This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/593bb6f2-1ee0-4352-97de-e329502838f7.roa File: 593bb6f2-1ee0-4352-97de-e329502838f7.roa (raw, json) Hash identifier: zGQE22MNrpODJjBmHUVsPVxKFzixY1hSkah3ppAIXa8= Subject key identifier: AD:DC:0F:A5:EC:BE:98:75:98:1E:6F:73:92:C6:5B:B0:28:ED:FA:45 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6CAA4145EB1CF93CC1A6B89CE86209188010DC53 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/593bb6f2-1ee0-4352-97de-e329502838f7.roa Signing time: Thu 13 Nov 2025 02:00:38 +0000 ROA not before: Thu 13 Nov 2025 02:00:38 +0000 ROA not after: Thu 18 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d034:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:aa:41:45:eb:1c:f9:3c:c1:a6:b8:9c:e8:62:09:18:80:10:dc:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 13 02:00:38 2025 GMT Not After : Dec 18 23:59:59 2025 GMT Subject: serialNumber=4fa5cb32867508a27233a3a068bd3dbc673ea9f77f6e5ddf3126d99c656b1895, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:34:72:9d:5e:aa:e0:0b:2e:fd:3f:cc:a6:07: 98:ed:7c:97:57:f0:8f:81:d7:49:2e:a8:c6:a2:1c: b8:bf:c2:e4:6e:24:15:6b:c7:7b:49:1f:81:af:ea: ad:84:cc:42:12:14:f8:bf:7d:47:6d:c9:30:03:08: b0:25:02:a3:59:d5:b2:57:92:85:0b:73:a3:ab:07: ac:bd:3f:79:2a:77:e5:68:fd:2e:ca:db:e6:e7:49: 80:4e:ef:54:53:d1:c7:30:73:71:09:53:fa:03:03: a8:a9:23:cd:2c:e2:75:98:b6:0b:ee:90:cd:67:61: 83:f8:d2:7f:03:f9:2c:24:88:9f:36:41:83:d0:ae: fc:ba:f7:50:c3:1f:61:bc:a0:86:f8:01:79:15:0c: 1a:3d:8c:7b:9f:b2:b8:64:dc:c9:33:02:4e:22:ef: 9d:56:35:d5:e6:d3:43:de:1f:18:07:1b:9d:d1:a7: dd:67:f7:8a:15:43:4d:a7:6f:84:7e:c5:4a:9a:a4: 0f:b8:54:85:8b:82:67:71:26:d8:47:60:b1:89:df: 67:10:20:61:e5:62:10:1d:41:ea:60:ec:a7:ac:30: a5:de:17:67:70:14:df:ad:37:df:f5:02:e7:ad:d5: 77:45:79:e4:24:b4:c5:a6:9b:0b:ec:39:32:48:fb: ec:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:DC:0F:A5:EC:BE:98:75:98:1E:6F:73:92:C6:5B:B0:28:ED:FA:45 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/593bb6f2-1ee0-4352-97de-e329502838f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d034:800::/40 Signature Algorithm: sha256WithRSAEncryption 6b:3b:a7:a6:9b:05:04:ea:7d:5f:77:eb:25:40:90:85:7f:e5: 1b:09:45:30:3b:d8:0e:1f:3d:6a:c5:08:02:fb:72:c5:27:b7: 3d:bf:22:e3:a3:f1:97:68:6d:d3:68:fc:be:67:a7:fa:4a:0c: 41:5e:32:de:e1:97:ba:60:0a:15:ba:e5:8a:cc:a4:56:c5:18: e7:fa:f1:a4:eb:cd:7a:5c:5a:03:8b:04:1d:6e:07:b1:90:2a: e1:92:a6:d8:67:d6:cd:0f:0c:e0:ba:5c:c3:41:5b:a9:83:58: 99:7a:81:c8:fd:81:2f:a0:8b:33:97:0e:b0:29:ac:7f:21:5d: 63:92:33:b4:04:30:07:d5:f0:f6:92:df:b3:c6:27:9d:a2:8e: 60:f9:99:48:9f:4b:4d:39:19:5e:fa:15:8b:25:2b:9a:09:2f: e4:b0:3a:9d:ae:8d:08:cd:9c:5f:3b:66:32:1b:bf:98:89:8e: ee:24:6a:d7:28:6c:91:58:67:16:34:d8:7c:40:99:6a:66:8d: e0:50:8f:59:40:5b:9d:8e:33:8f:4e:ed:dc:d6:9f:fd:a8:5b: 22:2a:43:e2:e8:bc:98:26:4a:38:fd:2a:8a:a3:1c:24:bd:8f: c1:b1:f2:d5:10:58:db:da:93:1c:0f:dc:3d:8f:ac:9e:ab:65: a3:21:38:d8 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUbKpBResc+TzBpric6GIJGIAQ3FMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTMwMjAwMzhaFw0yNTEyMTgyMzU5NTlaMHoxSTBHBgNV BAUTQDRmYTVjYjMyODY3NTA4YTI3MjMzYTNhMDY4YmQzZGJjNjczZWE5Zjc3ZjZl NWRkZjMxMjZkOTljNjU2YjE4OTUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALw0cp1equALLv0/zKYHmO18l1fwj4HXSS6oxqIcuL/C5G4kFWvHe0kfga/q rYTMQhIU+L99R23JMAMIsCUCo1nVsleShQtzo6sHrL0/eSp35Wj9Lsrb5udJgE7v VFPRxzBzcQlT+gMDqKkjzSzidZi2C+6QzWdhg/jSfwP5LCSInzZBg9Cu/Lr3UMMf YbyghvgBeRUMGj2Me5+yuGTcyTMCTiLvnVY11ebTQ94fGAcbndGn3Wf3ihVDTadv hH7FSpqkD7hUhYuCZ3Em2EdgsYnfZxAgYeViEB1B6mDsp6wwpd4XZ3AU36033/UC 563Vd0V55CS0xaabC+w5Mkj77P0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSt3A+l 7L6YdZgeb3OSxluwKO36RTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTkzYmI2ZjItMWVlMC00MzUyLTk3ZGUtZTMyOTUwMjgzOGY3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DQI MA0GCSqGSIb3DQEBCwUAA4IBAQBrO6emmwUE6n1fd+slQJCFf+UbCUUwO9gOHz1q xQgC+3LFJ7c9vyLjo/GXaG3TaPy+Z6f6SgxBXjLe4Ze6YAoVuuWKzKRWxRjn+vGk 6816XFoDiwQdbgexkCrhkqbYZ9bNDwzgulzDQVupg1iZeoHI/YEvoIszlw6wKax/ IV1jkjO0BDAH1fD2kt+zxiedoo5g+ZlIn0tNORle+hWLJSuaCS/ksDqdro0IzZxf O2YyG7+YiY7uJGrXKGyRWGcWNNh8QJlqZo3gUI9ZQFudjjOPTu3c1p/9qFsiKkPi 6LyYJko4/SqKoxwkvY/BsfLVEFjb2pMcD9w9j6yeq2WjITjY -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:32 2025 by rpki-client