This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/758ab83f-3a25-48db-a214-04c27915b62e.roa File: 758ab83f-3a25-48db-a214-04c27915b62e.roa (raw, json) Hash identifier: ChMwmLDU9OCbVEWoUNEmBKqus2ABrCGRxUq8EFtgheM= Subject key identifier: 8A:D7:C5:F3:7C:49:57:E1:D4:8B:06:37:98:FA:69:9B:E4:A8:07:4C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 54BC464D18C989CC7924907A3A8D7DF532469A54 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/758ab83f-3a25-48db-a214-04c27915b62e.roa Signing time: Sat 15 Nov 2025 06:21:09 +0000 ROA not before: Sat 15 Nov 2025 06:21:09 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06d:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:bc:46:4d:18:c9:89:cc:79:24:90:7a:3a:8d:7d:f5:32:46:9a:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:21:09 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=c1877ed15c06be71805eefaf28ee2053ee40c129873f3bb41d4d8af55e13e3f2, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:31:05:df:74:61:f0:fc:4b:e5:88:d4:3a:4b: ec:45:99:64:ff:a3:6c:63:06:65:e3:e0:b0:c4:88: e1:83:e8:89:b4:1e:25:b8:4c:c8:c6:83:46:f8:b1: a8:a6:cb:6b:8b:ce:3d:d7:d4:72:7b:4d:07:00:4f: c4:d0:4c:b0:aa:04:65:29:2f:21:3e:8a:3a:e2:d0: ee:b4:05:7e:e6:74:2c:ae:7e:c9:2a:37:c0:f5:2f: dc:2d:e0:62:68:e4:ce:cd:bb:ff:75:c1:d9:f0:cc: 6c:ee:8d:2e:b7:21:54:88:aa:63:e6:4a:b3:00:d1: 8f:d7:dd:07:45:d4:ae:3f:c8:1b:61:8d:cc:5c:76: 13:50:fd:ff:01:a4:42:cb:f8:2d:14:03:98:c7:29: 56:59:ff:21:df:bb:dc:5c:d6:c9:40:e3:ee:01:d1: 41:4f:2a:55:7f:22:9b:85:9b:59:3e:56:85:66:5f: 45:29:57:7f:22:21:7b:28:11:3e:10:08:2c:30:e6: 18:1d:9e:74:f2:82:eb:16:c7:63:ab:6e:c4:2a:9a: 1e:e8:34:db:9f:6a:7e:15:a0:6b:0c:78:bc:c0:9d: 96:e7:58:49:b4:ac:f0:12:89:c1:fa:24:eb:a0:0d: 45:da:c6:34:5a:c3:63:17:b2:40:60:a2:ce:67:a3: 4d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D7:C5:F3:7C:49:57:E1:D4:8B:06:37:98:FA:69:9B:E4:A8:07:4C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/758ab83f-3a25-48db-a214-04c27915b62e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06d:a000::/40 Signature Algorithm: sha256WithRSAEncryption b7:7b:38:88:6b:48:d3:f8:f3:e5:56:62:01:c9:bf:fc:4d:03: 2e:6c:0a:0b:b1:9d:ce:4f:51:88:30:37:f8:b0:eb:19:20:fd: 40:e8:27:49:08:19:38:13:5d:08:70:5f:e6:60:c9:ee:c1:a3: 8b:13:1e:ed:5e:a0:6f:c9:82:18:f1:1d:6e:5a:c6:83:cc:cf: a3:17:0b:9e:21:94:e8:c3:7f:84:bd:5c:0a:96:6e:e3:a0:eb: 8a:d1:b4:e0:aa:73:ed:f2:ee:47:fb:ef:0a:5b:0c:92:60:33: 74:f3:f7:94:27:6d:2c:9b:a8:e7:d4:d1:f8:d8:01:97:13:87: 3c:49:66:5a:ca:96:07:c3:8a:f5:8b:22:e7:8c:e8:1c:0d:5a: 1b:2b:49:c1:c6:6b:bc:10:25:19:6d:d7:3c:78:94:03:3b:01: 1d:4a:49:b2:ec:45:10:e5:5b:2d:cc:9e:07:ab:86:80:57:e9: 0c:29:d8:17:70:7f:79:f8:bf:9a:fc:55:03:c1:ab:e1:f6:2b: 6d:26:6c:ba:76:3a:0d:ae:23:4d:44:3c:80:b3:1c:94:7d:eb: b7:17:7a:65:f0:8d:48:8e:9a:5f:8d:5b:4e:fe:53:35:94:70: b1:3f:c0:62:96:6f:7c:1c:46:44:27:30:ea:51:16:8e:c3:77: 56:99:c2:4f -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUVLxGTRjJicx5JJB6Oo199TJGmlQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjIxMDlaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGMxODc3ZWQxNWMwNmJlNzE4MDVlZWZhZjI4ZWUyMDUzZWU0MGMxMjk4NzNm M2JiNDFkNGQ4YWY1NWUxM2UzZjIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOwxBd90YfD8S+WI1DpL7EWZZP+jbGMGZePgsMSI4YPoibQeJbhMyMaDRvix qKbLa4vOPdfUcntNBwBPxNBMsKoEZSkvIT6KOuLQ7rQFfuZ0LK5+ySo3wPUv3C3g Ymjkzs27/3XB2fDMbO6NLrchVIiqY+ZKswDRj9fdB0XUrj/IG2GNzFx2E1D9/wGk Qsv4LRQDmMcpVln/Id+73FzWyUDj7gHRQU8qVX8im4WbWT5WhWZfRSlXfyIheygR PhAILDDmGB2edPKC6xbHY6tuxCqaHug0259qfhWgawx4vMCdludYSbSs8BKJwfok 66ANRdrGNFrDYxeyQGCizmejTQECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSK18Xz fElX4dSLBjeY+mmb5KgHTDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzU4YWI4M2YtM2EyNS00OGRiLWEyMTQtMDRjMjc5MTViNjJlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0G2g MA0GCSqGSIb3DQEBCwUAA4IBAQC3eziIa0jT+PPlVmIByb/8TQMubAoLsZ3OT1GI MDf4sOsZIP1A6CdJCBk4E10IcF/mYMnuwaOLEx7tXqBvyYIY8R1uWsaDzM+jFwue IZTow3+EvVwKlm7joOuK0bTgqnPt8u5H++8KWwySYDN08/eUJ20sm6jn1NH42AGX E4c8SWZaypYHw4r1iyLnjOgcDVobK0nBxmu8ECUZbdc8eJQDOwEdSkmy7EUQ5Vst zJ4Hq4aAV+kMKdgXcH95+L+a/FUDwavh9ittJmy6djoNriNNRDyAsxyUfeu3F3pl 8I1IjppfjVtO/lM1lHCxP8Bilm98HEZEJzDqURaOw3dWmcJP -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:42 2025 by rpki-client