This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a6d5c4d-40dd-4577-9520-a2ac286c8194.roa File: 7a6d5c4d-40dd-4577-9520-a2ac286c8194.roa (raw, json) Hash identifier: JzEHMBiR+Q2YYp5i2XY4d5nIr8M1u+1BwQKmfq9Wi6o= Subject key identifier: 39:0E:2C:4C:68:BD:73:9A:3F:79:EE:AC:5E:0D:74:D5:11:C4:86:20 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1511A68A0AED714E0A2151A372FA3BD708E40DAB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a6d5c4d-40dd-4577-9520-a2ac286c8194.roa Signing time: Sat 15 Nov 2025 05:30:15 +0000 ROA not before: Sat 15 Nov 2025 05:30:15 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:c0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:11:a6:8a:0a:ed:71:4e:0a:21:51:a3:72:fa:3b:d7:08:e4:0d:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:30:15 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=5fe26f5e47ceeb67463e5dc8f89183eaf94b93b478a746532447eeaa0391fe95, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e0:5a:ad:7a:46:63:dc:37:b4:db:7a:c9:ea: 90:82:88:6e:c7:db:8d:b1:bf:34:5a:dd:ae:9b:1c: b1:a5:41:a6:cc:40:9b:b2:81:28:7f:ed:29:b9:77: d2:db:24:66:d2:1b:47:be:86:2e:d3:db:79:03:1e: 5a:92:9a:a4:ff:d0:68:93:11:1e:3c:ec:7a:ce:fa: 6b:f7:fc:92:b7:c1:43:21:8f:0d:f5:20:90:1c:63: d2:d3:70:2e:0a:9f:f4:9e:3b:8d:d1:4a:ae:2f:81: fd:2e:f2:39:d7:c2:36:55:06:88:cf:2b:ee:ec:d9: 58:1f:14:5a:41:39:6d:ee:69:0e:a2:52:25:d6:0d: 56:00:c2:91:30:3a:68:c4:e2:d0:8d:1a:a2:f5:57: 2f:94:56:14:e9:19:f1:85:9e:d6:a8:1a:3d:e1:51: e6:ec:93:66:3b:7e:9c:b4:b6:5f:ac:de:8b:3a:3d: 75:9e:ab:12:b3:6e:2a:12:e9:6f:61:80:76:a7:5b: f5:35:2d:1c:35:77:57:18:fb:00:f8:bd:50:b3:9a: 3e:1e:bb:db:11:69:57:65:17:1c:7b:0d:70:60:dd: 71:3c:26:12:ef:cc:69:a1:eb:dc:16:f6:ba:0e:20: 26:a5:79:30:70:b2:78:31:24:b2:49:a2:c9:64:5f: aa:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:0E:2C:4C:68:BD:73:9A:3F:79:EE:AC:5E:0D:74:D5:11:C4:86:20 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a6d5c4d-40dd-4577-9520-a2ac286c8194.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:c0c0::/48 Signature Algorithm: sha256WithRSAEncryption 6c:3e:06:f6:dc:cb:30:01:cf:12:cd:04:2a:e0:c4:bf:ba:31: 52:02:d8:dd:48:f4:9c:11:58:30:9d:10:b1:c4:bf:36:48:1e: 2e:f3:6c:11:20:ec:2b:31:68:32:3a:3f:d6:58:2f:5c:8a:87: a5:54:32:f7:3d:bb:24:c0:38:63:c0:f5:9d:5c:f2:90:34:bb: 69:8f:0c:c0:d1:8b:82:e3:e7:93:44:fe:09:41:9c:df:5c:8d: 82:10:34:f9:e7:c2:e0:be:13:a1:1f:33:2e:ba:68:71:37:f3: a1:e6:2e:e7:8e:9c:ce:09:fe:31:02:7e:5b:ba:89:8a:88:ca: 51:63:c3:b7:2b:d8:4f:cb:fa:92:2f:dc:e8:29:f2:75:db:5c: c7:94:65:64:05:e2:32:0c:f8:f6:66:b5:37:bf:b3:a4:dd:07: e1:83:25:06:f5:11:84:0f:2f:5e:44:18:d1:15:4a:57:64:ea: ab:a3:4f:47:6d:0e:e2:b1:a4:c9:4c:19:08:c0:d8:40:3a:d1: 4e:cc:77:e0:e7:8e:66:6f:8c:ad:10:a5:8f:b3:5c:5c:69:6e: d5:f9:f2:78:90:4c:d4:ed:3b:30:2e:66:c5:90:e4:17:a2:03: f4:69:c1:6b:84:47:c8:95:0a:d2:ba:36:ef:28:92:35:09:6a: dd:1b:7a:de -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUFRGmigrtcU4KIVGjcvo71wjkDaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMwMTVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDVmZTI2ZjVlNDdjZWViNjc0NjNlNWRjOGY4OTE4M2VhZjk0YjkzYjQ3OGE3 NDY1MzI0NDdlZWFhMDM5MWZlOTUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANDgWq16RmPcN7TbesnqkIKIbsfbjbG/NFrdrpscsaVBpsxAm7KBKH/tKbl3 0tskZtIbR76GLtPbeQMeWpKapP/QaJMRHjzses76a/f8krfBQyGPDfUgkBxj0tNw Lgqf9J47jdFKri+B/S7yOdfCNlUGiM8r7uzZWB8UWkE5be5pDqJSJdYNVgDCkTA6 aMTi0I0aovVXL5RWFOkZ8YWe1qgaPeFR5uyTZjt+nLS2X6zeizo9dZ6rErNuKhLp b2GAdqdb9TUtHDV3Vxj7APi9ULOaPh672xFpV2UXHHsNcGDdcTwmEu/MaaHr3Bb2 ug4gJqV5MHCyeDEkskmiyWRfqr8CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQ5DixM aL1zmj957qxeDXTVEcSGIDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv N2E2ZDVjNGQtNDBkZC00NTc3LTk1MjAtYTJhYzI4NmM4MTk0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H/A wDANBgkqhkiG9w0BAQsFAAOCAQEAbD4G9tzLMAHPEs0EKuDEv7oxUgLY3Uj0nBFY MJ0QscS/NkgeLvNsESDsKzFoMjo/1lgvXIqHpVQy9z27JMA4Y8D1nVzykDS7aY8M wNGLguPnk0T+CUGc31yNghA0+efC4L4ToR8zLrpocTfzoeYu546czgn+MQJ+W7qJ iojKUWPDtyvYT8v6ki/c6Cnyddtcx5RlZAXiMgz49ma1N7+zpN0H4YMlBvURhA8v XkQY0RVKV2Tqq6NPR20O4rGkyUwZCMDYQDrRTsx34OeOZm+MrRClj7NcXGlu1fny eJBM1O07MC5mxZDkF6ID9GnBa4RHyJUK0ro27yiSNQlq3Rt63g== -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:44 2025 by rpki-client