRw Z2BkJjrB0wlEDNOfC0sXozAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTA3YzUzNGQtMTg5Yi00M2IzLTk0NWEtZGQwNDBlZTIwMGQ1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DqQ MA0GCSqGSIb3DQEBCwUAA4IBAQBFVwNNPiN0tHFhbaEfmGfGoMaRK4nvvwLCn3q4 cw+AuN5WSKiXAzB77dwq+GrIR+RN9mU/1dIFpqNp2evDMVtkHtzpd3NYeN0FPn/K uM7f1SzNsOVBgTMFlvNyOREAH54wYm1lSOeZukGttXZS5DzYh3zFI1xUT6jn4V6L 1YVwTAOpx9NAV2UGlSWscD4gMqJ0XfWHXEm4P7ZcoRJtKgKOCsidKZf3vK6K3+4+ j2/oqJBi4ANNT3ZCThRxpBgdI1WrYUWz8J+ge6/DEllglEUyCImla8DGeUp4kyQA V9V/5ETKhxgMuldIUY1mPQfdIzBhDtC/b76kmKywuNgpHxiz -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:58 2025 by rpki-client