This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a40e2cf2-d6e4-4813-a5aa-623eda8926e6.roa File: a40e2cf2-d6e4-4813-a5aa-623eda8926e6.roa (raw, json) Hash identifier: 16QqV2GiMCh6W6ruhOaSDr2JmsFzWzUORvTcYgWbBdo= Subject key identifier: 5C:7E:15:22:7A:35:03:56:22:50:51:86:F4:DC:9F:69:B6:80:49:07 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 72DD9C2C24402E6BA6D40A4256D9BE320DDA25DF Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a40e2cf2-d6e4-4813-a5aa-623eda8926e6.roa Signing time: Sat 15 Nov 2025 06:20:40 +0000 ROA not before: Sat 15 Nov 2025 06:20:40 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:6080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:dd:9c:2c:24:40:2e:6b:a6:d4:0a:42:56:d9:be:32:0d:da:25:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:20:40 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=434f4b4029b4489473d11b35942c02bbe7c301150c5a6a5c5de097dc68cd850c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6b:ea:14:4a:b2:4f:51:e3:df:b3:f0:9a:5a: fd:0d:89:af:85:75:ab:2a:b3:ff:e7:4e:a9:3b:c7: 1b:2a:62:2c:e7:7a:92:d3:a5:47:d2:85:88:25:07: f5:3a:fd:d6:30:5c:dd:32:a3:d0:c0:28:a6:d1:ee: 64:80:f0:6c:82:fc:f0:9d:c6:10:a2:71:92:a1:2a: af:33:7a:08:a1:da:d6:dc:d4:c1:7e:f2:39:b6:48: 21:25:63:e6:04:88:d8:ab:f0:3b:92:81:f5:12:a6: 81:0b:55:74:72:f7:9a:e8:b8:6c:19:bf:0c:fb:b0: 98:77:f4:aa:02:1a:a4:d8:2d:10:8b:4a:fa:49:c9: 87:63:c3:09:f3:34:fd:6d:27:6e:97:ce:b7:ce:dd: 23:f3:dc:b5:43:8c:0a:3f:db:e6:0f:26:c3:c5:d7: 89:07:6e:fc:06:9f:bb:3e:d4:b5:53:0b:56:1f:74: b9:12:7f:46:32:de:c7:04:29:3b:8f:ad:df:1a:38: f2:22:eb:31:80:42:54:91:07:ff:11:2a:7c:cb:25: b6:ad:ff:80:4c:0c:d5:05:42:d7:9b:47:90:3a:96: e4:d3:4c:85:34:58:7a:19:98:48:f0:4a:83:31:0f: f9:f0:66:3d:a8:f9:7f:55:94:ee:7b:0a:44:75:31: d9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:7E:15:22:7A:35:03:56:22:50:51:86:F4:DC:9F:69:B6:80:49:07 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a40e2cf2-d6e4-4813-a5aa-623eda8926e6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:6080::/48 Signature Algorithm: sha256WithRSAEncryption 5c:77:87:2f:a1:b2:63:5e:fe:c1:ef:dc:7a:60:f6:0c:77:88: 06:f0:17:f1:00:45:42:6a:07:50:0d:e6:fd:77:c1:65:19:9c: 7f:c6:ae:01:92:8b:a6:7a:24:20:f3:e8:82:08:b0:4a:76:ce: 2b:99:67:9e:5f:47:e6:bf:86:06:6f:d8:90:5b:96:48:02:76: 10:9c:c6:1d:59:66:07:07:74:b7:2b:0d:da:4c:7e:7e:9b:f7: 28:dc:ce:14:b3:ab:33:f8:78:f2:b9:c3:3b:0c:f9:58:82:68: e8:89:85:e2:37:98:8a:fd:19:be:cf:7b:7b:08:12:75:e8:dd: d2:80:8c:d4:09:65:41:35:7e:f4:4a:ee:d8:ef:a7:5a:e0:dc: df:44:e9:cc:96:20:d4:2c:cb:24:55:90:a3:a8:aa:6a:ee:65: a8:53:73:2e:2c:95:35:4a:5d:a5:22:34:0e:e2:03:44:c1:c5: fb:29:9f:bc:6c:34:ac:bc:be:57:fa:19:b0:c5:98:2b:e1:ce: 20:72:ce:72:c5:26:07:39:ea:26:df:dc:9e:17:d9:18:c2:c4: 71:03:74:fb:65:24:c0:b1:fb:f2:2b:d5:89:ae:7b:4a:56:c9: 2b:94:03:77:50:63:ab:0b:e0:f8:a3:f5:5a:c6:be:9e:2a:3a: 25:c9:8f:7e -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUct2cLCRALmum1ApCVtm+Mg3aJd8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjIwNDBaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDQzNGY0YjQwMjliNDQ4OTQ3M2QxMWIzNTk0MmMwMmJiZTdjMzAxMTUwYzVh NmE1YzVkZTA5N2RjNjhjZDg1MGMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJr6hRKsk9R49+z8Jpa/Q2Jr4V1qyqz/+dOqTvHGypiLOd6ktOlR9KFiCUH 9Tr91jBc3TKj0MAoptHuZIDwbIL88J3GEKJxkqEqrzN6CKHa1tzUwX7yObZIISVj 5gSI2KvwO5KB9RKmgQtVdHL3mui4bBm/DPuwmHf0qgIapNgtEItK+knJh2PDCfM0 /W0nbpfOt87dI/PctUOMCj/b5g8mw8XXiQdu/Aafuz7UtVMLVh90uRJ/RjLexwQp O4+t3xo48iLrMYBCVJEH/xEqfMsltq3/gEwM1QVC15tHkDqW5NNMhTRYehmYSPBK gzEP+fBmPaj5f1WU7nsKRHUx2VMCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRcfhUi ejUDViJQUYb03J9ptoBJBzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YTQwZTJjZjItZDZlNC00ODEzLWE1YWEtNjIzZWRhODkyNmU2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DFg gDANBgkqhkiG9w0BAQsFAAOCAQEAXHeHL6GyY17+we/cemD2DHeIBvAX8QBFQmoH UA3m/XfBZRmcf8auAZKLpnokIPPoggiwSnbOK5lnnl9H5r+GBm/YkFuWSAJ2EJzG HVlmBwd0tysN2kx+fpv3KNzOFLOrM/h48rnDOwz5WIJo6ImF4jeYiv0Zvs97ewgS dejd0oCM1AllQTV+9Eru2O+nWuDc30TpzJYg1CzLJFWQo6iqau5lqFNzLiyVNUpd pSI0DuIDRMHF+ymfvGw0rLy+V/oZsMWYK+HOIHLOcsUmBznqJt/cnhfZGMLEcQN0 +2UkwLH78ivVia57SlbJK5QDd1Bjqwvg+KP1Wsa+nio6JcmPfg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:31 2025 by rpki-client