This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6a082d12-70e1-4005-8dd1-52b78c0c75af.roa File: 6a082d12-70e1-4005-8dd1-52b78c0c75af.roa (raw, json) Hash identifier: 0BylBkPBn86bjoz8R6nox+MpeA4qGKySTYg7yLcnBxE= Subject key identifier: C2:09:DA:60:80:09:60:11:F5:14:67:6F:12:E3:AC:99:72:31:E8:BF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 58B483D873FFA455AF8D91EAEC93293AD12A0995 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6a082d12-70e1-4005-8dd1-52b78c0c75af.roa Signing time: Tue 25 Nov 2025 20:00:04 +0000 ROA not before: Tue 25 Nov 2025 20:00:04 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:a080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:b4:83:d8:73:ff:a4:55:af:8d:91:ea:ec:93:29:3a:d1:2a:09:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:00:04 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=46c3844286f01c4f0c37fa6848b97f074d7c44bba093c39fb401b504a570b771, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:26:ba:10:dc:6c:56:23:0b:68:43:40:a5:97: a4:f3:3d:0e:ef:44:79:f0:59:8a:07:31:a9:dc:81: 2f:5d:96:b4:73:43:fa:60:1f:88:a0:82:53:e7:ba: 4f:df:3b:1f:59:a3:ab:11:1c:18:b6:65:69:f6:2f: f1:d8:13:bc:ac:45:c1:ff:bb:0d:73:08:ef:96:ac: 6b:c7:ff:b4:48:99:0c:a9:1d:55:66:d4:2e:ea:e3: 88:39:fb:9e:43:a3:af:57:d6:f7:7f:27:19:af:81: f4:71:93:44:a7:12:f4:f4:95:eb:a4:4a:af:79:87: c1:c9:8e:ec:20:8c:d3:54:43:60:da:16:0d:bb:b7: d7:27:c2:25:9c:f1:19:aa:5c:5f:67:61:27:b9:46: dd:fc:d9:ba:db:9e:3d:62:62:ed:64:56:8d:43:0b: 34:a9:a4:77:1f:47:99:a5:f6:bf:03:26:6c:7a:f9: 0e:c8:8d:c2:ce:d0:de:b0:bd:94:a2:0b:7d:b1:ba: 7c:4a:8b:0c:06:34:cb:78:b0:1f:dd:5b:1f:41:cb: b3:0a:79:f8:56:bd:6b:83:2b:5b:c5:c1:53:68:ce: 44:d1:d7:fb:cc:a1:38:80:a9:80:40:f3:fe:95:17: 43:13:6c:71:76:9b:70:41:d1:a6:29:b6:36:7f:bf: ed:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:09:DA:60:80:09:60:11:F5:14:67:6F:12:E3:AC:99:72:31:E8:BF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6a082d12-70e1-4005-8dd1-52b78c0c75af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:a080::/46 Signature Algorithm: sha256WithRSAEncryption 50:28:dd:2f:1a:a6:9d:83:49:b5:1c:d8:09:a6:0d:1e:21:9d: 58:21:46:41:7c:71:55:21:61:0f:c8:e6:af:9b:8a:c9:1f:ee: 95:17:7a:94:71:b7:d6:00:73:55:da:20:82:42:dd:ed:93:61: c8:15:da:c2:8c:1e:99:47:d3:91:97:8a:43:f6:58:87:f4:0f: 43:31:14:59:c9:20:ca:d6:69:3d:f0:da:d4:ce:56:d3:0d:a6: d0:1f:89:5d:8f:ed:71:83:24:a8:1c:a2:3c:99:32:c9:7c:8d: 96:76:b6:e1:c6:86:ce:6f:c9:d4:98:3c:75:c4:46:54:41:5d: 5a:5f:97:94:f7:41:5f:ed:55:f1:61:01:20:cf:09:1e:e0:89: e0:bb:ac:7d:53:5f:de:4b:e8:9a:79:5a:54:cb:e3:eb:cb:81: ea:f6:a1:af:74:91:2d:5c:a7:ee:3c:af:f9:da:6f:6c:4f:ec: ed:56:34:96:5e:5b:e4:d3:82:8e:57:4b:46:6b:f2:2d:64:75: 60:2b:55:7b:69:12:ea:26:63:6f:a0:c9:0a:e4:9f:09:b9:70: 62:e5:1e:f7:d8:df:68:14:e4:ec:be:ed:8b:f6:f6:f8:22:65: f1:d7:b5:50:64:79:95:20:15:9d:7c:9b:0d:e4:2c:db:f7:bd: e6:45:8e:98 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUWLSD2HP/pFWvjZHq7JMpOtEqCZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAwMDRaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDQ2YzM4NDQyODZmMDFjNGYwYzM3ZmE2ODQ4Yjk3ZjA3NGQ3YzQ0YmJhMDkz YzM5ZmI0MDFiNTA0YTU3MGI3NzExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK4muhDcbFYjC2hDQKWXpPM9Du9EefBZigcxqdyBL12WtHND+mAfiKCCU+e6 T987H1mjqxEcGLZlafYv8dgTvKxFwf+7DXMI75asa8f/tEiZDKkdVWbULurjiDn7 nkOjr1fW938nGa+B9HGTRKcS9PSV66RKr3mHwcmO7CCM01RDYNoWDbu31yfCJZzx GapcX2dhJ7lG3fzZutuePWJi7WRWjUMLNKmkdx9HmaX2vwMmbHr5DsiNws7Q3rC9 lKILfbG6fEqLDAY0y3iwH91bH0HLswp5+Fa9a4MrW8XBU2jORNHX+8yhOICpgEDz /pUXQxNscXabcEHRpim2Nn+/7UcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTCCdpg gAlgEfUUZ28S46yZcjHovzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmEwODJkMTItNzBlMS00MDA1LThkZDEtNTJiNzhjMGM3NWFmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HOg gDANBgkqhkiG9w0BAQsFAAOCAQEAUCjdLxqmnYNJtRzYCaYNHiGdWCFGQXxxVSFh D8jmr5uKyR/ulRd6lHG31gBzVdoggkLd7ZNhyBXawowemUfTkZeKQ/ZYh/QPQzEU WckgytZpPfDa1M5W0w2m0B+JXY/tcYMkqByiPJkyyXyNlna24caGzm/J1Jg8dcRG VEFdWl+XlPdBX+1V8WEBIM8JHuCJ4LusfVNf3kvomnlaVMvj68uB6vahr3SRLVyn 7jyv+dpvbE/s7VY0ll5b5NOCjldLRmvyLWR1YCtVe2kS6iZjb6DJCuSfCblwYuUe 99jfaBTk7L7ti/b2+CJl8de1UGR5lSAVnXybDeQs2/e95kWOmA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:27 2025 by rpki-client