This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/50b60672-d484-48a0-9016-474bafea8912.roa File: 50b60672-d484-48a0-9016-474bafea8912.roa (raw, json) Hash identifier: gWao6CwVuDgDAPqF1jXJZmJsq8WXOalV7C1qSEij3fU= Subject key identifier: 05:CD:79:37:71:23:53:F3:97:6E:C6:72:55:A3:F8:BD:41:77:21:47 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 21DAD16AA7C7C591679BF11B90C750233037ECCE Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/50b60672-d484-48a0-9016-474bafea8912.roa Signing time: Sat 15 Nov 2025 05:51:04 +0000 ROA not before: Sat 15 Nov 2025 05:51:04 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d016::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:da:d1:6a:a7:c7:c5:91:67:9b:f1:1b:90:c7:50:23:30:37:ec:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:51:04 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=7231fe44c2250241bc7eb02e9165cdb9626ec9b1a476e2b8163cf35f17410dfc, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:79:32:f1:f4:8f:a7:ed:33:a8:58:9e:85:0d: aa:ed:6d:b2:0e:da:5f:85:5a:62:38:39:7c:8c:61: d9:78:0b:95:11:f3:22:50:16:cf:38:d9:44:3b:39: 2e:35:67:71:a2:de:4e:d6:6e:8f:02:8c:85:25:d9: 0c:67:95:ed:81:e0:94:ce:80:9e:bb:fe:49:2a:3d: 56:67:cc:08:e1:d7:29:14:ed:6e:09:15:9b:e0:35: 2f:ea:63:c6:e2:c3:1c:c1:d8:9e:53:85:fa:3c:2e: 61:ba:f7:13:94:a1:d7:c7:3e:df:54:53:c7:c3:01: 30:e0:62:42:2d:40:35:3e:1a:c2:d6:55:bf:59:ec: e5:b6:d3:e9:1a:0e:b6:e3:1d:fa:63:0d:76:91:0a: 44:99:dc:84:38:0d:eb:5c:e7:92:ff:85:cf:b2:96: d7:46:44:14:b6:14:19:58:e8:4d:20:5b:d7:6c:c0: 23:29:33:e5:ea:06:8e:f7:08:35:60:96:f2:f6:62: c5:3d:bf:dc:8f:70:8f:13:7a:2c:74:cf:97:f0:7f: 61:54:d1:35:0a:f6:70:e2:cd:75:56:36:c7:b4:dc: a9:15:a1:82:46:0c:df:ed:16:73:17:38:9b:cc:58: d4:d3:ab:8c:68:00:a1:a7:bb:20:67:1f:f7:52:41: ed:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CD:79:37:71:23:53:F3:97:6E:C6:72:55:A3:F8:BD:41:77:21:47 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/50b60672-d484-48a0-9016-474bafea8912.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d016::/36 Signature Algorithm: sha256WithRSAEncryption 5d:5c:fb:13:3e:24:93:a3:41:d4:c0:03:b9:43:8b:ba:89:e5: 15:1e:c1:04:b3:63:1e:48:00:69:d4:b5:92:99:f8:63:84:73: 4c:dc:2a:8a:fd:a8:05:12:4d:01:df:cd:b7:0c:db:31:c6:81: 6f:38:bf:b2:92:c0:76:f3:79:55:9f:89:bd:ff:b0:d2:09:ed: af:11:09:16:09:cf:b2:8f:03:ce:cf:0f:ae:ff:cd:8c:02:17: 82:a8:23:69:a1:a0:22:3c:a4:11:2b:e9:46:c6:fc:e3:05:97: cb:55:ed:ee:e4:36:fc:1a:a7:9e:e6:36:23:07:e4:be:a0:fc: 86:49:8c:42:0c:3f:3b:57:d4:95:5e:ce:c5:b6:ea:f0:c0:ce: 21:d5:0b:ae:14:f1:ab:9c:18:67:97:46:0f:30:c2:06:ca:2e: 83:69:93:af:ad:60:ed:50:81:da:b7:d8:1d:48:d5:61:eb:3b: a5:cc:df:e2:f9:de:1a:44:d3:b5:00:6f:18:14:51:d9:b1:5c: b3:43:2a:d2:24:e3:c9:8c:2b:05:79:9e:5e:36:f6:20:9a:9f: 4e:3e:db:70:9a:d1:74:50:d9:19:94:37:9b:84:47:5b:d0:63: 8c:75:6b:c7:4d:97:d1:c0:9f:e1:ed:af:3e:03:a4:7a:3f:3f: 36:88:6e:8a -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUIdrRaqfHxZFnm/EbkMdQIzA37M4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTUxMDRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDcyMzFmZTQ0YzIyNTAyNDFiYzdlYjAyZTkxNjVjZGI5NjI2ZWM5YjFhNDc2 ZTJiODE2M2NmMzVmMTc0MTBkZmMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKR5MvH0j6ftM6hYnoUNqu1tsg7aX4VaYjg5fIxh2XgLlRHzIlAWzzjZRDs5 LjVncaLeTtZujwKMhSXZDGeV7YHglM6Anrv+SSo9VmfMCOHXKRTtbgkVm+A1L+pj xuLDHMHYnlOF+jwuYbr3E5Sh18c+31RTx8MBMOBiQi1ANT4awtZVv1ns5bbT6RoO tuMd+mMNdpEKRJnchDgN61znkv+Fz7KW10ZEFLYUGVjoTSBb12zAIykz5eoGjvcI NWCW8vZixT2/3I9wjxN6LHTPl/B/YVTRNQr2cOLNdVY2x7TcqRWhgkYM3+0Wcxc4 m8xY1NOrjGgAoae7IGcf91JB7bMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQFzXk3 cSNT85duxnJVo/i9QXchRzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTBiNjA2NzItZDQ4NC00OGEwLTkwMTYtNDc0YmFmZWE4OTEyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0BYA MA0GCSqGSIb3DQEBCwUAA4IBAQBdXPsTPiSTo0HUwAO5Q4u6ieUVHsEEs2MeSABp 1LWSmfhjhHNM3CqK/agFEk0B3823DNsxxoFvOL+yksB283lVn4m9/7DSCe2vEQkW Cc+yjwPOzw+u/82MAheCqCNpoaAiPKQRK+lGxvzjBZfLVe3u5Db8Gqee5jYjB+S+ oPyGSYxCDD87V9SVXs7FturwwM4h1QuuFPGrnBhnl0YPMMIGyi6DaZOvrWDtUIHa t9gdSNVh6zulzN/i+d4aRNO1AG8YFFHZsVyzQyrSJOPJjCsFeZ5eNvYgmp9OPttw mtF0UNkZlDebhEdb0GOMdWvHTZfRwJ/h7a8+A6R6Pz82iG6K -----END CERTIFICATE-----Generated at Sat Dec 6 10:56:26 2025 by rpki-client