This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab1fdc4a-fa1a-4813-8272-9601a3d755e4.roa File: ab1fdc4a-fa1a-4813-8272-9601a3d755e4.roa (raw, json) Hash identifier: nan8sDaB87AMdUmZhqVWXhw2y3L35195hcbsoH39RxU= Subject key identifier: C2:4D:45:15:A2:1A:5A:E0:7E:36:61:36:2A:58:80:FE:10:94:19:2F Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 65E78FB767D78839489F7AD50F85FFA16DA09A95 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab1fdc4a-fa1a-4813-8272-9601a3d755e4.roa Signing time: Sat 15 Nov 2025 05:51:06 +0000 ROA not before: Sat 15 Nov 2025 05:51:06 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:e7:8f:b7:67:d7:88:39:48:9f:7a:d5:0f:85:ff:a1:6d:a0:9a:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:51:06 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=a3334ceb34d5fb4851977ac39f7213ac11ed42ae008c22162e8f1ed065f03e05, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9c:5d:17:a6:b9:0b:88:3f:52:db:79:c5:cf: 7a:9a:a6:4e:e5:90:f3:38:1d:0d:a9:ff:e4:e5:ba: 70:99:dd:6b:66:2e:87:3e:87:76:43:ac:8c:24:38: 23:e2:e0:e8:b1:77:6a:7f:5f:d6:e1:7f:fd:64:19: 08:c4:ff:63:64:2e:c9:38:e4:9c:95:48:9d:17:01: 34:f6:a6:6b:5a:64:dc:f7:91:30:0b:d1:05:23:e2: 55:3f:c6:9a:1f:de:fd:82:92:1d:c1:01:93:25:74: 6e:c4:d8:20:b6:49:a0:a8:88:27:b5:55:80:0b:cc: 9e:20:67:d3:76:c0:90:f9:65:17:a1:fc:c0:ea:b3: 01:63:6e:4f:5d:e5:96:8d:18:82:48:b3:f6:95:cf: 72:4e:f7:a6:90:69:71:1d:f7:24:ff:7a:b7:24:98: 60:57:5a:1f:83:03:97:d6:fe:b0:0c:51:a2:d9:2f: d9:1c:e4:c0:ad:8c:89:dd:72:48:fe:66:38:34:56: 4a:95:35:7b:8f:54:6e:72:78:3b:51:15:b7:05:0f: 7a:ed:3f:8c:62:45:8f:eb:17:b0:35:ff:c1:db:fe: be:e4:b7:33:8e:ba:82:d6:96:c4:c3:66:97:5e:f1: ae:17:90:cd:1c:c9:21:e7:b9:1b:40:e7:35:24:f1: de:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4D:45:15:A2:1A:5A:E0:7E:36:61:36:2A:58:80:FE:10:94:19:2F X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab1fdc4a-fa1a-4813-8272-9601a3d755e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:10c0::/48 Signature Algorithm: sha256WithRSAEncryption a5:9d:e0:7e:f0:01:c2:89:dd:f3:b4:d8:6f:a7:de:3b:93:7e: 61:4d:52:25:57:21:a8:e9:44:ec:14:f9:f0:51:4c:d4:a1:92: 51:ab:03:04:e5:78:97:76:47:00:e4:d7:85:a5:5d:42:e5:dd: 3d:55:58:d2:e2:15:e9:9f:78:74:90:a3:b8:1b:67:ae:01:f6: c3:25:c2:cd:72:ad:3b:6f:1e:12:03:e2:ef:82:82:bb:57:95: 62:c1:6f:b0:26:69:3f:68:88:62:43:3c:13:47:2f:fd:da:7c: a3:30:6e:36:6c:07:06:19:8f:a8:73:51:00:81:1b:5a:79:de: fe:c4:46:59:00:05:b2:8f:81:c4:96:eb:ba:0a:98:d4:5e:d5: 63:d4:8a:b1:81:64:9d:9e:ae:cb:90:88:df:c5:58:63:0f:f4: 56:a5:50:b6:01:1a:8f:9a:bc:aa:1f:f8:e3:c0:51:1b:9b:5d: ce:b4:6a:08:c5:f0:e4:86:f7:24:0e:1b:c2:6e:44:b4:66:c8: 65:09:1e:90:8d:4f:b5:ba:f9:ac:c1:dd:24:9d:77:ab:a9:9a: 20:41:57:32:97:e0:7c:18:7f:70:06:45:37:55:3f:f9:47:a8: 46:f4:eb:11:09:28:87:75:52:a1:b3:59:93:d7:64:d1:e5:62: ed:54:e0:7f -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUZeePt2fXiDlIn3rVD4X/oW2gmpUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTUxMDZaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGEzMzM0Y2ViMzRkNWZiNDg1MTk3N2FjMzlmNzIxM2FjMTFlZDQyYWUwMDhj MjIxNjJlOGYxZWQwNjVmMDNlMDUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKcXRemuQuIP1LbecXPepqmTuWQ8zgdDan/5OW6cJnda2Yuhz6HdkOsjCQ4 I+Lg6LF3an9f1uF//WQZCMT/Y2QuyTjknJVInRcBNPama1pk3PeRMAvRBSPiVT/G mh/e/YKSHcEBkyV0bsTYILZJoKiIJ7VVgAvMniBn03bAkPllF6H8wOqzAWNuT13l lo0Ygkiz9pXPck73ppBpcR33JP96tySYYFdaH4MDl9b+sAxRotkv2RzkwK2Mid1y SP5mODRWSpU1e49UbnJ4O1EVtwUPeu0/jGJFj+sXsDX/wdv+vuS3M466gtaWxMNm l17xrheQzRzJIee5G0DnNSTx3n8CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTCTUUV ohpa4H42YTYqWID+EJQZLzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YWIxZmRjNGEtZmExYS00ODEzLTgyNzItOTYwMWEzZDc1NWU0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HIQ wDANBgkqhkiG9w0BAQsFAAOCAQEApZ3gfvABwond87TYb6feO5N+YU1SJVchqOlE 7BT58FFM1KGSUasDBOV4l3ZHAOTXhaVdQuXdPVVY0uIV6Z94dJCjuBtnrgH2wyXC zXKtO28eEgPi74KCu1eVYsFvsCZpP2iIYkM8E0cv/dp8ozBuNmwHBhmPqHNRAIEb Wnne/sRGWQAFso+BxJbrugqY1F7VY9SKsYFknZ6uy5CI38VYYw/0VqVQtgEaj5q8 qh/448BRG5tdzrRqCMXw5Ib3JA4bwm5EtGbIZQkekI1Ptbr5rMHdJJ13q6maIEFX MpfgfBh/cAZFN1U/+UeoRvTrEQkoh3VSobNZk9dk0eVi7VTgfw== -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:28 2025 by rpki-client