This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/74f41cc9-ba0e-46d9-a774-45f6a030a3f4.roa File: 74f41cc9-ba0e-46d9-a774-45f6a030a3f4.roa (raw, json) Hash identifier: 1gZEo71o48UEBpRdshczYI5wWwma4fU8gMltgQtuVF0= Subject key identifier: F7:4B:36:66:A4:05:B6:AC:2D:35:FF:83:32:96:0B:49:0B:72:0E:03 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 48B14A7772935D805C33FED33E701060B8C1BB96 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/74f41cc9-ba0e-46d9-a774-45f6a030a3f4.roa Signing time: Thu 13 Nov 2025 02:00:07 +0000 ROA not before: Thu 13 Nov 2025 02:00:07 +0000 ROA not after: Thu 18 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d038:880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:b1:4a:77:72:93:5d:80:5c:33:fe:d3:3e:70:10:60:b8:c1:bb:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 13 02:00:07 2025 GMT Not After : Dec 18 23:59:59 2025 GMT Subject: serialNumber=2a8b2f1ad30ce4ca43273f9d510422848442984745ae8047e26a2f3b33299004, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1a:a1:f8:e7:a8:f6:33:f8:06:03:d8:f9:0e: 03:b9:29:e2:c7:70:e7:86:5c:35:b8:c3:a5:c2:90: 83:29:53:f6:15:62:c8:8a:76:4c:32:d8:6d:90:0e: 5a:f6:bd:77:b3:8b:02:0e:e6:18:ce:36:ee:60:90: 73:81:ec:98:0e:3c:45:8d:d0:64:7d:93:f6:5f:7d: c8:f6:d5:1a:03:46:1c:01:f7:37:e0:d9:70:63:b6: 8a:5c:a7:64:bc:0d:c5:1a:7b:98:2e:af:97:af:22: 98:70:f2:74:28:ee:61:70:33:1f:9a:44:96:3d:5c: 59:48:bb:79:36:6b:e8:96:94:36:62:f9:81:b4:16: d9:9b:73:e2:61:5b:61:38:bf:b8:3d:fa:fd:2b:37: a0:cb:ac:03:3d:f2:7f:1a:24:74:cb:3c:8e:51:b7: 8f:0c:e7:c5:90:93:d1:b7:5b:5b:58:7d:bd:23:f8: a5:3b:87:0e:01:52:9d:75:2e:49:75:93:6b:6e:45: e8:c6:7d:58:bf:5e:fc:68:29:79:0b:df:92:47:12: 88:ff:4f:8a:df:8d:04:a4:43:11:8a:22:06:fa:1d: e0:e4:78:33:44:ee:d2:7c:66:7b:67:3e:47:b6:2a: 2d:e3:b3:d3:a0:39:16:e4:6a:d7:d5:8a:b9:bf:db: 38:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4B:36:66:A4:05:B6:AC:2D:35:FF:83:32:96:0B:49:0B:72:0E:03 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/74f41cc9-ba0e-46d9-a774-45f6a030a3f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d038:880::/48 Signature Algorithm: sha256WithRSAEncryption 2a:85:a0:4e:fc:48:88:f8:13:aa:84:14:96:0b:67:8b:e3:e5: 2c:5b:31:fe:1e:60:2d:75:34:01:09:ac:0b:d5:2e:2a:52:8f: 8b:2b:44:67:44:31:01:47:38:0f:a7:f4:35:1f:60:01:20:e3: 2c:d1:a5:04:6b:b7:96:62:c0:66:19:5e:2e:3d:e6:43:f8:11: 3f:4a:5c:dc:c1:2d:a8:82:d0:c4:49:9e:15:a1:eb:ed:04:37: 61:c1:fe:07:75:16:2a:f3:12:a3:8a:8f:40:65:ae:a5:52:45: 0c:f1:5c:f8:93:18:86:91:c9:87:81:37:b5:31:e5:93:cc:14: 63:24:1c:18:0a:19:61:c7:c5:f4:cd:49:c7:a1:ca:06:32:c0: ea:22:aa:f4:b2:c8:1f:b7:bf:b7:1b:83:33:64:8d:23:02:ba: c4:57:b6:95:14:cd:70:bf:a0:74:04:66:6d:8d:c1:f0:34:34: 4c:c0:92:01:f6:08:89:4d:d6:8e:c9:47:43:58:f4:74:52:49: 34:fb:2a:e2:33:57:5e:a0:84:f6:7e:7e:a8:58:d7:0e:93:49: 9a:d5:8d:69:3f:0e:10:cc:c9:58:57:52:e7:9c:44:9f:97:bc: a3:f7:dc:0c:c6:4c:04:ff:4c:05:3a:7e:6c:4d:a0:c4:8e:47: 0f:e9:81:17 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUSLFKd3KTXYBcM/7TPnAQYLjBu5YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTMwMjAwMDdaFw0yNTEyMTgyMzU5NTlaMHoxSTBHBgNV BAUTQDJhOGIyZjFhZDMwY2U0Y2E0MzI3M2Y5ZDUxMDQyMjg0ODQ0Mjk4NDc0NWFl ODA0N2UyNmEyZjNiMzMyOTkwMDQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKkaofjnqPYz+AYD2PkOA7kp4sdw54ZcNbjDpcKQgylT9hViyIp2TDLYbZAO Wva9d7OLAg7mGM427mCQc4HsmA48RY3QZH2T9l99yPbVGgNGHAH3N+DZcGO2ilyn ZLwNxRp7mC6vl68imHDydCjuYXAzH5pElj1cWUi7eTZr6JaUNmL5gbQW2Ztz4mFb YTi/uD36/Ss3oMusAz3yfxokdMs8jlG3jwznxZCT0bdbW1h9vSP4pTuHDgFSnXUu SXWTa25F6MZ9WL9e/GgpeQvfkkcSiP9Pit+NBKRDEYoiBvod4OR4M0Tu0nxme2c+ R7YqLeOz06A5FuRq19WKub/bOBcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBT3SzZm pAW2rC01/4MylgtJC3IOAzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzRmNDFjYzktYmEwZS00NmQ5LWE3NzQtNDVmNmEwMzBhM2Y0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DgI gDANBgkqhkiG9w0BAQsFAAOCAQEAKoWgTvxIiPgTqoQUlgtni+PlLFsx/h5gLXU0 AQmsC9UuKlKPiytEZ0QxAUc4D6f0NR9gASDjLNGlBGu3lmLAZhleLj3mQ/gRP0pc 3MEtqILQxEmeFaHr7QQ3YcH+B3UWKvMSo4qPQGWupVJFDPFc+JMYhpHJh4E3tTHl k8wUYyQcGAoZYcfF9M1Jx6HKBjLA6iKq9LLIH7e/txuDM2SNIwK6xFe2lRTNcL+g dARmbY3B8DQ0TMCSAfYIiU3WjslHQ1j0dFJJNPsq4jNXXqCE9n5+qFjXDpNJmtWN aT8OEMzJWFdS55xEn5e8o/fcDMZMBP9MBTp+bE2gxI5HD+mBFw== -----END CERTIFICATE-----Generated at Sat Dec 6 19:20:19 2025 by rpki-client