This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8e6878ab-55a6-4771-8954-3306e598be04.roa File: 8e6878ab-55a6-4771-8954-3306e598be04.roa (raw, json) Hash identifier: AGhPm0fbFxc1Q48YYuWHWjwzWVj5fmcmF5uS8Y0VlxA= Subject key identifier: 9B:B7:C3:C8:50:E9:61:81:20:50:33:A3:7B:B6:F2:3F:58:A0:FB:BD Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4586797D3B595647ECCA95D6AA6D7E5A2FD319CC Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8e6878ab-55a6-4771-8954-3306e598be04.roa Signing time: Sun 23 Nov 2025 01:30:51 +0000 ROA not before: Sun 23 Nov 2025 01:30:51 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06a:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:86:79:7d:3b:59:56:47:ec:ca:95:d6:aa:6d:7e:5a:2f:d3:19:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 23 01:30:51 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=0848bf5460a783c714ade0bb8972ef3d7499368ccd080558a015f794076e9325, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c3:a3:4f:08:e8:f5:3c:cd:d1:d2:15:73:2d: ec:6b:94:44:e0:4c:8e:8d:33:81:bd:ae:ab:cd:6d: 9b:cf:cb:41:73:81:28:92:f4:62:72:cb:9f:86:2b: 67:5c:59:38:d8:33:e4:ca:00:11:1e:aa:4a:44:05: 1f:dd:4d:3d:b9:3b:77:5f:f3:dc:0f:98:20:4e:ae: fa:5c:5b:8b:e7:62:57:96:86:0f:45:c2:2d:6b:6d: b1:92:81:3b:87:98:c0:df:ee:93:3a:b0:99:23:2b: 43:10:6c:6e:e0:e3:cd:2f:c3:ee:7b:ff:dc:f8:03: 77:78:f3:65:e6:51:7b:53:12:f6:ba:2f:a6:91:62: b6:93:3b:8b:1a:01:ee:38:fd:fa:f4:d9:0e:8e:de: 5d:53:72:3d:54:35:f1:76:a6:f1:94:80:01:c6:cd: fe:da:02:c4:62:85:af:ca:5a:2e:f8:85:af:c4:70: e3:ba:4b:01:0c:ae:58:ff:94:c0:01:59:81:b3:84: b4:d0:e9:4d:fa:da:0c:5d:a4:ce:9e:43:06:9e:fa: b6:6f:56:61:87:fe:11:16:b3:75:bb:88:53:df:60: a3:23:93:18:d7:1c:77:1e:20:f2:b3:1c:92:c5:cc: 45:c8:06:fe:3b:02:c5:78:d6:4c:bd:cb:27:6e:4e: d5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B7:C3:C8:50:E9:61:81:20:50:33:A3:7B:B6:F2:3F:58:A0:FB:BD X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8e6878ab-55a6-4771-8954-3306e598be04.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06a:800::/40 Signature Algorithm: sha256WithRSAEncryption 84:69:4e:92:11:32:74:53:9d:99:89:41:7c:c1:b1:96:04:e7: 7e:61:d7:6b:cf:7a:21:8a:2b:d4:1d:e4:2b:1b:57:6d:78:ce: 9c:4d:12:0e:07:b5:af:3a:37:d4:24:35:46:51:d6:0b:8d:5b: 1f:75:f5:0f:b5:aa:d7:e2:27:08:66:3d:05:6c:7f:61:c5:32: 3c:8c:81:9d:7c:f1:05:31:3c:fa:7c:54:fb:d7:b5:86:eb:73: 1b:11:9b:1d:62:e7:f6:d4:ae:67:7d:c2:53:9b:f6:8d:76:c0: a6:66:7b:82:d8:20:8f:7f:b1:f6:88:92:4e:de:6d:7d:aa:5f: ec:40:a7:49:51:41:34:49:41:06:41:e2:80:77:08:47:f1:99: 98:77:16:18:6c:22:a7:4e:31:d2:7c:e2:74:f3:f9:dd:1c:4e: 48:89:95:56:94:ef:0a:0c:73:43:80:a0:fb:e8:c8:d0:5d:c5: e7:1a:d7:ee:16:13:85:03:08:1d:25:56:b4:bc:d9:72:e3:65: 90:a5:7f:a6:42:d4:2f:e5:08:fb:fd:9b:8b:bf:e0:4c:fa:a5: 5f:44:2d:90:69:0d:70:7a:92:8d:4f:f7:8e:33:63:33:c7:7a: 7c:c2:8a:ab:da:84:1c:a2:bf:0c:11:ee:69:df:fe:53:ce:42: a5:2e:49:ac -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIURYZ5fTtZVkfsypXWqm1+Wi/TGcwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjMwMTMwNTFaFw0yNjAyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQDA4NDhiZjU0NjBhNzgzYzcxNGFkZTBiYjg5NzJlZjNkNzQ5OTM2OGNjZDA4 MDU1OGEwMTVmNzk0MDc2ZTkzMjUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKrDo08I6PU8zdHSFXMt7GuUROBMjo0zgb2uq81tm8/LQXOBKJL0YnLLn4Yr Z1xZONgz5MoAER6qSkQFH91NPbk7d1/z3A+YIE6u+lxbi+diV5aGD0XCLWttsZKB O4eYwN/ukzqwmSMrQxBsbuDjzS/D7nv/3PgDd3jzZeZRe1MS9rovppFitpM7ixoB 7jj9+vTZDo7eXVNyPVQ18Xam8ZSAAcbN/toCxGKFr8paLviFr8Rw47pLAQyuWP+U wAFZgbOEtNDpTfraDF2kzp5DBp76tm9WYYf+ERazdbuIU99goyOTGNccdx4g8rMc ksXMRcgG/jsCxXjWTL3LJ25O1QUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSbt8PI UOlhgSBQM6N7tvI/WKD7vTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OGU2ODc4YWItNTVhNi00NzcxLTg5NTQtMzMwNmU1OThiZTA0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0GoI MA0GCSqGSIb3DQEBCwUAA4IBAQCEaU6SETJ0U52ZiUF8wbGWBOd+Yddrz3ohiivU HeQrG1dteM6cTRIOB7WvOjfUJDVGUdYLjVsfdfUPtarX4icIZj0FbH9hxTI8jIGd fPEFMTz6fFT717WG63MbEZsdYuf21K5nfcJTm/aNdsCmZnuC2CCPf7H2iJJO3m19 ql/sQKdJUUE0SUEGQeKAdwhH8ZmYdxYYbCKnTjHSfOJ08/ndHE5IiZVWlO8KDHND gKD76MjQXcXnGtfuFhOFAwgdJVa0vNly42WQpX+mQtQv5Qj7/ZuLv+BM+qVfRC2Q aQ1wepKNT/eOM2Mzx3p8woqr2oQcor8MEe5p3/5TzkKlLkms -----END CERTIFICATE-----Generated at Sun Dec 7 01:06:46 2025 by rpki-client