This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8615f258-46a8-450c-972c-84b27581bb43.roa File: 8615f258-46a8-450c-972c-84b27581bb43.roa (raw, json) Hash identifier: eX8vZiqF+WSwjHFrn77Y1pOqqf/zWPjZWApRWOeAzsg= Subject key identifier: 59:10:26:56:73:BE:53:A4:00:13:30:81:1E:39:DE:EF:9E:90:AB:8E Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 54EADB04B56AC6F4F077A9A3D7D074B18A23F468 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8615f258-46a8-450c-972c-84b27581bb43.roa Signing time: Sat 15 Nov 2025 05:41:06 +0000 ROA not before: Sat 15 Nov 2025 05:41:06 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d018::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ea:db:04:b5:6a:c6:f4:f0:77:a9:a3:d7:d0:74:b1:8a:23:f4:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:41:06 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=4181eee7d057f31c5c28e99b048cb48600bb88eacdd55727b5d4805d619526b9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:ef:33:c0:da:77:f4:5a:7d:a3:8d:c2:ff:ae: f8:40:99:7f:6f:cc:f8:1a:ed:bc:17:e2:be:9c:55: 55:b1:5d:ab:99:d5:bf:8c:e1:6d:3b:bc:e5:23:9a: 16:c6:3e:49:57:26:71:d4:68:9b:61:0e:8a:f1:59: 7b:ff:39:30:f5:ae:4e:28:1e:53:7d:0b:17:7c:b8: 63:86:bd:50:94:ae:97:89:de:8a:05:7b:22:0e:2a: 3f:1b:fc:ed:46:96:7e:f4:99:08:20:e3:cb:ed:d8: f6:3f:d8:b6:c1:ae:31:b2:f3:59:b2:04:68:70:11: e0:20:63:3b:42:26:28:bd:27:21:ad:b6:61:22:e2: b5:f2:57:66:af:53:47:50:64:d3:ef:8c:d4:56:4f: 90:89:39:3a:b1:3f:6f:a7:41:01:ae:c5:ef:03:95: 4d:18:c2:52:93:32:9d:ac:3a:c0:81:a0:9b:1c:a7: 7d:c8:45:31:2b:d1:9e:0b:0c:60:c5:20:79:18:ee: fc:5a:71:68:c9:e8:47:85:1b:fd:5c:ba:d7:d2:78: 7d:42:5f:f6:42:0f:8e:75:3d:c3:2d:0b:ff:37:f6: bf:ce:81:7c:27:cb:74:eb:db:7f:a8:cf:97:29:2f: 87:50:4e:79:77:5b:0d:39:8e:b4:3b:bb:20:90:60: ca:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:10:26:56:73:BE:53:A4:00:13:30:81:1E:39:DE:EF:9E:90:AB:8E X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8615f258-46a8-450c-972c-84b27581bb43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d018::/36 Signature Algorithm: sha256WithRSAEncryption c0:39:7b:46:49:9f:e0:30:fc:01:c0:3f:23:2b:17:bf:17:25: ba:40:e7:df:2a:ac:d0:c6:9e:97:24:97:69:ca:e4:3b:6f:61: 86:80:48:01:1d:2c:fa:4a:15:ae:ed:6c:d2:23:6c:a9:c5:cc: 3a:37:be:b5:69:ff:f2:61:0a:9e:d5:ad:af:9e:0e:e1:9d:9e: 5a:24:6d:7b:3a:5b:b5:71:a2:51:d5:f2:f5:72:9c:cc:26:0c: 7b:34:ea:e1:09:8b:f6:c3:18:48:1d:16:0b:95:0d:f0:a5:90: ee:60:9b:ae:ed:3b:f8:19:82:05:5d:e9:fa:cf:7b:33:dd:41: 8a:28:65:a2:61:df:c7:13:0d:4f:eb:00:e5:2d:8a:d2:98:64: 91:b5:17:9a:45:1d:c4:5a:78:94:0a:38:d2:52:70:b0:24:7a: 94:c0:af:22:0d:06:62:18:3c:96:e2:28:2e:53:c6:a8:e2:67: 60:63:7f:1c:a9:d3:47:f4:b1:0e:0f:e7:64:46:f6:ab:54:49: c0:f9:f3:a7:cd:53:8e:14:db:90:4d:e3:f2:7c:7e:f7:36:52: c3:fc:d1:65:dd:7b:3c:a7:36:44:f4:ce:1f:46:c7:76:a3:4e: 5b:e0:e3:65:de:49:4d:2a:56:a9:4a:ad:32:99:e5:ac:b9:23: d5:25:db:06 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUVOrbBLVqxvTwd6mj19B0sYoj9GgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQxMDZaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDQxODFlZWU3ZDA1N2YzMWM1YzI4ZTk5YjA0OGNiNDg2MDBiYjg4ZWFjZGQ1 NTcyN2I1ZDQ4MDVkNjE5NTI2YjkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO7vM8Dad/RafaONwv+u+ECZf2/M+BrtvBfivpxVVbFdq5nVv4zhbTu85SOa FsY+SVcmcdRom2EOivFZe/85MPWuTigeU30LF3y4Y4a9UJSul4neigV7Ig4qPxv8 7UaWfvSZCCDjy+3Y9j/YtsGuMbLzWbIEaHAR4CBjO0ImKL0nIa22YSLitfJXZq9T R1Bk0++M1FZPkIk5OrE/b6dBAa7F7wOVTRjCUpMynaw6wIGgmxynfchFMSvRngsM YMUgeRju/FpxaMnoR4Ub/Vy619J4fUJf9kIPjnU9wy0L/zf2v86BfCfLdOvbf6jP lykvh1BOeXdbDTmOtDu7IJBgyoMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRZECZW c75TpAATMIEeOd7vnpCrjjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ODYxNWYyNTgtNDZhOC00NTBjLTk3MmMtODRiMjc1ODFiYjQzLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0BgA MA0GCSqGSIb3DQEBCwUAA4IBAQDAOXtGSZ/gMPwBwD8jKxe/FyW6QOffKqzQxp6X JJdpyuQ7b2GGgEgBHSz6ShWu7WzSI2ypxcw6N761af/yYQqe1a2vng7hnZ5aJG17 Olu1caJR1fL1cpzMJgx7NOrhCYv2wxhIHRYLlQ3wpZDuYJuu7Tv4GYIFXen6z3sz 3UGKKGWiYd/HEw1P6wDlLYrSmGSRtReaRR3EWniUCjjSUnCwJHqUwK8iDQZiGDyW 4iguU8ao4mdgY38cqdNH9LEOD+dkRvarVEnA+fOnzVOOFNuQTePyfH73NlLD/NFl 3Xs8pzZE9M4fRsd2o05b4ONl3klNKlapSq0ymeWsuSPVJdsG -----END CERTIFICATE-----Generated at Sat Dec 6 22:37:05 2025 by rpki-client