This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ad363c67-ff83-46aa-9474-de02e382946b.roa File: ad363c67-ff83-46aa-9474-de02e382946b.roa (raw, json) Hash identifier: pGiYV96K1lhIHdzuLDjhn4PdiiiqRabClaCM6UiotVc= Subject key identifier: CA:BA:F2:13:AF:6B:44:F4:64:FF:86:56:D9:1D:7F:98:A3:CC:36:68 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 75574020EFFE12E91E8345E510240681A4609C0F Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ad363c67-ff83-46aa-9474-de02e382946b.roa Signing time: Wed 10 Dec 2025 05:41:04 +0000 ROA not before: Wed 10 Dec 2025 05:41:04 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d071:b000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:57:40:20:ef:fe:12:e9:1e:83:45:e5:10:24:06:81:a4:60:9c:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:41:04 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=84479f619aeeb441b62875271f2b296abbf49740b00a58043e7fe38176a5ee43, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1c:bc:ee:1c:ee:62:4e:aa:01:99:da:27:3d: 49:b1:bf:24:4b:71:f0:48:22:85:d3:c6:98:d3:ed: 81:01:88:08:be:5e:13:ff:b4:d6:c4:c3:be:9f:8f: df:9e:aa:c1:84:57:9d:af:f3:4b:ab:44:9c:55:f4: 41:2b:0e:f6:dc:51:a9:d0:0d:78:32:07:15:c4:c9: 7d:79:00:03:e0:6e:54:03:cf:dc:1c:40:77:d7:2c: c7:fb:75:dc:23:0c:a9:a5:4a:32:7d:47:67:fb:42: ec:8c:bb:95:7f:95:25:47:bc:4a:5c:30:f0:9f:2f: 1a:15:54:f3:2c:71:32:0a:75:4d:96:f7:ee:36:10: b8:16:3b:84:99:57:99:58:45:71:17:08:c8:05:96: 7b:0b:47:cf:03:c9:47:18:b2:39:27:22:b3:4d:0f: f5:64:06:38:48:8a:99:a3:44:3a:fe:b8:9b:71:61: cc:44:60:5d:dd:18:99:b1:b9:2a:78:e0:3f:51:67: 40:24:29:1d:66:19:fb:5d:e3:31:6e:ee:1e:b8:30: a0:6e:cb:23:d0:37:a0:8c:f7:cc:a8:44:95:53:7f: 28:e9:ce:4e:f6:b3:72:ce:41:d0:0b:bc:d0:c2:36: a4:ef:29:46:60:8d:aa:15:4a:df:84:c9:c2:31:a8: 87:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:BA:F2:13:AF:6B:44:F4:64:FF:86:56:D9:1D:7F:98:A3:CC:36:68 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ad363c67-ff83-46aa-9474-de02e382946b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d071:b000::/40 Signature Algorithm: sha256WithRSAEncryption 63:c3:b4:58:17:88:c9:ae:0a:8e:90:56:72:be:79:f7:b7:fc: 45:03:ef:67:f0:b7:c6:12:91:ef:2b:cf:40:32:39:bc:bc:1c: 0c:0f:7a:2c:1d:e9:94:50:30:4a:c1:e8:b2:08:4e:11:2b:13: 44:21:fa:5d:f7:50:61:ea:5a:fb:83:af:ba:c5:99:70:af:18: 4b:10:27:30:0c:d7:6b:3d:83:17:91:bc:19:02:cd:d0:91:a5: f9:3d:a8:e5:37:d2:7b:ac:7e:bc:7b:45:a4:a0:5b:00:30:01: 6e:fb:df:60:08:b9:43:a6:f0:b0:de:f2:5d:92:f0:6c:33:d7: 54:27:3c:0a:e0:88:24:ce:26:80:93:ee:8a:89:49:36:d5:6a: 9d:33:f2:b4:f9:81:3a:f6:91:07:3c:be:22:60:59:15:c7:cd: e2:f9:c7:46:7d:83:81:6c:26:76:d1:b5:b6:02:e7:30:62:e9: cc:c7:f7:d4:3c:89:ee:0d:3a:bc:7d:38:4b:43:a1:da:ec:5e: 6b:60:79:e1:c2:fd:2c:84:ed:fa:ad:38:86:3b:9b:6c:c5:a9: 08:39:b4:ff:f1:c2:89:9e:70:ec:1c:b9:c4:ff:b8:86:c1:ab: 41:af:74:18:2f:cd:17:71:90:ed:3f:55:48:05:5e:9f:54:ab: 57:4e:6a:38 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUdVdAIO/+Eukeg0XlECQGgaRgnA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTQxMDRaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDg0NDc5ZjYxOWFlZWI0NDFiNjI4NzUyNzFmMmIyOTZhYmJmNDk3NDBiMDBh NTgwNDNlN2ZlMzgxNzZhNWVlNDMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYcvO4c7mJOqgGZ2ic9SbG/JEtx8EgihdPGmNPtgQGICL5eE/+01sTDvp+P 356qwYRXna/zS6tEnFX0QSsO9txRqdANeDIHFcTJfXkAA+BuVAPP3BxAd9csx/t1 3CMMqaVKMn1HZ/tC7Iy7lX+VJUe8Slww8J8vGhVU8yxxMgp1TZb37jYQuBY7hJlX mVhFcRcIyAWWewtHzwPJRxiyOScis00P9WQGOEiKmaNEOv64m3FhzERgXd0YmbG5 KnjgP1FnQCQpHWYZ+13jMW7uHrgwoG7LI9A3oIz3zKhElVN/KOnOTvazcs5B0Au8 0MI2pO8pRmCNqhVK34TJwjGoh30CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTKuvIT r2tE9GT/hlbZHX+Yo8w2aDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YWQzNjNjNjctZmY4My00NmFhLTk0NzQtZGUwMmUzODI5NDZiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HGw MA0GCSqGSIb3DQEBCwUAA4IBAQBjw7RYF4jJrgqOkFZyvnn3t/xFA+9n8LfGEpHv K89AMjm8vBwMD3osHemUUDBKweiyCE4RKxNEIfpd91Bh6lr7g6+6xZlwrxhLECcw DNdrPYMXkbwZAs3QkaX5PajlN9J7rH68e0WkoFsAMAFu+99gCLlDpvCw3vJdkvBs M9dUJzwK4IgkziaAk+6KiUk21WqdM/K0+YE69pEHPL4iYFkVx83i+cdGfYOBbCZ2 0bW2AucwYunMx/fUPInuDTq8fThLQ6Ha7F5rYHnhwv0shO36rTiGO5tsxakIObT/ 8cKJnnDsHLnE/7iGwatBr3QYL80XcZDtP1VIBV6fVKtXTmo4 -----END CERTIFICATE-----Generated at Mon Dec 15 15:32:14 2025 by rpki-client