This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8cfa3133-8fd4-4816-ad14-c49146075f82.roa File: 8cfa3133-8fd4-4816-ad14-c49146075f82.roa (raw, json) Hash identifier: 6NP4/G/wJAiQq2z+HB0F+XwS/6H6crPBhOHScwXFs98= Subject key identifier: D6:5B:7E:82:23:34:9A:90:7C:A3:12:03:CF:3E:FE:5A:F6:55:DD:42 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2719C26BFA5ED6EB72B3B388A1D99F5610FF01E4 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8cfa3133-8fd4-4816-ad14-c49146075f82.roa Signing time: Wed 10 Dec 2025 05:30:57 +0000 ROA not before: Wed 10 Dec 2025 05:30:57 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:19:c2:6b:fa:5e:d6:eb:72:b3:b3:88:a1:d9:9f:56:10:ff:01:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:30:57 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=a9725a8c8c9a4bbd17f499281412d6118ad6c7d8037c000f202ebdd9f13aa387, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3d:35:24:41:ae:62:e2:8f:04:c5:eb:11:df: 70:78:5a:ec:bb:56:c0:a3:4d:c5:b1:6c:c4:58:01: 05:81:76:8f:d9:f1:2a:77:52:7a:9e:7a:32:5d:01: 74:9a:85:fc:47:29:2b:8c:6c:cf:f5:b3:f9:2e:1b: 0d:f0:b1:2b:16:ae:98:81:5c:1d:d3:df:17:9d:51: 4e:fd:7d:07:8b:c2:cb:4b:d4:0f:be:00:76:8d:89: aa:e7:a4:e3:7b:1e:b0:0c:77:aa:e9:27:2b:af:61: 55:ec:c5:26:2b:a6:62:f4:0a:22:8e:a8:56:0d:78: ee:f4:95:c6:48:d2:c8:45:11:5c:72:b1:50:01:32: 30:60:65:97:ee:83:e0:8c:35:b9:56:14:fa:89:b5: d9:11:aa:85:9d:4a:27:ef:6b:ef:d5:86:be:4d:8c: 73:49:5b:32:c7:54:9f:58:1e:e0:1c:25:53:ce:65: 74:f7:05:31:ae:16:e2:22:f1:6d:34:4b:d8:e2:4a: 50:bd:62:72:03:2d:95:ab:29:81:dd:98:e5:93:1c: 38:95:66:64:dc:97:d9:cd:c1:3a:82:55:ec:ad:bb: a0:2e:ce:fa:05:14:52:3a:19:69:52:44:c6:88:e5: 5c:83:6f:db:f3:b4:d2:99:33:af:ec:9e:ca:2f:c1: 09:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:5B:7E:82:23:34:9A:90:7C:A3:12:03:CF:3E:FE:5A:F6:55:DD:42 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8cfa3133-8fd4-4816-ad14-c49146075f82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:6000::/40 Signature Algorithm: sha256WithRSAEncryption 42:64:e6:4d:13:7a:80:c5:f1:41:9a:6b:a0:af:16:b2:75:08: a6:ff:66:db:ba:a1:d8:4d:ee:38:21:9e:8c:f7:70:7c:5c:8d: 34:e1:24:38:a3:8c:a7:56:ee:89:7a:73:c8:55:de:d0:60:df: cb:bd:f9:8c:c3:6b:08:6b:5b:61:c5:57:5f:a4:7c:78:65:5d: 28:8c:94:d1:92:c8:ce:fe:74:40:30:0a:a0:ea:a4:13:63:a9: 56:e2:02:26:14:29:a8:02:fa:d2:d4:83:71:6f:f4:7d:f9:24: 51:ad:b3:9e:f8:a4:fe:7c:78:26:bb:c0:f5:1b:e1:88:6b:d3: 5d:a6:3c:51:49:8d:46:ff:03:d5:8b:4b:17:d1:f0:4c:a8:97: 11:2c:fa:e4:8b:76:04:78:d0:09:5e:0c:bd:a6:c0:14:39:ab: c9:d3:7b:93:eb:37:0f:74:c6:6f:16:3f:39:ff:9b:7b:a9:48: 7b:5d:01:a7:d9:c0:6f:5d:dd:36:db:32:c1:e5:13:ea:c0:6c: 9b:8c:27:50:81:2e:d9:a3:d1:84:26:07:7c:59:b3:d0:25:aa: 8b:ce:4d:6a:27:e1:9d:24:84:e7:a6:1f:78:c7:f7:be:60:d6: 4c:a5:61:71:7a:9e:23:78:a3:f1:3a:4e:73:df:04:de:4f:65: 4b:d9:ae:b5 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUJxnCa/pe1utys7OIodmfVhD/AeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTMwNTdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGE5NzI1YThjOGM5YTRiYmQxN2Y0OTkyODE0MTJkNjExOGFkNmM3ZDgwMzdj MDAwZjIwMmViZGQ5ZjEzYWEzODcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQ9NSRBrmLijwTF6xHfcHha7LtWwKNNxbFsxFgBBYF2j9nxKndSep56Ml0B dJqF/EcpK4xsz/Wz+S4bDfCxKxaumIFcHdPfF51RTv19B4vCy0vUD74Ado2Jquek 43sesAx3quknK69hVezFJiumYvQKIo6oVg147vSVxkjSyEURXHKxUAEyMGBll+6D 4Iw1uVYU+om12RGqhZ1KJ+9r79WGvk2Mc0lbMsdUn1ge4BwlU85ldPcFMa4W4iLx bTRL2OJKUL1icgMtlaspgd2Y5ZMcOJVmZNyX2c3BOoJV7K27oC7O+gUUUjoZaVJE xojlXINv2/O00pkzr+yeyi/BCdUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTWW36C IzSakHyjEgPPPv5a9lXdQjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OGNmYTMxMzMtOGZkNC00ODE2LWFkMTQtYzQ5MTQ2MDc1ZjgyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HJg MA0GCSqGSIb3DQEBCwUAA4IBAQBCZOZNE3qAxfFBmmugrxaydQim/2bbuqHYTe44 IZ6M93B8XI004SQ4o4ynVu6JenPIVd7QYN/LvfmMw2sIa1thxVdfpHx4ZV0ojJTR ksjO/nRAMAqg6qQTY6lW4gImFCmoAvrS1INxb/R9+SRRrbOe+KT+fHgmu8D1G+GI a9NdpjxRSY1G/wPVi0sX0fBMqJcRLPrki3YEeNAJXgy9psAUOavJ03uT6zcPdMZv Fj85/5t7qUh7XQGn2cBvXd022zLB5RPqwGybjCdQgS7Zo9GEJgd8WbPQJaqLzk1q J+GdJITnph94x/e+YNZMpWFxep4jeKPxOk5z3wTeT2VL2a61 -----END CERTIFICATE-----Generated at Mon Dec 15 15:35:22 2025 by rpki-client