This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/62d19016-7a77-4f9c-a163-b01636d2402b.roa File: 62d19016-7a77-4f9c-a163-b01636d2402b.roa (raw, json) Hash identifier: zDa8EG2qEeTpMsDQML0Ogtgc/XlFLgSbgcWUQZygmI8= Subject key identifier: C9:73:94:AE:9F:8F:E1:99:A1:08:CA:21:57:EB:15:00:F1:E1:10:F9 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6700041BC09D3876183834F959472D200DA2ACFC Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/62d19016-7a77-4f9c-a163-b01636d2402b.roa Signing time: Sun 23 Nov 2025 01:30:36 +0000 ROA not before: Sun 23 Nov 2025 01:30:36 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06a:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:00:04:1b:c0:9d:38:76:18:38:34:f9:59:47:2d:20:0d:a2:ac:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 23 01:30:36 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=129a82ef64f66f5383207205640a26c638ff9d9bde61cb5aa9e59fe5e591ca9d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:16:6a:4e:ea:53:1e:81:f4:dc:a8:09:45: 80:55:06:98:84:81:e0:e8:ab:cd:95:46:9f:0b:89: 72:72:f2:0b:d7:db:a9:11:17:75:17:46:36:00:c8: 99:83:f0:fb:82:36:db:39:c0:1e:84:32:ce:82:64: f5:05:78:f2:aa:d8:ec:10:0b:e8:c3:1e:32:f4:e5: 50:d5:f3:8a:0f:be:ef:86:a2:f3:43:19:26:d3:a0: 3b:70:b0:8c:64:75:73:48:aa:a7:b2:00:cd:4f:48: 33:34:f4:de:78:a0:bf:42:12:cf:75:af:1b:74:b8: fe:dd:a0:92:7b:fa:2f:cc:9f:0d:3b:7d:fa:87:9a: 2f:0c:8e:c8:84:27:ee:f1:a8:10:7f:81:da:34:e7: e2:60:ef:ef:3b:b2:0f:6a:a6:ea:56:b5:50:fc:bc: 3c:27:30:ac:ad:f8:74:45:00:79:d7:24:ef:6e:42: 19:b4:0c:0a:74:0f:35:b6:dc:9c:f3:78:b4:3d:64: 8b:fd:fc:9c:da:af:81:0a:88:1f:2d:1c:51:ef:44: 06:e3:c1:65:82:39:80:7c:85:7e:ee:92:72:82:7d: ff:73:d7:43:5c:10:04:9c:d9:4b:89:80:db:4d:e4: f8:8c:a7:aa:7e:a9:00:63:ae:08:82:b6:48:95:c6: 39:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:73:94:AE:9F:8F:E1:99:A1:08:CA:21:57:EB:15:00:F1:E1:10:F9 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/62d19016-7a77-4f9c-a163-b01636d2402b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06a:e040::/48 Signature Algorithm: sha256WithRSAEncryption 88:79:c6:14:55:8f:53:f7:fb:b7:3f:f5:af:83:d8:42:fb:8b: 8e:ff:a9:e9:b6:77:1d:8f:d2:66:16:7a:78:09:16:70:87:d5: fe:85:32:99:a4:64:39:4b:c2:72:c1:84:29:5f:d2:4d:b0:c0: 50:43:01:0d:01:c0:a3:28:b9:09:e5:28:1b:98:46:e9:7b:9b: 34:e2:4d:db:ef:d5:56:be:b1:cc:0e:3e:0b:1d:80:9a:0e:70: ed:4b:b2:63:c9:9b:d8:f9:57:b8:9e:3d:37:01:d5:32:68:07: 2c:49:91:f0:0a:64:42:74:28:39:ca:c3:d1:8e:f6:71:d1:f8: d9:84:b1:53:e1:b4:96:e0:61:54:ae:06:bd:68:b6:c9:bd:a5: 82:4e:0e:f3:6e:fb:dd:4d:e2:16:ae:ed:ab:ec:a1:b8:d6:69: ba:10:ce:b7:f7:64:3e:1e:26:4c:8f:18:2e:22:4b:24:29:59: 37:2d:c3:79:57:9a:64:9c:ba:fc:62:c8:62:ef:8a:97:a0:82: 05:ae:13:d1:f1:b0:7c:81:5c:65:3f:05:be:74:ec:8d:a4:cf: 90:99:23:8c:cb:c4:05:6a:be:4a:63:ae:9e:c4:f7:b1:dc:a0: 07:40:07:b2:da:f1:42:44:e1:21:ee:51:88:75:60:72:4d:d5: be:20:46:a8 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUZwAEG8CdOHYYODT5WUctIA2irPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjMwMTMwMzZaFw0yNjAyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQDEyOWE4MmVmNjRmNjZmNTM4MzIwNzIwNTY0MGEyNmM2MzhmZjlkOWJkZTYx Y2I1YWE5ZTU5ZmU1ZTU5MWNhOWQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALriFmpO6lMegfTcqAlFgFUGmISB4OirzZVGnwuJcnLyC9fbqREXdRdGNgDI mYPw+4I22znAHoQyzoJk9QV48qrY7BAL6MMeMvTlUNXzig++74ai80MZJtOgO3Cw jGR1c0iqp7IAzU9IMzT03nigv0ISz3WvG3S4/t2gknv6L8yfDTt9+oeaLwyOyIQn 7vGoEH+B2jTn4mDv7zuyD2qm6la1UPy8PCcwrK34dEUAedck725CGbQMCnQPNbbc nPN4tD1ki/38nNqvgQqIHy0cUe9EBuPBZYI5gHyFfu6ScoJ9/3PXQ1wQBJzZS4mA 203k+Iynqn6pAGOuCIK2SJXGOc0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTJc5Su n4/hmaEIyiFX6xUA8eEQ+TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NjJkMTkwMTYtN2E3Ny00ZjljLWExNjMtYjAxNjM2ZDI0MDJiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0Grg QDANBgkqhkiG9w0BAQsFAAOCAQEAiHnGFFWPU/f7tz/1r4PYQvuLjv+p6bZ3HY/S ZhZ6eAkWcIfV/oUymaRkOUvCcsGEKV/STbDAUEMBDQHAoyi5CeUoG5hG6XubNOJN 2+/VVr6xzA4+Cx2Amg5w7UuyY8mb2PlXuJ49NwHVMmgHLEmR8ApkQnQoOcrD0Y72 cdH42YSxU+G0luBhVK4GvWi2yb2lgk4O82773U3iFq7tq+yhuNZpuhDOt/dkPh4m TI8YLiJLJClZNy3DeVeaZJy6/GLIYu+Kl6CCBa4T0fGwfIFcZT8FvnTsjaTPkJkj jMvEBWq+SmOunsT3sdygB0AHstrxQkThIe5RiHVgck3VviBGqA== -----END CERTIFICATE-----Generated at Sat Dec 6 21:46:59 2025 by rpki-client