This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/84822380-4084-4c46-8745-4e82faaddd84.roa File: 84822380-4084-4c46-8745-4e82faaddd84.roa (raw, json) Hash identifier: BpvW9dNC/KusSlOXnP/20IfkLkS9jaRKHYmlFx4I3ZQ= Subject key identifier: 42:0A:CF:13:5B:BF:CE:95:06:2C:97:B8:B5:05:59:D3:BD:44:88:9B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6A9D9F6DF52907D44884927EBF356E0BF7420CD7 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/84822380-4084-4c46-8745-4e82faaddd84.roa Signing time: Sat 15 Nov 2025 05:50:34 +0000 ROA not before: Sat 15 Nov 2025 05:50:34 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d014:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9d:9f:6d:f5:29:07:d4:48:84:92:7e:bf:35:6e:0b:f7:42:0c:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:50:34 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=cda94a6a10b7c1419d93f99a93e0427c89e5a545e2449092040fcef2960dcd24, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:d9:d9:93:93:e0:d0:91:b1:0b:10:32:dc:6e: 9e:29:c4:39:e5:36:47:de:2f:49:47:59:ab:93:96: 5c:00:c9:ca:a1:d6:75:10:a3:a4:62:68:0a:a4:b7: 65:03:42:c1:2f:dc:38:c9:7b:52:05:03:0c:16:40: 69:f9:e9:63:87:86:d5:c6:cc:09:b8:8b:d7:24:bb: 51:9c:10:1b:8c:6a:aa:cd:84:ef:2c:1e:6b:7f:d2: 92:17:02:9a:75:3b:55:c9:b2:ba:dc:4c:bc:3e:78: e4:be:c3:02:4b:d7:07:60:34:5a:f2:61:f0:a8:ec: dc:da:4a:5a:a2:41:58:85:b3:50:45:49:1a:02:22: 3a:d0:fc:16:9c:83:f2:1c:fc:9e:46:7e:82:cf:31: 92:10:c9:b2:c6:08:f9:4a:4f:0f:4c:a1:bd:93:86: a2:4e:43:b4:6f:70:90:51:85:7a:aa:75:4c:12:5f: 75:ee:46:2c:3b:b0:7f:0a:1b:39:77:ce:90:67:d9: 83:87:13:a3:d6:23:fc:37:5c:82:fa:09:cf:23:0f: 7e:58:74:8c:c4:82:7e:ec:93:15:03:b4:20:1a:cf: f7:1a:e5:6b:3c:45:09:17:c2:db:0a:18:3b:3a:cb: 0c:6e:c0:4e:21:d9:f5:4d:4a:7d:02:05:64:3a:e5: 58:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0A:CF:13:5B:BF:CE:95:06:2C:97:B8:B5:05:59:D3:BD:44:88:9B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/84822380-4084-4c46-8745-4e82faaddd84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d014:800::/38 Signature Algorithm: sha256WithRSAEncryption 39:65:3a:7f:20:2f:e2:64:38:3a:86:ef:3b:5c:79:5a:10:25: 45:43:74:bc:ba:dd:de:fb:b8:37:2b:4f:34:c7:75:02:21:52: 37:d2:9d:31:40:dc:be:70:45:bb:82:70:96:68:84:f2:08:4b: 0d:4b:8a:6f:bb:b3:99:7e:05:58:fb:eb:10:3e:0e:4b:89:c4: 46:1b:23:9f:b5:f1:3e:dd:df:94:91:fe:1c:95:a3:de:9e:eb: d9:f4:9d:92:a1:99:38:c5:00:f7:c9:bd:63:2a:d1:de:f1:b8: f4:56:50:24:32:c0:26:e3:7f:61:c8:5c:79:20:d1:74:84:fb: 30:44:cb:b6:5f:cd:89:85:08:04:fa:58:cd:32:b6:64:01:ed: 18:86:81:84:e0:4d:44:ca:6f:e9:ae:cb:2e:bc:54:54:22:39: 18:e6:7e:e0:9e:d6:a6:24:2f:d9:1c:e2:cd:ae:ac:d5:2f:17: 6f:93:09:dc:9a:45:62:a2:06:d2:65:05:fa:53:bc:d7:18:da: dc:68:77:74:11:d3:51:a8:82:58:82:30:b5:b5:4a:ee:a9:2e: f1:4a:51:71:c5:91:d4:4b:c4:94:41:a0:c1:ea:b9:7e:1a:49: 58:0b:81:87:b8:73:a8:05:54:5e:ec:58:a4:66:0e:7e:5e:b9: 28:f7:6d:81 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUap2fbfUpB9RIhJJ+vzVuC/dCDNcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTUwMzRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGNkYTk0YTZhMTBiN2MxNDE5ZDkzZjk5YTkzZTA0MjdjODllNWE1NDVlMjQ0 OTA5MjA0MGZjZWYyOTYwZGNkMjQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAInZ2ZOT4NCRsQsQMtxuninEOeU2R94vSUdZq5OWXADJyqHWdRCjpGJoCqS3 ZQNCwS/cOMl7UgUDDBZAafnpY4eG1cbMCbiL1yS7UZwQG4xqqs2E7ywea3/SkhcC mnU7VcmyutxMvD545L7DAkvXB2A0WvJh8Kjs3NpKWqJBWIWzUEVJGgIiOtD8FpyD 8hz8nkZ+gs8xkhDJssYI+UpPD0yhvZOGok5DtG9wkFGFeqp1TBJfde5GLDuwfwob OXfOkGfZg4cTo9Yj/DdcgvoJzyMPflh0jMSCfuyTFQO0IBrP9xrlazxFCRfC2woY OzrLDG7ATiHZ9U1KfQIFZDrlWLcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRCCs8T W7/OlQYsl7i1BVnTvUSImzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ODQ4MjIzODAtNDA4NC00YzQ2LTg3NDUtNGU4MmZhYWRkZDg0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAioF0BQI MA0GCSqGSIb3DQEBCwUAA4IBAQA5ZTp/IC/iZDg6hu87XHlaECVFQ3S8ut3e+7g3 K080x3UCIVI30p0xQNy+cEW7gnCWaITyCEsNS4pvu7OZfgVY++sQPg5LicRGGyOf tfE+3d+Ukf4claPenuvZ9J2SoZk4xQD3yb1jKtHe8bj0VlAkMsAm439hyFx5INF0 hPswRMu2X82JhQgE+ljNMrZkAe0YhoGE4E1Eym/prssuvFRUIjkY5n7gntamJC/Z HOLNrqzVLxdvkwncmkViogbSZQX6U7zXGNrcaHd0EdNRqIJYgjC1tUruqS7xSlFx xZHUS8SUQaDB6rl+GklYC4GHuHOoBVRe7FikZg5+Xrko922B -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:22 2025 by rpki-client