This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee98048-5141-4b16-8b8c-269a397f53ce.roa File: 6ee98048-5141-4b16-8b8c-269a397f53ce.roa (raw, json) Hash identifier: unTdag7QW4Q0m8TmPdBWpRoEtPl1KtNbCsvWi0G6qU0= Subject key identifier: B3:94:D9:59:C6:8E:12:34:76:2A:89:3B:FF:AD:73:B9:DB:CA:CD:EC Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 65025F6A1851F609FA4FA287A9B15C2CAF82FF88 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee98048-5141-4b16-8b8c-269a397f53ce.roa Signing time: Sat 15 Nov 2025 06:01:15 +0000 ROA not before: Sat 15 Nov 2025 06:01:15 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:02:5f:6a:18:51:f6:09:fa:4f:a2:87:a9:b1:5c:2c:af:82:ff:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:01:15 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=37e7de19d4fa448fca187565b2453825aeb0fbdf636ec60565aa62bbcea3101c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b8:d5:1b:d5:34:dc:2e:80:e1:4d:f3:eb:7c: 99:57:ce:92:8f:cf:34:0d:a3:84:7e:1b:e8:ee:6c: 66:4a:08:02:5d:9b:d0:ab:7d:b3:b5:5f:94:1d:f4: 81:59:33:41:3b:8d:7a:e9:ae:b7:2c:94:a0:5e:70: 05:a6:ca:e3:97:c9:d2:8e:1b:c0:36:3f:e9:d0:01: 85:bf:a8:3a:6b:32:b5:2d:14:9b:35:ea:7c:88:ff: 99:38:52:c4:ea:c2:5f:06:12:54:52:01:be:fc:d1: 63:68:42:29:d9:a8:04:22:5c:db:77:e5:aa:c4:37: 91:62:c9:a3:62:ea:e0:af:45:3c:0e:dc:d3:40:26: c3:a3:7f:21:84:1e:63:b2:66:21:63:a2:bf:9f:34: c6:a9:bb:7b:08:d3:bf:fd:2c:41:bc:23:6d:53:56: 3f:13:b5:c9:22:d9:66:b4:76:76:f2:c9:96:92:12: f5:64:73:d5:1b:13:e5:c2:2b:b9:31:67:7f:3b:f2: 2c:90:cc:56:4e:ea:1c:48:fe:e0:92:70:44:a4:b9: 12:4c:c2:a6:69:1e:d3:7a:5e:81:8f:1f:6c:5a:66: a4:fc:00:74:12:9f:12:4c:53:3c:35:c5:9b:b0:44: 8e:f0:92:77:6b:69:61:1c:f2:c1:48:4d:27:3a:46: 44:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:94:D9:59:C6:8E:12:34:76:2A:89:3B:FF:AD:73:B9:DB:CA:CD:EC X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee98048-5141-4b16-8b8c-269a397f53ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:4080::/48 Signature Algorithm: sha256WithRSAEncryption 35:82:b2:b0:10:39:43:30:f6:7c:e8:ac:2b:44:ae:ea:a5:0c: b0:e0:fd:29:93:f1:41:aa:89:47:ba:3b:b0:18:31:be:e2:9a: 44:9b:09:5a:3f:8f:6f:6f:5e:87:98:02:c7:3a:ed:52:ea:ad: 6f:41:4a:e5:a4:41:3a:0d:63:61:f3:c7:9a:ff:55:ca:28:48: 9a:bd:45:a4:e0:ce:b1:63:0e:bc:e9:2d:42:a0:04:c0:4a:80: fb:8e:d6:d5:0d:e4:5c:bf:81:83:18:bf:9d:2c:39:86:99:d8: 99:38:35:30:cb:68:78:14:88:de:d8:61:54:e0:13:f2:50:57: 99:ef:05:3b:d5:8d:89:b1:a6:18:7e:36:5f:26:64:fb:1b:98: 4f:34:50:2f:1d:8e:ec:ff:3d:41:3b:7b:86:a0:87:cc:42:fd: 56:05:9d:c0:78:35:81:a5:d8:c9:c0:34:ad:c4:ed:54:32:b8: a1:06:38:d4:ca:3d:a2:b8:bc:40:16:11:16:70:37:99:00:41: 38:4f:a6:15:b1:aa:02:66:75:3a:2a:c3:9f:c7:87:af:eb:c6: 40:36:cf:ef:00:45:6b:4a:f7:9b:6b:85:3a:58:39:bc:47:98: 7b:cd:ff:47:51:78:b3:a3:9a:a4:e9:d1:5e:c6:4b:20:c5:bb: 80:d3:73:43 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUZQJfahhR9gn6T6KHqbFcLK+C/4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjAxMTVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDM3ZTdkZTE5ZDRmYTQ0OGZjYTE4NzU2NWIyNDUzODI1YWViMGZiZGY2MzZl YzYwNTY1YWE2MmJiY2VhMzEwMWMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOS41RvVNNwugOFN8+t8mVfOko/PNA2jhH4b6O5sZkoIAl2b0Kt9s7VflB30 gVkzQTuNeumutyyUoF5wBabK45fJ0o4bwDY/6dABhb+oOmsytS0UmzXqfIj/mThS xOrCXwYSVFIBvvzRY2hCKdmoBCJc23flqsQ3kWLJo2Lq4K9FPA7c00Amw6N/IYQe Y7JmIWOiv580xqm7ewjTv/0sQbwjbVNWPxO1ySLZZrR2dvLJlpIS9WRz1RsT5cIr uTFnfzvyLJDMVk7qHEj+4JJwRKS5EkzCpmke03pegY8fbFpmpPwAdBKfEkxTPDXF m7BEjvCSd2tpYRzywUhNJzpGRPECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSzlNlZ xo4SNHYqiTv/rXO528rN7DAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmVlOTgwNDgtNTE0MS00YjE2LThiOGMtMjY5YTM5N2Y1M2NlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H9A gDANBgkqhkiG9w0BAQsFAAOCAQEANYKysBA5QzD2fOisK0Su6qUMsOD9KZPxQaqJ R7o7sBgxvuKaRJsJWj+Pb29eh5gCxzrtUuqtb0FK5aRBOg1jYfPHmv9VyihImr1F pODOsWMOvOktQqAEwEqA+47W1Q3kXL+Bgxi/nSw5hpnYmTg1MMtoeBSI3thhVOAT 8lBXme8FO9WNibGmGH42XyZk+xuYTzRQLx2O7P89QTt7hqCHzEL9VgWdwHg1gaXY ycA0rcTtVDK4oQY41Mo9ori8QBYRFnA3mQBBOE+mFbGqAmZ1OirDn8eHr+vGQDbP 7wBFa0r3m2uFOlg5vEeYe83/R1F4s6OapOnRXsZLIMW7gNNzQw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:48 2025 by rpki-client