This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab232b86-9bd6-409c-8de5-92bfff2a8b5a.roa File: ab232b86-9bd6-409c-8de5-92bfff2a8b5a.roa (raw, json) Hash identifier: 4IAelOGG4oDl/27gUpq32PEY4JhEdWVoFI4xM4BlBvM= Subject key identifier: BC:96:EC:BD:8D:84:59:7F:E2:DD:64:60:4D:58:43:53:31:29:A1:3E Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 03143151DDCF2578E5945C88EC0B6EC752912B5C Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab232b86-9bd6-409c-8de5-92bfff2a8b5a.roa Signing time: Wed 10 Dec 2025 06:10:07 +0000 ROA not before: Wed 10 Dec 2025 06:10:07 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:e0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 14:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:14:31:51:dd:cf:25:78:e5:94:5c:88:ec:0b:6e:c7:52:91:2b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:10:07 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=a7d72f47ee6de58d51fe1616fc8c45ec72d81bf803b74d26924f232543594a91, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0c:b5:92:2d:8f:35:7a:95:48:3b:2c:e5:08: ac:c8:08:16:2c:e4:aa:ff:a9:31:4b:e4:2e:c6:b4: 8c:58:56:27:2f:9e:88:d6:ea:67:00:f3:bc:60:11: 03:79:6e:e4:4a:bc:1f:77:bb:b3:ef:26:5a:99:72: 10:6d:77:c5:b0:e4:4c:e0:d9:de:fe:cd:3a:4a:cd: fe:c0:53:6d:f2:cc:3d:77:e1:5a:4d:81:02:e3:70: 26:98:d1:6a:ad:e7:80:33:1c:a3:3e:21:95:a4:27: 71:bd:20:ed:f2:70:57:92:db:f2:e8:ba:24:d9:99: 64:dc:80:4a:14:ef:5f:5d:c1:84:46:dd:cc:a1:d9: b2:be:35:55:6a:46:7a:5c:8e:17:80:c4:c9:7d:85: 85:75:67:e6:b0:ae:57:8d:6c:53:ee:8f:c0:0b:74: 4d:02:b0:29:ad:d3:6a:63:78:73:49:db:e4:cd:76: 79:2d:96:72:54:00:8f:c7:41:86:64:fc:68:43:5e: 1b:b3:f9:2c:4a:91:cc:50:ea:76:ac:c3:43:76:32: 56:f8:63:f6:dd:45:bf:0c:36:22:0b:20:0d:6b:3c: c2:14:dc:ac:a6:86:59:18:47:10:b0:ca:93:e9:57: d5:15:88:bd:fa:cc:27:14:05:37:0a:6d:d6:c8:a0: 29:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:96:EC:BD:8D:84:59:7F:E2:DD:64:60:4D:58:43:53:31:29:A1:3E X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab232b86-9bd6-409c-8de5-92bfff2a8b5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:e0c0::/48 Signature Algorithm: sha256WithRSAEncryption 24:1b:7a:91:70:f3:0d:db:33:2b:a7:ef:b9:00:7f:61:66:23: 11:ec:13:eb:4b:52:c9:d3:9f:ee:b5:35:92:d7:3e:5d:dd:91: 14:13:84:d5:57:fd:00:6d:62:5b:de:9c:d8:6e:72:47:94:c4: 75:3a:51:cd:a0:0e:f6:69:8d:fe:c2:2f:d9:d0:fb:09:49:83: 46:18:76:17:64:70:e6:9c:5e:97:ea:55:28:e6:4f:2f:79:9d: e1:23:6c:bb:d4:0b:1d:8f:cf:4a:4e:d9:0f:9f:ef:3c:44:e7: e6:a3:bd:21:51:ac:fc:c5:dd:63:6b:a3:7f:ec:05:f0:5c:ab: b5:90:41:14:1d:14:fe:25:ca:a3:73:dd:fd:d1:04:b7:d8:9f: 6b:a1:0f:ec:fe:7f:97:a7:85:10:43:f7:9a:af:7f:3e:d4:37: 0f:87:59:25:b6:80:87:60:37:88:c8:0d:4f:52:43:a6:bf:7f: 15:4f:4b:c9:1a:d6:0b:32:56:c4:19:ed:ee:9b:17:14:ec:d6: 12:02:87:5f:fd:44:5b:a8:ed:80:30:95:d0:c8:65:2f:ab:7f: bd:a0:42:40:b8:d5:39:e9:c2:b7:c3:cb:98:87:be:5c:fd:20: f6:f1:a5:af:6a:59:7c:65:13:4c:33:2e:d6:f7:6d:59:f0:58: 78:46:07:6c -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUAxQxUd3PJXjllFyI7Atux1KRK1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjEwMDdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGE3ZDcyZjQ3ZWU2ZGU1OGQ1MWZlMTYxNmZjOGM0NWVjNzJkODFiZjgwM2I3 NGQyNjkyNGYyMzI1NDM1OTRhOTExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALQMtZItjzV6lUg7LOUIrMgIFizkqv+pMUvkLsa0jFhWJy+eiNbqZwDzvGAR A3lu5Eq8H3e7s+8mWplyEG13xbDkTODZ3v7NOkrN/sBTbfLMPXfhWk2BAuNwJpjR aq3ngDMcoz4hlaQncb0g7fJwV5Lb8ui6JNmZZNyAShTvX13BhEbdzKHZsr41VWpG elyOF4DEyX2FhXVn5rCuV41sU+6PwAt0TQKwKa3TamN4c0nb5M12eS2WclQAj8dB hmT8aENeG7P5LEqRzFDqdqzDQ3YyVvhj9t1Fvww2IgsgDWs8whTcrKaGWRhHELDK k+lX1RWIvfrMJxQFNwpt1sigKTECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBS8luy9 jYRZf+LdZGBNWENTMSmhPjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YWIyMzJiODYtOWJkNi00MDljLThkZTUtOTJiZmZmMmE4YjVhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H/g wDANBgkqhkiG9w0BAQsFAAOCAQEAJBt6kXDzDdszK6fvuQB/YWYjEewT60tSydOf 7rU1ktc+Xd2RFBOE1Vf9AG1iW96c2G5yR5TEdTpRzaAO9mmN/sIv2dD7CUmDRhh2 F2Rw5pxel+pVKOZPL3md4SNsu9QLHY/PSk7ZD5/vPETn5qO9IVGs/MXdY2ujf+wF 8FyrtZBBFB0U/iXKo3Pd/dEEt9ifa6EP7P5/l6eFEEP3mq9/PtQ3D4dZJbaAh2A3 iMgNT1JDpr9/FU9LyRrWCzJWxBnt7psXFOzWEgKHX/1EW6jtgDCV0MhlL6t/vaBC QLjVOenCt8PLmIe+XP0g9vGlr2pZfGUTTDMu1vdtWfBYeEYHbA== -----END CERTIFICATE-----Generated at Mon Dec 15 17:09:02 2025 by rpki-client