This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9a5fec2d-2c40-4068-9bcf-c47d7601d087.roa File: 9a5fec2d-2c40-4068-9bcf-c47d7601d087.roa (raw, json) Hash identifier: sk9m+npe8QA//gJULeSD3wZbxMBA9Cq4FkgU3Oih4/E= Subject key identifier: 64:EF:2A:2B:EC:24:22:84:34:77:8A:6B:97:70:75:30:0F:3C:29:58 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 61BFB8B1DF3A1BAE7166862FA524BB49729BAD0B Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9a5fec2d-2c40-4068-9bcf-c47d7601d087.roa Signing time: Tue 25 Nov 2025 20:00:42 +0000 ROA not before: Tue 25 Nov 2025 20:00:42 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:90c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:bf:b8:b1:df:3a:1b:ae:71:66:86:2f:a5:24:bb:49:72:9b:ad:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:00:42 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=fe5be00207439b522e5f4a4e3e0ab17ec0ae7a5721daa07259bafbb7ebbf722d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ea:e7:bc:78:98:ea:1d:21:a7:2a:ad:d0:dd: 57:8e:4e:62:61:01:50:8d:0c:53:34:a7:41:ec:7f: 08:cd:4a:f6:7a:fe:48:b6:ce:2c:8e:1f:76:55:8c: f3:da:b3:4c:6d:cf:f2:97:cf:4c:a4:16:4e:a8:6a: 8d:b5:59:73:9e:ed:1b:4c:2f:84:95:a9:b7:d3:da: d1:6e:67:eb:c6:7f:71:36:cc:03:9b:58:68:37:80: 45:54:ed:83:dd:fb:03:59:b5:04:f2:3e:15:ee:9a: 81:4d:fa:7c:49:e6:86:d9:9a:f0:f2:70:bb:14:ed: 46:0b:24:a7:52:a0:dc:6b:e7:62:33:f9:09:7c:26: be:00:a8:69:f7:b8:b0:72:b3:85:64:2d:90:15:79: 26:85:5c:7b:23:a4:2d:0f:fa:57:9b:bb:93:5e:33: 29:89:fd:55:47:30:a0:47:ea:1e:ac:89:52:e8:b1: 35:84:a3:ce:8f:41:16:24:9d:45:76:8b:a5:4f:e0: e9:1c:bb:8d:47:dd:e5:26:90:c6:b0:07:d5:90:15: f1:5f:67:ca:b8:eb:80:5c:20:7b:22:95:50:28:4c: 02:c5:2e:57:57:57:e8:35:e8:5d:fe:09:15:a8:32: c4:f8:59:77:c8:c8:3d:28:58:c2:2d:7f:2e:69:73: 14:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:EF:2A:2B:EC:24:22:84:34:77:8A:6B:97:70:75:30:0F:3C:29:58 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9a5fec2d-2c40-4068-9bcf-c47d7601d087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:90c0::/46 Signature Algorithm: sha256WithRSAEncryption 42:90:de:1b:78:15:ce:8a:2d:37:46:b3:19:40:4a:ae:05:21: ca:83:5e:d2:21:13:96:fc:48:14:6b:18:09:dc:6e:d0:8c:7f: e8:3b:dc:81:05:de:89:79:cc:8c:73:a0:ba:48:3c:b8:d4:6f: 66:1b:1c:a3:50:01:cb:ee:c7:50:99:be:4a:55:f3:7b:6e:59: 9b:04:11:a3:bc:6a:53:31:63:ca:17:ca:8f:5b:55:69:b8:0d: 6b:26:12:19:5f:fc:bc:ac:8d:b5:51:eb:08:2f:97:8d:42:2e: 08:29:66:d7:94:ce:6d:5d:f9:03:33:ca:4f:ab:2a:cf:f5:cf: f3:f1:74:4c:33:63:18:d4:10:6d:b2:59:d2:38:0d:9c:9a:99: fa:25:7a:3e:3c:72:45:43:a2:0d:df:dd:f7:07:6c:d9:9b:33: 6e:34:0b:20:3d:2e:87:7e:b4:25:f8:fa:5d:f8:d8:f0:24:d4: ce:ca:07:4e:b0:30:d7:75:30:39:c1:f9:84:82:9a:0d:18:17: 98:28:f2:81:33:64:56:a2:e0:ae:a0:9a:17:ba:db:73:d7:45: 1d:78:75:5a:04:68:c6:47:57:d1:5b:22:e6:88:90:e6:6a:ed: 7b:1c:6f:b0:3e:cb:a8:ca:98:a2:1a:4b:7c:e8:ce:a1:b4:2d: 58:08:2b:27 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUYb+4sd86G65xZoYvpSS7SXKbrQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAwNDJaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQGZlNWJlMDAyMDc0MzliNTIyZTVmNGE0ZTNlMGFiMTdlYzBhZTdhNTcyMWRh YTA3MjU5YmFmYmI3ZWJiZjcyMmQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJjq57x4mOodIacqrdDdV45OYmEBUI0MUzSnQex/CM1K9nr+SLbOLI4fdlWM 89qzTG3P8pfPTKQWTqhqjbVZc57tG0wvhJWpt9Pa0W5n68Z/cTbMA5tYaDeARVTt g937A1m1BPI+Fe6agU36fEnmhtma8PJwuxTtRgskp1Kg3GvnYjP5CXwmvgCoafe4 sHKzhWQtkBV5JoVceyOkLQ/6V5u7k14zKYn9VUcwoEfqHqyJUuixNYSjzo9BFiSd RXaLpU/g6Ry7jUfd5SaQxrAH1ZAV8V9nyrjrgFwgeyKVUChMAsUuV1dX6DXoXf4J FagyxPhZd8jIPShYwi1/LmlzFD8CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRk7yor 7CQihDR3imuXcHUwDzwpWDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OWE1ZmVjMmQtMmM0MC00MDY4LTliY2YtYzQ3ZDc2MDFkMDg3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HOQ wDANBgkqhkiG9w0BAQsFAAOCAQEAQpDeG3gVzootN0azGUBKrgUhyoNe0iETlvxI FGsYCdxu0Ix/6DvcgQXeiXnMjHOgukg8uNRvZhsco1ABy+7HUJm+SlXze25ZmwQR o7xqUzFjyhfKj1tVabgNayYSGV/8vKyNtVHrCC+XjUIuCClm15TObV35AzPKT6sq z/XP8/F0TDNjGNQQbbJZ0jgNnJqZ+iV6PjxyRUOiDd/d9wds2ZszbjQLID0uh360 Jfj6XfjY8CTUzsoHTrAw13UwOcH5hIKaDRgXmCjygTNkVqLgrqCaF7rbc9dFHXh1 WgRoxkdX0Vsi5oiQ5mrtexxvsD7LqMqYohpLfOjOobQtWAgrJw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:38 2025 by rpki-client