This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7109e934-b803-4bd3-8dfc-cfe0c2222824.roa File: 7109e934-b803-4bd3-8dfc-cfe0c2222824.roa (raw, json) Hash identifier: 2pGo3ST9kx5rI8Gpk/hKQtbdtXrXGk12UU/xotK2S6Q= Subject key identifier: 55:0E:C7:D7:78:05:67:2B:67:EA:C2:85:6F:68:92:B1:25:05:40:DB Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 10730D2D2C45B4CD6F89B780E0B1C79CCCD58127 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7109e934-b803-4bd3-8dfc-cfe0c2222824.roa Signing time: Tue 25 Nov 2025 20:10:06 +0000 ROA not before: Tue 25 Nov 2025 20:10:06 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:5040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:73:0d:2d:2c:45:b4:cd:6f:89:b7:80:e0:b1:c7:9c:cc:d5:81:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:10:06 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=d7e547db18d5835db0e4e4c34113b367215afdfac6a36c9d1941aa58211abce5, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8d:38:b2:b1:51:cd:1e:3d:7f:c2:8c:12:8d: e2:0b:fe:e2:8e:4e:18:e0:67:43:9c:63:b2:ed:e6: 38:41:d3:41:3b:f8:72:63:fc:98:58:8f:39:54:c3: d0:4c:13:a2:fc:0b:a4:f3:d5:e2:12:0a:dc:25:cc: 01:f2:67:f7:24:d6:0c:7b:07:15:8c:5d:8f:93:76: 88:24:2d:58:71:70:89:c4:e8:ac:0c:71:ca:19:ef: 59:e2:df:15:99:8e:fd:d8:71:34:02:3b:ee:c6:df: 1f:d8:ad:d9:79:ee:c9:17:48:c9:a5:74:60:f2:4d: 35:82:9e:5c:16:f2:a6:fe:12:bf:42:1f:e9:e9:db: ad:83:60:30:7f:46:26:1a:3d:e4:be:03:01:26:ff: c6:a4:17:9f:cb:db:40:de:20:0c:2b:3c:33:2e:b4: 16:63:4c:5f:30:58:69:6d:e0:f9:f3:df:47:c6:a8: 77:6c:90:9a:74:5a:d3:a7:85:85:64:70:32:fb:95: 40:0b:6a:ed:a3:d1:02:1c:19:53:63:ef:bf:1e:fb: 6c:5d:d0:e1:fe:b0:90:96:79:cc:88:9e:bc:ab:a0: 50:1a:9b:08:8d:16:4b:ac:d0:fd:f3:39:3f:bb:5e: c8:72:a4:59:0f:41:58:91:a6:45:a8:19:e2:df:08: db:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:0E:C7:D7:78:05:67:2B:67:EA:C2:85:6F:68:92:B1:25:05:40:DB X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7109e934-b803-4bd3-8dfc-cfe0c2222824.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:5040::/46 Signature Algorithm: sha256WithRSAEncryption 03:0b:1e:8b:ab:82:b0:18:5f:70:30:ae:3e:7d:52:38:e1:08: 69:6f:60:e5:a6:2f:51:76:61:92:5f:71:84:05:30:ff:50:21: f9:4d:0b:39:7c:a4:55:bd:72:dd:ad:9a:e9:a1:36:6a:b5:94: 33:8a:37:d6:70:90:e0:e8:67:2a:1f:48:c8:c6:70:5d:87:e9: d1:04:02:d2:24:2c:ca:cb:3e:51:ed:86:aa:27:f3:95:2a:66: 47:a7:57:a7:49:a5:05:d8:b5:41:3b:d5:72:37:fa:a1:91:9c: fd:92:48:56:21:5a:8b:30:cf:3d:34:e5:92:c9:77:b7:1a:68: 69:44:0b:e1:6f:06:e9:42:ac:de:0d:e0:39:41:68:d6:81:3c: 48:9d:ca:12:8c:38:17:bb:f6:e9:84:13:b3:03:1a:5f:20:88: a7:5c:2a:01:24:c7:28:8c:84:55:7f:97:39:30:3e:6f:eb:64: c9:b0:0b:80:7e:d9:eb:bd:3a:33:c6:35:82:ae:37:23:1a:6f: 55:1b:22:cc:3f:c5:f9:1d:90:95:12:00:21:8a:1b:f0:ce:33: f7:3a:5c:d6:9f:24:fe:42:0c:dd:0c:1e:d1:5c:fe:e7:7b:0c: d9:05:25:c7:a5:77:9a:9c:64:2b:d5:53:9b:7d:2d:53:f2:e2: 3e:6c:3b:db -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUEHMNLSxFtM1vibeA4LHHnMzVgScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDEwMDZaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQGQ3ZTU0N2RiMThkNTgzNWRiMGU0ZTRjMzQxMTNiMzY3MjE1YWZkZmFjNmEz NmM5ZDE5NDFhYTU4MjExYWJjZTUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMmNOLKxUc0ePX/CjBKN4gv+4o5OGOBnQ5xjsu3mOEHTQTv4cmP8mFiPOVTD 0EwTovwLpPPV4hIK3CXMAfJn9yTWDHsHFYxdj5N2iCQtWHFwicTorAxxyhnvWeLf FZmO/dhxNAI77sbfH9it2XnuyRdIyaV0YPJNNYKeXBbypv4Sv0If6enbrYNgMH9G Jho95L4DASb/xqQXn8vbQN4gDCs8My60FmNMXzBYaW3g+fPfR8aod2yQmnRa06eF hWRwMvuVQAtq7aPRAhwZU2Pvvx77bF3Q4f6wkJZ5zIievKugUBqbCI0WS6zQ/fM5 P7teyHKkWQ9BWJGmRagZ4t8I29UCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRVDsfX eAVnK2fqwoVvaJKxJQVA2zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzEwOWU5MzQtYjgwMy00YmQzLThkZmMtY2ZlMGMyMjIyODI0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HNQ QDANBgkqhkiG9w0BAQsFAAOCAQEAAwsei6uCsBhfcDCuPn1SOOEIaW9g5aYvUXZh kl9xhAUw/1Ah+U0LOXykVb1y3a2a6aE2arWUM4o31nCQ4OhnKh9IyMZwXYfp0QQC 0iQsyss+Ue2GqifzlSpmR6dXp0mlBdi1QTvVcjf6oZGc/ZJIViFaizDPPTTlksl3 txpoaUQL4W8G6UKs3g3gOUFo1oE8SJ3KEow4F7v26YQTswMaXyCIp1wqASTHKIyE VX+XOTA+b+tkybALgH7Z6706M8Y1gq43IxpvVRsizD/F+R2QlRIAIYob8M4z9zpc 1p8k/kIM3Qwe0Vz+53sM2QUlx6V3mpxkK9VTm30tU/LiPmw72w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:49 2025 by rpki-client