This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/613f885a-7f25-486b-9eff-fdd6b2c05b65.roa File: 613f885a-7f25-486b-9eff-fdd6b2c05b65.roa (raw, json) Hash identifier: xUemT6HcyDfWyMrmGvVOwzUXzThVUcRBiMd5sP1b/28= Subject key identifier: DC:BC:AF:FB:CB:08:0A:F5:A9:DB:A1:10:85:5D:BA:9A:85:A4:79:AF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4E13125987A391C8DEF96361F8F438835115EBBF Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/613f885a-7f25-486b-9eff-fdd6b2c05b65.roa Signing time: Sat 15 Nov 2025 06:31:05 +0000 ROA not before: Sat 15 Nov 2025 06:31:05 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:13:12:59:87:a3:91:c8:de:f9:63:61:f8:f4:38:83:51:15:eb:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:31:05 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=1c424471ffcb8be51e22cc43e6aaabef8085418583875caa306143a98176fbbf, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6d:39:51:1a:07:2a:55:ce:11:47:27:d4:ac: 7a:7e:cf:93:3b:7b:99:fd:94:1b:e8:34:10:a7:41: 30:ac:2e:dc:ed:29:32:c6:bf:75:86:be:a1:fb:55: b3:f7:47:1c:7f:c8:bc:cb:7c:27:70:05:c0:cf:37: 65:1b:c2:7a:00:07:f1:26:b8:74:f4:6d:96:12:38: 86:73:75:e7:23:35:89:db:d3:ee:36:ae:a8:08:9b: 85:71:5b:cf:31:7d:5c:8e:0c:a4:f6:42:99:f7:4b: 99:db:12:8c:5d:c3:e0:d1:fe:75:e3:2c:63:d0:bf: 08:93:4c:78:df:33:96:40:6e:69:54:9d:63:84:b2: 33:17:1a:db:55:45:42:1a:04:e1:8b:29:ce:ce:b2: 97:45:d6:72:02:cc:e2:39:65:09:5c:e1:74:42:eb: 39:84:9d:bb:74:7c:28:d0:a1:30:df:82:99:22:58: 62:31:c8:a5:04:05:30:e4:a9:4c:eb:02:1b:50:e0: 47:17:4e:73:43:14:eb:40:ce:98:e7:ae:bb:c2:19: c0:1c:00:47:54:59:bd:43:8e:db:13:3c:91:69:31: 3c:a6:4e:c8:25:b3:ad:c9:ff:cb:34:fb:8a:54:45: 43:cd:3f:d3:a4:f6:da:45:35:bb:e0:29:0b:ed:4e: a8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BC:AF:FB:CB:08:0A:F5:A9:DB:A1:10:85:5D:BA:9A:85:A4:79:AF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/613f885a-7f25-486b-9eff-fdd6b2c05b65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:4080::/48 Signature Algorithm: sha256WithRSAEncryption 05:fa:0b:b6:25:a3:e6:f7:c5:29:42:6e:18:9d:a7:8c:53:57: f7:7b:bd:53:4d:ce:d0:62:13:23:dc:1c:ea:f7:74:f1:6b:3e: be:75:e4:a0:4d:fc:b4:03:4b:34:23:8a:8f:7a:78:76:03:5b: 88:2e:62:f3:78:18:3b:ba:ba:8b:69:6f:1a:45:9a:b1:86:05: 8d:0b:cb:6b:98:57:bd:bf:52:ed:6f:13:ab:c5:ca:22:43:f8: ae:db:2d:73:be:8f:bb:49:da:97:44:7d:85:5e:24:83:74:a2: f7:7f:e3:4c:47:66:e6:52:45:f0:c5:05:82:7f:79:1f:35:e3: 34:42:03:03:d8:8e:5b:c4:31:61:02:ff:5e:c1:d4:f1:d4:ed: ed:82:89:b8:50:81:9c:64:de:85:70:21:0d:32:04:25:63:fb: d5:68:30:3e:8c:56:f3:fa:73:63:ee:11:fb:c2:9e:89:33:c5: 2a:1e:c6:55:ba:cb:cd:88:bd:5b:fa:22:8b:fb:0d:cf:70:89: 29:41:cd:a6:96:f4:91:17:7c:ba:be:b0:25:8b:80:66:c8:b5: 68:13:1b:a3:4c:1d:e4:27:0e:08:4f:6c:2c:b6:a6:99:65:15: 71:88:7e:54:7f:d9:b4:ec:e3:c3:aa:e1:5d:87:ff:0a:e2:52: 8c:df:d8:78 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUThMSWYejkcje+WNh+PQ4g1EV678wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjMxMDVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDFjNDI0NDcxZmZjYjhiZTUxZTIyY2M0M2U2YWFhYmVmODA4NTQxODU4Mzg3 NWNhYTMwNjE0M2E5ODE3NmZiYmYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZtOVEaBypVzhFHJ9Ssen7Pkzt7mf2UG+g0EKdBMKwu3O0pMsa/dYa+oftV s/dHHH/IvMt8J3AFwM83ZRvCegAH8Sa4dPRtlhI4hnN15yM1idvT7jauqAibhXFb zzF9XI4MpPZCmfdLmdsSjF3D4NH+deMsY9C/CJNMeN8zlkBuaVSdY4SyMxca21VF QhoE4Yspzs6yl0XWcgLM4jllCVzhdELrOYSdu3R8KNChMN+CmSJYYjHIpQQFMOSp TOsCG1DgRxdOc0MU60DOmOeuu8IZwBwAR1RZvUOO2xM8kWkxPKZOyCWzrcn/yzT7 ilRFQ80/06T22kU1u+ApC+1OqJkCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTcvK/7 ywgK9anboRCFXbqahaR5rzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NjEzZjg4NWEtN2YyNS00ODZiLTllZmYtZmRkNmIyYzA1YjY1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ABA gDANBgkqhkiG9w0BAQsFAAOCAQEABfoLtiWj5vfFKUJuGJ2njFNX93u9U03O0GIT I9wc6vd08Ws+vnXkoE38tANLNCOKj3p4dgNbiC5i83gYO7q6i2lvGkWasYYFjQvL a5hXvb9S7W8Tq8XKIkP4rtstc76Pu0nal0R9hV4kg3Si93/jTEdm5lJF8MUFgn95 HzXjNEIDA9iOW8QxYQL/XsHU8dTt7YKJuFCBnGTehXAhDTIEJWP71WgwPoxW8/pz Y+4R+8KeiTPFKh7GVbrLzYi9W/oii/sNz3CJKUHNppb0kRd8ur6wJYuAZsi1aBMb o0wd5CcOCE9sLLammWUVcYh+VH/ZtOzjw6rhXYf/CuJSjN/YeA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:54:33 2025 by rpki-client