This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7b5f45a2-ab79-4ad3-a09e-87b355f76732.roa File: 7b5f45a2-ab79-4ad3-a09e-87b355f76732.roa (raw, json) Hash identifier: Et8x+PppEYWIHqLU5C2HKb19AUzoxA01xxvt2Rl3arc= Subject key identifier: E6:87:7A:92:F1:65:25:E3:EC:37:60:6D:3D:F1:8B:FE:10:D8:02:1B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 16863B15A524A49D3FB1DFA54F5A0348ECA7C6E6 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7b5f45a2-ab79-4ad3-a09e-87b355f76732.roa Signing time: Wed 10 Dec 2025 05:20:53 +0000 ROA not before: Wed 10 Dec 2025 05:20:53 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:86:3b:15:a5:24:a4:9d:3f:b1:df:a5:4f:5a:03:48:ec:a7:c6:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:20:53 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=06d4ba3835940e12903ab1f98366494199265147117e0c9f8602326794349c52, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d3:2e:39:bd:92:9f:f6:09:30:da:1a:ba:78: ba:b8:46:ab:9e:53:3f:b8:cf:f1:49:80:de:e2:42: f1:95:7a:a6:7e:eb:89:15:64:6f:7f:de:bc:c2:e3: 62:64:9d:3a:9e:4b:e2:c5:ea:11:42:7c:9c:4c:94: 7f:f9:a2:36:75:39:ff:4f:99:e5:56:cf:aa:d9:08: 5e:c5:f3:2f:e9:7e:af:5f:9c:b4:d3:bb:5c:ad:cd: f6:b1:52:44:f9:86:01:00:82:f4:d8:e5:de:b1:b7: 11:bb:28:a6:0e:fb:24:90:03:88:51:8c:61:ad:43: cc:cd:ae:e6:54:ee:d1:c7:36:20:24:61:1d:9b:50: 38:6d:71:2d:84:1b:d8:b9:02:21:88:46:de:33:67: b9:94:da:1a:90:60:f1:4f:0e:6e:23:bb:af:c8:c1: ce:a9:a4:15:26:25:71:fa:14:aa:20:f7:ea:2e:3d: 6b:85:d1:8b:99:c9:fa:55:b1:4a:60:30:26:3c:30: 72:c5:9d:b5:fe:7d:51:50:6a:f1:38:2c:7a:9f:3f: 62:1a:de:f1:2f:5f:c3:35:30:89:d7:9f:4a:6e:0a: 57:c0:71:ff:71:a1:7e:e6:02:e6:81:06:2b:45:a2: 86:d6:a8:b9:3a:c8:02:ed:62:0e:08:b0:05:b4:83: 6b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:87:7A:92:F1:65:25:E3:EC:37:60:6D:3D:F1:8B:FE:10:D8:02:1B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7b5f45a2-ab79-4ad3-a09e-87b355f76732.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:e080::/48 Signature Algorithm: sha256WithRSAEncryption 15:d7:0f:db:c8:19:fb:75:74:a2:c1:2e:45:af:6b:76:ca:b9: 61:bf:ab:16:2e:00:88:7c:40:2b:21:4c:0a:61:6a:b9:c9:04: f1:95:3c:9d:b4:f0:03:1c:db:f6:14:a5:25:0e:47:84:e5:f5: 0c:de:31:b7:92:fd:2c:6d:f1:95:fc:a9:57:56:ee:45:3c:7b: 1c:b5:14:73:0c:16:37:6b:6c:b1:3a:ce:7d:ac:84:82:ba:53: 62:8f:51:c7:aa:ac:f7:73:b7:02:18:c6:25:54:86:2c:4d:b3: b6:7c:88:a8:9a:2d:7a:fe:d0:31:63:3b:8c:c4:0b:42:9b:40: e3:89:dd:03:ef:5b:aa:c6:55:05:0d:5f:81:18:9c:c2:96:c2: f4:76:87:09:98:26:29:0a:7b:3c:2e:75:c3:b1:3d:71:1c:98: 9a:49:af:e2:96:a0:75:68:35:6c:0f:2c:5b:67:e0:e7:26:8c: 4e:84:d1:cb:89:24:5b:7b:bb:8b:03:43:9a:8b:c5:69:a1:f1: 9c:05:28:b3:d2:f8:cf:7a:a1:74:be:2b:74:b3:d1:dc:f0:d9: 06:a1:e2:7f:4a:90:47:78:71:90:5a:da:3a:fd:3a:f9:cb:37: 68:d7:e8:16:f0:9c:84:c7:c2:01:62:ab:55:be:0a:32:35:8c: ed:37:91:4e -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUFoY7FaUkpJ0/sd+lT1oDSOynxuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTIwNTNaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDA2ZDRiYTM4MzU5NDBlMTI5MDNhYjFmOTgzNjY0OTQxOTkyNjUxNDcxMTdl MGM5Zjg2MDIzMjY3OTQzNDljNTIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLTLjm9kp/2CTDaGrp4urhGq55TP7jP8UmA3uJC8ZV6pn7riRVkb3/evMLj YmSdOp5L4sXqEUJ8nEyUf/miNnU5/0+Z5VbPqtkIXsXzL+l+r1+ctNO7XK3N9rFS RPmGAQCC9Njl3rG3Ebsopg77JJADiFGMYa1DzM2u5lTu0cc2ICRhHZtQOG1xLYQb 2LkCIYhG3jNnuZTaGpBg8U8ObiO7r8jBzqmkFSYlcfoUqiD36i49a4XRi5nJ+lWx SmAwJjwwcsWdtf59UVBq8Tgsep8/Yhre8S9fwzUwidefSm4KV8Bx/3GhfuYC5oEG K0WihtaouTrIAu1iDgiwBbSDa4UCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTmh3qS 8WUl4+w3YG098Yv+ENgCGzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv N2I1ZjQ1YTItYWI3OS00YWQzLWEwOWUtODdiMzU1Zjc2NzMyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HLg gDANBgkqhkiG9w0BAQsFAAOCAQEAFdcP28gZ+3V0osEuRa9rdsq5Yb+rFi4AiHxA KyFMCmFquckE8ZU8nbTwAxzb9hSlJQ5HhOX1DN4xt5L9LG3xlfypV1buRTx7HLUU cwwWN2tssTrOfayEgrpTYo9Rx6qs93O3AhjGJVSGLE2ztnyIqJotev7QMWM7jMQL QptA44ndA+9bqsZVBQ1fgRicwpbC9HaHCZgmKQp7PC51w7E9cRyYmkmv4pagdWg1 bA8sW2fg5yaMToTRy4kkW3u7iwNDmovFaaHxnAUos9L4z3qhdL4rdLPR3PDZBqHi f0qQR3hxkFraOv06+cs3aNfoFvCchMfCAWKrVb4KMjWM7TeRTg== -----END CERTIFICATE-----Generated at Mon Dec 15 15:30:00 2025 by rpki-client