This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5d1fff98-4415-4cd0-b2cc-26f61a8cae7b.roa File: 5d1fff98-4415-4cd0-b2cc-26f61a8cae7b.roa (raw, json) Hash identifier: YbOwFZAecmz/75Ao4JtxwgGkNyYeyYWwhUtS+0lAASY= Subject key identifier: 6A:9A:62:84:DA:78:BB:74:5D:C7:F6:EB:BD:37:64:24:D5:0D:E8:C0 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2AE4ADE216842E91485CCAB6CA2129FCD0097F20 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5d1fff98-4415-4cd0-b2cc-26f61a8cae7b.roa Signing time: Sat 15 Nov 2025 05:50:11 +0000 ROA not before: Sat 15 Nov 2025 05:50:11 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:80b0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e4:ad:e2:16:84:2e:91:48:5c:ca:b6:ca:21:29:fc:d0:09:7f:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:50:11 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=5ed6a919baf93a3012dec33e0a87892d169d4cf09833ffe491aa45eae9c8b80d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:50:7d:10:0d:d7:37:be:92:a8:3f:ae:37:c0: 95:0e:b0:bc:09:d6:55:43:60:9c:c8:0c:78:41:52: 34:a1:ce:b2:57:04:d2:32:d0:79:36:2b:be:f2:8e: b9:4e:f2:5a:8c:1b:d2:95:ed:2f:63:e4:0d:07:1c: 5a:88:b2:aa:51:52:04:1d:7d:9a:6d:52:d7:21:9a: 87:60:ed:22:e7:d5:46:87:2c:d8:bd:12:f3:54:73: 51:b9:1b:d7:32:33:ba:db:6b:4e:26:db:2b:b9:e0: 61:44:57:14:f9:86:ad:fa:97:65:45:bd:3b:d1:9e: 11:ce:e9:32:59:d5:cb:b3:10:d1:a9:e8:3f:1d:5d: 00:77:3d:78:c6:67:59:8b:24:9f:5f:ba:40:e7:cf: bf:d2:5f:9d:e2:7b:1c:2d:0e:5d:0c:6e:7a:85:a9: 37:ab:fe:4e:26:97:1b:0c:d9:a5:55:34:d9:82:5a: 3a:5d:32:7d:eb:7f:7a:14:68:e0:72:f5:ce:18:81: 88:86:90:3b:65:4f:31:d2:81:f8:ad:e0:c5:82:ce: 2c:72:ba:c8:fb:35:a0:df:22:85:01:56:7c:d1:4d: 33:9a:ab:91:ec:00:63:f9:e9:09:3c:48:36:8d:af: 8a:69:94:e7:94:d2:55:82:94:cf:03:7d:26:b3:ad: df:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:9A:62:84:DA:78:BB:74:5D:C7:F6:EB:BD:37:64:24:D5:0D:E8:C0 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5d1fff98-4415-4cd0-b2cc-26f61a8cae7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:80b0::/48 Signature Algorithm: sha256WithRSAEncryption 7d:96:56:95:f4:47:3b:4b:f1:20:2a:21:b7:52:f6:9c:f6:48: 62:ec:af:e9:b3:18:29:d1:6d:0a:e8:d1:0a:64:7f:be:21:d6: f6:7e:26:65:ee:02:be:82:d6:79:d1:ba:fb:35:31:eb:7b:e2: 1b:d4:f9:2a:df:d7:bf:7b:e8:75:a7:1b:82:bb:0a:04:2d:57: 75:54:e0:b6:69:4c:e7:0f:78:58:e6:95:c9:eb:6c:d8:5b:b0: 20:55:03:8d:51:10:1a:42:e1:ea:8c:1b:6e:27:08:ce:e2:c8: e6:94:66:c6:29:fa:55:fc:e9:6b:81:72:c2:1b:4b:b2:c7:03: e7:54:cc:bd:ac:21:f1:82:ce:d2:d5:63:2d:88:ff:57:42:48: e0:df:d7:6b:ad:f7:ad:98:b4:b3:da:63:03:78:70:eb:1b:cb: 39:41:2b:3f:b1:2f:24:6a:76:81:8f:46:4f:09:32:a7:be:0b: 37:09:46:c6:bf:bc:85:ee:7c:1a:0c:e9:3a:1d:13:3c:da:fc: 89:46:b5:b0:04:36:b3:94:d3:ee:f4:0e:f1:fb:6b:6f:c7:d9: c5:95:18:01:c3:c7:cf:d7:b2:cc:a9:ff:a6:31:2a:9c:c5:9a: 3c:bf:74:39:7a:10:1f:3f:af:b3:5f:b4:14:54:cf:03:90:a2: 8f:8f:b6:ae -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUKuSt4haELpFIXMq2yiEp/NAJfyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTUwMTFaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDVlZDZhOTE5YmFmOTNhMzAxMmRlYzMzZTBhODc4OTJkMTY5ZDRjZjA5ODMz ZmZlNDkxYWE0NWVhZTljOGI4MGQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORQfRAN1ze+kqg/rjfAlQ6wvAnWVUNgnMgMeEFSNKHOslcE0jLQeTYrvvKO uU7yWowb0pXtL2PkDQccWoiyqlFSBB19mm1S1yGah2DtIufVRocs2L0S81RzUbkb 1zIzuttrTibbK7ngYURXFPmGrfqXZUW9O9GeEc7pMlnVy7MQ0anoPx1dAHc9eMZn WYskn1+6QOfPv9JfneJ7HC0OXQxueoWpN6v+TiaXGwzZpVU02YJaOl0yfet/ehRo 4HL1zhiBiIaQO2VPMdKB+K3gxYLOLHK6yPs1oN8ihQFWfNFNM5qrkewAY/npCTxI No2vimmU55TSVYKUzwN9JrOt31ECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRqmmKE 2ni7dF3H9uu9N2Qk1Q3owDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NWQxZmZmOTgtNDQxNS00Y2QwLWIyY2MtMjZmNjFhOGNhZTdiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H+A sDANBgkqhkiG9w0BAQsFAAOCAQEAfZZWlfRHO0vxICoht1L2nPZIYuyv6bMYKdFt CujRCmR/viHW9n4mZe4CvoLWedG6+zUx63viG9T5Kt/Xv3vodacbgrsKBC1XdVTg tmlM5w94WOaVyets2FuwIFUDjVEQGkLh6owbbicIzuLI5pRmxin6Vfzpa4FywhtL sscD51TMvawh8YLO0tVjLYj/V0JI4N/Xa633rZi0s9pjA3hw6xvLOUErP7EvJGp2 gY9GTwkyp74LNwlGxr+8he58GgzpOh0TPNr8iUa1sAQ2s5TT7vQO8ftrb8fZxZUY AcPHz9eyzKn/pjEqnMWaPL90OXoQHz+vs1+0FFTPA5Cij4+2rg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:32 2025 by rpki-client