This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/93932fd5-a431-4690-94d6-ed2f97f585c1.roa File: 93932fd5-a431-4690-94d6-ed2f97f585c1.roa (raw, json) Hash identifier: we3IjI66e2yIIeZvM8Sflu/BCKT31lN7U+p+MW+h50g= Subject key identifier: 40:61:40:AE:3B:36:65:46:A6:41:33:9C:C6:6A:3E:41:A0:84:B8:88 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6A68D7DC88FAAA9318CE31C3595392CB82119262 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/93932fd5-a431-4690-94d6-ed2f97f585c1.roa Signing time: Sat 15 Nov 2025 05:20:07 +0000 ROA not before: Sat 15 Nov 2025 05:20:07 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d012:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:68:d7:dc:88:fa:aa:93:18:ce:31:c3:59:53:92:cb:82:11:92:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:20:07 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=e297904f08521b6bb0ae4cddea8e6efc55025206cc66f4118de64276426c8008, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ce:f3:dd:4a:48:47:1f:c1:62:84:52:51:3b: aa:92:ef:26:a5:77:8d:b6:b8:c0:b9:10:ef:13:7f: 12:a5:bd:c5:5f:ee:64:ec:ad:48:ed:51:3d:da:61: cd:b8:12:ab:99:1a:7b:79:5c:aa:26:50:8a:c4:67: 66:7e:64:3a:35:f9:76:30:75:e1:4d:93:b2:f1:9e: 39:1d:2d:7c:cd:23:fe:c7:6a:1f:3d:a2:4d:5c:91: b2:6f:08:b4:bc:0e:bb:f6:e0:ce:d4:ae:09:f7:58: 6b:20:00:b5:fa:c3:3b:52:bc:c9:d4:1c:9d:b7:a8: b7:45:f0:0f:39:eb:57:d9:4d:a2:4c:d5:47:82:3b: 5b:39:54:5d:e9:bb:42:34:0f:16:e6:19:69:43:3e: f4:a9:7f:e0:b4:dc:3e:59:93:0b:13:fa:42:d3:71: a4:d3:20:7f:05:0f:2a:f1:18:11:d9:ba:13:d5:19: f9:fb:e3:50:72:ba:df:62:8b:d4:95:cb:8d:cf:0f: 59:e3:6b:87:66:bf:a8:7d:a8:02:69:6d:e6:78:a0: d3:d3:b8:83:09:51:fe:46:d8:bf:85:12:14:77:d9: b3:a3:93:c4:94:b1:6d:c3:e1:67:bc:79:cc:54:84: a7:92:d7:bc:71:01:b1:6b:b4:7b:3e:9f:b8:1f:ae: 07:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:61:40:AE:3B:36:65:46:A6:41:33:9C:C6:6A:3E:41:A0:84:B8:88 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/93932fd5-a431-4690-94d6-ed2f97f585c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d012:800::/38 Signature Algorithm: sha256WithRSAEncryption 75:c4:19:75:27:4a:09:4d:bf:d4:6c:92:07:d6:ab:ac:7f:d8: 31:7c:1d:df:c1:53:c4:f3:8f:b4:1a:9f:05:81:85:3a:14:7c: 2e:ff:78:ed:56:64:9c:0c:29:25:e3:10:a5:ff:75:29:5a:b8: f8:be:07:0e:b3:60:10:ce:4f:2f:9c:b3:7b:57:c3:75:8c:69: de:5f:82:6a:5f:2e:6b:6d:1f:b3:33:27:c9:32:7a:4e:88:af: e5:e4:c2:0f:4e:12:64:57:54:bd:7a:b6:f8:17:f8:48:62:52: 97:01:87:f3:4d:ed:78:11:d4:c4:13:b2:25:db:90:73:d3:d5: ce:91:0d:11:d0:18:fb:7b:fa:bb:83:c7:ce:d5:f5:b4:0c:dc: 48:f8:06:8e:0c:85:fd:ba:cb:1b:38:3a:f2:6a:4c:20:71:85: ac:95:b5:39:c4:59:14:7f:ab:91:dc:75:67:fe:f8:b1:2a:7b: b8:8c:8e:67:a7:ca:22:26:d4:7e:9b:79:6b:0a:ae:57:71:47: 22:8a:fd:c0:85:ba:8e:5e:09:34:8f:5d:11:27:8a:21:cc:45: 1b:91:df:e3:55:c9:08:8a:21:96:b1:0f:b0:4d:1e:d1:13:20: 19:6f:ca:81:83:aa:6a:03:30:9d:74:4d:6b:da:56:72:1d:98: f0:e2:fe:ed -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUamjX3Ij6qpMYzjHDWVOSy4IRkmIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTIwMDdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGUyOTc5MDRmMDg1MjFiNmJiMGFlNGNkZGVhOGU2ZWZjNTUwMjUyMDZjYzY2 ZjQxMThkZTY0Mjc2NDI2YzgwMDgxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLO891KSEcfwWKEUlE7qpLvJqV3jba4wLkQ7xN/EqW9xV/uZOytSO1RPdph zbgSq5kae3lcqiZQisRnZn5kOjX5djB14U2TsvGeOR0tfM0j/sdqHz2iTVyRsm8I tLwOu/bgztSuCfdYayAAtfrDO1K8ydQcnbeot0XwDznrV9lNokzVR4I7WzlUXem7 QjQPFuYZaUM+9Kl/4LTcPlmTCxP6QtNxpNMgfwUPKvEYEdm6E9UZ+fvjUHK632KL 1JXLjc8PWeNrh2a/qH2oAmlt5nig09O4gwlR/kbYv4USFHfZs6OTxJSxbcPhZ7x5 zFSEp5LXvHEBsWu0ez6fuB+uB8sCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRAYUCu OzZlRqZBM5zGaj5BoIS4iDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTM5MzJmZDUtYTQzMS00NjkwLTk0ZDYtZWQyZjk3ZjU4NWMxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAioF0BII MA0GCSqGSIb3DQEBCwUAA4IBAQB1xBl1J0oJTb/UbJIH1qusf9gxfB3fwVPE84+0 Gp8FgYU6FHwu/3jtVmScDCkl4xCl/3UpWrj4vgcOs2AQzk8vnLN7V8N1jGneX4Jq Xy5rbR+zMyfJMnpOiK/l5MIPThJkV1S9erb4F/hIYlKXAYfzTe14EdTEE7Il25Bz 09XOkQ0R0Bj7e/q7g8fO1fW0DNxI+AaODIX9ussbODryakwgcYWslbU5xFkUf6uR 3HVn/vixKnu4jI5np8oiJtR+m3lrCq5XcUciiv3AhbqOXgk0j10RJ4ohzEUbkd/j VckIiiGWsQ+wTR7REyAZb8qBg6pqAzCddE1r2lZyHZjw4v7t -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:51 2025 by rpki-client