This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6a2f7401-8559-4633-8579-cca77d6fa971.roa File: 6a2f7401-8559-4633-8579-cca77d6fa971.roa (raw, json) Hash identifier: ijf5T7hZ2UH3L0lQT+LcUgLtEltH9nL7A8w4S35WBXw= Subject key identifier: 1F:9E:1C:2F:5E:E0:6E:64:7E:25:8A:73:99:8D:6E:30:08:8C:B0:E6 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 49EBF515B692206865884B4F043070C9836A445A Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6a2f7401-8559-4633-8579-cca77d6fa971.roa Signing time: Sat 15 Nov 2025 05:30:13 +0000 ROA not before: Sat 15 Nov 2025 05:30:13 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d01a::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:eb:f5:15:b6:92:20:68:65:88:4b:4f:04:30:70:c9:83:6a:44:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:30:13 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=f16a2cd183640baa4d8c727c742867b924048e8adaa29bb57831fa99972ae081, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ec:06:37:45:f8:0e:1f:ee:20:85:18:fe:14: 0e:5b:48:04:09:2d:6c:93:d2:a2:80:ae:4a:c8:df: 0a:51:31:0b:0b:ec:52:12:f9:d8:8c:0d:31:49:5e: e1:99:9d:ec:e6:e4:97:44:c8:dc:57:07:4d:95:6d: 1c:19:d9:62:90:81:7d:82:b6:4b:b3:fc:40:ac:fd: 75:ff:2c:d9:54:97:bf:0f:0c:f8:87:38:84:76:56: 11:46:b4:9f:1c:6b:f4:13:ca:4d:76:32:d1:7c:2a: 2c:31:09:04:b7:e0:98:50:65:01:ab:fa:6b:61:17: 26:a0:90:c9:79:91:30:9a:0a:e6:d7:be:02:67:a8: 48:cd:cf:08:82:a2:9c:2d:f1:ed:f8:f5:68:79:b5: 20:96:73:b5:b0:f0:35:92:1b:72:8f:44:49:58:53: 97:83:14:16:02:77:8f:c2:e6:27:de:9c:5e:50:17: 10:b2:e3:d2:0b:7c:8e:ac:7e:04:d7:a5:3c:da:54: a1:c7:28:2b:59:8c:d0:ea:3f:38:c1:bc:0f:07:f1: 68:1b:4a:50:f5:70:08:62:0b:ac:34:16:28:56:47: 06:44:fa:cf:ca:1d:fd:ba:88:b6:4e:12:5a:6b:20: b8:3f:52:25:f5:b4:55:32:11:07:9c:d4:16:c7:f3: 72:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:9E:1C:2F:5E:E0:6E:64:7E:25:8A:73:99:8D:6E:30:08:8C:B0:E6 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6a2f7401-8559-4633-8579-cca77d6fa971.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d01a::/36 Signature Algorithm: sha256WithRSAEncryption 90:1e:dc:74:c6:77:f7:b2:63:4e:81:cc:b7:79:fe:31:8b:af: df:b4:8b:aa:68:bf:e4:b3:14:7d:06:e6:62:b4:52:2e:9c:3b: 6b:af:2f:da:a5:8b:c4:24:f1:17:c4:5b:0b:0d:69:4d:6c:fc: 04:6e:e6:08:20:a0:2b:31:fd:20:83:8c:18:1e:7f:28:db:84: 39:a9:fa:c6:c2:c9:ff:15:0d:2e:76:6e:a4:4f:e9:6a:41:62: 37:9f:f2:13:9e:78:b3:eb:79:f4:97:2e:49:3d:9e:30:ec:f4: 75:fc:5a:71:27:1b:78:fc:a7:14:fe:fb:af:81:98:0e:4c:4b: 6d:17:fb:98:73:ce:84:af:cc:77:78:cb:08:5c:40:fe:bb:88: 50:af:e0:1d:62:c0:a1:4c:53:46:f3:0e:ba:b2:87:c3:0d:f3: b7:8a:5a:5f:f5:af:64:aa:be:61:0e:6b:24:d0:d6:9e:71:23: d8:47:c9:f1:0e:5e:f4:ea:e9:e5:fc:fc:d3:66:34:98:d9:27: 83:5e:e4:d4:e8:b7:16:4a:15:cf:dc:a3:b5:8c:a0:d1:5f:d8: 81:ef:27:31:fe:76:4c:b5:8a:e1:c5:bc:d5:3f:cc:ed:40:1e: f0:54:35:39:7b:1c:c7:17:8c:85:7e:9d:37:a6:be:4c:45:da: a0:1b:90:42 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUSev1FbaSIGhliEtPBDBwyYNqRFowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMwMTNaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGYxNmEyY2QxODM2NDBiYWE0ZDhjNzI3Yzc0Mjg2N2I5MjQwNDhlOGFkYWEy OWJiNTc4MzFmYTk5OTcyYWUwODExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKHsBjdF+A4f7iCFGP4UDltIBAktbJPSooCuSsjfClExCwvsUhL52IwNMUle 4Zmd7Obkl0TI3FcHTZVtHBnZYpCBfYK2S7P8QKz9df8s2VSXvw8M+Ic4hHZWEUa0 nxxr9BPKTXYy0XwqLDEJBLfgmFBlAav6a2EXJqCQyXmRMJoK5te+AmeoSM3PCIKi nC3x7fj1aHm1IJZztbDwNZIbco9ESVhTl4MUFgJ3j8LmJ96cXlAXELLj0gt8jqx+ BNelPNpUoccoK1mM0Oo/OMG8DwfxaBtKUPVwCGILrDQWKFZHBkT6z8od/bqItk4S WmsguD9SJfW0VTIRB5zUFsfzcsMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQfnhwv XuBuZH4linOZjW4wCIyw5jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmEyZjc0MDEtODU1OS00NjMzLTg1NzktY2NhNzdkNmZhOTcxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0BoA MA0GCSqGSIb3DQEBCwUAA4IBAQCQHtx0xnf3smNOgcy3ef4xi6/ftIuqaL/ksxR9 BuZitFIunDtrry/apYvEJPEXxFsLDWlNbPwEbuYIIKArMf0gg4wYHn8o24Q5qfrG wsn/FQ0udm6kT+lqQWI3n/ITnniz63n0ly5JPZ4w7PR1/FpxJxt4/KcU/vuvgZgO TEttF/uYc86Er8x3eMsIXED+u4hQr+AdYsChTFNG8w66sofDDfO3ilpf9a9kqr5h Dmsk0NaecSPYR8nxDl706unl/PzTZjSY2SeDXuTU6LcWShXP3KO1jKDRX9iB7ycx /nZMtYrhxbzVP8ztQB7wVDU5exzHF4yFfp03pr5MRdqgG5BC -----END CERTIFICATE-----Generated at Sat Dec 6 10:53:59 2025 by rpki-client