This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/546828d4-9f43-44c2-bff8-aafeddca4e25.roa File: 546828d4-9f43-44c2-bff8-aafeddca4e25.roa (raw, json) Hash identifier: +dS0BgdA0UYmowVLbltQIDvUBipoTsXNk3N4QE8BCtA= Subject key identifier: AB:67:CD:FC:0D:D9:67:C3:A2:C0:7B:B5:9B:CE:CB:40:0A:39:1A:C9 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0C88BBAE03A0994BEA08BE3D410017AD5CC6C41D Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/546828d4-9f43-44c2-bff8-aafeddca4e25.roa Signing time: Sat 15 Nov 2025 06:30:14 +0000 ROA not before: Sat 15 Nov 2025 06:30:14 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:88:bb:ae:03:a0:99:4b:ea:08:be:3d:41:00:17:ad:5c:c6:c4:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:30:14 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=f2279d8f8fc968cfb7121c482f805be5a15fdb5e5309b129f81b2f0509d5b2d2, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:40:5c:bb:04:74:2b:5c:ac:70:d5:4b:30:4d: 95:f8:74:34:90:b0:bf:10:7a:4a:ee:da:9b:62:bc: a6:6f:7d:56:85:05:82:bc:52:46:74:81:ea:76:6a: 14:5e:77:34:8a:4d:f9:9d:bb:6f:f2:11:db:50:3d: cf:be:d8:1f:8e:7b:63:fb:f9:35:59:91:e8:d8:ba: 36:87:d8:a7:aa:78:3e:3a:1a:c2:4b:8a:62:8d:9a: 39:86:fe:7c:84:92:da:8f:7c:3a:64:85:a2:8e:26: 6b:24:ca:9b:32:a5:21:06:fd:62:d2:fa:1a:88:bb: aa:7e:f0:8e:8c:44:f1:c1:a4:7e:51:86:3f:f2:5d: fb:eb:01:65:f5:94:00:df:10:be:92:17:0b:10:98: 91:ce:e8:1e:48:12:41:22:b2:95:70:18:d5:75:f1: e7:de:30:75:c2:37:42:13:33:a8:53:bc:15:01:e1: b6:9e:aa:88:3d:f7:1d:ae:a9:6e:4b:c6:a4:d0:27: af:2e:7c:5d:f3:d1:92:14:fc:64:3c:28:32:cf:98: 87:6b:40:56:2d:91:70:71:1d:cb:d4:0c:f7:bc:e2: 9d:70:fa:c9:42:07:6b:46:3d:12:a1:47:f0:98:77: 9c:ae:c3:a6:1a:07:79:c9:31:41:37:e0:af:c5:01: b5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:67:CD:FC:0D:D9:67:C3:A2:C0:7B:B5:9B:CE:CB:40:0A:39:1A:C9 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/546828d4-9f43-44c2-bff8-aafeddca4e25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:e040::/48 Signature Algorithm: sha256WithRSAEncryption 73:a3:eb:bb:d6:76:5d:c5:6e:c9:73:ca:09:2f:82:03:38:35: 35:c7:ed:42:46:4a:c3:21:1c:cc:d3:c2:69:e1:04:9a:55:3a: 8e:ad:68:c1:f6:7b:09:d4:e7:de:ad:6b:5b:d7:dc:b7:3e:72: 9e:a8:ca:9b:e6:25:47:36:8e:2d:1f:09:93:4f:24:4b:a6:93: 85:60:85:3c:20:4c:cb:bd:2e:45:a3:35:30:fc:10:d1:98:d4: 56:e6:21:1d:f2:41:cd:ea:c4:5a:00:4d:00:19:9e:4f:ed:c2: 2a:27:0c:30:e5:77:4b:f0:0b:22:c6:52:7b:d3:de:5c:98:cc: e6:4b:44:af:9b:e9:cb:61:09:62:bb:5e:7e:d5:7e:1c:9a:06: e9:89:ae:d9:dd:9d:7b:80:d3:8e:9e:e4:0b:12:72:6d:79:28: eb:cd:b8:c7:53:bc:5b:80:79:ce:51:f2:1e:ee:0f:9f:da:58: 81:73:5a:0d:cd:ad:ca:26:98:e9:e0:a2:9b:a9:7f:c1:26:01: 61:d3:2d:92:17:60:d3:30:f3:21:86:20:bd:22:8f:8f:31:57: 2f:ef:ea:ed:20:99:31:55:37:cb:6d:c4:a6:5d:3c:d0:04:fb: 93:20:55:59:82:a2:93:4e:f3:56:0b:7b:e3:5d:66:09:14:07: de:cc:3b:54 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUDIi7rgOgmUvqCL49QQAXrVzGxB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjMwMTRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGYyMjc5ZDhmOGZjOTY4Y2ZiNzEyMWM0ODJmODA1YmU1YTE1ZmRiNWU1MzA5 YjEyOWY4MWIyZjA1MDlkNWIyZDIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5AXLsEdCtcrHDVSzBNlfh0NJCwvxB6Su7am2K8pm99VoUFgrxSRnSB6nZq FF53NIpN+Z27b/IR21A9z77YH457Y/v5NVmR6Ni6NofYp6p4PjoawkuKYo2aOYb+ fISS2o98OmSFoo4mayTKmzKlIQb9YtL6Goi7qn7wjoxE8cGkflGGP/Jd++sBZfWU AN8QvpIXCxCYkc7oHkgSQSKylXAY1XXx594wdcI3QhMzqFO8FQHhtp6qiD33Ha6p bkvGpNAnry58XfPRkhT8ZDwoMs+Yh2tAVi2RcHEdy9QM97zinXD6yUIHa0Y9EqFH 8Jh3nK7DphoHeckxQTfgr8UBtUcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSrZ838 Ddlnw6LAe7WbzstACjkayTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTQ2ODI4ZDQtOWY0My00NGMyLWJmZjgtYWFmZWRkY2E0ZTI1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ADg QDANBgkqhkiG9w0BAQsFAAOCAQEAc6Pru9Z2XcVuyXPKCS+CAzg1NcftQkZKwyEc zNPCaeEEmlU6jq1owfZ7CdTn3q1rW9fctz5ynqjKm+YlRzaOLR8Jk08kS6aThWCF PCBMy70uRaM1MPwQ0ZjUVuYhHfJBzerEWgBNABmeT+3CKicMMOV3S/ALIsZSe9Pe XJjM5ktEr5vpy2EJYrteftV+HJoG6Ymu2d2de4DTjp7kCxJybXko6824x1O8W4B5 zlHyHu4Pn9pYgXNaDc2tyiaY6eCim6l/wSYBYdMtkhdg0zDzIYYgvSKPjzFXL+/q 7SCZMVU3y23Epl080AT7kyBVWYKik07zVgt7411mCRQH3sw7VA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:53 2025 by rpki-client