This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9119a01e-2bb4-4d69-9325-5f4aa8fb8be8.roa File: 9119a01e-2bb4-4d69-9325-5f4aa8fb8be8.roa (raw, json) Hash identifier: IAtCH7zZWICB/fck66tFOf5FXwoM8TRe0QYdz0zOnyI= Subject key identifier: AF:42:5A:53:69:75:8F:41:B6:BF:62:74:01:A7:2B:B7:FA:35:EB:16 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3A6979E26D27E1CC1E0DDFAB2EEDDD00BEDD92FF Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9119a01e-2bb4-4d69-9325-5f4aa8fb8be8.roa Signing time: Sat 15 Nov 2025 06:01:13 +0000 ROA not before: Sat 15 Nov 2025 06:01:13 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d070::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:69:79:e2:6d:27:e1:cc:1e:0d:df:ab:2e:ed:dd:00:be:dd:92:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:01:13 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=bede718902a9681bd7f2be958d753b18b66e2a68e702e7f4780d68772c5dac42, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d8:f2:e7:e4:71:6f:65:8c:f7:ed:e1:05:03: 66:79:91:c9:b0:f3:7c:af:a3:14:8b:7d:b1:39:4e: 7f:64:6b:11:4d:1c:19:81:73:04:d2:bb:bd:40:a7: 13:ea:4c:5a:79:d3:72:bd:90:5b:f3:1e:48:b3:e4: 70:7e:ab:dc:8b:86:71:7d:6e:e5:28:7f:52:c1:1e: ef:75:0e:fa:23:15:99:a6:7b:6c:e5:f1:36:88:1e: f5:03:bf:52:09:27:ef:39:d9:4f:68:8f:01:1a:ec: 82:0f:d5:79:9a:da:40:58:ee:0e:98:e2:50:f5:64: 65:d1:66:2c:7b:93:70:c6:c0:ab:5e:78:3e:d5:c5: f6:76:09:66:a3:9a:09:82:26:b6:d1:d2:79:d1:ad: 11:61:bc:49:80:6c:b7:04:26:62:93:a8:fa:a0:36: 83:8a:83:8b:93:ba:66:71:cf:28:f2:89:95:40:68: d5:26:1c:81:f0:b3:56:1b:db:41:0f:39:c0:14:57: 41:85:4b:e1:3e:e7:af:66:7e:c0:50:c3:c8:a5:82: 57:4b:15:dd:b1:d4:e4:80:c3:6a:e4:8c:ee:c3:33: db:f6:45:fa:c2:bb:d5:2a:af:e7:33:29:b2:07:44: 7a:2d:41:23:30:3a:ce:78:91:13:98:c0:89:44:a4: 37:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:42:5A:53:69:75:8F:41:B6:BF:62:74:01:A7:2B:B7:FA:35:EB:16 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9119a01e-2bb4-4d69-9325-5f4aa8fb8be8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d070::/32 Signature Algorithm: sha256WithRSAEncryption 93:2f:db:b8:19:b3:64:8f:76:d4:b8:84:5b:a6:90:7b:c5:25: ab:61:b1:b9:95:f4:41:c1:78:5b:7a:ec:32:8a:35:0e:37:23: 50:23:47:4c:77:48:29:75:e3:a4:51:73:27:fb:1a:93:e0:2d: 0e:03:e9:53:35:d9:1a:a8:a5:40:3d:55:23:e8:67:c5:e0:71: c5:66:b5:37:93:5f:77:9b:a2:87:4d:74:2b:2c:ab:57:f2:bc: 38:8e:7e:a1:5e:5b:09:6f:61:c9:1d:9a:6e:77:77:8c:a2:40: f4:b8:e2:35:c1:4b:d1:75:79:4c:50:ad:88:27:22:6b:7e:5d: 3b:85:ed:dc:d4:d3:2a:e2:af:f0:bc:2d:b8:2b:db:66:f1:1d: 45:bc:22:0a:fd:25:28:43:26:36:de:39:5c:da:63:02:97:9e: 12:69:14:f1:54:4f:3e:66:08:b6:a5:af:77:58:a2:65:b4:c7: cf:80:49:69:4c:38:da:f5:b0:5b:1d:d2:78:7c:bf:fc:b1:29: 01:c5:bc:20:34:34:ba:4e:c5:94:f4:a2:94:90:9e:b4:3e:d7: 66:5c:16:1d:fd:d5:0e:ac:5c:a6:b3:c9:58:26:9b:f9:35:ff: 7e:fd:1f:8c:d8:ff:fd:38:1f:90:99:d6:45:ef:d6:44:61:7f: a0:40:0b:c1 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUOml54m0n4cweDd+rLu3dAL7dkv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjAxMTNaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGJlZGU3MTg5MDJhOTY4MWJkN2YyYmU5NThkNzUzYjE4YjY2ZTJhNjhlNzAy ZTdmNDc4MGQ2ODc3MmM1ZGFjNDIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTY8ufkcW9ljPft4QUDZnmRybDzfK+jFIt9sTlOf2RrEU0cGYFzBNK7vUCn E+pMWnnTcr2QW/MeSLPkcH6r3IuGcX1u5Sh/UsEe73UO+iMVmaZ7bOXxNoge9QO/ Ugkn7znZT2iPARrsgg/VeZraQFjuDpjiUPVkZdFmLHuTcMbAq154PtXF9nYJZqOa CYImttHSedGtEWG8SYBstwQmYpOo+qA2g4qDi5O6ZnHPKPKJlUBo1SYcgfCzVhvb QQ85wBRXQYVL4T7nr2Z+wFDDyKWCV0sV3bHU5IDDauSM7sMz2/ZF+sK71Sqv5zMp sgdEei1BIzA6zniRE5jAiUSkN5MCAwEAAaOCAiIwggIeMB0GA1UdDgQWBBSvQlpT aXWPQba/YnQBpyu3+jXrFjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTExOWEwMWUtMmJiNC00ZDY5LTkzMjUtNWY0YWE4ZmI4YmU4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoF0HAw DQYJKoZIhvcNAQELBQADggEBAJMv27gZs2SPdtS4hFumkHvFJathsbmV9EHBeFt6 7DKKNQ43I1AjR0x3SCl146RRcyf7GpPgLQ4D6VM12RqopUA9VSPoZ8XgccVmtTeT X3eboodNdCssq1fyvDiOfqFeWwlvYckdmm53d4yiQPS44jXBS9F1eUxQrYgnImt+ XTuF7dzU0yrir/C8Lbgr22bxHUW8Igr9JShDJjbeOVzaYwKXnhJpFPFUTz5mCLal r3dYomW0x8+ASWlMONr1sFsd0nh8v/yxKQHFvCA0NLpOxZT0opSQnrQ+12ZcFh39 1Q6sXKazyVgmm/k1/379H4zY//04H5CZ1kXv1kRhf6BAC8E= -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:30 2025 by rpki-client