This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab232b86-9bd6-409c-8de5-92bfff2a8b5a.roa File: ab232b86-9bd6-409c-8de5-92bfff2a8b5a.roa (raw, json) Hash identifier: mQECI5rKimQByMJG2eNZSkAWW/TWZJKi9QzHWPNEg2s= Subject key identifier: 43:33:A4:3C:1F:02:B5:AC:29:0B:F3:1C:44:28:F4:AC:89:80:65:F3 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2AE3B27B9BE3A46826F2E5AAA474C66AB79ECA42 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab232b86-9bd6-409c-8de5-92bfff2a8b5a.roa Signing time: Sat 15 Nov 2025 06:10:39 +0000 ROA not before: Sat 15 Nov 2025 06:10:39 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:e0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e3:b2:7b:9b:e3:a4:68:26:f2:e5:aa:a4:74:c6:6a:b7:9e:ca:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:10:39 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=afd106ac697f07aa6ed371c8e9a82ee07e2a5bf9c306b0cfe83940733bec49b1, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e1:67:fa:93:a2:3e:6f:bd:85:e0:a4:d7:cb: 50:93:45:5b:02:fa:89:c4:13:97:97:ce:8e:ee:08: 84:83:93:27:da:3b:81:83:67:71:6a:c1:73:34:c2: cd:e3:4a:03:95:21:c5:5a:0f:ae:33:c3:e6:6d:e3: 61:92:f2:34:17:95:a4:02:70:72:2a:82:cc:40:d8: 9f:e3:c0:06:58:57:b4:41:fe:77:04:3e:f0:61:92: 40:19:de:8a:5a:2c:5e:eb:2d:20:d3:de:ae:0e:61: 0e:9b:e6:4f:21:19:1e:43:fd:d0:a8:2a:b8:48:e8: 49:39:3f:e1:82:77:dd:9d:ff:a9:a3:ae:ba:ab:f9: cf:59:5e:d0:ed:56:4a:82:36:6c:28:a7:9d:e6:61: 56:71:ae:ce:a9:20:6f:8e:e2:82:0f:ca:1b:41:0c: 4c:6d:7a:ed:49:17:84:93:de:7d:98:83:c5:ab:eb: f1:1a:98:6e:2b:62:d9:ad:69:5b:5b:93:22:61:ac: 47:e7:1e:ad:6f:55:f8:6a:4c:a2:fe:c0:45:21:c1: 62:50:26:df:33:ed:43:71:09:2f:a6:dd:18:5e:6b: d8:31:56:de:dc:f0:af:f0:68:0b:9c:f6:ec:00:42: 62:18:b0:7f:c3:b2:53:d9:d1:f4:c8:cc:79:24:c8: e7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:33:A4:3C:1F:02:B5:AC:29:0B:F3:1C:44:28:F4:AC:89:80:65:F3 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab232b86-9bd6-409c-8de5-92bfff2a8b5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:e0c0::/48 Signature Algorithm: sha256WithRSAEncryption 89:e1:3f:72:0e:ea:71:38:61:ca:00:59:9e:4f:3f:e8:26:20: 5e:3c:63:64:b6:bf:0d:bd:e6:00:5b:77:1e:02:d9:d5:c0:0f: 10:12:3e:c5:47:4a:61:3a:45:5d:b3:e4:25:80:44:6f:0c:33: 2d:b9:78:7c:0a:32:aa:64:b7:9d:39:3e:3e:ab:9c:a8:8d:d3: 87:8a:d7:43:5b:7d:98:1f:82:f0:f4:88:73:c0:2a:a4:f1:6a: 5d:48:a5:c8:cd:5b:96:b5:dc:e8:db:e4:d5:15:d5:48:65:a7: 0d:ef:87:fe:29:da:7e:2b:d7:f3:3a:f8:1c:b2:d7:83:7f:88: 9c:0a:ac:22:ee:2a:53:a2:d9:f5:0b:8c:99:f2:73:a4:6c:62: bf:ab:20:db:b7:e5:e4:69:f1:12:a6:02:8a:78:33:b2:eb:c0: 44:1e:ce:29:c6:37:36:13:55:bc:1d:23:c8:95:5b:14:8b:fa: 28:06:3d:f2:c8:62:e6:3c:8e:41:d9:ff:ee:09:0c:f4:9f:a0: 54:7a:3f:a5:56:56:be:89:95:c7:fc:34:48:fc:ad:d9:5e:48: 41:85:78:5f:57:3c:e4:74:76:0d:4d:ee:f4:8b:86:73:22:14: ca:1f:40:91:44:ef:4d:12:36:d9:0e:f0:09:d1:1c:46:79:d5: 00:53:26:3e -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUKuOye5vjpGgm8uWqpHTGareeykIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjEwMzlaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGFmZDEwNmFjNjk3ZjA3YWE2ZWQzNzFjOGU5YTgyZWUwN2UyYTViZjljMzA2 YjBjZmU4Mzk0MDczM2JlYzQ5YjExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ3hZ/qToj5vvYXgpNfLUJNFWwL6icQTl5fOju4IhIOTJ9o7gYNncWrBczTC zeNKA5UhxVoPrjPD5m3jYZLyNBeVpAJwciqCzEDYn+PABlhXtEH+dwQ+8GGSQBne ilosXustINPerg5hDpvmTyEZHkP90KgquEjoSTk/4YJ33Z3/qaOuuqv5z1le0O1W SoI2bCinneZhVnGuzqkgb47igg/KG0EMTG167UkXhJPefZiDxavr8RqYbiti2a1p W1uTImGsR+cerW9V+GpMov7ARSHBYlAm3zPtQ3EJL6bdGF5r2DFW3tzwr/BoC5z2 7ABCYhiwf8OyU9nR9MjMeSTI5wECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRDM6Q8 HwK1rCkL8xxEKPSsiYBl8zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YWIyMzJiODYtOWJkNi00MDljLThkZTUtOTJiZmZmMmE4YjVhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H/g wDANBgkqhkiG9w0BAQsFAAOCAQEAieE/cg7qcThhygBZnk8/6CYgXjxjZLa/Db3m AFt3HgLZ1cAPEBI+xUdKYTpFXbPkJYBEbwwzLbl4fAoyqmS3nTk+PqucqI3Th4rX Q1t9mB+C8PSIc8AqpPFqXUilyM1blrXc6Nvk1RXVSGWnDe+H/inafivX8zr4HLLX g3+InAqsIu4qU6LZ9QuMmfJzpGxiv6sg27fl5GnxEqYCingzsuvARB7OKcY3NhNV vB0jyJVbFIv6KAY98shi5jyOQdn/7gkM9J+gVHo/pVZWvomVx/w0SPyt2V5IQYV4 X1c85HR2DU3u9IuGcyIUyh9AkUTvTRI22Q7wCdEcRnnVAFMmPg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:52 2025 by rpki-client