This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92b31fa2-be1a-423e-9acb-0e2168c2faa4.roa File: 92b31fa2-be1a-423e-9acb-0e2168c2faa4.roa (raw, json) Hash identifier: 6K42NdOrWjTs88RWJ8rMUxU7L6RmPCf96fDQIYZvtas= Subject key identifier: 1E:25:87:04:94:56:8E:CF:F1:E6:6E:B5:BF:58:81:E5:6F:8A:6A:2C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 15C157476C77EE4FE238D9BB993382CEAA47D462 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92b31fa2-be1a-423e-9acb-0e2168c2faa4.roa Signing time: Tue 25 Nov 2025 20:01:00 +0000 ROA not before: Tue 25 Nov 2025 20:01:00 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:4040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c1:57:47:6c:77:ee:4f:e2:38:d9:bb:99:33:82:ce:aa:47:d4:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:01:00 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=5406da6201dad22b652e27d8055b0007a9d00da00f880d4234e5b7d627c6509f, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c5:93:92:c6:96:4d:35:8e:cd:c9:ab:b2:76: 6a:e4:0b:2b:de:1b:0e:d1:f4:74:2f:61:d5:82:c2: f8:f8:76:68:7b:5a:01:c6:a6:14:a2:9f:b0:9c:64: 60:29:ca:0d:d9:dd:30:5a:fc:f3:b9:ea:95:80:82: 14:fa:15:6d:03:44:33:d8:f2:48:01:e6:1d:f1:f7: 38:32:5c:ae:02:61:2c:ee:27:2b:54:e2:11:4b:ed: 65:f3:80:93:2c:1f:ab:f2:de:c1:9c:21:71:39:f7: bf:ba:6c:01:00:95:ba:19:ad:18:3e:a6:2e:72:72: 91:d4:05:e1:92:3f:71:4c:6a:aa:be:55:d3:ec:9e: 31:fe:1e:e4:ce:a4:63:db:80:8c:b6:7d:d9:ba:b8: 37:88:e6:3a:cc:56:fa:38:a2:14:2e:34:28:b3:40: cd:68:22:aa:03:da:40:67:49:3e:61:c1:c5:1c:24: 4b:24:5b:50:55:13:61:ca:e2:fb:f2:fc:27:26:0b: 8b:d2:3e:ee:5e:a5:b0:d3:e8:b7:51:fd:34:cc:c4: 41:46:30:cc:28:ae:34:ce:e6:57:ca:5a:47:74:4f: ca:28:b0:28:a1:18:4e:03:82:14:a2:a4:56:2f:6b: 39:0c:6a:2f:c4:89:11:28:2c:9a:2f:57:4e:04:58: 5d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:25:87:04:94:56:8E:CF:F1:E6:6E:B5:BF:58:81:E5:6F:8A:6A:2C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92b31fa2-be1a-423e-9acb-0e2168c2faa4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:4040::/46 Signature Algorithm: sha256WithRSAEncryption 2f:b6:9a:9b:f3:fe:c6:eb:dc:1f:38:fd:a3:91:93:3e:2d:52: 8e:23:0b:57:6b:e8:da:e4:5e:15:85:8e:9f:eb:3d:c9:94:1b: ec:1a:2a:97:8e:72:61:01:a7:d0:0c:c5:da:af:85:20:5e:1c: c9:52:40:cb:6c:13:e8:d3:fe:d1:a0:12:54:74:90:e5:2c:bf: 41:33:8b:52:f1:b0:51:4b:d0:9e:0f:c6:37:86:88:3d:1e:2b: 85:35:17:ba:e9:39:6f:29:79:49:7b:ba:00:e5:ec:21:b4:18: 34:ca:72:55:61:b7:24:1e:48:21:d9:8a:54:a3:c7:01:ff:9b: df:64:a5:12:fa:de:56:63:14:da:e0:dd:61:f7:af:a6:4e:67: 22:2e:c3:a6:d9:5a:3b:06:df:b2:47:c1:0d:bf:03:e2:b0:f5: 4e:76:e8:9a:ad:68:63:42:6f:6b:da:e7:6b:39:84:93:62:bd: 8c:df:5a:e0:71:8e:4d:23:7c:2c:e8:bb:c8:b1:9d:b2:32:24: cb:27:2f:cc:99:01:25:e6:db:c8:6b:a5:e4:1c:47:27:c1:9f: 17:9b:51:4f:3f:ce:f6:63:db:f7:43:a6:15:fc:88:68:a1:b1: 6e:e0:36:5b:ef:0c:07:c4:51:59:0f:2a:d9:d2:03:c3:7c:72: e7:eb:58:0f -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUFcFXR2x37k/iONm7mTOCzqpH1GIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAxMDBaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDU0MDZkYTYyMDFkYWQyMmI2NTJlMjdkODA1NWIwMDA3YTlkMDBkYTAwZjg4 MGQ0MjM0ZTViN2Q2MjdjNjUwOWYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANbFk5LGlk01js3Jq7J2auQLK94bDtH0dC9h1YLC+Ph2aHtaAcamFKKfsJxk YCnKDdndMFr887nqlYCCFPoVbQNEM9jySAHmHfH3ODJcrgJhLO4nK1TiEUvtZfOA kywfq/LewZwhcTn3v7psAQCVuhmtGD6mLnJykdQF4ZI/cUxqqr5V0+yeMf4e5M6k Y9uAjLZ92bq4N4jmOsxW+jiiFC40KLNAzWgiqgPaQGdJPmHBxRwkSyRbUFUTYcri +/L8JyYLi9I+7l6lsNPot1H9NMzEQUYwzCiuNM7mV8paR3RPyiiwKKEYTgOCFKKk Vi9rOQxqL8SJESgsmi9XTgRYXRECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQeJYcE lFaOz/HmbrW/WIHlb4pqLDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTJiMzFmYTItYmUxYS00MjNlLTlhY2ItMGUyMTY4YzJmYWE0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HNA QDANBgkqhkiG9w0BAQsFAAOCAQEAL7aam/P+xuvcHzj9o5GTPi1SjiMLV2vo2uRe FYWOn+s9yZQb7Boql45yYQGn0AzF2q+FIF4cyVJAy2wT6NP+0aASVHSQ5Sy/QTOL UvGwUUvQng/GN4aIPR4rhTUXuuk5byl5SXu6AOXsIbQYNMpyVWG3JB5IIdmKVKPH Af+b32SlEvreVmMU2uDdYfevpk5nIi7DptlaOwbfskfBDb8D4rD1Tnbomq1oY0Jv a9rnazmEk2K9jN9a4HGOTSN8LOi7yLGdsjIkyycvzJkBJebbyGul5BxHJ8GfF5tR Tz/O9mPb90OmFfyIaKGxbuA2W+8MB8RRWQ8q2dIDw3xy5+tYDw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:32 2025 by rpki-client