This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/631196a4-90f5-4760-982e-15fbaf4805ec.roa File: 631196a4-90f5-4760-982e-15fbaf4805ec.roa (raw, json) Hash identifier: RhtriuTO+FVpl43DOiqmuAdeFZYMoUOaxZmWP42CULc= Subject key identifier: E5:DC:AD:F0:C1:68:87:6A:48:9E:FC:C0:85:63:16:99:D3:CE:DE:57 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1E52A148C5331F2FFA718D2DF20BE00FEFB59216 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/631196a4-90f5-4760-982e-15fbaf4805ec.roa Signing time: Thu 13 Nov 2025 02:00:44 +0000 ROA not before: Thu 13 Nov 2025 02:00:44 +0000 ROA not after: Thu 18 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d020:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:52:a1:48:c5:33:1f:2f:fa:71:8d:2d:f2:0b:e0:0f:ef:b5:92:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 13 02:00:44 2025 GMT Not After : Dec 18 23:59:59 2025 GMT Subject: serialNumber=4e36f400841402f44daf9672d9c75e1949c641251188fc5cbc94dcf32574b200, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ae:30:f8:f9:e4:1c:e1:12:18:82:89:77:7a: 0e:31:1d:9a:51:80:6f:82:b9:31:69:81:c4:70:38: e7:1a:58:f7:58:7e:d7:81:9c:c0:3f:ad:7b:f0:9c: 3a:d9:59:27:e4:1d:43:e4:d7:03:db:18:04:e0:6a: 7f:9b:52:4c:13:b5:67:41:34:9c:e8:07:03:6f:4b: 6f:b1:c0:a3:d4:14:fc:c2:ab:4d:f4:c4:ed:d2:01: 42:d3:01:25:39:1e:49:7f:d2:03:a2:65:42:2b:84: dc:82:af:70:c5:05:ab:f0:a5:a4:5d:55:63:4f:e6: dc:18:6a:95:32:54:05:d6:fd:61:bb:df:54:07:0f: 42:90:4b:b2:97:0b:94:9d:16:0d:2a:93:86:5c:19: 12:c5:aa:e4:5a:b2:83:2b:ee:d3:91:98:24:0a:40: 98:86:e1:5e:97:fb:01:70:2f:de:b8:63:58:54:90: 3f:67:48:4a:d6:bd:00:0d:4e:fb:7e:92:13:cb:82: 34:70:64:96:32:c2:d6:3b:88:67:7c:de:87:cc:d0: 09:16:4d:22:3d:ec:0a:56:e9:08:f7:3a:dd:c4:a7: 87:65:e2:78:d7:64:a6:9a:f3:7f:8a:6d:ce:63:fa: 07:e6:be:d6:c9:00:6f:fa:f0:76:7e:93:b0:f6:f5: 1f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:DC:AD:F0:C1:68:87:6A:48:9E:FC:C0:85:63:16:99:D3:CE:DE:57 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/631196a4-90f5-4760-982e-15fbaf4805ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d020:8000::/36 Signature Algorithm: sha256WithRSAEncryption 60:6c:4a:29:d0:fe:69:e0:09:5a:6e:02:b4:81:67:e0:e7:61: de:c6:7f:8b:53:08:f4:ae:99:16:58:2b:00:97:09:55:bf:fb: 63:c5:05:c8:b5:e7:8e:4d:0b:9e:93:a7:4c:c8:1d:da:d4:e9: 62:a2:76:30:d5:a5:6a:67:37:48:c2:d9:03:29:7f:71:89:15: 14:78:85:94:f4:86:fb:00:c9:d1:9e:c5:84:39:8f:2e:fe:96: 3f:df:af:0b:82:a5:d7:1b:ba:92:46:a4:1b:6d:0a:a5:91:3e: 86:10:8e:78:f7:99:3b:42:84:58:b1:d2:e0:03:15:80:49:41: 2e:67:0f:cd:10:d3:a3:ed:59:09:7d:e2:a4:74:33:c7:f3:ab: 7b:07:d3:6c:93:95:cc:f4:5c:44:60:18:f3:0d:b5:bf:c4:25: ed:82:45:5d:96:86:31:9b:80:bf:c1:74:69:a8:60:ec:e3:0f: cb:95:81:31:63:99:0d:90:0f:3d:7f:41:f0:6b:53:cc:97:26: d8:4d:09:b6:09:6f:1d:57:c8:9d:57:cb:d7:85:c6:98:73:ce: 93:42:35:98:0e:1b:2d:63:d8:ff:27:ca:c6:92:05:75:a2:ad: c5:4e:6f:6a:dd:c3:3b:86:6d:66:34:21:b8:21:77:f4:e5:95: ec:91:76:97 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUHlKhSMUzHy/6cY0t8gvgD++1khYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTMwMjAwNDRaFw0yNTEyMTgyMzU5NTlaMHoxSTBHBgNV BAUTQDRlMzZmNDAwODQxNDAyZjQ0ZGFmOTY3MmQ5Yzc1ZTE5NDljNjQxMjUxMTg4 ZmM1Y2JjOTRkY2YzMjU3NGIyMDAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKquMPj55BzhEhiCiXd6DjEdmlGAb4K5MWmBxHA45xpY91h+14GcwD+te/Cc OtlZJ+QdQ+TXA9sYBOBqf5tSTBO1Z0E0nOgHA29Lb7HAo9QU/MKrTfTE7dIBQtMB JTkeSX/SA6JlQiuE3IKvcMUFq/ClpF1VY0/m3BhqlTJUBdb9YbvfVAcPQpBLspcL lJ0WDSqThlwZEsWq5Fqygyvu05GYJApAmIbhXpf7AXAv3rhjWFSQP2dISta9AA1O +36SE8uCNHBkljLC1juIZ3zeh8zQCRZNIj3sClbpCPc63cSnh2XieNdkpprzf4pt zmP6B+a+1skAb/rwdn6TsPb1H9UCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTl3K3w wWiHakie/MCFYxaZ087eVzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NjMxMTk2YTQtOTBmNS00NzYwLTk4MmUtMTVmYmFmNDgwNWVjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0CCA MA0GCSqGSIb3DQEBCwUAA4IBAQBgbEop0P5p4AlabgK0gWfg52Hexn+LUwj0rpkW WCsAlwlVv/tjxQXIteeOTQuek6dMyB3a1OlionYw1aVqZzdIwtkDKX9xiRUUeIWU 9Ib7AMnRnsWEOY8u/pY/368LgqXXG7qSRqQbbQqlkT6GEI5495k7QoRYsdLgAxWA SUEuZw/NENOj7VkJfeKkdDPH86t7B9Nsk5XM9FxEYBjzDbW/xCXtgkVdloYxm4C/ wXRpqGDs4w/LlYExY5kNkA89f0Hwa1PMlybYTQm2CW8dV8idV8vXhcaYc86TQjWY DhstY9j/J8rGkgV1oq3FTm9q3cM7hm1mNCG4IXf05ZXskXaX -----END CERTIFICATE-----Generated at Sat Dec 6 13:37:29 2025 by rpki-client