This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55319939-c579-4c1b-9f48-044cfb76804d.roa File: 55319939-c579-4c1b-9f48-044cfb76804d.roa (raw, json) Hash identifier: mgYeCjxYMQtT8kduPCOa2yIHZF/YMknO+sVFd9qti+o= Subject key identifier: 9C:D3:D6:20:C6:53:BC:D3:02:38:48:C7:09:0E:6B:F4:70:3F:6B:C0 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0DDD6FE47DA5CA333527CE47F602DFBDBD4C6E00 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55319939-c579-4c1b-9f48-044cfb76804d.roa Signing time: Sun 23 Nov 2025 01:30:46 +0000 ROA not before: Sun 23 Nov 2025 01:30:46 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06a:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:dd:6f:e4:7d:a5:ca:33:35:27:ce:47:f6:02:df:bd:bd:4c:6e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 23 01:30:46 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=e4f61f2f075d440e0590118249b4493a15551ece1d200af8f4eb255d3f593f5f, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:38:db:04:60:72:11:76:9c:dd:66:2e:e9:a6: 76:dd:19:16:4b:27:0b:39:42:58:4b:03:30:08:3c: bf:64:27:17:42:af:d2:cd:95:5e:5e:11:8c:4f:c8: 9a:9a:08:95:94:9c:93:68:74:be:0a:4e:f3:5a:f0: 8b:2f:ce:28:3b:c1:84:2c:f6:7c:f5:3a:36:e2:cd: a7:09:72:d6:9a:5f:ea:b6:76:b1:38:4e:af:82:a4: f5:6e:ad:f6:60:34:b1:56:9c:6d:d4:73:fd:39:e6: 44:4f:2d:ec:9d:c8:43:cd:f0:a9:fa:e8:80:34:79: 01:22:7f:ca:81:64:11:53:84:17:eb:c7:7c:cd:f9: 82:2a:36:41:ab:5a:e3:b1:63:e2:2d:75:45:6b:b1: 5c:c1:5b:2d:ce:15:7d:b5:1b:75:f0:49:c7:04:b0: 90:7c:34:d6:03:54:bd:3d:ab:a4:ed:7a:83:ff:c3: 20:20:d2:30:90:67:7b:d1:1b:96:62:ff:a9:70:72: 9a:b6:67:41:ba:5d:58:99:b1:a4:3d:e5:c3:4d:60: 68:74:6c:b1:c4:9c:c2:01:56:83:aa:30:e8:cf:12: 88:b4:0c:00:a3:7a:f0:a6:5a:e3:86:0c:28:dd:76: 03:b1:76:23:81:73:c3:d3:db:45:2d:9c:ca:f4:21: e1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:D3:D6:20:C6:53:BC:D3:02:38:48:C7:09:0E:6B:F4:70:3F:6B:C0 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55319939-c579-4c1b-9f48-044cfb76804d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06a:10c0::/48 Signature Algorithm: sha256WithRSAEncryption 62:7f:62:fb:98:8a:ae:cc:59:a6:64:f8:40:f4:34:c7:e9:d7: cd:aa:06:3d:41:bb:6f:12:e9:22:b1:24:d3:33:b7:4c:b8:5c: f2:f3:44:65:db:58:27:16:97:83:fe:90:80:29:30:ea:74:f8: 46:05:b7:3d:fc:d4:a5:de:a3:f9:47:86:6d:84:a5:b2:3f:86: 23:97:31:5f:7c:97:7a:fd:68:77:0c:f7:b7:1b:e0:98:92:b3: cb:92:37:64:d2:b5:36:81:ff:4c:4c:26:94:65:fc:d1:bf:64: 86:09:f1:d3:6d:4e:4a:07:d7:a8:af:ca:7d:b3:a1:c9:76:38: 27:88:d0:e0:82:33:91:69:d9:e7:10:e4:22:25:fc:16:c5:1d: e5:3a:f6:40:0c:98:51:61:f6:3e:d3:c6:f0:7f:3e:2c:0a:4f: a0:b7:f8:b4:61:f8:ac:95:00:50:49:92:a7:93:40:bc:35:f7: 78:b1:5a:ee:0e:b8:83:92:82:44:fa:c2:00:4b:9c:1d:1d:38: 9e:96:aa:98:93:b8:ea:9e:88:b3:99:13:b9:bf:4d:3a:56:b2: 4e:ec:79:42:e6:f7:7b:65:cb:73:78:7e:93:42:50:72:f4:c6: b3:32:a9:18:69:b4:55:e0:87:c7:02:4a:e8:a4:c9:e4:b8:98: f6:d7:9b:58 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUDd1v5H2lyjM1J85H9gLfvb1MbgAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjMwMTMwNDZaFw0yNjAyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQGU0ZjYxZjJmMDc1ZDQ0MGUwNTkwMTE4MjQ5YjQ0OTNhMTU1NTFlY2UxZDIw MGFmOGY0ZWIyNTVkM2Y1OTNmNWYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANE42wRgchF2nN1mLummdt0ZFksnCzlCWEsDMAg8v2QnF0Kv0s2VXl4RjE/I mpoIlZSck2h0vgpO81rwiy/OKDvBhCz2fPU6NuLNpwly1ppf6rZ2sThOr4Kk9W6t 9mA0sVacbdRz/TnmRE8t7J3IQ83wqfrogDR5ASJ/yoFkEVOEF+vHfM35gio2Qata 47Fj4i11RWuxXMFbLc4VfbUbdfBJxwSwkHw01gNUvT2rpO16g//DICDSMJBne9Eb lmL/qXBymrZnQbpdWJmxpD3lw01gaHRsscScwgFWg6ow6M8SiLQMAKN68KZa44YM KN12A7F2I4Fzw9PbRS2cyvQh4f0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSc09Yg xlO80wI4SMcJDmv0cD9rwDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTUzMTk5MzktYzU3OS00YzFiLTlmNDgtMDQ0Y2ZiNzY4MDRkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0GoQ wDANBgkqhkiG9w0BAQsFAAOCAQEAYn9i+5iKrsxZpmT4QPQ0x+nXzaoGPUG7bxLp IrEk0zO3TLhc8vNEZdtYJxaXg/6QgCkw6nT4RgW3PfzUpd6j+UeGbYSlsj+GI5cx X3yXev1odwz3txvgmJKzy5I3ZNK1NoH/TEwmlGX80b9khgnx021OSgfXqK/KfbOh yXY4J4jQ4IIzkWnZ5xDkIiX8FsUd5Tr2QAyYUWH2PtPG8H8+LApPoLf4tGH4rJUA UEmSp5NAvDX3eLFa7g64g5KCRPrCAEucHR04npaqmJO46p6Is5kTub9NOlayTux5 Qub3e2XLc3h+k0JQcvTGszKpGGm0VeCHxwJK6KTJ5LiY9tebWA== -----END CERTIFICATE-----Generated at Sun Dec 7 01:07:21 2025 by rpki-client