This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/979bc73f-7d87-4cfa-93bd-0378cf1d6aef.roa File: 979bc73f-7d87-4cfa-93bd-0378cf1d6aef.roa (raw, json) Hash identifier: 1PTRn/BPq2Qz1a95hUYNX5Tmph3syfA8sS4JqHdNaR8= Subject key identifier: 47:5C:B6:C0:78:64:DD:CB:E4:8C:33:49:99:72:9E:72:40:77:05:0B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 218C744845A77C3D66FD5817564889DE9E66BDE5 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/979bc73f-7d87-4cfa-93bd-0378cf1d6aef.roa Signing time: Sat 15 Nov 2025 05:40:49 +0000 ROA not before: Sat 15 Nov 2025 05:40:49 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:8c:74:48:45:a7:7c:3d:66:fd:58:17:56:48:89:de:9e:66:bd:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:40:49 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=2301848c7086cbd5100bf7c12826624600565309ee237cb98f1ee0e43c422273, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:92:d5:ce:a6:b9:dc:3e:ed:ae:7a:26:14:c4: 64:fe:05:0a:b4:ad:9e:4e:44:a3:2c:8d:b9:51:88: f1:e0:e6:2a:2a:5d:2f:7a:83:58:fd:dd:70:da:c1: bf:6f:e0:36:cf:81:d0:ae:1e:c3:32:42:75:3c:c3: 58:82:df:8e:12:fa:2e:e6:e9:37:ef:ef:e0:1d:c3: ef:5b:79:5c:7d:71:ed:e6:ce:a0:33:26:ff:17:02: 1f:0a:03:ce:df:64:0b:85:2c:be:9e:0e:6e:17:e1: c8:6b:04:bb:40:09:df:eb:85:ca:75:c9:ed:56:8c: 45:e1:d6:dc:10:72:c9:68:7a:40:85:33:6d:7f:00: be:b9:bd:a3:81:01:3b:15:b3:a9:cb:bf:0d:38:b5: 22:58:38:00:22:08:14:1c:76:6b:e6:3c:74:66:47: 9c:ab:50:2e:85:a8:62:09:02:1e:5f:2c:f3:f7:06: 48:76:a3:6e:14:16:0d:fe:6e:4c:b8:0e:c4:f6:e9: 1a:c5:7b:85:91:a7:40:4c:01:7e:1d:3e:71:eb:2a: 9c:44:0d:ae:20:fc:f8:3e:34:a8:c8:2b:61:48:2a: 3d:dc:00:9f:63:9f:9c:b1:b6:67:e9:fa:42:af:1f: 17:0d:77:06:8b:b3:98:c4:24:5c:eb:08:bf:b4:0e: 18:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5C:B6:C0:78:64:DD:CB:E4:8C:33:49:99:72:9E:72:40:77:05:0B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/979bc73f-7d87-4cfa-93bd-0378cf1d6aef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:8040::/48 Signature Algorithm: sha256WithRSAEncryption 5b:6e:9d:17:99:24:9c:d3:bd:7f:4a:42:30:19:fa:d0:03:f2: a7:98:df:d3:fa:85:47:9b:d3:d2:6f:b6:1a:c1:b1:56:90:76: 45:75:03:47:29:12:28:16:62:b1:cf:3a:d2:45:c7:61:0c:35: 7e:c8:af:92:80:a5:f5:c9:9d:0d:fc:f6:4e:0d:4a:ec:e5:31: 49:33:3f:19:91:6e:15:67:a4:af:ef:2c:65:50:1c:e3:21:13: ae:52:88:de:31:2f:82:c6:70:d1:a6:ad:3a:86:2c:b0:9a:80: 41:a2:cb:f2:a2:6b:d6:82:f9:2b:35:db:44:27:8e:dd:be:43: 55:f7:d4:71:72:e2:4c:c2:60:b2:b7:d5:67:7a:8e:64:07:33: c1:ab:10:49:e7:99:c1:d7:88:b1:61:db:35:7d:8e:a5:01:81: 44:03:45:eb:81:76:46:e9:3e:7e:dd:af:56:f4:ed:07:e8:60: b7:a5:cd:94:e2:c1:42:49:a5:f4:bf:99:a4:3b:ed:2b:cb:78: dc:89:ff:77:42:d2:8e:80:18:cd:df:a2:d1:d6:9a:11:85:0e: 70:04:6c:43:d1:ce:2d:3e:10:9f:32:2b:ca:9c:af:8d:cb:dc: 8d:01:fc:17:e5:53:06:e2:a8:f0:a5:98:b7:30:eb:d6:90:40: 34:7b:1c:42 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUIYx0SEWnfD1m/VgXVkiJ3p5mveUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQwNDlaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDIzMDE4NDhjNzA4NmNiZDUxMDBiZjdjMTI4MjY2MjQ2MDA1NjUzMDllZTIz N2NiOThmMWVlMGU0M2M0MjIyNzMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKS1c6mudw+7a56JhTEZP4FCrStnk5EoyyNuVGI8eDmKipdL3qDWP3dcNrB v2/gNs+B0K4ewzJCdTzDWILfjhL6LubpN+/v4B3D71t5XH1x7ebOoDMm/xcCHwoD zt9kC4Usvp4ObhfhyGsEu0AJ3+uFynXJ7VaMReHW3BByyWh6QIUzbX8Avrm9o4EB OxWzqcu/DTi1Ilg4ACIIFBx2a+Y8dGZHnKtQLoWoYgkCHl8s8/cGSHajbhQWDf5u TLgOxPbpGsV7hZGnQEwBfh0+cesqnEQNriD8+D40qMgrYUgqPdwAn2OfnLG2Z+n6 Qq8fFw13BouzmMQkXOsIv7QOGDECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRHXLbA eGTdy+SMM0mZcp5yQHcFCzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTc5YmM3M2YtN2Q4Ny00Y2ZhLTkzYmQtMDM3OGNmMWQ2YWVmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DGA QDANBgkqhkiG9w0BAQsFAAOCAQEAW26dF5kknNO9f0pCMBn60APyp5jf0/qFR5vT 0m+2GsGxVpB2RXUDRykSKBZisc860kXHYQw1fsivkoCl9cmdDfz2Tg1K7OUxSTM/ GZFuFWekr+8sZVAc4yETrlKI3jEvgsZw0aatOoYssJqAQaLL8qJr1oL5KzXbRCeO 3b5DVffUcXLiTMJgsrfVZ3qOZAczwasQSeeZwdeIsWHbNX2OpQGBRANF64F2Ruk+ ft2vVvTtB+hgt6XNlOLBQkml9L+ZpDvtK8t43In/d0LSjoAYzd+i0daaEYUOcARs Q9HOLT4QnzIrypyvjcvcjQH8F+VTBuKo8KWYtzDr1pBANHscQg== -----END CERTIFICATE-----Generated at Sat Dec 6 17:30:32 2025 by rpki-client