This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6b4f5b06-ebd9-4673-8db1-8e72df99c996.roa File: 6b4f5b06-ebd9-4673-8db1-8e72df99c996.roa (raw, json) Hash identifier: EPryILuyxLgGn43bRqbnD/TSk9izjzLyWTA3SnQ9JMc= Subject key identifier: 63:12:C7:D0:23:E4:DD:8C:CD:E4:55:43:65:50:26:1B:51:8E:A0:56 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1C1E8CF3EAB0F18C60AD506F45FC85329134D2F2 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6b4f5b06-ebd9-4673-8db1-8e72df99c996.roa Signing time: Sat 15 Nov 2025 06:00:07 +0000 ROA not before: Sat 15 Nov 2025 06:00:07 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:2080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:1e:8c:f3:ea:b0:f1:8c:60:ad:50:6f:45:fc:85:32:91:34:d2:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:00:07 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=b240d3974b2559d301e48920661bba9c4562a0820e15a00f96e3b68c9a685b75, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5a:66:79:59:7f:0a:4e:2f:5c:30:d7:54:2f: 8c:4b:f5:c3:b3:84:77:6e:eb:a9:1b:46:c8:2f:3b: 68:49:6d:5a:e4:65:12:b5:dc:40:46:4b:ab:8c:27: 3e:94:5f:90:54:a0:cf:b1:a8:65:bd:10:ae:43:6d: 30:42:9e:20:34:4a:b3:3c:c7:87:58:e8:0c:63:18: 08:67:6d:72:34:1b:d0:1d:dc:a6:98:34:ac:10:bd: 89:76:b4:db:93:72:18:97:4d:ef:f9:09:ba:d7:ad: 5e:c1:70:fa:eb:cf:4e:fa:0c:f3:93:d4:ad:5f:5d: 1f:96:77:3e:1d:28:9b:c8:05:fe:ba:4d:89:20:e4: 65:0f:61:64:d7:3a:25:fa:ab:7c:79:f2:11:e0:04: 89:9c:e8:a8:14:55:8a:92:18:05:30:f4:b9:97:d9: 95:ca:85:61:04:ef:b6:e7:dd:e4:93:72:0e:ea:12: 86:e6:02:df:c0:f2:ef:12:a6:66:90:8d:50:f5:00: cd:5b:8c:79:d9:72:dc:73:b2:81:31:50:2a:f6:80: 73:fa:66:d0:36:af:93:7b:8c:cf:b0:49:75:d2:bd: a3:4e:81:60:2f:48:65:63:f0:ea:8d:ca:68:f0:73: 00:99:99:b2:9e:41:6f:fc:f9:51:f2:fe:92:0b:61: 9f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:12:C7:D0:23:E4:DD:8C:CD:E4:55:43:65:50:26:1B:51:8E:A0:56 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6b4f5b06-ebd9-4673-8db1-8e72df99c996.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:2080::/48 Signature Algorithm: sha256WithRSAEncryption 2e:71:b2:8a:ab:d6:06:22:2f:b3:6b:8f:ba:aa:ac:9d:83:72: cd:40:47:28:be:fe:15:77:a5:a6:b1:2c:83:ca:83:cf:f9:2c: 71:53:a1:aa:2b:fe:ef:38:b7:23:ff:e9:c5:30:cb:f7:fb:da: 85:c1:cc:3c:bc:bc:cd:c6:ea:fe:3a:9d:80:3f:a8:f3:cd:16: 0e:58:55:08:70:03:11:5f:13:06:cf:97:82:50:1d:e6:2e:8a: ac:ec:36:ee:28:57:79:2e:d6:a6:8b:13:85:80:27:89:84:19: 19:c0:a0:6d:ed:d1:9a:57:87:50:d0:1e:c2:25:7d:e3:b6:b5: 4b:57:7a:20:8a:57:4e:06:a8:fe:cf:b2:95:7b:f5:d7:e2:ad: 47:51:87:c4:93:94:07:ed:3e:73:5a:19:77:38:2f:63:2b:db: 9f:9f:82:a8:9a:23:16:79:5e:e5:d9:0c:00:c6:c1:1a:21:1e: 02:d0:a1:c8:eb:83:04:23:89:c8:8c:13:04:f0:11:7e:23:13: a1:45:f1:93:6b:91:53:2f:0e:6a:2d:90:62:26:2b:99:60:0c: 06:67:8d:aa:62:90:5f:cf:ab:2d:fb:05:94:27:b7:e5:2b:ab: 6c:ab:1c:40:df:a7:12:d7:8d:bd:a3:eb:c8:46:df:cd:78:78: f6:c7:a1:22 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUHB6M8+qw8YxgrVBvRfyFMpE00vIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjAwMDdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGIyNDBkMzk3NGIyNTU5ZDMwMWU0ODkyMDY2MWJiYTljNDU2MmEwODIwZTE1 YTAwZjk2ZTNiNjhjOWE2ODViNzUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ1aZnlZfwpOL1ww11QvjEv1w7OEd27rqRtGyC87aEltWuRlErXcQEZLq4wn PpRfkFSgz7GoZb0QrkNtMEKeIDRKszzHh1joDGMYCGdtcjQb0B3cppg0rBC9iXa0 25NyGJdN7/kJutetXsFw+uvPTvoM85PUrV9dH5Z3Ph0om8gF/rpNiSDkZQ9hZNc6 JfqrfHnyEeAEiZzoqBRVipIYBTD0uZfZlcqFYQTvtufd5JNyDuoShuYC38Dy7xKm ZpCNUPUAzVuMedly3HOygTFQKvaAc/pm0Davk3uMz7BJddK9o06BYC9IZWPw6o3K aPBzAJmZsp5Bb/z5UfL+kgthnxkCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRjEsfQ I+TdjM3kVUNlUCYbUY6gVjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmI0ZjViMDYtZWJkOS00NjczLThkYjEtOGU3MmRmOTljOTk2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0AAg gDANBgkqhkiG9w0BAQsFAAOCAQEALnGyiqvWBiIvs2uPuqqsnYNyzUBHKL7+FXel prEsg8qDz/kscVOhqiv+7zi3I//pxTDL9/vahcHMPLy8zcbq/jqdgD+o880WDlhV CHADEV8TBs+XglAd5i6KrOw27ihXeS7WposThYAniYQZGcCgbe3RmleHUNAewiV9 47a1S1d6IIpXTgao/s+ylXv11+KtR1GHxJOUB+0+c1oZdzgvYyvbn5+CqJojFnle 5dkMAMbBGiEeAtChyOuDBCOJyIwTBPARfiMToUXxk2uRUy8Oai2QYiYrmWAMBmeN qmKQX8+rLfsFlCe35SurbKscQN+nEteNvaPryEbfzXh49sehIg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:59 2025 by rpki-client