This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b0fb422a-c1ce-4269-b503-2c8145fc798a.roa File: b0fb422a-c1ce-4269-b503-2c8145fc798a.roa (raw, json) Hash identifier: PMj6/NLlDbJolbe14ab4q0Tbl5/tW7LXq8xcoE5sWKA= Subject key identifier: B1:5E:1D:76:C6:2C:36:46:30:BE:80:59:D6:8E:E2:D5:24:91:97:AF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 327714510E08F1AC4BBFF127C2616FD673020CBA Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b0fb422a-c1ce-4269-b503-2c8145fc798a.roa Signing time: Sat 15 Nov 2025 06:21:11 +0000 ROA not before: Sat 15 Nov 2025 06:21:11 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:a020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:77:14:51:0e:08:f1:ac:4b:bf:f1:27:c2:61:6f:d6:73:02:0c:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:21:11 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=0db0cc8a2f8672d9f4430987dd6cf58157c6b1a6870573e967174c2ab063556b, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8d:2a:80:16:35:7e:d6:8f:f6:aa:16:69:1d: f0:eb:c4:ed:2b:e1:f7:11:f8:40:4a:ea:5b:c8:09: f5:e2:3f:f7:d5:03:7e:fe:7f:fb:f0:7c:ed:82:2f: fb:c0:72:bd:7a:5d:a5:09:b5:96:a6:7d:ff:b9:fc: 4e:99:bc:36:1a:5c:e2:bd:2b:d5:75:1c:24:fb:5f: c4:35:1f:5a:83:39:ee:91:74:db:3c:64:13:18:1d: ab:49:ff:b9:b9:1f:ed:bf:23:ef:84:aa:1c:ec:11: 0b:62:ae:f7:db:44:5c:d7:0e:13:34:19:6e:c0:bd: 5a:a5:2e:bc:b4:ee:39:10:74:17:04:e0:90:20:40: fd:f5:16:09:7b:4e:49:c8:81:93:a3:3a:17:3d:3c: 22:1b:20:a3:c7:97:fd:b9:97:7e:0d:41:ed:c4:5b: 25:f7:dd:f0:df:64:03:63:7c:97:12:03:69:a5:6e: 77:70:32:6d:77:62:8b:97:66:3c:4f:0b:0c:12:15: 45:18:ba:a5:4e:5d:41:7b:90:db:4a:56:bc:d6:81: 84:3a:bf:90:60:41:07:fc:f1:d9:91:b2:6c:2f:da: f6:c1:96:58:bc:db:68:f4:ca:9c:80:c0:2b:7c:36: 95:fc:e4:31:21:07:e0:e6:9c:95:7e:66:94:34:4b: 09:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:5E:1D:76:C6:2C:36:46:30:BE:80:59:D6:8E:E2:D5:24:91:97:AF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b0fb422a-c1ce-4269-b503-2c8145fc798a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:a020::/48 Signature Algorithm: sha256WithRSAEncryption 48:10:13:10:50:2a:28:26:d4:fe:8e:25:b6:c9:59:69:ea:c8: a9:74:ab:8a:87:e5:8e:63:a7:34:b0:23:d3:91:50:70:65:ba: 8c:12:86:84:1b:ed:6c:c9:cb:58:9c:a5:10:6a:15:05:c3:cc: 3c:78:dd:bd:ec:af:aa:b8:83:8f:89:9e:0c:85:19:95:0d:6a: a5:c8:36:fa:de:79:a2:d9:46:5a:b1:15:7f:15:b8:8c:8b:47: af:66:7f:b4:3f:f8:dd:a9:fa:6f:a0:04:8e:e4:9e:e1:21:ba: 55:f2:6c:54:8d:1c:13:39:03:03:58:46:04:a2:a5:16:1a:4e: d8:f6:da:c8:b5:90:ff:31:e8:96:86:dd:9e:19:4e:16:b4:3c: 04:15:90:65:c1:14:96:6c:9f:10:5d:eb:24:3c:4e:2c:d3:b2: 38:53:b5:4c:7a:e4:b9:79:cb:a2:fd:69:03:ef:c3:f1:a5:ea: 4c:ab:23:14:f4:1b:70:02:17:fc:e6:ec:ef:8e:67:44:5d:43: 92:1e:d8:bb:64:51:82:12:67:ee:ad:bb:1d:3c:ee:e3:cb:cd: f7:fb:f1:b0:6f:ea:99:3f:d9:19:65:cd:fb:4c:fb:54:cf:b4: a6:98:3b:ba:f0:f7:bc:cb:d0:c5:d7:82:43:45:07:7b:38:58: 09:84:bb:19 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUMncUUQ4I8axLv/EnwmFv1nMCDLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjIxMTFaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDBkYjBjYzhhMmY4NjcyZDlmNDQzMDk4N2RkNmNmNTgxNTdjNmIxYTY4NzA1 NzNlOTY3MTc0YzJhYjA2MzU1NmIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANyNKoAWNX7Wj/aqFmkd8OvE7Svh9xH4QErqW8gJ9eI/99UDfv5/+/B87YIv +8ByvXpdpQm1lqZ9/7n8Tpm8Nhpc4r0r1XUcJPtfxDUfWoM57pF02zxkExgdq0n/ ubkf7b8j74SqHOwRC2Ku99tEXNcOEzQZbsC9WqUuvLTuORB0FwTgkCBA/fUWCXtO SciBk6M6Fz08Ihsgo8eX/bmXfg1B7cRbJffd8N9kA2N8lxIDaaVud3AybXdii5dm PE8LDBIVRRi6pU5dQXuQ20pWvNaBhDq/kGBBB/zx2ZGybC/a9sGWWLzbaPTKnIDA K3w2lfzkMSEH4OaclX5mlDRLCRkCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSxXh12 xiw2RjC+gFnWjuLVJJGXrzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjBmYjQyMmEtYzFjZS00MjY5LWI1MDMtMmM4MTQ1ZmM3OThhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H+g IDANBgkqhkiG9w0BAQsFAAOCAQEASBATEFAqKCbU/o4ltslZaerIqXSriofljmOn NLAj05FQcGW6jBKGhBvtbMnLWJylEGoVBcPMPHjdveyvqriDj4meDIUZlQ1qpcg2 +t55otlGWrEVfxW4jItHr2Z/tD/43an6b6AEjuSe4SG6VfJsVI0cEzkDA1hGBKKl FhpO2PbayLWQ/zHolobdnhlOFrQ8BBWQZcEUlmyfEF3rJDxOLNOyOFO1THrkuXnL ov1pA+/D8aXqTKsjFPQbcAIX/Obs745nRF1Dkh7Yu2RRghJn7q27HTzu48vN9/vx sG/qmT/ZGWXN+0z7VM+0ppg7uvD3vMvQxdeCQ0UHezhYCYS7GQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:42 2025 by rpki-client