This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7b5f45a2-ab79-4ad3-a09e-87b355f76732.roa File: 7b5f45a2-ab79-4ad3-a09e-87b355f76732.roa (raw, json) Hash identifier: pbV+0X9MqF9G8I7HIoDsw4MnK7iTZXwZ2VwXsuSnGpA= Subject key identifier: 90:EA:93:04:51:1C:66:08:68:84:B4:17:A4:95:74:BE:EE:7B:80:C4 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 10EEF402866DC26EAEA46CB267FE8F9376DD161F Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7b5f45a2-ab79-4ad3-a09e-87b355f76732.roa Signing time: Sat 15 Nov 2025 05:30:15 +0000 ROA not before: Sat 15 Nov 2025 05:30:15 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ee:f4:02:86:6d:c2:6e:ae:a4:6c:b2:67:fe:8f:93:76:dd:16:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:30:15 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=59c9629efd389bb65376b67d6e16c4b6f1b953dbb9d10993a49a4950fac34753, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:d7:1a:70:eb:bd:9d:76:83:0e:5c:ee:9c:a3: be:96:b6:a1:e4:61:46:23:fb:b9:d8:09:1d:be:97: 04:d3:e3:5f:42:2c:85:7f:40:88:5d:ac:30:6d:d4: 30:52:1f:13:85:ff:97:5b:af:50:ce:ba:6a:ed:f1: e0:29:af:c6:fa:c7:d4:57:09:24:05:bc:da:3a:76: 6e:e1:57:a4:2a:85:f7:3b:76:b2:47:5f:5b:ed:43: c0:b9:82:77:04:f9:87:12:e7:f6:7e:4c:9a:d6:49: a9:49:28:57:a1:39:7f:23:97:b5:1e:59:2b:23:3a: 9d:06:84:3d:46:12:4b:bc:a8:96:74:40:d0:c7:cb: c4:b5:65:9e:37:0b:a2:f8:91:2d:d2:9b:b1:ae:8b: 19:53:c1:d5:1f:42:bb:55:86:b0:0c:28:94:3f:85: 42:0b:f6:62:aa:f0:54:d7:b8:9d:00:fc:29:c0:aa: f4:ac:3a:a8:11:8c:6c:f7:55:09:89:45:e4:56:d4: 4c:cb:da:5b:bb:3d:95:ef:51:0c:b3:09:db:b7:02: 4a:2c:ed:fd:f7:c4:4d:2d:52:96:cf:59:30:2f:04: 9b:5a:0f:c3:5f:71:02:ed:a0:88:6c:e9:49:be:02: ac:6a:43:87:85:f9:df:38:9d:20:29:46:72:93:c8: d2:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:EA:93:04:51:1C:66:08:68:84:B4:17:A4:95:74:BE:EE:7B:80:C4 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7b5f45a2-ab79-4ad3-a09e-87b355f76732.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:e080::/48 Signature Algorithm: sha256WithRSAEncryption 2c:72:3a:32:b8:ce:44:94:16:63:c9:b2:f6:6b:2a:1b:2c:55: dd:46:63:7a:3c:99:ec:2a:a2:ba:3c:59:b2:ab:d3:c0:22:fe: 9f:67:cc:66:0b:f4:e1:c5:37:55:b4:89:36:8f:0d:9b:5e:69: cf:1c:ca:ed:aa:ef:14:93:ba:55:17:3f:65:a8:61:12:6b:64: 7e:8a:46:ab:3f:32:90:6e:17:2b:5b:1d:2c:e3:89:66:ef:cd: 84:8b:77:b2:71:b6:00:f2:d1:e1:bd:40:f9:12:7a:c2:7d:e6: d4:e7:0e:44:21:76:ae:93:b6:83:fa:dd:fd:8c:7a:90:61:54: 61:43:8d:55:eb:54:c1:bc:bb:43:3d:64:62:b3:e0:c3:37:31: 7d:17:55:43:8c:8a:7f:a1:f7:b5:eb:7b:62:e9:03:e5:20:01: fc:a1:3a:13:3f:9c:67:96:92:60:43:a4:bb:74:3c:a7:58:0e: 5b:87:6a:2a:96:0f:a3:11:83:47:27:be:da:00:76:c8:95:08: 3e:d0:aa:66:c5:fc:68:7c:f8:b4:93:7c:46:24:03:65:66:e6: 57:1f:d8:e5:c1:73:5b:b7:e5:0f:2e:ab:4a:ec:d0:29:a0:d5: 84:db:e9:64:52:f1:cd:96:8b:82:42:d9:04:cc:41:73:3c:49: 65:7e:6f:47 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUEO70AoZtwm6upGyyZ/6Pk3bdFh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMwMTVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDU5Yzk2MjllZmQzODliYjY1Mzc2YjY3ZDZlMTZjNGI2ZjFiOTUzZGJiOWQx MDk5M2E0OWE0OTUwZmFjMzQ3NTMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJPXGnDrvZ12gw5c7pyjvpa2oeRhRiP7udgJHb6XBNPjX0IshX9AiF2sMG3U MFIfE4X/l1uvUM66au3x4CmvxvrH1FcJJAW82jp2buFXpCqF9zt2skdfW+1DwLmC dwT5hxLn9n5MmtZJqUkoV6E5fyOXtR5ZKyM6nQaEPUYSS7yolnRA0MfLxLVlnjcL oviRLdKbsa6LGVPB1R9Cu1WGsAwolD+FQgv2YqrwVNe4nQD8KcCq9Kw6qBGMbPdV CYlF5FbUTMvaW7s9le9RDLMJ27cCSizt/ffETS1Sls9ZMC8Em1oPw19xAu2giGzp Sb4CrGpDh4X53zidIClGcpPI0mECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSQ6pME URxmCGiEtBeklXS+7nuAxDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv N2I1ZjQ1YTItYWI3OS00YWQzLWEwOWUtODdiMzU1Zjc2NzMyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HLg gDANBgkqhkiG9w0BAQsFAAOCAQEALHI6MrjORJQWY8my9msqGyxV3UZjejyZ7Cqi ujxZsqvTwCL+n2fMZgv04cU3VbSJNo8Nm15pzxzK7arvFJO6VRc/ZahhEmtkfopG qz8ykG4XK1sdLOOJZu/NhIt3snG2APLR4b1A+RJ6wn3m1OcORCF2rpO2g/rd/Yx6 kGFUYUONVetUwby7Qz1kYrPgwzcxfRdVQ4yKf6H3tet7YukD5SAB/KE6Ez+cZ5aS YEOku3Q8p1gOW4dqKpYPoxGDRye+2gB2yJUIPtCqZsX8aHz4tJN8RiQDZWbmVx/Y 5cFzW7flDy6rSuzQKaDVhNvpZFLxzZaLgkLZBMxBczxJZX5vRw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:51 2025 by rpki-client