This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e58fa17-0cfc-4a06-8d48-47d96c0d49af.roa File: 6e58fa17-0cfc-4a06-8d48-47d96c0d49af.roa (raw, json) Hash identifier: 7XnG9I2wL/EsuCbDfMFsUcS45SAWglZbsFQMrAfLsrY= Subject key identifier: 76:B0:E0:F3:0A:09:44:34:DC:5A:4A:EA:B9:F6:1E:C0:FF:9D:48:0B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 7ECF10DCAB44D7A78CC8B9CA38EAB18A51295F1D Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e58fa17-0cfc-4a06-8d48-47d96c0d49af.roa Signing time: Sat 15 Nov 2025 06:30:54 +0000 ROA not before: Sat 15 Nov 2025 06:30:54 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d01e::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:cf:10:dc:ab:44:d7:a7:8c:c8:b9:ca:38:ea:b1:8a:51:29:5f:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:30:54 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=6a07675b9ac3ec4deb3197e96142e6c45fda4cd6dcb8193dc06822833d83e05e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:32:a8:08:ce:f0:51:d6:56:50:04:34:11:b1: b4:cf:c8:53:a7:a5:d2:2c:5e:bf:2f:12:88:40:26: 9b:9d:62:f1:8d:c2:fc:24:af:9c:21:5d:ff:29:24: db:5d:25:e5:38:63:b5:e7:27:fb:2f:b0:00:bd:17: 5d:f8:bd:b3:80:18:af:86:2a:5c:27:71:3e:a3:3b: 1d:46:38:ac:9a:20:52:3b:ea:58:e5:6a:2a:c5:e7: 5b:a7:12:a9:ee:50:62:ff:21:9a:ae:8b:b6:5e:59: 0f:96:fe:d2:76:84:c9:d7:96:49:34:9e:86:32:14: f5:34:3d:ba:a5:11:54:49:ed:ed:81:b3:0e:67:27: 5a:17:1a:01:60:e5:65:51:7f:dc:54:44:fd:5a:6f: f4:24:10:d9:de:f2:58:09:ab:39:f4:37:10:19:eb: b3:65:b7:88:8d:2d:a0:80:68:02:2e:fb:f2:ed:a2: a1:5a:b7:b6:bd:b1:a2:25:80:f2:c8:ea:ac:fc:23: e8:f2:f8:5c:f5:5b:b0:a9:ef:7f:aa:fa:30:a7:97: b9:63:cd:07:b6:0f:c8:28:66:58:83:e6:c6:26:c9: 16:9c:69:cd:be:0b:9e:ad:a3:7e:77:53:c6:54:91: fd:66:4f:e7:b8:ca:a6:5b:57:43:c0:15:61:ab:31: c6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:B0:E0:F3:0A:09:44:34:DC:5A:4A:EA:B9:F6:1E:C0:FF:9D:48:0B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e58fa17-0cfc-4a06-8d48-47d96c0d49af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d01e::/36 Signature Algorithm: sha256WithRSAEncryption 37:ad:29:9a:c7:70:ba:e7:89:1b:fb:ce:4f:a2:be:85:d6:af: 28:c6:74:55:8f:f6:8a:6c:b8:a0:46:ef:c3:09:68:d3:e3:64: 65:6e:d0:5c:ff:88:39:8d:56:82:db:ae:6f:e1:e3:cb:da:15: 79:67:92:04:c4:73:0c:5f:a0:6e:ee:76:4a:5b:d2:9f:7d:d0: a0:40:00:9d:d4:6c:7d:1b:f2:d7:59:3c:f2:5e:99:c2:d1:31: c2:06:3e:c5:9d:2e:42:c0:b3:c0:f8:f1:3c:82:ee:97:fb:e0: ed:88:17:46:52:ac:c8:fe:76:33:86:46:c6:cc:30:12:66:d9: 94:09:a0:a4:db:a2:e0:fd:34:ac:13:d1:01:ad:8c:70:fe:26: fa:74:c0:06:c2:09:3f:d6:81:1f:eb:5f:23:9a:be:00:d6:43: 53:29:cc:ef:ae:a3:88:92:07:96:8e:cb:fc:51:bf:8d:eb:7c: c4:8c:be:24:e3:7d:ac:81:fc:5c:fe:d2:fb:8f:34:42:f7:85: 74:ab:f6:e7:ed:84:55:c2:bc:32:7b:00:aa:a5:62:48:fe:6c: d6:63:0b:4c:af:12:8c:43:d0:0a:16:8d:dc:b3:c4:2d:cb:b6: fc:4b:e2:e0:2a:27:df:2f:81:23:bd:0c:45:6d:03:b9:92:de: d9:04:e3:66 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUfs8Q3KtE16eMyLnKOOqxilEpXx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjMwNTRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDZhMDc2NzViOWFjM2VjNGRlYjMxOTdlOTYxNDJlNmM0NWZkYTRjZDZkY2I4 MTkzZGMwNjgyMjgzM2Q4M2UwNWUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALAyqAjO8FHWVlAENBGxtM/IU6el0ixevy8SiEAmm51i8Y3C/CSvnCFd/ykk 210l5Thjtecn+y+wAL0XXfi9s4AYr4YqXCdxPqM7HUY4rJogUjvqWOVqKsXnW6cS qe5QYv8hmq6Ltl5ZD5b+0naEydeWSTSehjIU9TQ9uqURVEnt7YGzDmcnWhcaAWDl ZVF/3FRE/Vpv9CQQ2d7yWAmrOfQ3EBnrs2W3iI0toIBoAi778u2ioVq3tr2xoiWA 8sjqrPwj6PL4XPVbsKnvf6r6MKeXuWPNB7YPyChmWIPmxibJFpxpzb4Lnq2jfndT xlSR/WZP57jKpltXQ8AVYasxxhUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBR2sODz CglENNxaSuq59h7A/51ICzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmU1OGZhMTctMGNmYy00YTA2LThkNDgtNDdkOTZjMGQ0OWFmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0B4A MA0GCSqGSIb3DQEBCwUAA4IBAQA3rSmax3C654kb+85Por6F1q8oxnRVj/aKbLig Ru/DCWjT42RlbtBc/4g5jVaC265v4ePL2hV5Z5IExHMMX6Bu7nZKW9KffdCgQACd 1Gx9G/LXWTzyXpnC0THCBj7FnS5CwLPA+PE8gu6X++DtiBdGUqzI/nYzhkbGzDAS ZtmUCaCk26Lg/TSsE9EBrYxw/ib6dMAGwgk/1oEf618jmr4A1kNTKczvrqOIkgeW jsv8Ub+N63zEjL4k432sgfxc/tL7jzRC94V0q/bn7YRVwrwyewCqpWJI/mzWYwtM rxKMQ9AKFo3cs8Qty7b8S+LgKiffL4EjvQxFbQO5kt7ZBONm -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:53 2025 by rpki-client