This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/78085d0a-f1ac-43b7-ac6b-a8afcf9782f5.roa File: 78085d0a-f1ac-43b7-ac6b-a8afcf9782f5.roa (raw, json) Hash identifier: pAY3203Mrm2QAbGMxrmDyqOXA8Vyt+od0/HJrVLcqmU= Subject key identifier: 5F:DB:87:DF:04:C1:70:CE:B5:00:3A:6B:3E:0C:74:47:51:CB:EC:FB Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4782E9133FF1CA6841AE80D55FA7E13274BA003A Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/78085d0a-f1ac-43b7-ac6b-a8afcf9782f5.roa Signing time: Tue 02 Dec 2025 01:51:23 +0000 ROA not before: Tue 02 Dec 2025 01:51:23 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2a05:d030:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:82:e9:13:3f:f1:ca:68:41:ae:80:d5:5f:a7:e1:32:74:ba:00:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:51:23 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=b29fdd3a7ca89932cebec5fdead0d99f782a5181702df75c4e2ebf13e03ad96e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d2:7f:de:df:73:11:ce:f7:26:e2:cf:c5:23: d0:79:dd:f7:8a:be:b7:ce:95:c4:0e:83:a7:00:8c: 95:26:9a:1e:85:54:29:bd:15:5d:c0:ab:01:d6:46: 7e:a4:af:18:43:20:44:85:0b:bb:29:62:ac:a2:ab: ee:d0:af:25:24:dc:aa:2c:45:25:04:33:7e:4a:2c: 41:db:ab:ed:95:e5:eb:a5:a3:62:c3:a6:eb:7e:87: bb:5f:bf:84:93:18:d9:05:8a:2e:50:4d:6d:ed:d1: 59:63:76:23:72:87:ad:2e:0b:0b:22:27:10:67:0e: 45:57:ca:15:90:1b:c2:02:1f:f4:7b:06:9e:e5:40: 1d:3b:16:12:39:00:65:14:e8:df:9f:dc:a8:78:76: d1:ea:f7:fd:b6:dc:3f:a6:77:d2:4f:ec:ee:ed:65: 4e:10:7e:53:4f:10:44:00:e1:0f:22:31:b4:f4:7f: 23:c9:a4:d2:03:fc:b7:ec:52:c8:6f:14:d9:4d:61: 90:9f:aa:f4:29:b8:97:3c:3d:bc:4e:e1:82:7e:83: ac:65:a5:52:f9:83:f2:d4:06:2b:9f:a6:4e:9f:80: 66:5b:b2:57:9b:13:61:99:c5:09:db:b5:52:5b:9d: d2:fc:bf:a0:bd:d9:7b:e1:71:e8:39:3c:57:f2:a4: 7c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:DB:87:DF:04:C1:70:CE:B5:00:3A:6B:3E:0C:74:47:51:CB:EC:FB X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/78085d0a-f1ac-43b7-ac6b-a8afcf9782f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d030:c000::/40 Signature Algorithm: sha256WithRSAEncryption 7a:09:29:7a:b3:b2:80:89:bd:7c:4a:a1:ab:67:c6:6d:33:84: eb:66:2c:b3:fa:ca:0c:47:9a:9f:2b:96:61:21:c9:e5:88:92: d7:71:21:ae:da:27:07:2d:15:83:b6:6f:ac:2e:19:40:bb:ed: cf:65:72:8f:29:af:10:5d:8b:6c:58:5d:1e:ae:a8:63:42:44: 64:72:ff:db:bc:ef:cb:23:22:94:e2:c8:85:86:be:c8:7a:5b: 70:02:12:3c:4d:95:d4:30:c1:b7:0d:f5:1e:40:24:b8:7e:30: cf:94:5c:33:69:d9:aa:3b:dc:80:5f:a8:18:57:c0:6a:ce:8a: 76:87:ce:79:70:36:9e:e4:1b:fb:c3:7f:f0:da:35:f9:70:92: 87:54:17:f6:d9:5f:b8:cf:e5:90:16:c1:36:68:79:53:74:72: 3c:6c:c7:da:80:c8:0d:5e:13:99:a0:10:ed:38:68:bb:7b:ff: a0:50:22:4d:54:14:cd:b3:2e:36:bc:46:28:8b:1c:f1:30:21: 7e:50:77:5c:0d:89:b6:c6:b5:30:4d:09:28:71:c3:f0:16:ea: 95:36:68:87:e7:ce:de:a6:6d:f3:47:9c:29:a5:81:30:27:03: ad:50:d1:25:cc:91:6d:30:d9:97:03:2d:98:30:3c:07:81:bb: 02:cf:e0:c7 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUR4LpEz/xymhBroDVX6fhMnS6ADowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUxMjNaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQGIyOWZkZDNhN2NhODk5MzJjZWJlYzVmZGVhZDBkOTlmNzgyYTUxODE3MDJk Zjc1YzRlMmViZjEzZTAzYWQ5NmUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKHSf97fcxHO9ybiz8Uj0Hnd94q+t86VxA6DpwCMlSaaHoVUKb0VXcCrAdZG fqSvGEMgRIULuylirKKr7tCvJSTcqixFJQQzfkosQdur7ZXl66WjYsOm636Hu1+/ hJMY2QWKLlBNbe3RWWN2I3KHrS4LCyInEGcORVfKFZAbwgIf9HsGnuVAHTsWEjkA ZRTo35/cqHh20er3/bbcP6Z30k/s7u1lThB+U08QRADhDyIxtPR/I8mk0gP8t+xS yG8U2U1hkJ+q9Cm4lzw9vE7hgn6DrGWlUvmD8tQGK5+mTp+AZluyV5sTYZnFCdu1 Ulud0vy/oL3Ze+Fx6Dk8V/KkfP0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRf24ff BMFwzrUAOms+DHRHUcvs+zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzgwODVkMGEtZjFhYy00M2I3LWFjNmItYThhZmNmOTc4MmY1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DDA MA0GCSqGSIb3DQEBCwUAA4IBAQB6CSl6s7KAib18SqGrZ8ZtM4TrZiyz+soMR5qf K5ZhIcnliJLXcSGu2icHLRWDtm+sLhlAu+3PZXKPKa8QXYtsWF0erqhjQkRkcv/b vO/LIyKU4siFhr7IeltwAhI8TZXUMMG3DfUeQCS4fjDPlFwzadmqO9yAX6gYV8Bq zop2h855cDae5Bv7w3/w2jX5cJKHVBf22V+4z+WQFsE2aHlTdHI8bMfagMgNXhOZ oBDtOGi7e/+gUCJNVBTNsy42vEYoixzxMCF+UHdcDYm2xrUwTQkoccPwFuqVNmiH 587epm3zR5wppYEwJwOtUNElzJFtMNmXAy2YMDwHgbsCz+DH -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:51 2025 by rpki-client