This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92652652-28d6-49c1-8ea6-f5079f374345.roa File: 92652652-28d6-49c1-8ea6-f5079f374345.roa (raw, json) Hash identifier: lhSj/WjvUE9lihpmzwWVZ5GyEMxf4flnryyNoA+nJX4= Subject key identifier: 96:89:C9:CE:57:11:25:13:98:A0:93:6D:FB:D6:BB:03:6D:7B:4D:6F Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 38CD4737E100765CCCE86EFA2427F6FF2A93CE3E Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92652652-28d6-49c1-8ea6-f5079f374345.roa Signing time: Sat 15 Nov 2025 06:10:24 +0000 ROA not before: Sat 15 Nov 2025 06:10:24 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:4060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:cd:47:37:e1:00:76:5c:cc:e8:6e:fa:24:27:f6:ff:2a:93:ce:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:10:24 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=fd70b72aed7502c53f6e1047c9e7723d5626f6f0b08715029f4dc430bdd38136, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8b:ea:6f:dc:c2:05:09:cc:66:51:24:0f:f1: 77:b9:55:ee:6d:b3:ab:ac:61:46:46:08:dc:3e:27: 79:e0:93:eb:9a:99:c1:80:a8:3b:54:d0:3c:9f:08: 43:ee:36:8f:19:fa:67:f0:22:8c:d0:ef:1f:84:0e: 9d:46:e6:44:eb:bd:3a:a2:67:0e:0f:39:aa:47:46: c3:c9:f4:fd:f2:75:e3:b1:64:db:c7:b9:64:a3:28: 2b:87:f2:4b:89:50:04:9a:82:a4:b3:b2:a9:78:1e: 59:78:40:f8:4d:81:a8:3c:de:ee:90:8d:2e:7c:69: 73:48:8a:4f:dd:72:1e:23:26:25:68:6d:d9:9c:cd: e7:ce:12:75:cc:e7:9b:5d:5d:c9:86:6f:92:37:bf: 00:ba:ad:e7:1c:8e:01:0f:bc:cb:5a:51:f5:34:4b: a6:fd:88:a1:80:ac:ff:dd:f3:be:00:f6:9f:85:99: 29:a4:a7:0d:f3:d6:7e:c2:09:30:b5:ac:0d:cc:4b: 7d:e4:5c:d4:61:1b:89:31:8d:1e:f7:83:c7:f6:d9: c7:c2:e6:5b:6a:ae:56:28:62:0d:6c:86:91:50:28: c7:76:9f:70:39:64:b2:5a:1c:b8:94:45:fa:9e:46: f4:dd:96:7c:3a:03:6f:c6:8f:50:72:0b:fa:86:b9: 1a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:89:C9:CE:57:11:25:13:98:A0:93:6D:FB:D6:BB:03:6D:7B:4D:6F X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92652652-28d6-49c1-8ea6-f5079f374345.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:4060::/48 Signature Algorithm: sha256WithRSAEncryption 15:f8:14:47:f9:0e:67:c5:c4:67:27:cb:dd:b7:7a:ad:72:92: 8d:60:9a:fe:29:60:e3:af:e9:b2:fa:25:ad:ee:80:2f:fb:b5: ba:55:4b:18:a1:3c:2c:a3:04:7b:ba:0b:f0:4c:95:84:82:d6: 76:a9:77:3c:53:88:82:15:f7:3c:76:26:50:23:b6:5d:51:d5: 90:23:30:e9:8b:0f:27:3d:90:95:51:a2:21:48:57:22:ee:47: 6b:b7:86:ce:37:cf:d5:11:bf:dd:92:b9:af:8c:7b:8b:a6:a5: fe:75:05:c7:ff:59:78:b4:30:7b:a5:bb:a7:fc:00:1c:50:cf: 46:40:9e:b3:3b:73:9f:5d:08:66:dc:5c:cd:a6:f3:8e:fb:36: 40:a6:70:0a:bf:99:ef:1d:4d:e7:0f:54:bc:0e:fe:21:41:80: 2e:49:e2:c6:fc:c3:fe:9b:7e:38:04:10:ab:ee:81:8f:3f:0d: 0f:c6:9a:07:e9:4e:ed:94:7c:a2:13:a8:e8:25:3f:f7:f4:8d: 69:6f:81:71:1b:91:11:8c:17:18:49:e6:27:99:7e:14:02:6c: fa:a4:7f:6a:f4:e6:ca:55:ec:bd:56:db:4c:35:20:26:a6:e0: ca:9d:48:f6:25:cb:fc:76:ae:5a:15:b6:58:be:ef:c9:30:30: 0a:21:3e:0a -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUOM1HN+EAdlzM6G76JCf2/yqTzj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjEwMjRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGZkNzBiNzJhZWQ3NTAyYzUzZjZlMTA0N2M5ZTc3MjNkNTYyNmY2ZjBiMDg3 MTUwMjlmNGRjNDMwYmRkMzgxMzYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOGL6m/cwgUJzGZRJA/xd7lV7m2zq6xhRkYI3D4neeCT65qZwYCoO1TQPJ8I Q+42jxn6Z/AijNDvH4QOnUbmROu9OqJnDg85qkdGw8n0/fJ147Fk28e5ZKMoK4fy S4lQBJqCpLOyqXgeWXhA+E2BqDze7pCNLnxpc0iKT91yHiMmJWht2ZzN584Sdczn m11dyYZvkje/ALqt5xyOAQ+8y1pR9TRLpv2IoYCs/93zvgD2n4WZKaSnDfPWfsIJ MLWsDcxLfeRc1GEbiTGNHveDx/bZx8LmW2quVihiDWyGkVAox3afcDlkslocuJRF +p5G9N2WfDoDb8aPUHIL+oa5Gp0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSWicnO VxElE5igk2371rsDbXtNbzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTI2NTI2NTItMjhkNi00OWMxLThlYTYtZjUwNzlmMzc0MzQ1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H9A YDANBgkqhkiG9w0BAQsFAAOCAQEAFfgUR/kOZ8XEZyfL3bd6rXKSjWCa/ilg46/p svolre6AL/u1ulVLGKE8LKMEe7oL8EyVhILWdql3PFOIghX3PHYmUCO2XVHVkCMw 6YsPJz2QlVGiIUhXIu5Ha7eGzjfP1RG/3ZK5r4x7i6al/nUFx/9ZeLQwe6W7p/wA HFDPRkCesztzn10IZtxczabzjvs2QKZwCr+Z7x1N5w9UvA7+IUGALknixvzD/pt+ OAQQq+6Bjz8ND8aaB+lO7ZR8ohOo6CU/9/SNaW+BcRuREYwXGEnmJ5l+FAJs+qR/ avTmylXsvVbbTDUgJqbgyp1I9iXL/HauWhW2WL7vyTAwCiE+Cg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:53:48 2025 by rpki-client