This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7f3452cc-a2fb-45ca-9617-8db45bd3c546.roa File: 7f3452cc-a2fb-45ca-9617-8db45bd3c546.roa (raw, json) Hash identifier: A0TPdqeIpNdFskGhQ3eztJiFB2HywhTTYMkJpgip0wE= Subject key identifier: 8E:70:17:F6:A8:12:16:16:88:14:E2:92:07:D3:9A:1E:44:8A:9F:3C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0AEC5DE78DFF4A85FB5417B40291E857DC502836 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7f3452cc-a2fb-45ca-9617-8db45bd3c546.roa Signing time: Thu 27 Nov 2025 00:00:03 +0000 ROA not before: Thu 27 Nov 2025 00:00:03 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d01b::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:ec:5d:e7:8d:ff:4a:85:fb:54:17:b4:02:91:e8:57:dc:50:28:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 27 00:00:03 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=2d2a591383aff9b63cc2692037375068fc8dfd8e518be440cc6b7b159f9f5ca6, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8a:53:e1:26:0e:8b:af:8d:00:87:8b:17:00: a0:a7:34:64:cd:dc:fe:92:c1:a3:f8:f7:f2:e4:e7: a6:ac:47:b4:33:b3:95:a8:54:7c:4e:88:dc:77:b8: 12:0f:70:61:31:1e:fe:cb:9c:35:9d:57:cc:00:ab: 54:63:d6:2a:64:3b:95:89:17:e7:dd:5a:95:f6:c4: 10:5a:a3:e2:88:7f:39:94:32:25:a3:55:5d:6f:ff: ae:70:1f:da:b0:df:ec:1f:a7:10:c5:c9:fd:ad:24: 74:d3:5f:e3:12:eb:03:49:c0:36:41:6d:29:2e:a6: d4:62:df:2a:8b:53:72:0c:1b:bc:dd:bc:72:f2:37: 2d:e6:f4:61:61:89:73:85:f3:1e:c1:45:39:09:de: b7:7b:d4:27:6e:3f:4e:ed:7b:1d:d8:ef:87:8e:44: 79:c1:01:d8:6c:93:4f:46:79:a9:84:aa:b1:77:97: 23:3f:53:03:95:d2:22:a9:36:14:1b:73:f9:3a:b1: bf:f7:50:63:99:56:04:7b:7c:34:04:5f:53:08:0a: 39:20:af:f2:4f:2b:63:0c:cc:50:f2:c9:1f:fb:4e: a9:2f:78:d4:ad:f8:f7:7b:e6:2c:8a:5b:c0:53:eb: ae:18:4f:2a:c8:ce:6e:d8:12:fc:92:da:05:02:3a: 2c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:70:17:F6:A8:12:16:16:88:14:E2:92:07:D3:9A:1E:44:8A:9F:3C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7f3452cc-a2fb-45ca-9617-8db45bd3c546.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d01b::/42 Signature Algorithm: sha256WithRSAEncryption 14:9e:c7:e1:62:1e:45:ea:77:ad:6a:47:5b:d4:ab:17:80:15: eb:ac:c1:00:d6:3a:3e:74:e6:f0:d4:a1:89:01:de:e0:a6:03: f5:48:98:c4:4f:6c:eb:12:60:be:94:ab:32:cb:85:fb:8f:94: 61:ce:b6:76:df:03:8b:45:23:ac:13:15:46:7e:24:55:89:05: 3c:7f:e0:13:26:65:9f:4a:e0:dd:17:92:64:cc:8c:f6:33:f8: f0:8e:c0:53:25:93:80:51:59:8b:0e:49:41:c6:79:30:c0:85: 4f:fe:36:7b:ce:4a:8c:85:b5:15:02:8a:e8:89:12:c6:ea:01: 1c:4e:c9:af:ee:05:4a:5e:6a:db:76:56:36:74:ed:1c:66:70: 8a:41:ab:86:41:1a:6d:99:8e:b1:5a:ee:cc:1f:3a:4f:93:7d: 6c:3e:3b:75:db:00:80:a3:37:ed:03:ae:91:59:4f:72:ac:6e: 37:23:8c:e3:63:fb:3e:41:9e:e9:f2:96:e4:ea:54:7d:9d:c2: 9d:e5:0e:3a:66:37:b8:af:07:c4:6c:2b:b6:09:32:4b:38:e1: 89:5e:68:f5:10:8b:44:3f:83:6c:04:21:c7:06:83:11:60:4f: 30:1c:31:48:d4:af:3b:b2:0b:ec:21:36:83:09:1c:e5:fb:12: 44:b8:71:67 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUCuxd543/SoX7VBe0ApHoV9xQKDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjcwMDAwMDNaFw0yNjAyMjUyMzU5NTlaMHoxSTBHBgNV BAUTQDJkMmE1OTEzODNhZmY5YjYzY2MyNjkyMDM3Mzc1MDY4ZmM4ZGZkOGU1MThi ZTQ0MGNjNmI3YjE1OWY5ZjVjYTYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMqKU+EmDouvjQCHixcAoKc0ZM3c/pLBo/j38uTnpqxHtDOzlahUfE6I3He4 Eg9wYTEe/sucNZ1XzACrVGPWKmQ7lYkX591alfbEEFqj4oh/OZQyJaNVXW//rnAf 2rDf7B+nEMXJ/a0kdNNf4xLrA0nANkFtKS6m1GLfKotTcgwbvN28cvI3Leb0YWGJ c4XzHsFFOQnet3vUJ24/Tu17Hdjvh45EecEB2GyTT0Z5qYSqsXeXIz9TA5XSIqk2 FBtz+Tqxv/dQY5lWBHt8NARfUwgKOSCv8k8rYwzMUPLJH/tOqS941K3493vmLIpb wFPrrhhPKsjObtgS/JLaBQI6LNsCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSOcBf2 qBIWFogU4pIH05oeRIqfPDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv N2YzNDUyY2MtYTJmYi00NWNhLTk2MTctOGRiNDViZDNjNTQ2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBioF0BsA ADANBgkqhkiG9w0BAQsFAAOCAQEAFJ7H4WIeRep3rWpHW9SrF4AV66zBANY6PnTm 8NShiQHe4KYD9UiYxE9s6xJgvpSrMsuF+4+UYc62dt8Di0UjrBMVRn4kVYkFPH/g EyZln0rg3ReSZMyM9jP48I7AUyWTgFFZiw5JQcZ5MMCFT/42e85KjIW1FQKK6IkS xuoBHE7Jr+4FSl5q23ZWNnTtHGZwikGrhkEabZmOsVruzB86T5N9bD47ddsAgKM3 7QOukVlPcqxuNyOM42P7PkGe6fKW5OpUfZ3CneUOOmY3uK8HxGwrtgkySzjhiV5o 9RCLRD+DbAQhxwaDEWBPMBwxSNSvO7IL7CE2gwkc5fsSRLhxZw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:12 2025 by rpki-client