This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9ff479c7-35c9-43ea-ab99-712ce7537beb.roa File: 9ff479c7-35c9-43ea-ab99-712ce7537beb.roa (raw, json) Hash identifier: A4MpS5EA/3N4USgmbhDN0ny+dSUbXJYGOmOkV/yjLQU= Subject key identifier: 6F:93:3C:DA:55:5A:A3:AF:81:75:8C:BC:F7:FF:86:EE:AE:BD:5F:D6 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5E2DD77714EBBA81FB51E53885414A2091493408 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9ff479c7-35c9-43ea-ab99-712ce7537beb.roa Signing time: Tue 02 Dec 2025 01:50:50 +0000 ROA not before: Tue 02 Dec 2025 01:50:50 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2a05:d030:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:2d:d7:77:14:eb:ba:81:fb:51:e5:38:85:41:4a:20:91:49:34:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:50:50 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=685107dbf04448c3b132f20fb92e3594e18e001bc01e2d70b8aa90c44d9f7d0e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d7:e2:d6:aa:ab:ca:b3:70:cf:1f:63:de:c5: 53:76:c8:9d:00:db:28:af:c9:bd:e1:07:73:d7:26: fa:ce:d2:0d:9a:c1:ac:be:33:ce:54:67:53:2e:98: fd:6e:57:03:bc:8c:4b:8a:ca:33:02:cb:70:27:b9: 01:87:c4:9c:c8:aa:be:4c:7c:76:cb:0f:a2:f9:fa: bf:3d:59:fe:73:fe:14:40:c1:83:00:03:ee:b6:69: 9f:b8:92:9b:a6:05:6f:cb:40:93:36:b8:ad:8e:8b: 9f:0e:6f:26:d8:17:da:23:4b:3a:c0:02:00:b1:df: cf:0f:e4:19:c0:34:a1:2c:37:bc:85:0d:76:05:d5: 57:4c:9d:46:95:6b:41:ed:6c:35:6f:2f:18:b4:52: 7d:8d:c1:59:72:db:02:b9:30:93:0c:19:ea:51:19: 09:39:46:f8:5d:58:ed:44:10:41:ab:9b:45:d1:da: b0:72:c7:07:f6:3b:88:35:d6:66:40:39:e1:c9:1e: d0:b1:0d:54:92:e9:26:86:a7:e6:2a:62:79:5c:c0: dd:63:fd:2c:41:cf:c1:a0:d6:6a:d1:5e:ba:20:fb: 36:17:b5:bf:a6:ad:70:df:23:80:4e:49:32:fc:7c: 23:e5:88:b6:c0:3e:fa:62:90:56:61:25:e5:cc:4b: 28:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:93:3C:DA:55:5A:A3:AF:81:75:8C:BC:F7:FF:86:EE:AE:BD:5F:D6 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9ff479c7-35c9-43ea-ab99-712ce7537beb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d030:2000::/40 Signature Algorithm: sha256WithRSAEncryption 2f:69:9d:c9:51:de:b9:52:f7:e7:71:c5:91:79:b7:82:3e:b0: 8f:99:55:36:8a:20:c2:8a:98:4e:cd:5f:e6:54:9b:8b:0d:02: b9:22:d1:2f:6b:f7:bc:8c:42:af:61:72:31:f5:d8:70:4d:4a: 76:83:3a:01:b3:65:1b:5c:31:75:e8:df:d8:6f:ee:b7:6e:2e: 67:67:eb:89:95:26:b7:6f:b8:5a:ec:f7:04:59:5c:86:34:4e: 2a:90:4e:6e:90:9f:71:6f:4a:2e:96:96:ef:53:c2:b2:9b:11: a8:aa:f3:61:d7:4d:24:79:95:a7:9c:3a:90:a2:f9:c8:2b:b2: ce:86:88:8d:bc:6f:eb:6d:5b:b2:e4:a4:3a:4b:96:a7:23:7b: 61:12:d7:33:6e:8a:ef:30:0a:4a:b2:a6:52:43:18:bd:9b:76: 67:d4:73:b4:32:1e:9c:10:22:ea:b7:b8:ce:66:90:21:b5:84: 68:4d:8b:ad:b4:ef:2a:88:c9:1c:3e:f1:f8:01:b4:a0:6f:8b: 1b:5c:51:09:f0:55:b5:9c:2f:ce:49:ce:9a:f5:75:cd:de:e8: 12:72:11:42:1d:24:fa:d8:e9:7e:79:52:44:51:62:2d:1c:09: 9c:a2:ea:97:ad:ad:56:6d:af:ff:39:39:55:9b:b3:15:bd:02: 4a:42:e8:40 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUXi3XdxTruoH7UeU4hUFKIJFJNAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUwNTBaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDY4NTEwN2RiZjA0NDQ4YzNiMTMyZjIwZmI5MmUzNTk0ZTE4ZTAwMWJjMDFl MmQ3MGI4YWE5MGM0NGQ5ZjdkMGUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANzX4taqq8qzcM8fY97FU3bInQDbKK/JveEHc9cm+s7SDZrBrL4zzlRnUy6Y /W5XA7yMS4rKMwLLcCe5AYfEnMiqvkx8dssPovn6vz1Z/nP+FEDBgwAD7rZpn7iS m6YFb8tAkza4rY6Lnw5vJtgX2iNLOsACALHfzw/kGcA0oSw3vIUNdgXVV0ydRpVr Qe1sNW8vGLRSfY3BWXLbArkwkwwZ6lEZCTlG+F1Y7UQQQaubRdHasHLHB/Y7iDXW ZkA54cke0LENVJLpJoan5ipieVzA3WP9LEHPwaDWatFeuiD7Nhe1v6atcN8jgE5J Mvx8I+WItsA++mKQVmEl5cxLKHMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRvkzza VVqjr4F1jLz3/4burr1f1jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OWZmNDc5YzctMzVjOS00M2VhLWFiOTktNzEyY2U3NTM3YmViLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DAg MA0GCSqGSIb3DQEBCwUAA4IBAQAvaZ3JUd65UvfnccWRebeCPrCPmVU2iiDCiphO zV/mVJuLDQK5ItEva/e8jEKvYXIx9dhwTUp2gzoBs2UbXDF16N/Yb+63bi5nZ+uJ lSa3b7ha7PcEWVyGNE4qkE5ukJ9xb0oulpbvU8KymxGoqvNh100keZWnnDqQovnI K7LOhoiNvG/rbVuy5KQ6S5anI3thEtczborvMApKsqZSQxi9m3Zn1HO0Mh6cECLq t7jOZpAhtYRoTYuttO8qiMkcPvH4AbSgb4sbXFEJ8FW1nC/OSc6a9XXN3ugSchFC HST62Ol+eVJEUWItHAmcouqXra1Wba//OTlVm7MVvQJKQuhA -----END CERTIFICATE-----Generated at Sat Dec 6 17:35:04 2025 by rpki-client