This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7dbe70b9-8807-4382-b0db-753dfbe69012.roa File: 7dbe70b9-8807-4382-b0db-753dfbe69012.roa (raw, json) Hash identifier: aFADl9xm8UHWA4+afCN2+BGRrXIVULO8UBWrMpA667I= Subject key identifier: 69:23:B6:22:6D:AF:F1:5C:58:2B:CE:AC:6D:AD:06:E1:D2:01:0A:0F Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5BCC8D2A50109720EA8696FDDAE854B101F8A9CB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7dbe70b9-8807-4382-b0db-753dfbe69012.roa Signing time: Sat 15 Nov 2025 06:31:07 +0000 ROA not before: Sat 15 Nov 2025 06:31:07 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d01b::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:cc:8d:2a:50:10:97:20:ea:86:96:fd:da:e8:54:b1:01:f8:a9:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:31:07 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=59227719144d7a5bc7a1ff3c852efa1010abeda78871113063a797162b7475fc, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2f:10:c4:a3:d8:96:a2:bc:07:04:25:f0:50: 31:6c:be:10:8b:84:0d:21:37:42:fb:3d:c5:a5:8f: 31:5a:94:fd:a7:35:f0:96:2c:a7:6b:4a:5d:e9:84: 93:2c:05:51:61:f8:2d:49:1b:24:0e:cd:05:79:98: 43:0e:7b:b5:4d:08:67:78:07:92:c4:3d:6c:29:d9: 7a:6f:e6:2b:f2:aa:a5:1c:f6:6a:b2:f5:c1:04:f3: 4a:c9:64:b2:da:47:8a:98:03:2e:65:b9:5a:f6:76: aa:f1:a6:43:45:dd:4c:79:fc:08:6b:c0:c3:3f:5e: 31:8e:58:aa:c7:c7:1a:4f:e3:19:82:89:00:c2:0a: f1:7d:40:30:81:9a:61:f3:af:5d:36:1d:51:d6:95: 33:64:e8:e0:42:5c:ee:2a:2e:cd:21:82:2d:0a:b8: 3c:5c:60:db:c0:60:a9:44:8f:56:29:a5:16:78:db: 42:da:52:79:30:8f:a1:0e:cc:c0:3c:bf:bf:cc:f5: e9:82:17:26:db:f2:a3:45:8f:da:5b:5a:37:91:0c: 3c:b4:a8:3b:c8:ea:72:92:a8:05:95:18:db:aa:f8: 5c:97:03:79:2a:24:5c:68:78:61:c9:e1:81:e2:d3: 18:99:9c:02:64:44:3d:b4:56:b7:c4:ef:b5:7d:50: c0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:23:B6:22:6D:AF:F1:5C:58:2B:CE:AC:6D:AD:06:E1:D2:01:0A:0F X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7dbe70b9-8807-4382-b0db-753dfbe69012.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d01b::/37 Signature Algorithm: sha256WithRSAEncryption 4e:96:52:e3:ba:05:a9:fb:0b:0c:1e:e5:0c:74:0e:cd:fc:99: 07:ea:a8:77:bc:03:15:90:37:48:96:4f:dc:60:1c:38:5d:82: c9:60:b3:ba:c5:46:05:ba:03:cd:a9:e9:54:ef:3f:b9:87:6e: 66:f8:cc:4f:f1:05:3c:68:90:40:72:a0:0c:56:3d:bb:de:f7: fa:ac:a9:a0:fe:b6:36:4c:10:e4:ed:46:89:3f:79:73:53:c5: 22:e2:54:c4:f5:2f:0c:f6:7d:e9:5b:78:11:08:c5:8f:29:ca: 8b:ee:ed:fc:d9:cd:55:24:70:b9:63:91:ac:c3:68:b1:cd:c3: e2:f6:58:ec:30:26:cc:a1:b9:1c:22:c3:7b:8b:4d:31:50:c5: 3d:5b:0a:e2:f0:11:86:cd:90:cf:6a:b8:c6:79:47:93:4b:91: 6b:8f:6c:75:d8:22:34:59:ea:c4:1e:be:c9:9c:de:30:1c:bf: c9:fa:10:bf:34:c8:87:a9:6b:16:18:50:d6:cb:58:30:51:8b: ae:ad:0f:7f:28:64:3d:e9:e9:37:d0:63:db:5e:1c:15:73:49: c4:44:4a:a1:16:81:67:bd:11:1c:25:22:ce:58:e1:81:6e:00: 34:10:34:2d:fd:5d:b0:f7:37:65:28:14:7d:3f:44:a9:c4:64: fa:4b:6b:d9 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUW8yNKlAQlyDqhpb92uhUsQH4qcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjMxMDdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDU5MjI3NzE5MTQ0ZDdhNWJjN2ExZmYzYzg1MmVmYTEwMTBhYmVkYTc4ODcx MTEzMDYzYTc5NzE2MmI3NDc1ZmMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEvEMSj2JaivAcEJfBQMWy+EIuEDSE3Qvs9xaWPMVqU/ac18JYsp2tKXemE kywFUWH4LUkbJA7NBXmYQw57tU0IZ3gHksQ9bCnZem/mK/KqpRz2arL1wQTzSslk stpHipgDLmW5WvZ2qvGmQ0XdTHn8CGvAwz9eMY5YqsfHGk/jGYKJAMIK8X1AMIGa YfOvXTYdUdaVM2To4EJc7iouzSGCLQq4PFxg28BgqUSPVimlFnjbQtpSeTCPoQ7M wDy/v8z16YIXJtvyo0WP2ltaN5EMPLSoO8jqcpKoBZUY26r4XJcDeSokXGh4Ycnh geLTGJmcAmREPbRWt8TvtX1QwFMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRpI7Yi ba/xXFgrzqxtrQbh0gEKDzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv N2RiZTcwYjktODgwNy00MzgyLWIwZGItNzUzZGZiZTY5MDEyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAyoF0BsA MA0GCSqGSIb3DQEBCwUAA4IBAQBOllLjugWp+wsMHuUMdA7N/JkH6qh3vAMVkDdI lk/cYBw4XYLJYLO6xUYFugPNqelU7z+5h25m+MxP8QU8aJBAcqAMVj273vf6rKmg /rY2TBDk7UaJP3lzU8Ui4lTE9S8M9n3pW3gRCMWPKcqL7u382c1VJHC5Y5Gsw2ix zcPi9ljsMCbMobkcIsN7i00xUMU9Wwri8BGGzZDParjGeUeTS5Frj2x12CI0WerE Hr7JnN4wHL/J+hC/NMiHqWsWGFDWy1gwUYuurQ9/KGQ96ek30GPbXhwVc0nEREqh FoFnvREcJSLOWOGBbgA0EDQt/V2w9zdlKBR9P0SpxGT6S2vZ -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:18 2025 by rpki-client