This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a507fd37-f907-46ea-8c80-857b97a67610.roa File: a507fd37-f907-46ea-8c80-857b97a67610.roa (raw, json) Hash identifier: CdkZUADHZ5/g3IeCnOqNDIltP4UJboGUKFB4gJlidJg= Subject key identifier: E3:12:B9:3E:B1:E1:B0:57:0D:74:F0:01:DA:6A:4D:BB:0A:47:39:FF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 673B26A3E7FAFA125B1132A92DE91661C9EDAFD3 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a507fd37-f907-46ea-8c80-857b97a67610.roa Signing time: Sat 15 Nov 2025 06:20:56 +0000 ROA not before: Sat 15 Nov 2025 06:20:56 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:3b:26:a3:e7:fa:fa:12:5b:11:32:a9:2d:e9:16:61:c9:ed:af:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:20:56 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=a8132c6841fd78525341282f9336ca0c36df2132f135f0b0e41e191657e24f4a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:15:4d:91:1e:86:dd:34:30:03:5e:89:13:eb: e4:af:8a:4e:74:31:97:81:d3:da:07:42:c8:f5:d5: 82:5b:c4:1e:30:7a:5c:a9:6b:85:83:29:cd:84:73: b1:a6:65:0e:38:37:3c:a0:c4:01:7b:bb:e6:fc:39: 3b:92:0f:0f:58:a5:2c:9b:21:12:4b:9d:df:b0:7e: 9c:39:36:c9:1b:0d:1c:81:80:1c:f1:44:84:af:79: 0d:d2:b5:32:a7:03:89:f7:76:7b:c4:15:4f:d8:5c: 1e:62:3e:fd:a0:6d:25:56:86:1a:0e:f2:1f:61:89: 29:ef:c8:9c:23:e0:93:c8:43:98:f4:0f:79:9a:a1: 71:2b:d0:b0:0b:8d:b1:df:15:ca:1b:15:ef:27:67: 2e:ac:6a:22:ad:43:c7:af:ff:7a:51:11:0a:aa:d5: 0e:39:fa:bd:ac:bd:73:54:b5:c1:5d:3a:e7:c8:d9: c5:a0:26:ea:c9:58:eb:82:fa:37:5d:ec:3c:b7:2f: be:bf:9f:8f:3b:63:ff:d7:41:6c:b7:6b:f2:fd:91: d5:bf:80:e8:f6:ad:fa:68:9e:97:76:5f:1e:41:26: 9c:60:1b:b1:1d:9b:c6:87:99:18:3a:e2:55:88:8b: ec:f4:35:d2:ee:3e:2f:cd:60:98:a5:ae:13:8d:93: a0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:12:B9:3E:B1:E1:B0:57:0D:74:F0:01:DA:6A:4D:BB:0A:47:39:FF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a507fd37-f907-46ea-8c80-857b97a67610.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:e000::/40 Signature Algorithm: sha256WithRSAEncryption c2:97:e6:06:24:6d:6c:d6:9b:eb:0f:07:3f:3c:b3:98:9c:2d: f4:86:dd:dd:62:f7:44:67:79:cd:a0:81:5b:48:76:b0:77:e2: 7d:e7:39:6c:c5:a2:6f:9d:cf:b2:88:fe:95:b2:61:7b:5f:bf: 05:49:a9:6a:a5:c2:aa:e3:f4:75:b6:e2:29:77:d5:cc:11:6a: dd:93:15:8c:54:df:ae:62:2b:8d:24:8c:79:be:41:bf:ed:3f: be:ca:62:6d:8d:21:19:7a:a4:0b:5b:ff:8d:9a:4e:d1:45:54: 7c:2a:fd:3c:f1:24:16:d2:e8:20:b5:bf:1a:bd:25:b6:c5:82: ed:8d:5e:a3:49:76:04:10:1a:a9:95:de:96:8f:d3:71:c4:73: 46:5e:56:bf:e0:f6:7e:d0:b3:3c:80:80:0c:90:46:de:51:45: 08:ab:31:43:5c:23:f3:b5:2a:af:cf:9b:b5:3e:a5:1b:2b:2d: 4e:c4:8a:d4:99:46:7f:8c:3c:20:cd:61:86:b2:95:c7:60:a8: 7d:ee:dc:a6:28:f8:62:d7:a0:8a:7b:fc:13:62:f5:9a:0b:ea: 39:90:7c:2a:88:0e:c0:7c:ed:d2:2b:09:d5:41:43:d4:c7:b0: 2c:21:bf:0c:3d:1f:ed:25:c4:33:43:82:83:08:c1:5b:23:2c: 4e:10:e4:06 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUZzsmo+f6+hJbETKpLekWYcntr9MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjIwNTZaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGE4MTMyYzY4NDFmZDc4NTI1MzQxMjgyZjkzMzZjYTBjMzZkZjIxMzJmMTM1 ZjBiMGU0MWUxOTE2NTdlMjRmNGExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANAVTZEeht00MANeiRPr5K+KTnQxl4HT2gdCyPXVglvEHjB6XKlrhYMpzYRz saZlDjg3PKDEAXu75vw5O5IPD1ilLJshEkud37B+nDk2yRsNHIGAHPFEhK95DdK1 MqcDifd2e8QVT9hcHmI+/aBtJVaGGg7yH2GJKe/InCPgk8hDmPQPeZqhcSvQsAuN sd8VyhsV7ydnLqxqIq1Dx6//elERCqrVDjn6vay9c1S1wV0658jZxaAm6slY64L6 N13sPLcvvr+fjztj/9dBbLdr8v2R1b+A6Pat+miel3ZfHkEmnGAbsR2bxoeZGDri VYiL7PQ10u4+L81gmKWuE42ToM0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTjErk+ seGwVw108AHaak27Ckc5/zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YTUwN2ZkMzctZjkwNy00NmVhLThjODAtODU3Yjk3YTY3NjEwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HLg MA0GCSqGSIb3DQEBCwUAA4IBAQDCl+YGJG1s1pvrDwc/PLOYnC30ht3dYvdEZ3nN oIFbSHawd+J95zlsxaJvnc+yiP6VsmF7X78FSalqpcKq4/R1tuIpd9XMEWrdkxWM VN+uYiuNJIx5vkG/7T++ymJtjSEZeqQLW/+Nmk7RRVR8Kv088SQW0uggtb8avSW2 xYLtjV6jSXYEEBqpld6Wj9NxxHNGXla/4PZ+0LM8gIAMkEbeUUUIqzFDXCPztSqv z5u1PqUbKy1OxIrUmUZ/jDwgzWGGspXHYKh97tymKPhi16CKe/wTYvWaC+o5kHwq iA7AfO3SKwnVQUPUx7AsIb8MPR/tJcQzQ4KDCMFbIyxOEOQG -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:42 2025 by rpki-client