This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82df8d10-cbc3-4e10-bb57-64c489c9d380.roa File: 82df8d10-cbc3-4e10-bb57-64c489c9d380.roa (raw, json) Hash identifier: KmnX6YEHNjREKA8bjhXt0EvnBA3KtYj+SK+8COqAvTo= Subject key identifier: B7:9B:13:09:CF:7D:09:A9:37:26:C4:AE:2A:D8:B3:FB:50:54:27:66 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 71C1F41D37BBBE7C6A40DDBAE1E458E3954227E4 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82df8d10-cbc3-4e10-bb57-64c489c9d380.roa Signing time: Sat 06 Dec 2025 00:40:10 +0000 ROA not before: Sat 06 Dec 2025 00:40:10 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06c:d000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:c1:f4:1d:37:bb:be:7c:6a:40:dd:ba:e1:e4:58:e3:95:42:27:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 6 00:40:10 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=d74453f19a7c792d56d92c7d31d75429223428ab7639e7f6a030b2d4832a0e52, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3f:22:6a:6e:18:11:f7:07:02:d6:31:68:aa: 28:18:4c:29:b5:61:c2:01:e9:9b:23:25:bd:b1:e7: 9f:50:85:16:86:20:1b:7b:ab:bd:96:f5:71:1f:ff: 78:28:d8:f7:e6:4e:d2:1e:25:f5:ed:37:87:8d:f3: 22:8d:ac:83:d5:f7:64:bc:c3:4f:ab:57:07:d6:27: 41:e2:00:86:58:9f:f5:1a:7b:46:df:b1:ac:6d:ea: ca:a7:98:05:e7:f0:4a:e2:b8:db:84:01:c7:ee:83: 93:77:4d:f8:6d:78:5f:6f:41:66:d1:21:1a:ee:ff: 13:86:cb:bf:21:d3:b9:f5:4f:fb:d4:71:e7:11:11: 3d:ca:85:35:fb:c6:c3:ba:5e:57:59:5b:bb:de:d0: ea:3d:9a:af:9b:7b:2e:17:52:2a:0c:dc:74:aa:75: d5:0d:0e:5c:09:16:9a:36:44:27:3e:dc:80:4d:14: ed:45:82:44:c9:0c:37:6e:4c:f7:d3:84:4f:6e:43: f4:55:9b:69:27:0f:62:f6:03:c1:04:db:70:9f:84: 5d:1a:26:43:0a:79:be:b5:9c:ef:9a:c2:97:19:29: 0d:32:77:f1:e3:8d:c7:0e:5c:db:42:58:31:b2:1f: 3b:30:3a:37:b3:5c:4f:f9:f8:c5:80:eb:ea:4d:46: 85:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:9B:13:09:CF:7D:09:A9:37:26:C4:AE:2A:D8:B3:FB:50:54:27:66 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82df8d10-cbc3-4e10-bb57-64c489c9d380.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06c:d000::/48 Signature Algorithm: sha256WithRSAEncryption 81:d7:2f:18:51:2b:42:23:82:c8:36:00:0e:de:9f:4c:9e:fc: a0:09:35:39:39:09:75:ef:80:49:43:ba:ab:e2:a3:74:b0:ef: b3:75:0a:03:dc:aa:31:82:9a:63:71:40:46:68:d2:ce:9b:58: 0f:04:79:ff:18:25:a7:f6:84:78:a6:72:7c:0a:f2:29:a5:35: 9d:7b:68:20:73:57:06:4a:12:5a:bc:2c:22:1d:58:1a:79:42: 32:14:2c:7b:98:20:9b:ea:1e:3f:71:6a:fb:fd:f3:61:46:70: d7:e6:6f:de:66:5f:52:f9:b8:78:0a:70:13:74:82:a6:94:52: 4a:b1:f5:b6:14:9f:04:eb:4c:5b:38:be:d8:b3:68:c3:57:92: 55:58:5f:f0:8f:4d:e4:4b:d9:af:33:0c:bc:ec:de:f6:ba:90: 07:13:5f:2d:09:b7:d4:a8:d1:51:e6:f5:77:06:37:67:ca:90: 38:60:02:07:ca:5c:09:19:6c:eb:78:ab:62:1c:e4:8f:ce:7e: 36:2a:b8:0b:43:7f:2a:00:1a:aa:d0:e5:28:a4:0e:3a:2e:f8: ff:13:fd:9c:59:e9:f1:11:78:63:27:56:5e:66:4b:79:8c:9d: 4a:f1:dd:f1:8e:60:db:ec:fe:46:0e:d6:32:96:ff:92:8e:30: 46:8c:d0:6a -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUccH0HTe7vnxqQN264eRY45VCJ+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDYwMDQwMTBaFw0yNjAzMDYyMzU5NTlaMHoxSTBHBgNV BAUTQGQ3NDQ1M2YxOWE3Yzc5MmQ1NmQ5MmM3ZDMxZDc1NDI5MjIzNDI4YWI3NjM5 ZTdmNmEwMzBiMmQ0ODMyYTBlNTIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALM/ImpuGBH3BwLWMWiqKBhMKbVhwgHpmyMlvbHnn1CFFoYgG3urvZb1cR// eCjY9+ZO0h4l9e03h43zIo2sg9X3ZLzDT6tXB9YnQeIAhlif9Rp7Rt+xrG3qyqeY BefwSuK424QBx+6Dk3dN+G14X29BZtEhGu7/E4bLvyHTufVP+9Rx5xERPcqFNfvG w7peV1lbu97Q6j2ar5t7LhdSKgzcdKp11Q0OXAkWmjZEJz7cgE0U7UWCRMkMN25M 99OET25D9FWbaScPYvYDwQTbcJ+EXRomQwp5vrWc75rClxkpDTJ38eONxw5c20JY MbIfOzA6N7NcT/n4xYDr6k1GhSECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBS3mxMJ z30JqTcmxK4q2LP7UFQnZjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ODJkZjhkMTAtY2JjMy00ZTEwLWJiNTctNjRjNDg5YzlkMzgwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0GzQ ADANBgkqhkiG9w0BAQsFAAOCAQEAgdcvGFErQiOCyDYADt6fTJ78oAk1OTkJde+A SUO6q+KjdLDvs3UKA9yqMYKaY3FARmjSzptYDwR5/xglp/aEeKZyfAryKaU1nXto IHNXBkoSWrwsIh1YGnlCMhQse5ggm+oeP3Fq+/3zYUZw1+Zv3mZfUvm4eApwE3SC ppRSSrH1thSfBOtMWzi+2LNow1eSVVhf8I9N5EvZrzMMvOze9rqQBxNfLQm31KjR Ueb1dwY3Z8qQOGACB8pcCRls63irYhzkj85+Niq4C0N/KgAaqtDlKKQOOi74/xP9 nFnp8RF4YydWXmZLeYydSvHd8Y5g2+z+Rg7WMpb/ko4wRozQag== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:47 2025 by rpki-client