This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9945cd2e-c13e-46b8-83ad-2175ff7c3188.roa File: 9945cd2e-c13e-46b8-83ad-2175ff7c3188.roa (raw, json) Hash identifier: eCCK6H4KGgX9AxaLVgn7l+gw+e6fuNnlE4hY1RktKfA= Subject key identifier: F3:73:8E:21:CD:CB:02:58:B0:0E:A0:38:35:0A:9A:3B:07:71:AF:18 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 73BB442CCE486FE4E45D0FC18097938BC99AB28B Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9945cd2e-c13e-46b8-83ad-2175ff7c3188.roa Signing time: Sat 06 Dec 2025 04:00:34 +0000 ROA not before: Sat 06 Dec 2025 04:00:34 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06c:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:bb:44:2c:ce:48:6f:e4:e4:5d:0f:c1:80:97:93:8b:c9:9a:b2:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 6 04:00:34 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=447d2f9c3b7341e99bfc23daf0e4de3e991cda7db7e0ee2d4479c1f0c0cfae0a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:00:11:cd:89:e5:76:fc:6b:e8:3a:76:26:b7: 68:09:e4:4e:d1:d0:bd:dc:4c:76:05:07:d7:2f:98: 0f:41:c2:cd:34:2b:5b:80:62:80:60:0a:d9:fa:ae: a5:e9:cf:2e:56:13:ad:68:50:58:c2:d0:29:ec:bf: 7e:55:ee:6e:f5:e3:6d:d0:0f:5e:3a:5f:54:28:12: 33:a8:b2:4e:fa:58:c1:0e:cb:39:f8:ea:8b:02:47: 59:05:75:b4:d6:4d:64:37:79:58:ab:00:a6:32:74: 66:cb:e8:4e:76:95:f0:a6:00:e3:f5:a6:06:2f:b3: 9b:cb:99:3c:33:da:66:8d:a4:3f:1a:d5:4d:04:72: 77:a3:92:01:0e:2b:10:40:69:71:c6:07:2e:2f:88: 5f:e4:fb:3e:4a:fe:de:16:24:6d:10:86:0a:b7:d9: b7:37:6c:4f:d9:9d:77:91:61:10:c0:05:11:55:ab: ed:fe:aa:d3:4e:f7:c7:3e:e0:36:e4:58:3e:33:72: 7f:34:5f:67:eb:5a:8c:3d:55:af:49:fc:18:ba:65: c3:89:5a:ad:e4:18:09:0e:f8:9b:e9:09:ad:b9:87: a4:be:87:ce:22:fe:aa:10:77:5b:fe:ce:9d:69:ae: 70:e3:98:7a:86:35:17:fb:3a:36:c9:43:d4:97:04: f8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:73:8E:21:CD:CB:02:58:B0:0E:A0:38:35:0A:9A:3B:07:71:AF:18 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9945cd2e-c13e-46b8-83ad-2175ff7c3188.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06c:4000::/48 Signature Algorithm: sha256WithRSAEncryption 4c:2c:03:83:2a:13:34:3f:a6:80:f0:c0:4e:73:af:7d:c1:cd: fa:6b:5c:b0:f2:04:6c:68:6e:e8:3b:18:60:72:63:f4:e2:31: d9:62:84:24:93:80:fe:ad:25:60:e2:c0:38:3a:80:03:fc:f4: 6e:fd:a2:bb:1f:c9:ec:4f:72:57:18:06:e6:09:32:c6:0e:a6: a2:17:12:73:b7:e0:3e:f8:d1:8a:d4:4a:93:1e:f6:5a:ab:ad: c7:ed:cf:e2:c5:85:f2:d0:25:61:af:07:d9:f9:cd:c4:26:00: 5d:b6:86:ed:af:14:7d:12:a7:ac:ef:c5:f6:06:c1:03:d3:5a: 00:40:35:81:62:47:ac:af:f9:19:4c:3f:c2:bc:a4:a3:7e:07: af:92:94:98:78:9e:52:53:b3:49:b7:ab:d6:35:94:3a:0f:0a: 35:a4:ac:a6:d0:70:51:5f:09:ef:d0:4d:be:0b:2c:9a:53:67: 1a:04:82:6b:f9:5b:e3:48:84:5e:2c:75:7a:8d:23:d5:84:1a: 68:58:2a:70:f2:1b:f6:ff:a4:30:a5:e0:15:92:50:02:8e:d2: b3:30:f8:37:87:59:c2:a5:4e:d8:07:23:21:39:0a:b7:e0:19: 57:ef:a7:f9:9b:2d:1b:a9:32:3b:84:73:bf:e2:95:62:7c:05: 8f:fa:db:31 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUc7tELM5Ib+TkXQ/BgJeTi8masoswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDYwNDAwMzRaFw0yNjAzMDYyMzU5NTlaMHoxSTBHBgNV BAUTQDQ0N2QyZjljM2I3MzQxZTk5YmZjMjNkYWYwZTRkZTNlOTkxY2RhN2RiN2Uw ZWUyZDQ0NzljMWYwYzBjZmFlMGExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALAAEc2J5Xb8a+g6dia3aAnkTtHQvdxMdgUH1y+YD0HCzTQrW4BigGAK2fqu penPLlYTrWhQWMLQKey/flXubvXjbdAPXjpfVCgSM6iyTvpYwQ7LOfjqiwJHWQV1 tNZNZDd5WKsApjJ0ZsvoTnaV8KYA4/WmBi+zm8uZPDPaZo2kPxrVTQRyd6OSAQ4r EEBpccYHLi+IX+T7Pkr+3hYkbRCGCrfZtzdsT9mdd5FhEMAFEVWr7f6q0073xz7g NuRYPjNyfzRfZ+tajD1Vr0n8GLplw4lareQYCQ74m+kJrbmHpL6HziL+qhB3W/7O nWmucOOYeoY1F/s6NslD1JcE+LUCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTzc44h zcsCWLAOoDg1Cpo7B3GvGDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTk0NWNkMmUtYzEzZS00NmI4LTgzYWQtMjE3NWZmN2MzMTg4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0GxA ADANBgkqhkiG9w0BAQsFAAOCAQEATCwDgyoTND+mgPDATnOvfcHN+mtcsPIEbGhu 6DsYYHJj9OIx2WKEJJOA/q0lYOLAODqAA/z0bv2iux/J7E9yVxgG5gkyxg6mohcS c7fgPvjRitRKkx72Wqutx+3P4sWF8tAlYa8H2fnNxCYAXbaG7a8UfRKnrO/F9gbB A9NaAEA1gWJHrK/5GUw/wryko34Hr5KUmHieUlOzSber1jWUOg8KNaSsptBwUV8J 79BNvgssmlNnGgSCa/lb40iEXix1eo0j1YQaaFgqcPIb9v+kMKXgFZJQAo7SszD4 N4dZwqVO2AcjITkKt+AZV++n+ZstG6kyO4Rzv+KVYnwFj/rbMQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:47 2025 by rpki-client