This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7802179a-c80f-42f1-a50b-a0af1df078c2.roa File: 7802179a-c80f-42f1-a50b-a0af1df078c2.roa (raw, json) Hash identifier: C8S35H65f6ujY1fkvoilbBJo2sxc0a8IEEv7Yj8jF/E= Subject key identifier: 26:44:45:4B:17:20:EA:B8:2F:BF:F4:C2:27:1A:1D:92:6E:26:6C:07 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 11D47751BDB49EFA7E43758B0A77B4548D803598 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7802179a-c80f-42f1-a50b-a0af1df078c2.roa Signing time: Sat 15 Nov 2025 06:10:57 +0000 ROA not before: Sat 15 Nov 2025 06:10:57 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d059:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:d4:77:51:bd:b4:9e:fa:7e:43:75:8b:0a:77:b4:54:8d:80:35:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:10:57 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=6e7bdafe732453853eb419e6c9ae1150d1f8ca8fdd1546067c49f815443bf5f9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:87:ef:01:16:ce:2e:69:07:a3:d8:9d:01:9d: 05:8d:18:d8:29:29:ad:3b:41:b0:e0:ba:bf:f5:4b: ae:90:49:ad:69:2d:6e:62:b0:0e:3b:4b:71:6d:7d: 9b:22:6e:f7:cd:e4:3c:78:c4:f5:6b:f6:d8:15:69: 50:93:3d:be:33:6a:cd:0b:28:f5:6c:c1:4f:a7:83: 6f:e7:42:1e:13:ec:dd:25:54:2a:1c:48:72:46:03: 08:c5:b1:00:37:88:aa:4b:14:0c:2b:b8:7e:a5:bb: 1b:91:65:97:25:b1:4b:22:ae:6a:0f:aa:91:6e:71: c9:b0:51:19:54:24:63:54:46:90:54:10:6f:a9:f4: 44:e9:4a:d7:8a:24:11:46:2e:ac:80:ac:6d:11:d9: d1:6f:76:f3:dc:96:30:d1:88:65:71:a6:fe:cc:aa: 51:87:ee:73:f3:9f:71:f8:fe:33:ed:c6:d6:76:4f: 61:76:d3:c9:25:40:7a:44:61:c0:55:f5:9e:19:0e: a6:f8:ac:2c:89:9a:3b:f7:f3:00:91:37:27:ba:a5: ed:3c:6d:2e:08:c4:ef:9b:07:7a:e0:c6:1c:97:05: a6:36:96:14:45:79:43:db:d8:92:d2:47:4f:f1:48: 89:0f:9f:4a:33:61:ba:94:fb:23:c4:00:9f:b7:3a: cb:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:44:45:4B:17:20:EA:B8:2F:BF:F4:C2:27:1A:1D:92:6E:26:6C:07 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7802179a-c80f-42f1-a50b-a0af1df078c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d059:4000::/40 Signature Algorithm: sha256WithRSAEncryption 09:69:9c:6a:e2:32:a6:1f:0e:8b:17:71:cf:58:47:b8:25:82: 6f:73:d4:52:08:34:cf:c7:56:3b:a2:e5:2d:2b:6e:d9:eb:55: 66:99:60:cb:ac:ab:9c:c7:a0:4c:7b:fb:9d:34:dd:ce:d0:c3: c2:b8:7a:92:64:d7:46:53:fd:e6:e0:28:d6:45:06:9e:e0:99: 37:1b:a8:6f:ae:ac:29:9b:d3:2c:12:9c:38:5b:bc:93:66:40: 9f:94:3f:e2:48:1e:6f:f2:f3:6e:de:d2:a1:6f:0a:1e:e3:cf: dd:74:0b:81:78:ab:eb:c8:5b:9c:b1:a8:a2:d0:d9:d6:e3:42: 79:70:a6:d6:fe:32:53:b0:59:fb:bd:da:5d:e5:09:84:80:43: 38:ba:c7:b3:cb:a9:51:73:30:20:a8:30:e8:7d:37:35:10:3e: e0:0e:33:04:82:51:76:62:4c:e3:40:02:83:2e:73:81:f5:9d: 1f:9e:21:10:a4:3e:58:d5:08:77:c7:89:4f:8b:6c:04:67:ad: b1:51:b0:cf:a1:db:3c:7b:6e:31:ab:28:13:1a:af:84:71:fc: d1:e8:2f:fd:13:3b:60:8e:48:c3:0e:a7:2d:b9:70:2d:26:3d: ea:39:08:6a:0f:d3:a6:02:f0:91:0a:b0:b0:ff:01:33:27:82: f5:d7:15:9e -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUEdR3Ub20nvp+Q3WLCne0VI2ANZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjEwNTdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDZlN2JkYWZlNzMyNDUzODUzZWI0MTllNmM5YWUxMTUwZDFmOGNhOGZkZDE1 NDYwNjdjNDlmODE1NDQzYmY1ZjkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2H7wEWzi5pB6PYnQGdBY0Y2CkprTtBsOC6v/VLrpBJrWktbmKwDjtLcW19 myJu983kPHjE9Wv22BVpUJM9vjNqzQso9WzBT6eDb+dCHhPs3SVUKhxIckYDCMWx ADeIqksUDCu4fqW7G5FllyWxSyKuag+qkW5xybBRGVQkY1RGkFQQb6n0ROlK14ok EUYurICsbRHZ0W9289yWMNGIZXGm/syqUYfuc/Ofcfj+M+3G1nZPYXbTySVAekRh wFX1nhkOpvisLImaO/fzAJE3J7ql7TxtLgjE75sHeuDGHJcFpjaWFEV5Q9vYktJH T/FIiQ+fSjNhupT7I8QAn7c6y5cCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQmREVL FyDquC+/9MInGh2SbiZsBzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzgwMjE3OWEtYzgwZi00MmYxLWE1MGItYTBhZjFkZjA3OGMyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0FlA MA0GCSqGSIb3DQEBCwUAA4IBAQAJaZxq4jKmHw6LF3HPWEe4JYJvc9RSCDTPx1Y7 ouUtK27Z61VmmWDLrKucx6BMe/udNN3O0MPCuHqSZNdGU/3m4CjWRQae4Jk3G6hv rqwpm9MsEpw4W7yTZkCflD/iSB5v8vNu3tKhbwoe48/ddAuBeKvryFucsaii0NnW 40J5cKbW/jJTsFn7vdpd5QmEgEM4usezy6lRczAgqDDofTc1ED7gDjMEglF2Ykzj QAKDLnOB9Z0fniEQpD5Y1Qh3x4lPi2wEZ62xUbDPods8e24xqygTGq+EcfzR6C/9 EztgjkjDDqctuXAtJj3qOQhqD9OmAvCRCrCw/wEzJ4L11xWe -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:06 2025 by rpki-client