This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7d5bbe6e-da67-4af0-af12-c86f93a16721.roa File: 7d5bbe6e-da67-4af0-af12-c86f93a16721.roa (raw, json) Hash identifier: Q8s0jLMH081xjUc0aZ1s73VU1f+dE0LVkiuVrvsAPGY= Subject key identifier: 9C:08:D9:61:32:27:C2:1D:98:20:3E:27:1D:8D:F5:D8:47:E6:19:4E Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 7DC65B373B7F4DFB7E19B23A0493D182B80FCAA5 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7d5bbe6e-da67-4af0-af12-c86f93a16721.roa Signing time: Sat 15 Nov 2025 05:20:09 +0000 ROA not before: Sat 15 Nov 2025 05:20:09 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2a05:d06f:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c6:5b:37:3b:7f:4d:fb:7e:19:b2:3a:04:93:d1:82:b8:0f:ca:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:20:09 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=ba7177ef8101a5ffef720c55bcaed2cfced6b2f9b22e93a17532eae6c92123b8, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ae:6d:f0:ac:3c:e3:1f:bc:17:21:c9:2c:0d: a1:1b:d6:2c:ad:b3:06:c8:1f:d0:88:d4:58:39:49: 54:43:3a:3d:6a:4e:6f:30:5b:28:5d:f2:7d:d8:6c: 0b:ca:ee:46:4a:ed:08:97:c8:68:71:21:e0:3a:50: cd:29:d2:a4:50:ff:25:63:5e:5b:08:17:01:f9:76: bb:c8:99:fa:1f:1f:01:cd:7d:18:b1:6a:43:2c:7f: a0:9a:3b:ad:0f:1a:ad:86:73:ec:ce:84:92:bb:60: 3a:3b:c0:82:a6:44:80:38:bd:58:f9:60:3d:05:b0: b7:56:0f:bb:4f:4e:03:d2:99:db:02:75:4f:d9:a6: 0a:da:32:ce:ea:8f:82:da:4b:55:6c:d4:1e:8c:37: 1c:aa:37:d8:a3:ee:07:fa:ff:44:78:3d:45:42:43: 00:7b:a8:21:5d:09:dd:ba:20:af:d5:a6:7c:72:62: 2a:45:68:ca:78:8d:5f:44:c0:43:ce:b3:ad:2e:bd: 33:01:a5:8f:29:76:a7:fe:fa:6e:d7:4b:f2:28:d6: d3:47:a5:e5:b0:40:de:98:5c:56:17:56:ef:c5:18: fa:15:1b:5b:15:02:6f:ec:a2:f0:f3:e1:39:6f:0c: 46:20:6c:07:17:09:bf:fa:ea:73:50:ca:cc:4b:db: 01:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:08:D9:61:32:27:C2:1D:98:20:3E:27:1D:8D:F5:D8:47:E6:19:4E X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7d5bbe6e-da67-4af0-af12-c86f93a16721.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06f:6000::/40 Signature Algorithm: sha256WithRSAEncryption 4a:13:f9:76:6a:75:be:79:46:ff:f2:44:de:12:d4:40:ed:f9: 8c:38:25:99:d9:9f:5b:16:6f:14:a8:a9:7a:b9:ae:0b:da:6d: f6:a1:2c:20:85:e9:9c:96:5e:e5:3e:73:9c:ad:ad:0c:7f:99: 30:41:64:8e:85:75:ea:de:97:6a:5c:d8:a0:ae:49:53:81:a9: fe:6c:5c:8f:d0:0c:4d:b4:99:09:92:c6:83:41:b0:b3:13:b2: 22:d0:2d:2c:09:83:4a:8a:98:46:e3:4d:36:16:ce:ae:e0:0c: 99:69:e4:54:5c:5f:08:a2:bd:a1:b5:cb:8e:5d:79:91:09:16: b2:fc:f0:f8:01:31:d3:ed:db:ca:c2:a6:8d:5b:43:6d:80:c3: 93:61:a6:84:fd:d5:20:05:0f:5e:d8:8b:63:f9:2e:e9:72:40: a5:4f:a7:c7:8b:ab:f7:92:bb:62:bf:b6:87:45:48:90:c2:ae: e5:1a:97:75:d0:ba:3c:b5:13:bb:41:22:a6:61:c2:97:12:cb: d3:18:2c:89:26:3e:d0:c8:b1:55:f1:21:d3:3d:6a:36:6f:36: 1d:90:45:4a:af:05:ba:b8:cd:32:05:8d:d3:b3:e2:89:4c:a2: 3b:c7:ec:90:54:47:59:59:1e:06:02:18:80:7f:1a:50:6d:b0: a1:18:78:de -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUfcZbNzt/Tft+GbI6BJPRgrgPyqUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTIwMDlaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGJhNzE3N2VmODEwMWE1ZmZlZjcyMGM1NWJjYWVkMmNmY2VkNmIyZjliMjJl OTNhMTc1MzJlYWU2YzkyMTIzYjgxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPOubfCsPOMfvBchySwNoRvWLK2zBsgf0IjUWDlJVEM6PWpObzBbKF3yfdhs C8ruRkrtCJfIaHEh4DpQzSnSpFD/JWNeWwgXAfl2u8iZ+h8fAc19GLFqQyx/oJo7 rQ8arYZz7M6EkrtgOjvAgqZEgDi9WPlgPQWwt1YPu09OA9KZ2wJ1T9mmCtoyzuqP gtpLVWzUHow3HKo32KPuB/r/RHg9RUJDAHuoIV0J3bogr9WmfHJiKkVoyniNX0TA Q86zrS69MwGljyl2p/76btdL8ijW00el5bBA3phcVhdW78UY+hUbWxUCb+yi8PPh OW8MRiBsBxcJv/rqc1DKzEvbAaECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBScCNlh MifCHZggPicdjfXYR+YZTjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv N2Q1YmJlNmUtZGE2Ny00YWYwLWFmMTItYzg2ZjkzYTE2NzIxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0G9g MA0GCSqGSIb3DQEBCwUAA4IBAQBKE/l2anW+eUb/8kTeEtRA7fmMOCWZ2Z9bFm8U qKl6ua4L2m32oSwghemcll7lPnOcra0Mf5kwQWSOhXXq3pdqXNigrklTgan+bFyP 0AxNtJkJksaDQbCzE7Ii0C0sCYNKiphG4002Fs6u4AyZaeRUXF8Ior2htcuOXXmR CRay/PD4ATHT7dvKwqaNW0NtgMOTYaaE/dUgBQ9e2Itj+S7pckClT6fHi6v3krti v7aHRUiQwq7lGpd10Lo8tRO7QSKmYcKXEsvTGCyJJj7QyLFV8SHTPWo2bzYdkEVK rwW6uM0yBY3Ts+KJTKI7x+yQVEdZWR4GAhiAfxpQbbChGHje -----END CERTIFICATE-----Generated at Sat Dec 6 11:47:04 2025 by rpki-client