This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8f6cab6f-44be-4f80-9040-c2f9ab0e0575.roa File: 8f6cab6f-44be-4f80-9040-c2f9ab0e0575.roa (raw, json) Hash identifier: vqyp72ZgGr+huUgAtmRi/2AARo1lZfqxbvnyT5JxxO0= Subject key identifier: C5:2E:9C:15:56:D3:90:69:54:6E:EB:4A:3E:B8:79:E9:30:E7:ED:24 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 385027A2624385AAC0DB8A525EA799D5F07475BA Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8f6cab6f-44be-4f80-9040-c2f9ab0e0575.roa Signing time: Tue 25 Nov 2025 20:10:07 +0000 ROA not before: Tue 25 Nov 2025 20:10:07 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:50:27:a2:62:43:85:aa:c0:db:8a:52:5e:a7:99:d5:f0:74:75:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:10:07 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=0cce6637058ebb552c3556ce9f6905dea2aa5a54bae7a77ff159cba972838961, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:15:7d:42:08:3e:ec:63:c0:84:95:87:d4:6e: 21:bf:86:93:53:b6:2e:d7:27:10:d6:0a:7a:aa:75: bb:3f:0a:de:6f:c3:12:25:cf:f4:64:82:90:be:d3: cc:61:d6:32:a7:fd:c0:a5:a9:3f:80:fe:43:26:5a: d5:62:15:a6:ff:ca:4d:cf:1b:3d:a9:0e:58:80:5c: 26:af:ea:46:ee:7e:fb:a8:57:7c:89:35:13:bc:dc: 6c:a9:29:82:a7:81:93:26:1a:04:0d:5e:49:05:ee: 6b:69:d8:ad:95:d9:24:34:91:24:92:2f:f1:48:24: 23:35:06:e3:a5:12:42:a6:04:95:ed:82:ba:36:13: 73:b6:b4:da:b2:ac:df:6e:5f:cf:61:d2:c0:f1:29: 74:7b:2d:66:04:0d:a2:b1:e7:a5:e0:b2:f9:b3:08: e3:4c:b0:50:68:ce:c2:9e:08:f0:56:86:15:cd:e6: 89:b1:ca:65:8f:00:e1:a0:16:21:aa:4f:bd:af:50: b5:31:49:a7:77:fa:6d:bc:19:36:d8:3e:0f:61:5e: b9:ad:c6:f1:f6:01:5e:0b:16:28:95:db:1c:68:15: 5d:79:85:1c:d9:aa:b9:ad:cc:1b:8e:ef:ee:52:6c: 9b:d6:4e:cb:3d:14:7d:d4:ee:b3:30:51:6a:35:13: fe:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:2E:9C:15:56:D3:90:69:54:6E:EB:4A:3E:B8:79:E9:30:E7:ED:24 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8f6cab6f-44be-4f80-9040-c2f9ab0e0575.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:8000::/40 Signature Algorithm: sha256WithRSAEncryption a6:d6:09:5e:dc:09:45:1a:77:76:c2:e0:54:83:ca:f4:33:e4: 88:9f:c9:16:94:0f:79:1b:b3:aa:a0:81:ce:f6:ef:c2:c0:77: a1:b1:44:54:5d:1e:70:03:0a:54:02:92:12:42:16:a1:99:dc: 3f:3a:08:cb:81:91:7c:29:fe:76:ee:73:51:4e:af:62:0f:88: 6d:e7:9f:c9:56:df:e9:c3:fa:05:33:ca:d0:cb:ff:5d:73:c0: 3d:9a:21:3f:32:22:f5:fe:c3:d8:f6:0d:e9:0a:ef:7b:59:b3: 35:4a:1d:0a:68:e4:8f:3f:3a:89:41:cd:75:fa:f1:99:7c:6e: e9:7b:9e:b7:1d:46:5a:96:1f:7b:31:48:22:64:01:1c:ef:4f: 8c:00:59:61:de:3f:42:94:a0:f9:a1:1a:6e:b6:1f:3f:fd:96: 45:01:3d:38:e2:df:d3:10:20:d5:58:ef:51:60:7b:3a:4e:2d: e3:9a:ba:9f:f5:fa:88:3c:03:7e:54:69:eb:af:4f:32:9a:d6: 24:71:98:a0:5e:2f:e5:a3:5c:fb:5a:2a:61:3b:8e:69:f8:23: a0:ca:00:b9:52:2b:c2:1a:97:b5:81:b1:a9:76:38:7a:b9:e2: 7d:08:b3:a1:c6:0f:1a:7b:ee:30:f1:d7:d6:35:49:0a:20:37: 80:9c:d6:1d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUOFAnomJDharA24pSXqeZ1fB0dbowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDEwMDdaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDBjY2U2NjM3MDU4ZWJiNTUyYzM1NTZjZTlmNjkwNWRlYTJhYTVhNTRiYWU3 YTc3ZmYxNTljYmE5NzI4Mzg5NjExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUVfUIIPuxjwISVh9RuIb+Gk1O2LtcnENYKeqp1uz8K3m/DEiXP9GSCkL7T zGHWMqf9wKWpP4D+QyZa1WIVpv/KTc8bPakOWIBcJq/qRu5++6hXfIk1E7zcbKkp gqeBkyYaBA1eSQXua2nYrZXZJDSRJJIv8UgkIzUG46USQqYEle2CujYTc7a02rKs 325fz2HSwPEpdHstZgQNorHnpeCy+bMI40ywUGjOwp4I8FaGFc3mibHKZY8A4aAW IapPva9QtTFJp3f6bbwZNtg+D2Feua3G8fYBXgsWKJXbHGgVXXmFHNmqua3MG47v 7lJsm9ZOyz0UfdTuszBRajUT/tMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTFLpwV VtOQaVRu60o+uHnpMOftJDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OGY2Y2FiNmYtNDRiZS00ZjgwLTkwNDAtYzJmOWFiMGUwNTc1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HOA MA0GCSqGSIb3DQEBCwUAA4IBAQCm1gle3AlFGnd2wuBUg8r0M+SIn8kWlA95G7Oq oIHO9u/CwHehsURUXR5wAwpUApISQhahmdw/OgjLgZF8Kf527nNRTq9iD4ht55/J Vt/pw/oFM8rQy/9dc8A9miE/MiL1/sPY9g3pCu97WbM1Sh0KaOSPPzqJQc11+vGZ fG7pe563HUZalh97MUgiZAEc70+MAFlh3j9ClKD5oRputh8//ZZFAT044t/TECDV WO9RYHs6Ti3jmrqf9fqIPAN+VGnrr08ymtYkcZigXi/lo1z7WiphO45p+COgygC5 UivCGpe1gbGpdjh6ueJ9CLOhxg8ae+4w8dfWNUkKIDeAnNYd -----END CERTIFICATE-----Generated at Sat Dec 6 12:41:55 2025 by rpki-client