This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a78aefb4-d1eb-4a11-9899-bf6729e18ccd.roa File: a78aefb4-d1eb-4a11-9899-bf6729e18ccd.roa (raw, json) Hash identifier: ND4S5McYTKB/UkpeUOSSCEEp9nG8B+Yh9x3nKC2FqW8= Subject key identifier: 5F:EC:B7:7B:F1:75:E1:98:F8:C8:43:CA:56:10:61:52:58:FB:0B:28 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 659289B86ABE5ADB8E57E383CF803F85BE0AB2B0 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a78aefb4-d1eb-4a11-9899-bf6729e18ccd.roa Signing time: Sat 29 Nov 2025 03:10:06 +0000 ROA not before: Sat 29 Nov 2025 03:10:06 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d074:b000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:92:89:b8:6a:be:5a:db:8e:57:e3:83:cf:80:3f:85:be:0a:b2:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:10:06 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=5986abd6a241220148d51daeadf9f2e55bc5d1ff62cb5ea48b2f4a94487c29a9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:58:d7:ac:00:a0:e0:1c:3b:4b:ec:1e:c0:39: af:c2:19:c1:e3:fe:09:c7:b4:7e:85:3b:97:b5:e1: 50:67:9a:91:9a:d9:37:20:51:31:0d:3c:6c:a2:a3: c2:ba:28:4d:3b:80:5e:ae:be:14:b8:ef:d1:de:31: d9:21:11:09:dd:1e:b3:e4:79:1a:6f:db:89:4a:5a: 46:93:fb:2a:c8:f9:ab:b0:38:4d:92:ae:71:fd:aa: 62:a0:66:b9:74:a4:a4:8c:7c:99:65:89:0a:6f:a6: 25:e0:29:c0:b1:67:d0:11:7a:03:76:48:1f:88:ee: e7:c5:6b:87:29:45:a5:44:a1:0f:d6:7c:6b:30:43: 34:0b:25:a2:89:8f:95:28:23:24:4c:43:14:95:ad: 80:75:5d:d4:36:e4:ba:69:fb:7b:6a:26:14:0a:7d: d5:54:b7:f2:c2:06:6b:9c:64:69:e8:df:28:98:19: 88:43:9a:84:44:ad:a8:e6:21:de:65:ee:cc:a5:a2: 74:63:1a:77:4d:bf:ac:05:0d:9b:de:92:32:80:70: 4b:32:1c:08:8f:4c:59:ad:85:6a:90:54:52:e9:21: 63:ce:4a:ff:a1:ca:25:fb:fa:9e:23:b8:4e:38:1f: c1:2d:a8:8a:13:fe:df:68:6e:e4:b6:c6:1a:f5:b8: 79:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EC:B7:7B:F1:75:E1:98:F8:C8:43:CA:56:10:61:52:58:FB:0B:28 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a78aefb4-d1eb-4a11-9899-bf6729e18ccd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d074:b000::/40 Signature Algorithm: sha256WithRSAEncryption a2:31:de:be:da:f6:d5:a9:18:37:69:48:96:d1:df:c1:d0:5d: b0:ed:f5:ad:d4:8d:f6:08:5f:b9:92:3e:0c:33:a1:f6:9d:0f: 7b:fb:1a:ef:69:90:4b:f7:3b:d3:81:4a:2f:e4:95:8a:4f:28: 70:76:e4:0a:ec:1f:0e:90:bc:5c:d2:60:89:0e:be:44:d1:d8: 2b:20:fa:66:03:d7:b8:8d:0e:01:77:5c:15:69:a1:a3:40:8c: 16:21:08:c4:c0:16:f3:1e:57:65:5b:dd:8c:1f:83:bd:95:c4: 5e:bb:af:23:07:85:81:74:23:38:78:43:a7:aa:b7:d7:fa:45: a8:88:ff:07:63:e5:e1:d5:cb:3f:e5:2c:1b:fd:28:4d:e2:f0: 95:96:bf:fe:71:e7:63:ae:5e:57:1d:31:71:c5:c2:98:da:7d: 15:bf:3e:22:ba:15:3c:a6:90:e5:45:6f:be:8a:a2:b7:ce:f4: 77:29:65:79:c8:95:29:1b:f4:35:c0:f3:72:c2:30:42:75:84: c7:19:6c:a6:65:ab:23:3a:c4:80:7a:a3:75:ad:94:e5:40:94: a5:c1:5e:15:f9:54:cc:e4:b5:f8:4e:0a:f2:4d:8b:2d:5c:1b: f4:2b:49:3b:f7:fd:dd:24:c1:73:4d:d7:a8:6b:24:1d:a7:e8: 57:bb:55:41 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUZZKJuGq+WtuOV+ODz4A/hb4KsrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzEwMDZaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDU5ODZhYmQ2YTI0MTIyMDE0OGQ1MWRhZWFkZjlmMmU1NWJjNWQxZmY2MmNi NWVhNDhiMmY0YTk0NDg3YzI5YTkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ1Y16wAoOAcO0vsHsA5r8IZweP+Cce0foU7l7XhUGeakZrZNyBRMQ08bKKj wrooTTuAXq6+FLjv0d4x2SERCd0es+R5Gm/biUpaRpP7Ksj5q7A4TZKucf2qYqBm uXSkpIx8mWWJCm+mJeApwLFn0BF6A3ZIH4ju58VrhylFpUShD9Z8azBDNAsloomP lSgjJExDFJWtgHVd1Dbkumn7e2omFAp91VS38sIGa5xkaejfKJgZiEOahEStqOYh 3mXuzKWidGMad02/rAUNm96SMoBwSzIcCI9MWa2FapBUUukhY85K/6HKJfv6niO4 TjgfwS2oihP+32hu5LbGGvW4eYMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRf7Ld7 8XXhmPjIQ8pWEGFSWPsLKDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YTc4YWVmYjQtZDFlYi00YTExLTk4OTktYmY2NzI5ZTE4Y2NkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HSw MA0GCSqGSIb3DQEBCwUAA4IBAQCiMd6+2vbVqRg3aUiW0d/B0F2w7fWt1I32CF+5 kj4MM6H2nQ97+xrvaZBL9zvTgUov5JWKTyhwduQK7B8OkLxc0mCJDr5E0dgrIPpm A9e4jQ4Bd1wVaaGjQIwWIQjEwBbzHldlW92MH4O9lcReu68jB4WBdCM4eEOnqrfX +kWoiP8HY+Xh1cs/5Swb/ShN4vCVlr/+cedjrl5XHTFxxcKY2n0Vvz4iuhU8ppDl RW++iqK3zvR3KWV5yJUpG/Q1wPNywjBCdYTHGWymZasjOsSAeqN1rZTlQJSlwV4V +VTM5LX4TgryTYstXBv0K0k79/3dJMFzTdeoayQdp+hXu1VB -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:07 2025 by rpki-client