This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e236a15-c957-4409-8a2a-3a19150d1b43.roa File: 6e236a15-c957-4409-8a2a-3a19150d1b43.roa (raw, json) Hash identifier: dVzv7freFhHtjbcVQy7CgreFQu50fGHjBWb0OOH60x4= Subject key identifier: 10:52:18:90:9D:71:C6:06:07:EC:DA:41:C3:48:CC:4F:DB:3F:78:7D Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 57CF03AB4508281D267C264E333E421E0C48F2AB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e236a15-c957-4409-8a2a-3a19150d1b43.roa Signing time: Tue 02 Dec 2025 01:51:03 +0000 ROA not before: Tue 02 Dec 2025 01:51:03 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2a05:d030:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:cf:03:ab:45:08:28:1d:26:7c:26:4e:33:3e:42:1e:0c:48:f2:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:51:03 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=66af20d0023d2a25c96467b2f9f465e1c9fd18043c9480ddc0a29ab52c4d2253, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:45:06:74:ea:93:9e:21:50:0f:19:96:cd:bb: 47:12:0a:41:de:dc:6d:03:6c:e6:a3:a5:be:db:9a: 0d:16:81:91:09:53:45:27:b6:e3:06:73:fe:a2:af: 4a:b9:27:2b:ea:e3:ec:9c:78:39:c4:f6:0d:d9:96: bc:53:2c:3e:b0:d0:c1:91:18:48:ed:c4:d9:84:19: 99:5a:90:3c:09:36:90:2a:c6:f9:57:de:eb:9d:b9: c7:3d:7f:28:ef:29:f6:ee:52:63:55:98:4c:30:ec: 62:bb:94:d2:fb:db:1e:dd:b6:c4:3b:0c:89:d0:de: b9:8e:41:2a:a0:68:ec:f0:fb:1b:ab:4b:2d:3c:2b: 99:eb:1c:c0:49:9a:69:7e:38:ec:c0:6f:55:0a:ea: dc:63:c6:e3:17:72:88:7f:53:18:a2:5d:11:c9:4c: e6:4f:ea:7b:33:f6:48:67:6d:9b:72:b9:c1:a2:e8: b0:af:35:c8:2c:18:69:33:9a:5a:43:df:d3:45:f7: 4d:0a:0a:d8:85:ef:a0:37:09:9c:43:16:d9:e9:1e: e0:40:da:26:dc:9f:34:58:f5:79:bd:22:8d:91:c0: 22:41:9d:8d:46:b4:2e:eb:bd:a5:40:51:ca:a1:e1: d8:03:44:39:6a:fc:be:01:67:dc:84:25:3a:b3:31: 54:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:52:18:90:9D:71:C6:06:07:EC:DA:41:C3:48:CC:4F:DB:3F:78:7D X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e236a15-c957-4409-8a2a-3a19150d1b43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d030:9000::/40 Signature Algorithm: sha256WithRSAEncryption 10:0f:82:38:24:3e:82:59:bf:32:7c:e5:a0:b0:af:79:28:d6: b6:18:30:f6:06:05:36:b9:a8:e9:90:9f:09:28:08:b3:42:6a: 72:6a:ca:bf:7f:57:03:e3:e2:ae:58:49:04:f0:1f:d6:33:ad: f8:b7:e2:f5:eb:78:c7:87:fe:88:7f:dc:14:70:bf:84:a0:5a: db:eb:6a:83:0d:37:9c:86:e5:f6:00:93:c3:a7:31:62:57:af: d6:9f:85:09:68:82:11:22:f9:aa:79:95:b9:33:43:e5:26:64: bc:65:a7:8d:8e:e4:5b:50:53:4f:2c:50:4e:0f:0f:da:51:34: 6d:a8:7a:e3:17:3d:d6:f0:7f:65:95:c1:b0:d6:3f:36:dc:a4: a4:c2:39:af:d9:4c:02:b8:87:41:3e:46:36:51:46:cf:13:de: c1:2d:31:a6:4f:e5:64:ef:16:fe:e2:f3:27:21:42:73:d5:3c: ef:94:b9:97:55:7f:8e:49:31:80:e9:67:60:6c:88:c1:f3:52: 5f:f6:69:aa:6e:44:e9:d4:a3:d9:57:fa:b8:38:32:56:44:6c: b5:40:56:88:c3:2a:d5:10:ee:c4:12:ae:e9:3a:5c:07:67:f0: 73:ec:b0:0b:f1:96:42:7c:2b:01:80:ed:8a:7f:11:2c:15:de: 61:6b:ad:b7 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUV88Dq0UIKB0mfCZOMz5CHgxI8qswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUxMDNaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDY2YWYyMGQwMDIzZDJhMjVjOTY0NjdiMmY5ZjQ2NWUxYzlmZDE4MDQzYzk0 ODBkZGMwYTI5YWI1MmM0ZDIyNTMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ9FBnTqk54hUA8Zls27RxIKQd7cbQNs5qOlvtuaDRaBkQlTRSe24wZz/qKv SrknK+rj7Jx4OcT2DdmWvFMsPrDQwZEYSO3E2YQZmVqQPAk2kCrG+Vfe6525xz1/ KO8p9u5SY1WYTDDsYruU0vvbHt22xDsMidDeuY5BKqBo7PD7G6tLLTwrmescwEma aX447MBvVQrq3GPG4xdyiH9TGKJdEclM5k/qezP2SGdtm3K5waLosK81yCwYaTOa WkPf00X3TQoK2IXvoDcJnEMW2eke4EDaJtyfNFj1eb0ijZHAIkGdjUa0Luu9pUBR yqHh2ANEOWr8vgFn3IQlOrMxVD0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQQUhiQ nXHGBgfs2kHDSMxP2z94fTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmUyMzZhMTUtYzk1Ny00NDA5LThhMmEtM2ExOTE1MGQxYjQzLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DCQ MA0GCSqGSIb3DQEBCwUAA4IBAQAQD4I4JD6CWb8yfOWgsK95KNa2GDD2BgU2uajp kJ8JKAizQmpyasq/f1cD4+KuWEkE8B/WM634t+L163jHh/6If9wUcL+EoFrb62qD DTechuX2AJPDpzFiV6/Wn4UJaIIRIvmqeZW5M0PlJmS8ZaeNjuRbUFNPLFBODw/a UTRtqHrjFz3W8H9llcGw1j823KSkwjmv2UwCuIdBPkY2UUbPE97BLTGmT+Vk7xb+ 4vMnIUJz1TzvlLmXVX+OSTGA6WdgbIjB81Jf9mmqbkTp1KPZV/q4ODJWRGy1QFaI wyrVEO7EEq7pOlwHZ/Bz7LAL8ZZCfCsBgO2KfxEsFd5ha623 -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:05 2025 by rpki-client