This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa File: 91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa (raw, json) Hash identifier: SjuUib3OxwzosDohm3MCcMvw570e2LHDvNcdFZ2I98U= Subject key identifier: 6C:75:F8:63:F2:C6:24:6A:0A:27:A0:08:9C:C8:F4:1E:D6:82:C8:F2 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 03842C4344CBC5F376128EF2BABB32C54556372C Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa Signing time: Sat 15 Nov 2025 05:31:17 +0000 ROA not before: Sat 15 Nov 2025 05:31:17 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d038:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:84:2c:43:44:cb:c5:f3:76:12:8e:f2:ba:bb:32:c5:45:56:37:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:31:17 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=fa64b12ffaef357ce309c3d6bb1154acb06646be4b5e4f3df1823908a9d1a1da, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:b0:b3:31:b9:59:1a:ae:27:3e:ac:47:96: 9b:97:30:fc:e6:97:86:a5:7b:08:57:b7:cb:f9:a3: 8f:0d:71:f8:62:24:3d:f7:fc:44:70:39:53:a3:58: e8:eb:bb:fe:01:c2:ec:78:41:31:77:b3:1f:eb:e2: dc:bf:be:cd:1d:3c:46:1a:3f:a6:3b:0d:c9:ea:d8: e9:90:92:7e:bd:cd:87:c2:dd:ee:be:fb:ff:dd:6b: 42:c5:f4:48:72:06:92:5f:f7:bd:12:a9:ca:0b:52: 1c:5a:e1:51:74:16:f0:e9:e1:61:4f:99:2b:ab:d6: 87:96:dd:fe:c5:50:11:77:9f:88:9c:38:2f:a6:7a: 18:30:79:d1:41:41:6e:e3:2d:f3:92:01:fd:c7:dc: f3:71:60:b2:e7:63:38:96:28:b9:2f:74:66:59:81: c5:cb:9b:01:1c:86:b4:01:d5:78:88:e7:43:70:d7: 07:be:06:10:73:9b:51:6b:25:2d:28:34:70:ad:10: 7a:60:65:a1:28:07:f5:4e:ae:58:2f:e5:50:75:29: a5:30:13:ea:da:04:39:3a:6a:5b:7e:ee:9e:23:2d: e0:5b:e9:a6:ec:ed:03:47:c5:51:f2:74:48:19:63: a1:8c:bc:fb:b7:71:94:76:68:44:ba:70:73:44:8e: b1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:75:F8:63:F2:C6:24:6A:0A:27:A0:08:9C:C8:F4:1E:D6:82:C8:F2 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d038:8080::/48 Signature Algorithm: sha256WithRSAEncryption 9c:26:17:f3:05:a8:ce:33:e9:8c:69:4f:41:8a:72:16:41:28: 3c:05:e1:63:a3:fd:3a:89:34:87:b5:5f:17:17:e5:80:14:bc: f3:61:3a:c0:fc:61:45:7a:ea:d6:ec:b5:42:6d:9b:ef:68:99: 67:d2:4d:10:44:1b:79:52:e0:07:ae:3b:4f:f6:aa:8b:26:05: 36:d1:e2:7c:52:a1:05:72:b7:3e:19:d6:fe:7a:c9:a4:20:16: cb:68:f6:48:44:43:74:d4:32:6b:b3:52:cb:13:d5:a2:62:a7: d1:5c:ef:93:ce:3d:6b:c1:3e:4b:79:6a:13:d4:06:7c:58:cd: 94:c3:0b:e5:10:28:75:e9:5a:ce:ad:e4:f1:aa:1c:c9:55:f4: 42:1c:66:1b:f8:03:1e:7c:a8:99:54:4f:aa:df:70:c5:b9:40: b8:0c:f1:03:63:1c:e3:27:0a:b0:04:f0:67:18:de:3f:7f:89: d9:9d:7f:7b:54:51:04:11:64:75:d0:2d:e4:7f:bd:a8:17:4a: 93:b9:08:cd:8d:3a:53:d7:0f:ca:62:d5:ea:49:81:a0:2d:94: 80:c9:4d:2a:d4:23:57:71:f9:72:66:28:93:84:fb:3a:0b:c8: 7e:f8:2f:c1:2d:c1:e6:cc:3a:0d:12:b7:31:c7:06:6a:1c:51: 6e:8e:6e:36 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUA4QsQ0TLxfN2Eo7yursyxUVWNywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMxMTdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGZhNjRiMTJmZmFlZjM1N2NlMzA5YzNkNmJiMTE1NGFjYjA2NjQ2YmU0YjVl NGYzZGYxODIzOTA4YTlkMWExZGExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALkcsLMxuVkaric+rEeWm5cw/OaXhqV7CFe3y/mjjw1x+GIkPff8RHA5U6NY 6Ou7/gHC7HhBMXezH+vi3L++zR08Rho/pjsNyerY6ZCSfr3Nh8Ld7r77/91rQsX0 SHIGkl/3vRKpygtSHFrhUXQW8OnhYU+ZK6vWh5bd/sVQEXefiJw4L6Z6GDB50UFB buMt85IB/cfc83FgsudjOJYouS90ZlmBxcubARyGtAHVeIjnQ3DXB74GEHObUWsl LSg0cK0QemBloSgH9U6uWC/lUHUppTAT6toEOTpqW37uniMt4FvppuztA0fFUfJ0 SBljoYy8+7dxlHZoRLpwc0SOsWcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRsdfhj 8sYkagonoAicyPQe1oLI8jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTFlZTM2NTUtZGNiNC00MWM2LWI0YTQtMjcwY2E1Y2FjZjdhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DiA gDANBgkqhkiG9w0BAQsFAAOCAQEAnCYX8wWozjPpjGlPQYpyFkEoPAXhY6P9Ook0 h7VfFxflgBS882E6wPxhRXrq1uy1Qm2b72iZZ9JNEEQbeVLgB647T/aqiyYFNtHi fFKhBXK3PhnW/nrJpCAWy2j2SERDdNQya7NSyxPVomKn0Vzvk849a8E+S3lqE9QG fFjNlMML5RAodelazq3k8aocyVX0QhxmG/gDHnyomVRPqt9wxblAuAzxA2Mc4ycK sATwZxjeP3+J2Z1/e1RRBBFkddAt5H+9qBdKk7kIzY06U9cPymLV6kmBoC2UgMlN KtQjV3H5cmYok4T7OgvIfvgvwS3B5sw6DRK3MccGahxRbo5uNg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:55 2025 by rpki-client