This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/924a4487-e709-4e7a-9c72-9678b465cef8.roa File: 924a4487-e709-4e7a-9c72-9678b465cef8.roa (raw, json) Hash identifier: SRJKCiTaN+YKWZK7QAp/6BJ3T9E8/L5zoi3LuqVuExU= Subject key identifier: 53:8F:1A:66:0B:31:D0:77:11:1C:59:30:F0:1E:3B:8B:57:A4:88:1B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 06E17CBF267A3F529744D369AEEB87B8E151DD4F Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/924a4487-e709-4e7a-9c72-9678b465cef8.roa Signing time: Sat 29 Nov 2025 03:00:39 +0000 ROA not before: Sat 29 Nov 2025 03:00:39 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d074:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e1:7c:bf:26:7a:3f:52:97:44:d3:69:ae:eb:87:b8:e1:51:dd:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:39 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=3174c3c71571abe3d598000b861ff0a7286652d2240f8c76a8099d96c9cdeb11, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:60:28:25:13:84:09:4e:c3:26:f4:65:f3:3c: 58:7b:d5:1b:a9:e2:de:dc:23:42:75:ff:6c:6f:e2: 7b:7c:7a:f9:46:72:61:58:8f:e7:cd:2e:13:5f:e7: 95:0f:61:17:cc:ff:ab:b6:15:35:60:74:58:f0:d2: 23:27:20:c3:31:2a:7e:66:53:51:37:c9:73:fc:e9: 23:7b:cb:a5:91:46:a1:4f:f8:f8:41:b8:03:b3:bf: 46:80:26:69:ea:56:1a:21:76:bb:47:00:54:5a:98: 2e:40:ad:30:3a:ec:bb:61:c6:57:27:3c:2c:67:7f: 0e:a5:f9:7d:bd:04:72:30:50:e5:b7:df:f5:7b:de: 4f:9a:c9:4b:a1:bf:40:5c:4e:ea:a5:de:a2:b7:36: 36:1e:2c:5f:2d:af:c7:b8:13:20:14:47:df:e7:6e: ef:1e:c9:66:78:1c:17:46:e3:76:f3:4f:56:3f:2f: ff:b2:ac:85:29:2b:c5:35:a5:79:00:01:81:0e:b4: ad:c4:24:bf:f3:e2:25:a7:59:b5:a5:03:53:11:c1: ab:94:eb:36:cd:25:3c:95:89:b2:16:c9:56:17:40: 37:18:b1:07:0a:9c:43:45:2f:45:71:9b:83:e3:d4: 8d:05:0a:af:1a:fc:42:6e:22:ad:a4:0a:61:6c:1a: d1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8F:1A:66:0B:31:D0:77:11:1C:59:30:F0:1E:3B:8B:57:A4:88:1B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/924a4487-e709-4e7a-9c72-9678b465cef8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d074:6000::/40 Signature Algorithm: sha256WithRSAEncryption 89:25:50:d9:51:48:07:1c:c5:d6:b2:57:20:87:0d:92:ba:da: 9f:8f:ab:5d:fb:93:ff:fa:5e:b5:f9:78:72:03:fd:64:24:91: 87:47:a3:ed:df:7a:aa:5f:1e:64:16:97:ba:31:1f:21:5c:56: 64:f1:fb:fb:42:23:30:d9:eb:86:bd:47:56:a5:7d:c4:34:f5: ab:7a:a4:55:0e:4d:ed:92:e6:08:9d:4d:18:31:38:8d:3c:d8: 77:90:db:64:50:11:46:5f:22:c7:45:61:3f:b3:ea:33:8e:f1: 19:54:2e:b1:fe:c4:13:ce:aa:0e:66:d9:69:fe:24:2a:65:19: e2:6d:bf:4c:a2:d2:c2:c4:6b:d0:f1:3a:30:52:25:ce:0e:be: 89:29:55:ed:38:3c:1f:4e:4e:2a:63:23:43:c7:05:ec:3d:26: 81:61:94:3b:b9:91:e9:9b:67:86:02:1a:1b:fc:62:28:8f:d7: e5:b1:4c:05:8a:9d:75:64:2f:8f:3b:89:94:09:0f:a8:85:f5: 88:61:8b:2e:bf:9c:92:35:d9:4d:8f:55:4b:06:b7:3c:51:5a: f1:5a:d8:17:64:51:65:66:00:01:85:73:87:a9:07:df:bd:cb: 94:7c:af:7f:3f:fd:6f:0d:e8:b4:91:f8:0d:bf:4c:85:7e:9c: 09:b3:7d:30 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUBuF8vyZ6P1KXRNNpruuHuOFR3U8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwMzlaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDMxNzRjM2M3MTU3MWFiZTNkNTk4MDAwYjg2MWZmMGE3Mjg2NjUyZDIyNDBm OGM3NmE4MDk5ZDk2YzljZGViMTExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ1gKCUThAlOwyb0ZfM8WHvVG6ni3twjQnX/bG/ie3x6+UZyYViP580uE1/n lQ9hF8z/q7YVNWB0WPDSIycgwzEqfmZTUTfJc/zpI3vLpZFGoU/4+EG4A7O/RoAm aepWGiF2u0cAVFqYLkCtMDrsu2HGVyc8LGd/DqX5fb0EcjBQ5bff9XveT5rJS6G/ QFxO6qXeorc2Nh4sXy2vx7gTIBRH3+du7x7JZngcF0bjdvNPVj8v/7KshSkrxTWl eQABgQ60rcQkv/PiJadZtaUDUxHBq5TrNs0lPJWJshbJVhdANxixBwqcQ0UvRXGb g+PUjQUKrxr8Qm4iraQKYWwa0Y0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRTjxpm CzHQdxEcWTDwHjuLV6SIGzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTI0YTQ0ODctZTcwOS00ZTdhLTljNzItOTY3OGI0NjVjZWY4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HRg MA0GCSqGSIb3DQEBCwUAA4IBAQCJJVDZUUgHHMXWslcghw2Sutqfj6td+5P/+l61 +XhyA/1kJJGHR6Pt33qqXx5kFpe6MR8hXFZk8fv7QiMw2euGvUdWpX3ENPWreqRV Dk3tkuYInU0YMTiNPNh3kNtkUBFGXyLHRWE/s+ozjvEZVC6x/sQTzqoOZtlp/iQq ZRnibb9MotLCxGvQ8TowUiXODr6JKVXtODwfTk4qYyNDxwXsPSaBYZQ7uZHpm2eG Ahob/GIoj9flsUwFip11ZC+PO4mUCQ+ohfWIYYsuv5ySNdlNj1VLBrc8UVrxWtgX ZFFlZgABhXOHqQffvcuUfK9/P/1vDei0kfgNv0yFfpwJs30w -----END CERTIFICATE-----Generated at Sat Dec 6 10:53:39 2025 by rpki-client