This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/76526233-4062-463b-bfd0-bbe1d12891fa.roa File: 76526233-4062-463b-bfd0-bbe1d12891fa.roa (raw, json) Hash identifier: rUtPnmowKRv4vbN5qvsaqMFj1ygHuCmFF9jS9bFgAK4= Subject key identifier: 2D:5E:06:50:69:89:A0:45:BE:E1:0D:80:C1:E9:07:0C:DD:61:FA:B7 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1DA676378006C86C71EC82B7687E77B008536BFF Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/76526233-4062-463b-bfd0-bbe1d12891fa.roa Signing time: Sat 06 Dec 2025 04:00:37 +0000 ROA not before: Sat 06 Dec 2025 04:00:37 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:4010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a6:76:37:80:06:c8:6c:71:ec:82:b7:68:7e:77:b0:08:53:6b:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 6 04:00:37 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=1ae91b62663f6aae9ad0b7732ebbc64b152e7556d9336b6899c42d94829cb6be, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2a:98:b8:e4:05:e2:f5:89:d3:8b:d2:c6:ed: f9:60:1b:02:33:5f:ec:7f:b6:60:63:cf:54:8b:f1: 0e:bd:17:ee:4a:09:b9:6c:0e:e1:02:8d:2e:e0:bf: 5d:0f:05:0c:7c:b8:89:1e:f9:df:96:75:6b:30:87: 7c:c4:34:5b:0b:43:88:b4:4f:d7:1c:33:e2:34:55: e6:4b:56:15:d3:d3:25:df:89:9d:93:84:a0:61:33: c8:0d:23:5e:2d:eb:bd:41:70:5c:5c:d1:ee:9a:dd: f0:ed:73:15:00:68:66:98:6c:34:96:bd:45:c6:83: 21:f6:e8:81:ca:06:27:39:23:e6:be:23:3e:8e:59: 3a:33:11:aa:c5:37:72:f9:33:56:b8:dd:cc:7d:de: a6:4b:5c:e2:ff:f9:82:f8:fd:71:97:09:f5:de:ac: d2:c5:02:61:8c:33:21:84:37:59:b9:68:18:59:8b: 8a:af:10:17:83:1b:c7:8d:37:aa:7b:7e:69:d2:e8: 2a:d7:6c:48:7d:04:af:c3:59:85:44:b5:0a:dd:1c: fb:b8:79:a6:50:5d:cb:20:ae:60:8e:b7:56:21:3e: bb:82:49:2f:c7:36:71:cb:4d:a8:6f:ba:2b:34:f5: 0a:10:d6:77:36:82:fd:e5:ed:09:bb:23:b5:74:31: 7a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:5E:06:50:69:89:A0:45:BE:E1:0D:80:C1:E9:07:0C:DD:61:FA:B7 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/76526233-4062-463b-bfd0-bbe1d12891fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:4010::/48 Signature Algorithm: sha256WithRSAEncryption 00:6e:97:2f:a6:b7:e9:39:72:a1:0f:f9:60:da:7b:f1:8a:6c: e8:73:a5:7d:e6:37:ec:54:1a:44:a5:31:70:12:47:87:63:7c: 05:51:05:6e:db:cc:1b:1e:40:77:99:42:6d:65:06:80:b0:08: 2f:70:8d:b9:e7:63:a6:7f:ad:ce:ec:10:e4:4d:ac:f9:6e:95: 98:b5:f1:e0:50:6b:d5:1e:a3:b0:3d:aa:cd:b3:e5:34:75:78: e4:b6:6b:ca:ce:69:c5:d5:17:36:f9:6f:08:28:66:d9:4e:9e: 22:fc:b9:a7:65:0f:2f:e5:80:7e:dd:d7:c9:6e:3c:dc:dc:23: c2:b9:e9:fb:4c:d3:06:09:80:f4:1e:9d:c9:be:d6:9a:97:84: 73:ac:53:e0:94:62:23:e4:ea:62:89:6b:3e:9b:09:a6:5d:6f: e9:a9:99:c0:56:85:4f:e5:3f:d2:0a:43:bf:b4:35:97:84:30: 44:0f:49:fd:aa:30:79:cd:d6:58:3b:1c:af:76:13:15:37:68: 81:c7:58:45:2e:db:53:55:c8:d1:ef:ab:e3:46:c2:2b:b0:a6: e4:99:09:43:1f:9c:c3:8e:a6:b5:c6:f6:ac:41:07:b1:ef:46: 99:94:bb:39:e5:84:20:8c:85:4d:95:b5:cd:59:f0:5b:2a:62: e3:ee:7e:a7 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUHaZ2N4AGyGxx7IK3aH53sAhTa/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDYwNDAwMzdaFw0yNjAzMDYyMzU5NTlaMHoxSTBHBgNV BAUTQDFhZTkxYjYyNjYzZjZhYWU5YWQwYjc3MzJlYmJjNjRiMTUyZTc1NTZkOTMz NmI2ODk5YzQyZDk0ODI5Y2I2YmUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKoqmLjkBeL1idOL0sbt+WAbAjNf7H+2YGPPVIvxDr0X7koJuWwO4QKNLuC/ XQ8FDHy4iR7535Z1azCHfMQ0WwtDiLRP1xwz4jRV5ktWFdPTJd+JnZOEoGEzyA0j Xi3rvUFwXFzR7prd8O1zFQBoZphsNJa9RcaDIfbogcoGJzkj5r4jPo5ZOjMRqsU3 cvkzVrjdzH3epktc4v/5gvj9cZcJ9d6s0sUCYYwzIYQ3WbloGFmLiq8QF4Mbx403 qnt+adLoKtdsSH0Er8NZhUS1Ct0c+7h5plBdyyCuYI63ViE+u4JJL8c2cctNqG+6 KzT1ChDWdzaC/eXtCbsjtXQxelUCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQtXgZQ aYmgRb7hDYDB6QcM3WH6tzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzY1MjYyMzMtNDA2Mi00NjNiLWJmZDAtYmJlMWQxMjg5MWZhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ABA EDANBgkqhkiG9w0BAQsFAAOCAQEAAG6XL6a36TlyoQ/5YNp78Yps6HOlfeY37FQa RKUxcBJHh2N8BVEFbtvMGx5Ad5lCbWUGgLAIL3CNuedjpn+tzuwQ5E2s+W6VmLXx 4FBr1R6jsD2qzbPlNHV45LZrys5pxdUXNvlvCChm2U6eIvy5p2UPL+WAft3XyW48 3Nwjwrnp+0zTBgmA9B6dyb7WmpeEc6xT4JRiI+TqYolrPpsJpl1v6amZwFaFT+U/ 0gpDv7Q1l4QwRA9J/aowec3WWDscr3YTFTdogcdYRS7bU1XI0e+r40bCK7Cm5JkJ Qx+cw46mtcb2rEEHse9GmZS7OeWEIIyFTZW1zVnwWypi4+5+pw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:58:09 2025 by rpki-client