This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9d791d74-cfd7-4000-a1e5-34325a5e1541.roa File: 9d791d74-cfd7-4000-a1e5-34325a5e1541.roa (raw, json) Hash identifier: iffaMdaHYC1aXDtLurdh5OZ/KkgEs0gXgjuKyDaLF+o= Subject key identifier: EE:7C:16:33:14:D5:1E:32:84:8A:96:B8:05:19:2F:82:05:CC:14:18 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6C9559898F39CA1AE4193F21039CCE73D1931491 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9d791d74-cfd7-4000-a1e5-34325a5e1541.roa Signing time: Sat 29 Nov 2025 03:00:38 +0000 ROA not before: Sat 29 Nov 2025 03:00:38 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d074:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:95:59:89:8f:39:ca:1a:e4:19:3f:21:03:9c:ce:73:d1:93:14:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:38 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=c901938d8a4473833b1f2805d0516a801ec31d197b4f23976b3427b23746a46c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:78:4b:2f:4d:33:23:9e:b4:86:0d:b9:1a: 52:66:b0:a8:ce:8f:a6:64:b0:d1:47:4a:b3:a2:52: 48:d2:fc:99:01:ec:96:e5:92:fb:cf:dd:09:92:99: 06:96:03:36:f5:d4:cd:ec:c1:b0:c8:aa:78:bb:21: 83:93:bd:60:ff:55:ba:c0:c1:b2:fc:d8:2a:59:36: 80:1e:f1:51:8c:19:b7:f9:b5:b7:95:3a:1e:b2:0b: 96:10:1e:be:11:e7:06:75:5c:ee:7a:12:08:20:eb: 07:ac:96:fa:cf:f2:81:08:b9:8f:96:c9:96:76:ec: 88:6d:15:95:bb:82:28:d5:5a:03:e4:f6:34:47:fa: 59:ff:ed:88:78:6a:3c:a0:7c:57:60:2a:39:be:47: f7:9f:14:12:ad:ef:34:ba:50:da:e2:1b:6e:4a:da: c5:52:fd:4c:19:ba:a5:c9:d6:42:8a:9d:11:43:14: 2b:cd:9f:fb:38:23:28:6b:cf:2d:fc:c1:46:73:eb: d7:eb:13:17:eb:7f:5b:85:78:13:f5:83:fc:a4:8c: be:15:ae:0b:79:3d:e6:07:51:28:a5:b9:a2:49:fa: 3a:eb:41:d4:e5:7e:45:64:97:03:ba:6e:68:d6:52: 91:ca:d9:db:b5:0a:65:ab:88:3b:ca:8f:3d:ea:7e: 8e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:7C:16:33:14:D5:1E:32:84:8A:96:B8:05:19:2F:82:05:CC:14:18 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9d791d74-cfd7-4000-a1e5-34325a5e1541.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d074:5000::/40 Signature Algorithm: sha256WithRSAEncryption 61:5e:76:83:7e:9f:78:c9:60:78:63:65:4a:ae:39:c6:a7:c0: b3:1a:d7:97:08:ac:ee:b2:e4:44:84:e9:af:aa:ba:eb:45:c9: 0d:9a:67:cb:fe:2d:4f:5e:b9:1c:f0:41:67:b5:21:aa:c4:69: 18:48:3d:62:5e:ba:60:4f:a3:24:f2:e8:68:48:51:18:cf:a7: c4:37:48:8a:0d:30:7e:b1:70:f1:d5:ee:2f:bb:48:01:69:36: 77:b7:3f:b1:a0:56:4d:4e:42:7a:bd:67:48:7b:bb:9a:1c:8f: 99:b2:23:fd:a4:a1:38:7a:1f:92:db:50:c8:d8:11:5b:0b:be: 25:0c:7c:bc:e7:73:8f:02:4b:e9:45:2d:79:83:c6:66:81:67: 61:c5:15:8a:9f:11:82:13:27:69:19:31:97:b9:65:67:8a:2a: 25:ca:24:c3:d1:93:77:0d:12:b1:7f:e2:27:3a:d3:ee:08:b6: 8e:d0:55:6d:3d:55:18:18:40:b0:6c:7b:b8:26:76:80:73:30: ea:ed:ca:19:b2:fc:4c:d6:0c:5a:62:0b:37:4c:c9:c1:87:66: 90:d0:ff:4b:60:3a:a7:fc:76:df:ff:4f:91:20:84:fe:fc:42: 03:2b:42:c6:29:84:31:6c:e4:34:35:35:0a:cd:da:21:e3:0e: 3c:e1:d2:2d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUbJVZiY85yhrkGT8hA5zOc9GTFJEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwMzhaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQGM5MDE5MzhkOGE0NDczODMzYjFmMjgwNWQwNTE2YTgwMWVjMzFkMTk3YjRm MjM5NzZiMzQyN2IyMzc0NmE0NmMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3OeEsvTTMjnrSGDbkaUmawqM6PpmSw0UdKs6JSSNL8mQHsluWS+8/dCZKZ BpYDNvXUzezBsMiqeLshg5O9YP9VusDBsvzYKlk2gB7xUYwZt/m1t5U6HrILlhAe vhHnBnVc7noSCCDrB6yW+s/ygQi5j5bJlnbsiG0VlbuCKNVaA+T2NEf6Wf/tiHhq PKB8V2AqOb5H958UEq3vNLpQ2uIbbkraxVL9TBm6pcnWQoqdEUMUK82f+zgjKGvP LfzBRnPr1+sTF+t/W4V4E/WD/KSMvhWuC3k95gdRKKW5okn6OutB1OV+RWSXA7pu aNZSkcrZ27UKZauIO8qPPep+jvcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTufBYz FNUeMoSKlrgFGS+CBcwUGDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OWQ3OTFkNzQtY2ZkNy00MDAwLWExZTUtMzQzMjVhNWUxNTQxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HRQ MA0GCSqGSIb3DQEBCwUAA4IBAQBhXnaDfp94yWB4Y2VKrjnGp8CzGteXCKzusuRE hOmvqrrrRckNmmfL/i1PXrkc8EFntSGqxGkYSD1iXrpgT6Mk8uhoSFEYz6fEN0iK DTB+sXDx1e4vu0gBaTZ3tz+xoFZNTkJ6vWdIe7uaHI+ZsiP9pKE4eh+S21DI2BFb C74lDHy853OPAkvpRS15g8ZmgWdhxRWKnxGCEydpGTGXuWVniiolyiTD0ZN3DRKx f+InOtPuCLaO0FVtPVUYGECwbHu4JnaAczDq7coZsvxM1gxaYgs3TMnBh2aQ0P9L YDqn/Hbf/0+RIIT+/EIDK0LGKYQxbOQ0NTUKzdoh4w484dIt -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:47 2025 by rpki-client