This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9a0196e5-a789-4daf-912c-37aa6951f379.roa File: 9a0196e5-a789-4daf-912c-37aa6951f379.roa (raw, json) Hash identifier: v76Zx5QW6CA+veoNZzorACYPgTOBJLo1LgY0i6fN5Ks= Subject key identifier: DA:87:8B:84:3D:68:28:AE:BB:72:D9:97:AB:C5:F8:3D:89:DC:C0:C5 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 72A175FD22676B9D35D7B29277E538B9A5A11FE6 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9a0196e5-a789-4daf-912c-37aa6951f379.roa Signing time: Tue 02 Dec 2025 01:50:12 +0000 ROA not before: Tue 02 Dec 2025 01:50:12 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2a05:d030:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a1:75:fd:22:67:6b:9d:35:d7:b2:92:77:e5:38:b9:a5:a1:1f:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:50:12 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=b47cdd2975a99977f275e9c6a87d4fe0a2aea9008ff633e950ec28739c0b4ea4, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:67:46:58:5f:20:1d:3b:ad:8a:72:93:46:24: 67:aa:1d:57:56:63:1f:38:29:8d:c7:0f:cf:7f:b7: 9e:16:85:21:d6:11:2b:c4:ba:59:58:fe:02:7c:a9: 6a:e2:79:74:01:8c:8a:6d:37:b6:86:16:88:db:69: 76:bf:82:12:d1:c8:4e:39:a5:02:4c:c9:af:1e:0b: 12:d0:45:cd:a5:e3:18:ca:4f:57:68:dd:4c:17:91: 5d:ff:82:77:31:8e:13:48:b0:16:ab:2e:b0:bb:9f: c1:de:99:83:76:17:c0:57:d5:42:9f:74:b3:4a:5c: 01:32:38:c7:84:39:91:a8:83:d1:26:e6:08:a9:03: b9:a8:e5:ef:6e:b0:43:7b:96:f1:99:13:73:bc:93: 93:97:f0:09:a6:1c:2f:1b:06:f8:fd:4a:95:a2:f1: 19:85:63:03:ab:b0:6c:3c:f5:10:e3:42:03:91:ef: 64:61:df:95:1a:df:6b:fc:cc:92:69:77:21:1f:82: 8f:a9:f8:7b:e1:2c:2f:72:0b:66:68:fd:5b:96:e9: 9f:1e:e4:77:3a:ae:b9:9c:b0:57:4f:b5:a7:6c:41: 25:07:57:8b:d1:88:55:7a:e7:59:94:0d:c8:b2:1c: 62:fc:57:80:0d:b4:1c:f1:ea:be:bc:02:50:8e:a0: c4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:87:8B:84:3D:68:28:AE:BB:72:D9:97:AB:C5:F8:3D:89:DC:C0:C5 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9a0196e5-a789-4daf-912c-37aa6951f379.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d030:a000::/40 Signature Algorithm: sha256WithRSAEncryption 8f:47:44:20:3d:d1:63:23:73:8a:04:cd:e9:24:d1:d9:8f:f1: 88:73:14:2f:1f:b6:50:eb:fb:46:8d:a7:92:ad:9c:92:4e:2c: 1b:46:46:c1:ed:49:9e:55:0f:d6:1a:ef:bb:e2:cd:59:8e:95: 79:4d:27:74:ba:0f:b4:10:aa:e2:30:17:85:ef:66:04:be:50: 30:c2:59:61:12:a0:d3:b0:70:8a:03:c9:19:a2:91:4d:4e:83: 4b:4d:32:93:fa:8a:6e:c6:1a:d0:28:c2:e3:ff:32:d3:c5:e0: ec:28:d1:0f:f9:eb:f8:40:d0:cf:be:78:96:cb:9a:1c:4d:ca: 2e:5c:34:db:07:7b:0e:fd:77:e6:cf:ac:8a:2e:77:a2:36:9f: ff:8a:03:52:91:cb:64:b1:57:7d:00:92:f6:ae:4e:de:8b:47: 45:eb:bd:37:e0:ab:bc:3f:99:48:04:15:98:84:17:a1:d2:4f: 0b:f7:66:41:3a:65:67:fe:da:97:52:04:c2:62:c5:15:ca:aa: ff:c1:d2:52:e9:90:12:a6:da:0e:53:f4:a0:a4:68:64:ce:e5: f6:b2:b1:a5:7a:bf:f1:48:15:44:29:e4:7d:4d:66:61:c8:c1: 3b:20:ba:2a:af:b6:0b:6b:06:02:59:9f:55:75:be:58:4e:1a: b4:dc:49:5e -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUcqF1/SJna50117KSd+U4uaWhH+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUwMTJaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQGI0N2NkZDI5NzVhOTk5NzdmMjc1ZTljNmE4N2Q0ZmUwYTJhZWE5MDA4ZmY2 MzNlOTUwZWMyODczOWMwYjRlYTQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVnRlhfIB07rYpyk0YkZ6odV1ZjHzgpjccPz3+3nhaFIdYRK8S6WVj+Anyp auJ5dAGMim03toYWiNtpdr+CEtHITjmlAkzJrx4LEtBFzaXjGMpPV2jdTBeRXf+C dzGOE0iwFqsusLufwd6Zg3YXwFfVQp90s0pcATI4x4Q5kaiD0SbmCKkDuajl726w Q3uW8ZkTc7yTk5fwCaYcLxsG+P1KlaLxGYVjA6uwbDz1EONCA5HvZGHflRrfa/zM kml3IR+Cj6n4e+EsL3ILZmj9W5bpnx7kdzquuZywV0+1p2xBJQdXi9GIVXrnWZQN yLIcYvxXgA20HPHqvrwCUI6gxNUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTah4uE PWgorrty2Zerxfg9idzAxTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OWEwMTk2ZTUtYTc4OS00ZGFmLTkxMmMtMzdhYTY5NTFmMzc5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DCg MA0GCSqGSIb3DQEBCwUAA4IBAQCPR0QgPdFjI3OKBM3pJNHZj/GIcxQvH7ZQ6/tG jaeSrZySTiwbRkbB7UmeVQ/WGu+74s1ZjpV5TSd0ug+0EKriMBeF72YEvlAwwllh EqDTsHCKA8kZopFNToNLTTKT+opuxhrQKMLj/zLTxeDsKNEP+ev4QNDPvniWy5oc TcouXDTbB3sO/Xfmz6yKLneiNp//igNSkctksVd9AJL2rk7ei0dF67034Ku8P5lI BBWYhBeh0k8L92ZBOmVn/tqXUgTCYsUVyqr/wdJS6ZASptoOU/SgpGhkzuX2srGl er/xSBVEKeR9TWZhyME7ILoqr7YLawYCWZ9Vdb5YThq03Ele -----END CERTIFICATE-----Generated at Sat Dec 6 22:37:18 2025 by rpki-client