This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/730c632c-0510-4eef-8649-b29c7a1d089b.roa File: 730c632c-0510-4eef-8649-b29c7a1d089b.roa (raw, json) Hash identifier: L6npKVBB+l4kHHPvZyTDl+xrAvRG6waxS43JqHRkVc0= Subject key identifier: 75:B5:BF:80:07:24:1F:72:46:C9:CF:BE:C6:65:3B:9A:3D:61:17:84 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1065FD0671F7FBD0BCCB9F08BDB50F4D429A352B Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/730c632c-0510-4eef-8649-b29c7a1d089b.roa Signing time: Wed 10 Dec 2025 05:20:10 +0000 ROA not before: Wed 10 Dec 2025 05:20:10 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:65:fd:06:71:f7:fb:d0:bc:cb:9f:08:bd:b5:0f:4d:42:9a:35:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:20:10 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=28d969e0d56810b3b142b6f4c9b6844d4ede55062c574ae7caabd01ddd8d6bda, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c0:62:30:83:d0:e5:a8:3b:c8:30:81:9d:d9: e0:30:29:bf:c9:c2:d8:57:8e:f3:6d:56:cd:dc:ac: 63:b9:12:3a:30:21:3c:b1:cf:aa:4a:4c:27:60:1f: 44:90:47:88:86:2f:be:b5:fd:f4:99:6d:90:53:5b: a6:d2:34:2c:dc:b2:b5:0f:e7:72:20:5b:ad:37:53: a1:58:df:87:01:c8:ec:17:fa:1a:c5:49:f8:59:f1: 9f:e3:99:39:46:e3:79:4d:26:29:12:79:62:b4:ee: d5:86:11:97:75:67:b4:62:16:c3:9a:27:02:48:f4: b2:28:34:9e:b2:73:7f:eb:34:c6:be:f1:ff:68:be: 24:75:ae:b0:0b:eb:40:0e:47:24:19:1e:6c:cb:21: 1d:fa:02:e1:d1:d5:4a:ae:7d:96:33:4e:45:17:f4: 1d:f4:12:ca:70:9b:50:f7:ca:07:f7:6d:a3:e8:d5: 09:e7:30:a0:61:49:58:f5:81:95:67:0d:6a:4a:bd: a4:8b:71:b9:ce:52:c5:0e:82:73:73:86:f0:0e:d3: 2a:14:7f:13:f0:c0:9d:e0:c0:a6:af:77:a6:c8:3e: 79:5f:4f:42:fd:eb:8a:9e:19:16:85:97:61:a8:a0: 54:40:4e:e1:0b:60:bf:53:e5:99:1d:e5:55:22:e8: d7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B5:BF:80:07:24:1F:72:46:C9:CF:BE:C6:65:3B:9A:3D:61:17:84 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/730c632c-0510-4eef-8649-b29c7a1d089b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:2040::/48 Signature Algorithm: sha256WithRSAEncryption 5d:a2:70:4b:27:e5:62:5c:37:ca:dc:f2:2b:05:21:51:e8:a3: ce:80:4b:4f:02:15:85:53:66:bb:de:b2:f1:e4:bb:75:a5:f8: 0b:b3:0e:77:ff:3a:63:5a:9a:b5:69:bd:d4:ce:7d:f3:69:5d: 62:d2:1a:0d:e2:69:92:21:b4:81:63:97:9f:31:84:8d:25:b1: 99:2e:ce:a6:a9:57:9d:44:ed:49:19:06:24:c6:4f:79:c1:fd: 05:86:c3:29:35:78:91:03:ae:10:83:45:07:c0:ba:36:bc:9b: 66:ab:2a:a4:d8:ad:18:48:0e:da:5f:e3:0a:ed:09:3a:8a:29: 4e:64:53:63:b6:34:23:a6:fd:cf:1f:81:e2:68:3e:34:cc:48: 1d:1d:36:a7:cf:39:a2:0b:5f:4f:83:e8:a4:9e:a7:27:37:3b: bb:a6:62:55:11:6d:66:16:01:85:f1:49:53:ca:7e:c4:ff:e8: ca:15:55:37:b9:cd:2c:c2:05:65:0d:5c:70:44:cc:8a:49:53: 33:11:bf:76:a1:34:77:b8:5c:ad:78:24:ce:f9:f4:78:bc:ff: 54:35:36:e4:5a:59:b8:f8:0f:fd:e4:b9:7d:6f:26:0d:fd:c2: de:fe:69:14:bc:f8:80:4d:4d:7a:fe:15:5d:d1:c7:c4:03:ad: 83:8e:29:a3 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUEGX9BnH3+9C8y58IvbUPTUKaNSswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTIwMTBaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDI4ZDk2OWUwZDU2ODEwYjNiMTQyYjZmNGM5YjY4NDRkNGVkZTU1MDYyYzU3 NGFlN2NhYWJkMDFkZGQ4ZDZiZGExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMHAYjCD0OWoO8gwgZ3Z4DApv8nC2FeO821WzdysY7kSOjAhPLHPqkpMJ2Af RJBHiIYvvrX99JltkFNbptI0LNyytQ/nciBbrTdToVjfhwHI7Bf6GsVJ+Fnxn+OZ OUbjeU0mKRJ5YrTu1YYRl3VntGIWw5onAkj0sig0nrJzf+s0xr7x/2i+JHWusAvr QA5HJBkebMshHfoC4dHVSq59ljNORRf0HfQSynCbUPfKB/dto+jVCecwoGFJWPWB lWcNakq9pItxuc5SxQ6Cc3OG8A7TKhR/E/DAneDApq93psg+eV9PQv3rip4ZFoWX YaigVEBO4Qtgv1PlmR3lVSLo1x8CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBR1tb+A ByQfckbJz77GZTuaPWEXhDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzMwYzYzMmMtMDUxMC00ZWVmLTg2NDktYjI5YzdhMWQwODliLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DEg QDANBgkqhkiG9w0BAQsFAAOCAQEAXaJwSyflYlw3ytzyKwUhUeijzoBLTwIVhVNm u96y8eS7daX4C7MOd/86Y1qatWm91M5982ldYtIaDeJpkiG0gWOXnzGEjSWxmS7O pqlXnUTtSRkGJMZPecH9BYbDKTV4kQOuEINFB8C6NrybZqsqpNitGEgO2l/jCu0J OoopTmRTY7Y0I6b9zx+B4mg+NMxIHR02p885ogtfT4PopJ6nJzc7u6ZiVRFtZhYB hfFJU8p+xP/oyhVVN7nNLMIFZQ1ccETMiklTMxG/dqE0d7hcrXgkzvn0eLz/VDU2 5FpZuPgP/eS5fW8mDf3C3v5pFLz4gE1Nev4VXdHHxAOtg44pow== -----END CERTIFICATE-----Generated at Mon Dec 15 15:32:39 2025 by rpki-client