This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/79337548-762c-432b-bf7a-72bf34db9509.roa File: 79337548-762c-432b-bf7a-72bf34db9509.roa (raw, json) Hash identifier: +D6z2kIYCjGk2NJT4PLZXq7dshVLZkTy7oXvjUHuw0k= Subject key identifier: 39:AE:0B:AF:A7:44:27:E2:99:BA:C3:FD:83:73:93:00:31:D6:26:F7 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3CD3F60E7CEE44201AF5863A6AB21DA979F6F9DB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/79337548-762c-432b-bf7a-72bf34db9509.roa Signing time: Tue 25 Nov 2025 20:10:06 +0000 ROA not before: Tue 25 Nov 2025 20:10:06 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:c080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:d3:f6:0e:7c:ee:44:20:1a:f5:86:3a:6a:b2:1d:a9:79:f6:f9:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:10:06 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=736a4b8ffef8339d96431190ad061b5d463870491927126d7ce068c6a39d0d3b, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:18:67:e5:5a:c9:d5:30:7e:f7:27:f8:0a:3f: 9d:a4:c6:68:e7:07:66:0e:fd:e0:48:08:dc:ff:74: 0a:3f:93:f0:1a:81:28:3d:13:d5:c8:6f:83:ff:59: e0:25:ca:be:31:8f:77:65:ea:23:45:02:f8:2a:7f: 04:f5:98:ed:27:eb:bb:bb:31:12:1c:b7:b5:c0:1b: 0b:1b:ab:65:28:07:45:2a:fa:3c:ca:31:56:85:94: a6:17:3a:15:22:57:a0:5c:04:6d:cd:c7:d0:15:c0: 97:c8:98:2d:fe:65:d0:a9:3a:34:6a:96:4e:9b:20: e3:f0:14:da:cf:3b:3a:1a:e2:e7:7a:4b:c8:50:f2: 39:5d:e4:ff:25:21:60:17:83:91:d2:a6:99:83:f6: c7:63:e9:e0:d9:cc:bd:bb:43:82:77:85:1e:6d:ec: bf:a3:17:08:5a:c2:d6:7a:43:62:f2:31:76:b6:0d: a8:b8:71:83:7d:0a:ea:59:a7:2b:8d:b7:c4:e5:2b: 1b:79:bf:f6:80:cb:a1:ca:90:44:13:a5:8b:b7:fa: 14:41:ca:9e:bc:0d:e3:0e:04:69:44:98:6d:54:61: 2b:6e:e6:90:b5:2b:b4:3e:5f:8e:bc:b9:5c:36:4d: d9:6f:f7:db:9f:a9:dc:d8:c8:4f:6b:68:d0:2f:77: 90:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:AE:0B:AF:A7:44:27:E2:99:BA:C3:FD:83:73:93:00:31:D6:26:F7 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/79337548-762c-432b-bf7a-72bf34db9509.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:c080::/46 Signature Algorithm: sha256WithRSAEncryption 35:bb:cc:f3:4c:93:bd:0a:c8:31:fa:ea:aa:a9:aa:66:f4:93: 86:a1:03:fd:5f:cf:58:ba:19:82:5c:cb:a7:da:6b:4c:c5:65: 92:ac:48:b2:84:2c:dd:63:41:62:a8:e8:8a:31:ad:05:cc:0c: 5e:85:6c:58:50:26:04:a7:31:3d:ff:d1:7d:ca:87:e5:d2:ce: 8c:8f:72:7e:a0:4c:cb:c3:68:01:ef:26:3f:39:91:0f:88:26: 27:59:9e:cc:77:a8:e0:ec:26:03:b3:cd:45:54:20:91:c2:80: 73:ae:6b:ae:82:8d:23:e0:4f:a4:9a:80:e2:05:7d:2f:66:f1: 52:7d:58:13:5e:06:3a:0e:8a:f2:07:3e:c3:19:79:09:22:7a: 02:f0:61:64:3f:62:20:8f:ed:dd:b3:3b:21:2f:79:ce:46:eb: 3d:fb:59:18:e0:82:a5:7f:9a:45:0e:56:10:d3:a8:da:ba:13: b6:98:bf:1f:0d:c4:6f:59:1d:f6:af:4a:5e:37:71:9b:a6:72: 01:13:74:06:d7:13:56:85:1c:f3:2e:91:7f:e5:d6:d2:ca:de: 5b:40:19:d6:a6:cc:ab:f7:9b:ba:8f:28:56:e0:db:08:d2:8a: a8:7c:3e:58:11:1a:4a:aa:bb:a1:6f:66:a9:5a:dd:6b:cf:61: af:ea:ab:57 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUPNP2DnzuRCAa9YY6arIdqXn2+dswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDEwMDZaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDczNmE0YjhmZmVmODMzOWQ5NjQzMTE5MGFkMDYxYjVkNDYzODcwNDkxOTI3 MTI2ZDdjZTA2OGM2YTM5ZDBkM2IxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUYZ+VaydUwfvcn+Ao/naTGaOcHZg794EgI3P90Cj+T8BqBKD0T1chvg/9Z 4CXKvjGPd2XqI0UC+Cp/BPWY7Sfru7sxEhy3tcAbCxurZSgHRSr6PMoxVoWUphc6 FSJXoFwEbc3H0BXAl8iYLf5l0Kk6NGqWTpsg4/AU2s87Ohri53pLyFDyOV3k/yUh YBeDkdKmmYP2x2Pp4NnMvbtDgneFHm3sv6MXCFrC1npDYvIxdrYNqLhxg30K6lmn K423xOUrG3m/9oDLocqQRBOli7f6FEHKnrwN4w4EaUSYbVRhK27mkLUrtD5fjry5 XDZN2W/325+p3NjIT2to0C93kLMCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQ5rguv p0Qn4pm6w/2Dc5MAMdYm9zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzkzMzc1NDgtNzYyYy00MzJiLWJmN2EtNzJiZjM0ZGI5NTA5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HPA gDANBgkqhkiG9w0BAQsFAAOCAQEANbvM80yTvQrIMfrqqqmqZvSThqED/V/PWLoZ glzLp9prTMVlkqxIsoQs3WNBYqjoijGtBcwMXoVsWFAmBKcxPf/RfcqH5dLOjI9y fqBMy8NoAe8mPzmRD4gmJ1mezHeo4OwmA7PNRVQgkcKAc65rroKNI+BPpJqA4gV9 L2bxUn1YE14GOg6K8gc+wxl5CSJ6AvBhZD9iII/t3bM7IS95zkbrPftZGOCCpX+a RQ5WENOo2roTtpi/Hw3Eb1kd9q9KXjdxm6ZyARN0BtcTVoUc8y6Rf+XW0sreW0AZ 1qbMq/ebuo8oVuDbCNKKqHw+WBEaSqq7oW9mqVrda89hr+qrVw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:41:49 2025 by rpki-client