This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/880d0334-daaa-445a-9c06-7402ba023a86.roa File: 880d0334-daaa-445a-9c06-7402ba023a86.roa (raw, json) Hash identifier: UxbMkTJWYEdoPwSymvPVa56LD8Nns9m6nPZrfMIG04Y= Subject key identifier: 44:0A:58:BE:84:01:27:79:94:99:19:8A:C8:2A:FE:52:52:AA:A4:1B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 54494B3C8DC0B145181CD38086DA5AAC1AC43537 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/880d0334-daaa-445a-9c06-7402ba023a86.roa Signing time: Tue 25 Nov 2025 20:00:45 +0000 ROA not before: Tue 25 Nov 2025 20:00:45 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:6040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:49:4b:3c:8d:c0:b1:45:18:1c:d3:80:86:da:5a:ac:1a:c4:35:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:00:45 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=6236187bce17dc81d2ea0489ac6bf5fb48c2037de68b8d7e1da37d833c08a421, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4c:13:0e:31:45:cc:5e:43:a6:4a:7d:5c:94: 8c:3d:f2:39:4e:e3:89:1a:09:60:71:d2:f5:2f:e6: 14:be:31:4e:4f:b0:6f:49:41:2b:5d:00:7e:d2:a2: 5f:d8:2e:3d:1b:cd:b8:82:10:b4:77:d3:0c:45:bc: f0:e5:b4:55:f9:e6:8c:2b:1e:12:c7:31:2d:dd:6c: 41:bc:35:08:97:ad:37:aa:5c:b9:8c:bc:ff:1f:20: e3:f1:d9:97:e0:ca:04:7c:2a:ba:e0:e9:33:3b:90: d6:b8:06:be:97:b4:f7:8d:83:ac:3b:2a:b9:e6:24: 92:40:b4:ed:fc:ea:4c:4d:a3:18:b6:e1:f0:c4:f6: 01:1a:c5:6a:c5:cc:85:26:e1:b6:0b:e3:f0:1d:fe: 4d:c7:f3:59:6f:08:6b:6a:ea:44:c0:54:cd:a2:3b: fa:28:de:d9:28:b3:9c:10:b3:10:92:dc:fa:a6:84: 43:d3:2f:c0:a3:f5:9e:e7:2f:6d:8e:e1:a5:04:88: 59:d3:53:80:8a:dd:42:6a:23:d7:43:84:6f:90:06: 6c:63:ae:0e:b0:a5:d0:a5:06:51:ce:b0:80:2c:96: bf:47:b1:4d:bc:ee:fe:d4:f8:fa:67:1d:4e:b5:4b: bf:24:3a:e9:3f:db:d2:e7:04:ce:96:89:7a:14:ba: c2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:0A:58:BE:84:01:27:79:94:99:19:8A:C8:2A:FE:52:52:AA:A4:1B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/880d0334-daaa-445a-9c06-7402ba023a86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:6040::/46 Signature Algorithm: sha256WithRSAEncryption 5a:a5:ea:8f:70:8a:6e:08:6b:ec:0e:27:33:d2:78:f3:51:c9: 83:3a:fc:40:69:ef:e4:1c:cc:05:5c:52:86:32:a9:00:93:bb: c2:e3:e4:4d:f6:57:9e:2a:79:fc:cb:1d:92:3f:9f:26:a4:82: ad:46:e6:a5:8e:cf:4b:ae:5f:55:4a:83:37:26:3d:df:cd:53: 55:c3:3a:08:92:14:68:e9:6e:98:32:78:e0:dc:67:f1:9b:b9: bd:d6:72:f5:de:59:fe:49:ac:a4:d1:59:c6:74:eb:a3:83:5c: bc:13:0f:96:bf:91:64:50:4d:cb:72:58:5b:75:2d:10:15:3a: e0:d2:fe:90:08:75:d7:82:e9:9b:f5:08:53:37:40:fd:1c:58: e7:40:30:c6:89:a1:74:ed:c5:e4:1a:90:5d:69:af:49:a0:b8: de:81:c8:0e:23:8f:0b:9a:b4:53:81:92:5a:9f:2f:7b:4d:ae: 41:72:22:52:ef:33:e9:c1:32:e1:24:5d:7b:e6:8e:dc:cd:ad: 6d:ef:98:ad:ca:26:15:c7:5d:27:eb:14:91:91:ed:03:80:c3: 1c:67:8a:5d:fb:6e:7e:c0:b0:38:9a:fc:b7:b7:e7:c4:89:90: e5:0d:de:19:9d:cc:bd:f0:12:a0:8c:f9:d7:63:52:f2:ed:05: f9:a3:38:0f -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUVElLPI3AsUUYHNOAhtparBrENTcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAwNDVaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDYyMzYxODdiY2UxN2RjODFkMmVhMDQ4OWFjNmJmNWZiNDhjMjAzN2RlNjhi OGQ3ZTFkYTM3ZDgzM2MwOGE0MjExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdMEw4xRcxeQ6ZKfVyUjD3yOU7jiRoJYHHS9S/mFL4xTk+wb0lBK10AftKi X9guPRvNuIIQtHfTDEW88OW0VfnmjCseEscxLd1sQbw1CJetN6pcuYy8/x8g4/HZ l+DKBHwquuDpMzuQ1rgGvpe0942DrDsqueYkkkC07fzqTE2jGLbh8MT2ARrFasXM hSbhtgvj8B3+TcfzWW8Ia2rqRMBUzaI7+ije2SiznBCzEJLc+qaEQ9MvwKP1nucv bY7hpQSIWdNTgIrdQmoj10OEb5AGbGOuDrCl0KUGUc6wgCyWv0exTbzu/tT4+mcd TrVLvyQ66T/b0ucEzpaJehS6wsMCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRECli+ hAEneZSZGYrIKv5SUqqkGzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ODgwZDAzMzQtZGFhYS00NDVhLTljMDYtNzQwMmJhMDIzYTg2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HNg QDANBgkqhkiG9w0BAQsFAAOCAQEAWqXqj3CKbghr7A4nM9J481HJgzr8QGnv5BzM BVxShjKpAJO7wuPkTfZXnip5/Msdkj+fJqSCrUbmpY7PS65fVUqDNyY9381TVcM6 CJIUaOlumDJ44Nxn8Zu5vdZy9d5Z/kmspNFZxnTro4NcvBMPlr+RZFBNy3JYW3Ut EBU64NL+kAh114Lpm/UIUzdA/RxY50AwxomhdO3F5BqQXWmvSaC43oHIDiOPC5q0 U4GSWp8ve02uQXIiUu8z6cEy4SRde+aO3M2tbe+YrcomFcddJ+sUkZHtA4DDHGeK XftufsCwOJr8t7fnxImQ5Q3eGZ3MvfASoIz512NS8u0F+aM4Dw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:54:07 2025 by rpki-client