This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/adb1351f-3dd5-4e4f-8955-1514f42e48e2.roa File: adb1351f-3dd5-4e4f-8955-1514f42e48e2.roa (raw, json) Hash identifier: 544bK64gDatCMW/Z/U9T5DyeBqBOroUgXwEudcW4V7A= Subject key identifier: FA:02:1A:A3:86:E5:8E:34:19:5F:76:22:42:6D:61:6A:2C:06:DC:1C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1563CCDF8E838B4698A0AB7C306F7471F6556005 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/adb1351f-3dd5-4e4f-8955-1514f42e48e2.roa Signing time: Tue 25 Nov 2025 20:01:02 +0000 ROA not before: Tue 25 Nov 2025 20:01:02 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:1080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:63:cc:df:8e:83:8b:46:98:a0:ab:7c:30:6f:74:71:f6:55:60:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:01:02 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=b2c93de6a3a5b69535c1f514ca55324b73b28890a7ec6506ee3b44166cb45445, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:63:bd:0b:ba:d6:cc:36:d9:69:96:13:d6:de: b9:89:92:28:2a:fd:04:9f:ef:9a:d5:8b:a7:de:64: 5a:a5:4d:38:f5:55:70:cd:c8:77:dc:c9:3c:7e:f7: 19:8b:35:22:c3:c0:8d:0e:a1:56:be:0b:dd:e2:37: 12:6f:b2:42:e2:a2:32:75:35:2d:2f:ae:b9:89:be: 5c:fc:6e:0a:3f:82:19:18:96:f0:bb:25:57:7b:65: 7a:fb:7d:e5:b6:1d:49:bf:94:e4:44:5d:07:f1:03: c2:55:5b:fc:bb:9b:fe:0e:98:9a:1b:c3:48:22:bf: 74:03:f5:41:ed:c7:ad:6d:94:aa:c7:21:df:cd:26: e9:85:19:cb:b5:1b:ac:aa:d6:70:39:9b:c9:0b:56: f2:c7:04:27:35:af:95:5e:17:b1:f5:c6:a7:e5:21: 84:1f:68:16:f0:9d:45:3e:23:fe:36:e8:53:71:73: 7b:c9:3d:a4:82:17:8b:0e:5b:60:a8:54:e4:df:5d: 61:e4:4b:26:67:b9:af:28:06:82:35:73:4d:10:70: 5c:fc:f2:62:65:09:f6:e8:7b:d7:3e:84:27:c9:4f: ae:48:6c:41:f5:15:4f:8f:95:a1:31:70:c3:fe:75: a4:6a:24:f8:fe:a0:23:89:de:37:e8:ac:47:ba:eb: 02:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:02:1A:A3:86:E5:8E:34:19:5F:76:22:42:6D:61:6A:2C:06:DC:1C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/adb1351f-3dd5-4e4f-8955-1514f42e48e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:1080::/46 Signature Algorithm: sha256WithRSAEncryption 3e:20:ef:84:13:26:78:34:b5:a8:73:ac:54:2c:49:e9:77:c9: 70:3e:d4:7d:ec:49:58:f8:ac:61:d2:cc:2a:30:49:5f:4e:e6: 4a:64:7e:df:bb:18:0c:a1:06:42:e3:87:71:44:dc:b5:a1:93: 42:11:7f:0a:7c:e8:ef:c5:e1:fd:1e:58:a5:5d:56:9e:11:d5: f7:a8:87:5b:29:f4:c9:62:08:33:f6:92:76:eb:a0:e6:84:fa: 2c:a9:e4:e5:67:20:08:71:1b:77:0a:50:a0:6b:8b:08:69:f7: e4:96:de:88:ce:98:e6:ab:d2:7f:20:1d:ad:d7:6c:a4:0d:25: e3:4f:fb:87:46:57:a1:a1:df:56:24:97:a7:e7:59:51:a3:28: a2:35:9c:12:11:53:7a:b1:e6:26:c8:f3:ff:bd:85:61:17:7d: 9e:4b:16:b0:3b:c1:6a:fe:36:4b:65:8e:19:f3:ef:64:20:97: 24:ef:d6:8b:0d:fa:6f:d6:36:20:41:18:4b:80:16:6c:d2:c7: 1c:60:33:8b:0d:80:d1:73:fb:c9:3f:22:1d:c9:54:6f:53:f9: a9:98:58:ce:2d:2f:c3:4e:a1:25:e9:db:0c:b3:71:8b:7c:95: e8:67:df:70:41:f7:b2:0a:3d:9b:64:1e:5a:09:c5:21:64:f9: c8:6e:6d:5d -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUFWPM346Di0aYoKt8MG90cfZVYAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAxMDJaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQGIyYzkzZGU2YTNhNWI2OTUzNWMxZjUxNGNhNTUzMjRiNzNiMjg4OTBhN2Vj NjUwNmVlM2I0NDE2NmNiNDU0NDUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ5jvQu61sw22WmWE9beuYmSKCr9BJ/vmtWLp95kWqVNOPVVcM3Id9zJPH73 GYs1IsPAjQ6hVr4L3eI3Em+yQuKiMnU1LS+uuYm+XPxuCj+CGRiW8LslV3tlevt9 5bYdSb+U5ERdB/EDwlVb/Lub/g6YmhvDSCK/dAP1Qe3HrW2Uqsch380m6YUZy7Ub rKrWcDmbyQtW8scEJzWvlV4XsfXGp+UhhB9oFvCdRT4j/jboU3Fze8k9pIIXiw5b YKhU5N9dYeRLJme5rygGgjVzTRBwXPzyYmUJ9uh71z6EJ8lPrkhsQfUVT4+VoTFw w/51pGok+P6gI4neN+isR7rrAtECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBT6Ahqj huWONBlfdiJCbWFqLAbcHDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YWRiMTM1MWYtM2RkNS00ZTRmLTg5NTUtMTUxNGY0MmU0OGUyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HMQ gDANBgkqhkiG9w0BAQsFAAOCAQEAPiDvhBMmeDS1qHOsVCxJ6XfJcD7UfexJWPis YdLMKjBJX07mSmR+37sYDKEGQuOHcUTctaGTQhF/Cnzo78Xh/R5YpV1WnhHV96iH Wyn0yWIIM/aSduug5oT6LKnk5WcgCHEbdwpQoGuLCGn35JbeiM6Y5qvSfyAdrdds pA0l40/7h0ZXoaHfViSXp+dZUaMoojWcEhFTerHmJsjz/72FYRd9nksWsDvBav42 S2WOGfPvZCCXJO/Wiw36b9Y2IEEYS4AWbNLHHGAziw2A0XP7yT8iHclUb1P5qZhY zi0vw06hJenbDLNxi3yV6GffcEH3sgo9m2QeWgnFIWT5yG5tXQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:34 2025 by rpki-client