This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7381c075-d96b-43bf-8a89-25dbab9a1a8d.roa File: 7381c075-d96b-43bf-8a89-25dbab9a1a8d.roa (raw, json) Hash identifier: vve73Gwx9VvPU0ou0A/vXUU6J9FyxhDy8I11X/5PlDw= Subject key identifier: 33:2E:20:15:00:ED:27:7E:24:88:56:52:8C:4C:39:B9:FE:06:72:E0 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6A91648B5E301D4E9B8C451BD94917A2EA6B03B6 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7381c075-d96b-43bf-8a89-25dbab9a1a8d.roa Signing time: Tue 18 Nov 2025 00:40:07 +0000 ROA not before: Tue 18 Nov 2025 00:40:07 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d010::/28 maxlen: 28 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:91:64:8b:5e:30:1d:4e:9b:8c:45:1b:d9:49:17:a2:ea:6b:03:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 18 00:40:07 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=4704dfe669eae35d01e2858252257ed391a7342ec53e222c5b052cb210fe5502, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:79:c7:36:77:54:64:f7:6f:0e:de:cc:63:e5: 13:2d:f0:f6:a2:09:22:7f:e3:7a:d6:53:4e:45:66: 87:27:3f:85:20:94:8b:36:58:42:c6:23:22:6c:b8: 75:18:09:cd:e0:94:43:d8:c4:59:55:19:5e:a0:46: 42:d4:4d:3b:e4:3d:53:04:18:20:cb:41:b8:c0:23: fd:57:f3:a0:42:d1:d7:d5:bd:66:b0:c1:f8:66:31: 45:b7:4f:66:f3:07:1d:a6:84:1b:4e:26:01:d1:c9: 0d:9b:41:d6:e0:60:4d:75:94:82:f3:66:9d:77:33: 74:1b:d4:93:6e:10:4b:ab:ad:02:8c:f5:d3:21:21: 58:c1:b3:af:22:20:fc:03:0e:d4:3c:27:16:8a:00: 58:0f:8c:68:39:af:e9:d5:a7:4e:ac:38:de:02:12: 6b:41:cf:33:44:06:f0:85:c9:70:72:a7:d8:63:b6: 2f:5f:11:4f:ca:fa:16:37:b1:30:b9:6b:74:b8:0e: f0:c4:32:81:94:d7:1c:5a:52:8e:c5:03:bd:20:2a: d1:55:d3:b8:5c:00:1d:1b:cf:c2:08:c7:9b:ce:1b: b8:26:5f:dd:58:46:8c:95:40:b2:bb:54:93:4a:a4: 05:5a:1a:05:8a:b0:54:58:a4:3c:a9:11:55:a0:9c: 87:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:2E:20:15:00:ED:27:7E:24:88:56:52:8C:4C:39:B9:FE:06:72:E0 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7381c075-d96b-43bf-8a89-25dbab9a1a8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d010::/28 Signature Algorithm: sha256WithRSAEncryption 3a:97:ac:ec:97:bd:81:5b:cd:a3:ae:49:77:7e:af:de:e7:b1: 06:fb:9c:0e:66:75:79:4d:cf:90:92:ce:38:99:b2:5e:f1:d9: 60:4f:44:ea:12:49:02:e6:f9:96:95:2c:72:3c:56:89:76:5c: 0c:91:98:e6:d1:0e:72:2d:df:e7:bf:e8:c2:0b:d4:47:2e:58: a1:22:93:6e:d6:25:6c:6a:03:7f:fe:c5:ac:26:f2:ad:61:1b: ef:a6:bd:1d:d1:23:9a:c4:dd:50:f0:16:03:57:2b:bd:19:ce: dd:3f:c8:d3:e1:09:7f:f1:fa:3c:63:35:23:1f:ca:3f:2d:29: 9e:94:a7:3e:d3:76:6d:ed:c1:1a:f1:51:a0:72:bc:4d:1e:b6: 3d:af:24:b0:85:59:32:e2:80:8d:51:c0:d6:43:a5:dc:8a:4f: d2:3d:95:f9:6e:06:47:17:bf:0e:fd:af:97:3a:8d:13:43:d4: 8a:b1:0e:e8:2b:e7:8a:11:30:aa:d0:8a:93:23:74:1f:50:54: 6b:e6:62:b9:c1:1d:cf:2c:06:e4:7e:61:ea:ae:8e:4e:e8:a1: 2b:52:37:ce:e7:90:6b:2f:ac:a8:a5:98:55:7b:97:18:73:da: fe:8d:b6:13:41:ee:27:78:90:ad:f0:cf:ec:b5:6d:23:cc:6f: d7:a8:41:18 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUapFki14wHU6bjEUb2UkXouprA7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTgwMDQwMDdaFw0yNjAyMTYyMzU5NTlaMHoxSTBHBgNV BAUTQDQ3MDRkZmU2NjllYWUzNWQwMWUyODU4MjUyMjU3ZWQzOTFhNzM0MmVjNTNl MjIyYzViMDUyY2IyMTBmZTU1MDIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM95xzZ3VGT3bw7ezGPlEy3w9qIJIn/jetZTTkVmhyc/hSCUizZYQsYjImy4 dRgJzeCUQ9jEWVUZXqBGQtRNO+Q9UwQYIMtBuMAj/VfzoELR19W9ZrDB+GYxRbdP ZvMHHaaEG04mAdHJDZtB1uBgTXWUgvNmnXczdBvUk24QS6utAoz10yEhWMGzryIg /AMO1DwnFooAWA+MaDmv6dWnTqw43gISa0HPM0QG8IXJcHKn2GO2L18RT8r6Fjex MLlrdLgO8MQygZTXHFpSjsUDvSAq0VXTuFwAHRvPwgjHm84buCZf3VhGjJVAsrtU k0qkBVoaBYqwVFikPKkRVaCchyUCAwEAAaOCAiIwggIeMB0GA1UdDgQWBBQzLiAV AO0nfiSIVlKMTDm5/gZy4DAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzM4MWMwNzUtZDk2Yi00M2JmLThhODktMjVkYmFiOWExYThkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFBCoF0BAw DQYJKoZIhvcNAQELBQADggEBADqXrOyXvYFbzaOuSXd+r97nsQb7nA5mdXlNz5CS zjiZsl7x2WBPROoSSQLm+ZaVLHI8Vol2XAyRmObRDnIt3+e/6MIL1EcuWKEik27W JWxqA3/+xawm8q1hG++mvR3RI5rE3VDwFgNXK70Zzt0/yNPhCX/x+jxjNSMfyj8t KZ6Upz7Tdm3twRrxUaByvE0etj2vJLCFWTLigI1RwNZDpdyKT9I9lfluBkcXvw79 r5c6jRND1IqxDugr54oRMKrQipMjdB9QVGvmYrnBHc8sBuR+Yequjk7ooStSN87n kGsvrKilmFV7lxhz2v6NthNB7id4kK3wz+y1bSPMb9eoQRg= -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:36 2025 by rpki-client