This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/50b60672-d484-48a0-9016-474bafea8912.roa File: 50b60672-d484-48a0-9016-474bafea8912.roa (raw, json) Hash identifier: X4CLeNasCeloKWoSevil4rMyc6VI8jG7nUqyylbsWow= Subject key identifier: 25:8E:BA:90:F3:A2:E6:E7:A6:4B:79:25:22:88:8B:33:35:08:7C:40 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5545F87463795937AEF0C0ECA2C87A530BE453E7 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/50b60672-d484-48a0-9016-474bafea8912.roa Signing time: Wed 10 Dec 2025 05:51:12 +0000 ROA not before: Wed 10 Dec 2025 05:51:12 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d016::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:45:f8:74:63:79:59:37:ae:f0:c0:ec:a2:c8:7a:53:0b:e4:53:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:51:12 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=169484901436957d34ba7d151af3b3e73f8b35f2aafdd6a116d3acc33bf0359d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:07:d9:d0:b6:ba:55:e1:c4:13:fe:6b:c4:bb: 60:6c:08:24:ac:de:ca:e9:06:2c:27:cd:36:d8:96: 38:57:55:3a:eb:e2:77:11:9b:f2:37:13:f4:e3:e6: 41:0c:8a:e3:69:1e:81:82:b9:75:33:30:32:ac:22: 37:a3:d2:10:6a:2e:d4:7f:ff:cb:53:f9:6c:1e:d9: 6f:58:6f:32:dd:6e:5f:cd:f6:7b:6b:de:23:10:cb: 56:47:3c:0f:bb:ee:4b:55:44:97:58:02:3d:48:55: 50:41:92:25:21:44:7a:5a:35:3a:50:c7:d3:da:8d: ab:96:d5:76:05:18:ca:72:26:03:58:3a:16:5d:10: 2d:1c:18:c1:81:81:be:5f:b7:c7:3d:25:e0:3d:cf: 1d:40:06:ad:dc:80:3f:6c:fa:a7:72:54:e6:4b:cd: 1e:ce:6a:ce:0e:e0:36:e9:b0:e4:c7:94:5d:e0:8f: 95:06:5f:15:5e:43:97:a7:70:e6:cb:f8:de:a1:1f: 1e:92:5a:88:a5:39:05:32:99:a4:78:f4:ba:24:ae: 8b:8e:0b:21:d9:d1:c9:3f:d2:dd:f9:d5:3c:8c:6d: ca:ee:f2:c7:5d:51:f3:a5:67:f3:04:d3:c4:ba:a8: 37:20:29:16:a7:62:71:2b:4f:2c:14:c6:aa:e6:65: 91:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:8E:BA:90:F3:A2:E6:E7:A6:4B:79:25:22:88:8B:33:35:08:7C:40 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/50b60672-d484-48a0-9016-474bafea8912.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d016::/36 Signature Algorithm: sha256WithRSAEncryption 81:9d:75:ee:0b:21:42:71:3c:df:c8:e9:21:38:29:f3:1e:45: 47:d4:41:6d:92:38:6d:64:6b:11:d1:22:cf:d5:32:9d:68:f3: 65:6e:ac:d5:6c:9f:32:1a:20:e6:d8:1b:27:e3:54:bb:0f:d1: 2b:02:60:6c:76:fa:6a:15:99:27:93:0e:53:5f:ba:70:fa:fa: 10:1a:1c:5e:21:8a:80:ba:56:48:e0:98:e1:9b:dc:2a:e3:86: 02:e3:91:ec:d8:d6:67:66:57:f4:79:4f:de:dc:a1:a4:d5:18: d0:75:97:e1:3b:44:99:e9:22:39:6d:af:ea:37:42:05:aa:cb: bd:28:7c:75:ee:6d:db:aa:7b:77:ed:a7:0d:52:ac:cc:a3:dd: cb:61:30:77:c9:69:c7:1a:2d:74:0e:b9:53:c0:f7:89:d5:fc: 8e:31:96:7e:5d:c4:9a:91:2d:b2:84:f4:b7:5a:be:25:c1:0b: 71:f6:ba:23:74:38:22:97:ed:d4:82:60:45:ec:76:e0:ee:43: 32:40:b2:e9:ef:74:7c:80:ea:e8:2e:ba:69:b8:d4:14:e5:3d: d7:46:da:a0:35:6e:cc:ca:fd:4a:e2:7a:b3:9a:8d:1d:61:54: 09:f7:b8:10:b8:40:20:bb:92:d5:50:a7:49:0a:78:fa:7e:41: 0d:65:98:d4 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUVUX4dGN5WTeu8MDsosh6UwvkU+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUxMTJaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDE2OTQ4NDkwMTQzNjk1N2QzNGJhN2QxNTFhZjNiM2U3M2Y4YjM1ZjJhYWZk ZDZhMTE2ZDNhY2MzM2JmMDM1OWQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJwH2dC2ulXhxBP+a8S7YGwIJKzeyukGLCfNNtiWOFdVOuvidxGb8jcT9OPm QQyK42kegYK5dTMwMqwiN6PSEGou1H//y1P5bB7Zb1hvMt1uX832e2veIxDLVkc8 D7vuS1VEl1gCPUhVUEGSJSFEelo1OlDH09qNq5bVdgUYynImA1g6Fl0QLRwYwYGB vl+3xz0l4D3PHUAGrdyAP2z6p3JU5kvNHs5qzg7gNumw5MeUXeCPlQZfFV5Dl6dw 5sv43qEfHpJaiKU5BTKZpHj0uiSui44LIdnRyT/S3fnVPIxtyu7yx11R86Vn8wTT xLqoNyApFqdicStPLBTGquZlka0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQljrqQ 86Lm56ZLeSUiiIszNQh8QDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTBiNjA2NzItZDQ4NC00OGEwLTkwMTYtNDc0YmFmZWE4OTEyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0BYA MA0GCSqGSIb3DQEBCwUAA4IBAQCBnXXuCyFCcTzfyOkhOCnzHkVH1EFtkjhtZGsR 0SLP1TKdaPNlbqzVbJ8yGiDm2Bsn41S7D9ErAmBsdvpqFZknkw5TX7pw+voQGhxe IYqAulZI4Jjhm9wq44YC45Hs2NZnZlf0eU/e3KGk1RjQdZfhO0SZ6SI5ba/qN0IF qsu9KHx17m3bqnt37acNUqzMo93LYTB3yWnHGi10DrlTwPeJ1fyOMZZ+XcSakS2y hPS3Wr4lwQtx9rojdDgil+3UgmBF7Hbg7kMyQLLp73R8gOroLrppuNQU5T3XRtqg NW7Myv1K4nqzmo0dYVQJ97gQuEAgu5LVUKdJCnj6fkENZZjU -----END CERTIFICATE-----Generated at Mon Dec 15 20:20:44 2025 by rpki-client