This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a74aaa95-252d-4e97-92fa-1c779bc72adc.roa File: a74aaa95-252d-4e97-92fa-1c779bc72adc.roa (raw, json) Hash identifier: m3bJp+WZgNXW4SNkRifjtdXcY8Dt5ur6s5baWh6k03k= Subject key identifier: A0:E2:50:CD:02:52:2C:37:6E:C0:BD:6C:E1:71:B3:25:C8:02:6D:20 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1ACDDF48C375325551D2166EC71520A1DC48C3F4 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a74aaa95-252d-4e97-92fa-1c779bc72adc.roa Signing time: Tue 25 Nov 2025 20:00:47 +0000 ROA not before: Tue 25 Nov 2025 20:00:47 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:8080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:cd:df:48:c3:75:32:55:51:d2:16:6e:c7:15:20:a1:dc:48:c3:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:00:47 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=4cf9007c3a5809de691fb930683e75a5d85503f0d62272aedb3e8197858dd924, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:22:e7:1f:96:2f:88:21:10:2b:22:aa:26:66: c2:29:67:27:d1:db:e1:01:1b:44:05:1f:94:c9:df: e8:bd:fb:49:3f:39:68:39:f0:ff:99:da:5d:77:ed: 46:99:6f:36:80:ee:80:dd:f0:2c:1e:35:a8:1b:7d: 32:eb:ab:9e:2f:00:f2:0b:ab:4f:5b:10:35:16:5c: da:06:30:fd:60:2b:06:54:df:ea:bb:25:41:92:ab: c3:80:13:0b:46:34:42:9a:c3:8f:cc:9b:4b:72:be: 85:93:f8:ab:a5:4c:be:63:98:cc:8f:8b:79:fa:b7: d9:f8:33:fb:59:cd:af:9e:62:bc:3d:c4:38:77:5c: 87:ab:79:43:ea:79:b1:cf:85:08:5b:8d:95:c4:ce: 83:3c:0c:b5:51:82:7a:b8:d5:7e:5a:f5:c8:6a:17: 41:5a:83:51:8e:1a:34:f2:77:4f:0c:bc:b1:ae:a1: 82:15:52:4e:c4:96:2a:fd:8e:87:0e:cf:06:2c:76: bc:8b:f4:1a:a8:0f:46:25:95:7c:91:a0:19:38:fa: a3:0a:a6:7b:90:58:90:9d:2a:33:38:5d:ea:b9:d3: 40:80:10:29:55:bb:8f:93:b3:d2:b6:25:03:ee:bd: 22:19:75:f9:9f:bc:2a:fe:2f:16:0b:46:56:be:a4: f1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E2:50:CD:02:52:2C:37:6E:C0:BD:6C:E1:71:B3:25:C8:02:6D:20 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a74aaa95-252d-4e97-92fa-1c779bc72adc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:8080::/46 Signature Algorithm: sha256WithRSAEncryption 1a:34:1f:2a:68:ef:3c:4f:ed:d2:fe:c5:51:a8:d6:14:0d:f7: 6a:65:0f:5f:c3:ac:22:c0:c3:79:48:43:08:e4:8a:ce:8d:c9: 19:8b:74:cf:2a:04:7e:00:18:2a:46:97:da:18:e8:b1:cf:0a: db:78:cf:7e:84:cd:97:bb:ed:48:7d:3f:81:8d:48:e9:74:3b: 3b:42:de:bd:e7:06:3d:df:32:fc:a6:cd:12:6e:19:26:43:8f: 02:bf:82:37:1f:6e:89:1c:54:de:d0:75:7e:88:9b:6d:c0:9f: 69:e4:2c:f5:30:65:75:f1:c0:8b:77:ee:a4:3f:15:a8:88:9d: 39:48:f9:ab:56:b6:34:41:a8:51:d4:42:3c:97:37:db:45:50: c5:66:8a:c8:66:4c:49:11:47:ad:6c:c6:f3:2b:d5:e3:c4:24: 98:3f:3d:4b:58:6a:bb:ee:27:00:e6:23:6e:7a:41:a3:98:30: 37:26:0b:cc:bf:fb:a1:bc:35:cd:d3:74:08:6c:a7:b2:5e:ef: 86:17:68:58:e1:e2:e8:b1:dd:e2:b0:d7:b2:00:0a:61:cf:88: f1:43:c5:6c:a2:0c:b2:74:73:37:87:95:60:0a:e4:7e:76:6c: ef:8c:be:5e:11:a9:9b:4f:28:87:85:fa:25:19:d5:54:92:7e: 46:7c:7f:54 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUGs3fSMN1MlVR0hZuxxUgodxIw/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAwNDdaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDRjZjkwMDdjM2E1ODA5ZGU2OTFmYjkzMDY4M2U3NWE1ZDg1NTAzZjBkNjIy NzJhZWRiM2U4MTk3ODU4ZGQ5MjQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0i5x+WL4ghECsiqiZmwilnJ9Hb4QEbRAUflMnf6L37ST85aDnw/5naXXft RplvNoDugN3wLB41qBt9Muurni8A8gurT1sQNRZc2gYw/WArBlTf6rslQZKrw4AT C0Y0QprDj8ybS3K+hZP4q6VMvmOYzI+Lefq32fgz+1nNr55ivD3EOHdch6t5Q+p5 sc+FCFuNlcTOgzwMtVGCerjVflr1yGoXQVqDUY4aNPJ3Twy8sa6hghVSTsSWKv2O hw7PBix2vIv0GqgPRiWVfJGgGTj6owqme5BYkJ0qMzhd6rnTQIAQKVW7j5Oz0rYl A+69Ihl1+Z+8Kv4vFgtGVr6k8dECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSg4lDN AlIsN27AvWzhcbMlyAJtIDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YTc0YWFhOTUtMjUyZC00ZTk3LTkyZmEtMWM3NzliYzcyYWRjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HOA gDANBgkqhkiG9w0BAQsFAAOCAQEAGjQfKmjvPE/t0v7FUajWFA33amUPX8OsIsDD eUhDCOSKzo3JGYt0zyoEfgAYKkaX2hjosc8K23jPfoTNl7vtSH0/gY1I6XQ7O0Le vecGPd8y/KbNEm4ZJkOPAr+CNx9uiRxU3tB1foibbcCfaeQs9TBldfHAi3fupD8V qIidOUj5q1a2NEGoUdRCPJc320VQxWaKyGZMSRFHrWzG8yvV48QkmD89S1hqu+4n AOYjbnpBo5gwNyYLzL/7obw1zdN0CGynsl7vhhdoWOHi6LHd4rDXsgAKYc+I8UPF bKIMsnRzN4eVYArkfnZs74y+XhGpm08oh4X6JRnVVJJ+Rnx/VA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:05 2025 by rpki-client