This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/aaddf2de-fa05-4c5d-8b77-58a3d312e2a6.roa File: aaddf2de-fa05-4c5d-8b77-58a3d312e2a6.roa (raw, json) Hash identifier: +eur56yLX3Dqx3JNojVy1tEiiJ+LSnSv6x7IhtSXElY= Subject key identifier: 96:95:6C:63:28:C1:79:C2:B7:0E:67:76:37:1F:67:6B:AF:73:26:08 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 735ACDAC64459CB621F29790206D2CA9DE3E2F19 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/aaddf2de-fa05-4c5d-8b77-58a3d312e2a6.roa Signing time: Wed 10 Dec 2025 05:41:21 +0000 ROA not before: Wed 10 Dec 2025 05:41:21 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:5a:cd:ac:64:45:9c:b6:21:f2:97:90:20:6d:2c:a9:de:3e:2f:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:41:21 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=1716df5aca56caeb744350913b9ffcd65a22ca793e44d900b5eb7c0610820802, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a7:72:44:b2:8e:1a:36:de:7f:e0:02:7d:fa: 92:40:88:b8:be:6d:51:c6:40:0b:01:d7:fd:bd:b0: a5:d9:76:d6:ee:e1:7e:0a:28:44:78:e8:51:39:40: 60:58:70:db:bc:51:38:b1:ab:30:f1:11:8d:85:ce: 4e:1d:14:27:a5:29:90:51:e4:79:4a:31:ad:ba:26: d6:06:b5:a6:ba:75:97:41:0a:98:5e:0d:37:77:05: 3d:0d:71:14:17:a5:07:f6:1a:b4:4c:55:11:27:ca: 25:a4:39:0e:67:ab:63:4e:e8:ee:a1:66:34:a6:9d: e9:49:98:81:1d:de:2b:0c:92:ab:3c:63:95:b5:73: 98:cc:37:6c:1f:e5:31:83:64:fb:b4:cb:ae:9f:e5: f0:b7:3d:eb:b6:8a:1f:77:42:fc:ae:41:ec:e4:f8: 7a:29:13:99:89:b2:0b:9a:1b:5e:71:21:86:8b:84: c8:d3:29:c0:a8:d6:63:5a:f9:a5:d5:c1:34:f9:07: b8:68:47:dd:50:62:75:95:5f:d4:5f:3e:ce:d0:3c: 5e:4c:74:b8:19:ce:42:a7:88:1e:26:c6:af:3a:ef: f6:70:66:7c:73:fa:ce:c2:27:c3:48:4c:68:af:3d: db:39:0a:a6:26:2f:ee:ff:6e:af:47:ab:04:7d:6c: 1c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:95:6C:63:28:C1:79:C2:B7:0E:67:76:37:1F:67:6B:AF:73:26:08 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/aaddf2de-fa05-4c5d-8b77-58a3d312e2a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:a080::/48 Signature Algorithm: sha256WithRSAEncryption 67:5d:49:f3:f8:97:63:d0:3a:f7:5d:a9:ba:d2:bb:8f:56:10: 3a:1d:4f:42:84:78:a8:24:f1:77:b8:44:db:a0:66:5a:0b:98: 64:81:6c:c5:89:cf:b9:b3:01:20:d4:35:52:34:3b:f8:05:7a: 79:df:16:c0:e4:9c:4c:4f:82:82:d3:e2:de:3f:28:51:3c:19: a2:c8:ea:e1:35:61:4d:35:d9:39:2b:a4:01:e6:9b:77:8f:54: db:4a:5f:f8:49:02:28:d5:89:44:d8:08:73:48:e3:18:b4:59: 28:bb:29:4b:23:35:e1:0c:35:f0:4d:0d:e7:58:80:7b:e3:63: 6e:9d:b3:9e:fd:21:24:74:39:b3:de:fd:64:5a:50:40:e5:2d: d6:5c:f7:82:08:6b:ef:4b:32:dd:7b:73:af:1f:e9:fc:9c:65: 51:76:07:b0:b2:67:24:27:50:0d:7f:a0:99:94:55:7f:91:35: 78:dc:67:2f:cb:43:b7:c2:4b:97:58:40:78:7d:1d:b0:e1:b4: c1:dc:bc:50:63:8d:73:30:03:db:20:fe:2d:0a:75:48:18:b2: 12:c0:0d:8c:b1:58:c6:72:6f:63:6d:60:40:6a:8c:c3:60:d7: 79:f1:eb:80:de:ae:12:48:6c:05:9f:cd:1c:22:92:13:3e:98: 23:fc:00:4d -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUc1rNrGRFnLYh8peQIG0sqd4+LxkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTQxMjFaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDE3MTZkZjVhY2E1NmNhZWI3NDQzNTA5MTNiOWZmY2Q2NWEyMmNhNzkzZTQ0 ZDkwMGI1ZWI3YzA2MTA4MjA4MDIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJqnckSyjho23n/gAn36kkCIuL5tUcZACwHX/b2wpdl21u7hfgooRHjoUTlA YFhw27xROLGrMPERjYXOTh0UJ6UpkFHkeUoxrbom1ga1prp1l0EKmF4NN3cFPQ1x FBelB/YatExVESfKJaQ5DmerY07o7qFmNKad6UmYgR3eKwySqzxjlbVzmMw3bB/l MYNk+7TLrp/l8Lc967aKH3dC/K5B7OT4eikTmYmyC5obXnEhhouEyNMpwKjWY1r5 pdXBNPkHuGhH3VBidZVf1F8+ztA8Xkx0uBnOQqeIHibGrzrv9nBmfHP6zsInw0hM aK892zkKpiYv7v9ur0erBH1sHH0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSWlWxj KMF5wrcOZ3Y3H2drr3MmCDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YWFkZGYyZGUtZmEwNS00YzVkLThiNzctNThhM2QzMTJlMmE2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ACg gDANBgkqhkiG9w0BAQsFAAOCAQEAZ11J8/iXY9A6912putK7j1YQOh1PQoR4qCTx d7hE26BmWguYZIFsxYnPubMBINQ1UjQ7+AV6ed8WwOScTE+CgtPi3j8oUTwZosjq 4TVhTTXZOSukAeabd49U20pf+EkCKNWJRNgIc0jjGLRZKLspSyM14Qw18E0N51iA e+Njbp2znv0hJHQ5s979ZFpQQOUt1lz3gghr70sy3Xtzrx/p/JxlUXYHsLJnJCdQ DX+gmZRVf5E1eNxnL8tDt8JLl1hAeH0dsOG0wdy8UGONczAD2yD+LQp1SBiyEsAN jLFYxnJvY21gQGqMw2DXefHrgN6uEkhsBZ/NHCKSEz6YI/wATQ== -----END CERTIFICATE-----Generated at Mon Dec 15 15:34:29 2025 by rpki-client