This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/56c94df9-71ae-4a4a-8ebc-c8c1d589a4c7.roa File: 56c94df9-71ae-4a4a-8ebc-c8c1d589a4c7.roa (raw, json) Hash identifier: OaYkWWtuMc/38PXW2gtUep+H/Lc5Soweh8wqAfEJZHQ= Subject key identifier: EC:CA:EA:17:F1:B9:7F:5B:8F:CD:59:39:16:EC:B0:B0:25:18:A5:02 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 346DA53669F199AB39418A2E7995180F4B238354 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/56c94df9-71ae-4a4a-8ebc-c8c1d589a4c7.roa Signing time: Sun 23 Nov 2025 01:30:52 +0000 ROA not before: Sun 23 Nov 2025 01:30:52 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06a:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:6d:a5:36:69:f1:99:ab:39:41:8a:2e:79:95:18:0f:4b:23:83:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 23 01:30:52 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=ad9d0e0bb25d0a8624cf7e6b890634763175d63710c941001911a13f3df9a292, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b1:42:8e:0c:12:ab:a8:2c:71:b0:d1:a9:18: 56:1d:93:b2:49:9f:99:66:9c:12:5a:70:56:95:c6: ef:1f:1b:63:8d:6f:75:7c:c8:2a:0f:10:dd:d0:d9: 9e:54:e3:14:54:7c:c5:80:27:9f:53:b3:3b:6a:f9: 22:5b:b2:e9:f9:e6:e4:1c:38:60:7f:1e:fd:5c:0e: 6c:af:ce:2a:19:fc:0d:44:f4:9c:dc:6c:d3:fc:2d: ea:2e:f3:62:76:6b:f1:91:3b:82:dc:65:c4:55:81: 20:c3:47:23:6a:1f:25:00:7b:60:2e:4b:88:3a:ad: 61:2e:d5:6a:17:e0:a7:ec:76:65:8d:d0:f5:58:c7: 4b:a2:1f:53:dd:54:71:6b:07:4b:b9:24:f8:b9:e8: 13:0e:83:13:98:60:40:95:0a:ea:ee:b3:65:e6:1a: 38:8c:75:26:cd:5e:92:32:fc:e2:ac:f2:65:33:32: 8c:2b:85:a9:c2:73:73:40:4f:79:d1:ba:b7:20:18: e6:f3:7b:2d:4a:a7:0c:e9:47:d5:25:6a:4c:19:e3: 50:39:d9:af:62:a2:98:d3:05:de:08:8d:c6:4c:52: 16:a5:86:52:51:36:ca:51:69:9a:7c:ec:2f:68:e1: cf:16:55:4d:fc:0f:85:dd:c9:af:71:d8:d1:40:fd: e2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:CA:EA:17:F1:B9:7F:5B:8F:CD:59:39:16:EC:B0:B0:25:18:A5:02 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/56c94df9-71ae-4a4a-8ebc-c8c1d589a4c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06a:8000::/40 Signature Algorithm: sha256WithRSAEncryption 0a:58:b9:51:5a:58:c8:cb:11:69:63:af:ec:3b:ea:80:2c:05: 5c:c8:f6:66:da:77:60:cb:f4:7f:77:7d:c1:7e:c8:2f:ce:54: da:43:c6:87:62:9c:ee:00:b6:b4:ce:85:36:45:eb:5c:53:5d: 89:f5:f1:4c:07:5a:ac:29:ce:72:aa:92:18:ad:e0:de:1b:78: c5:2c:ac:b4:2d:44:7e:55:3a:3a:ba:a3:07:eb:f3:bf:db:3a: da:4b:77:20:d2:bc:6b:7b:99:3d:90:18:1c:5c:d1:55:8c:ab: 9e:8d:1b:67:8d:56:54:91:55:3b:99:31:6c:17:2f:5d:48:91: e9:59:ee:31:a1:a7:48:5e:60:8a:da:74:3e:a8:33:a3:8b:5b: 77:65:fa:07:0c:0b:63:e5:04:5b:44:0c:77:e1:db:26:03:74: 6b:ff:2d:eb:b8:be:55:8f:ab:72:f2:1c:7d:22:6e:df:c8:93: ff:a7:cd:84:10:5e:b7:32:f2:73:ed:55:4a:80:75:7e:49:85: 85:a2:b9:a8:be:37:f0:04:60:bf:12:00:c6:11:b0:d7:70:07: ea:bb:12:98:ed:25:18:28:91:7a:1c:14:b6:4d:75:4e:18:07: ba:e3:c3:30:6c:f7:43:e7:2d:db:d0:f0:52:a6:66:3c:88:04: cb:72:40:4a -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUNG2lNmnxmas5QYoueZUYD0sjg1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjMwMTMwNTJaFw0yNjAyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQGFkOWQwZTBiYjI1ZDBhODYyNGNmN2U2Yjg5MDYzNDc2MzE3NWQ2MzcxMGM5 NDEwMDE5MTFhMTNmM2RmOWEyOTIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANyxQo4MEquoLHGw0akYVh2TskmfmWacElpwVpXG7x8bY41vdXzIKg8Q3dDZ nlTjFFR8xYAnn1OzO2r5Iluy6fnm5Bw4YH8e/VwObK/OKhn8DUT0nNxs0/wt6i7z YnZr8ZE7gtxlxFWBIMNHI2ofJQB7YC5LiDqtYS7Vahfgp+x2ZY3Q9VjHS6IfU91U cWsHS7kk+LnoEw6DE5hgQJUK6u6zZeYaOIx1Js1ekjL84qzyZTMyjCuFqcJzc0BP edG6tyAY5vN7LUqnDOlH1SVqTBnjUDnZr2KimNMF3giNxkxSFqWGUlE2ylFpmnzs L2jhzxZVTfwPhd3Jr3HY0UD94tkCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTsyuoX 8bl/W4/NWTkW7LCwJRilAjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTZjOTRkZjktNzFhZS00YTRhLThlYmMtYzhjMWQ1ODlhNGM3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0GqA MA0GCSqGSIb3DQEBCwUAA4IBAQAKWLlRWljIyxFpY6/sO+qALAVcyPZm2ndgy/R/ d33BfsgvzlTaQ8aHYpzuALa0zoU2RetcU12J9fFMB1qsKc5yqpIYreDeG3jFLKy0 LUR+VTo6uqMH6/O/2zraS3cg0rxre5k9kBgcXNFVjKuejRtnjVZUkVU7mTFsFy9d SJHpWe4xoadIXmCK2nQ+qDOji1t3ZfoHDAtj5QRbRAx34dsmA3Rr/y3ruL5Vj6ty 8hx9Im7fyJP/p82EEF63MvJz7VVKgHV+SYWFormovjfwBGC/EgDGEbDXcAfquxKY 7SUYKJF6HBS2TXVOGAe648MwbPdD5y3b0PBSpmY8iATLckBK -----END CERTIFICATE-----Generated at Sat Dec 6 21:47:27 2025 by rpki-client