This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b3515426-a058-439f-a8fc-e68eaafc8806.roa File: b3515426-a058-439f-a8fc-e68eaafc8806.roa (raw, json) Hash identifier: t7y70S1rl3P+yLo3QdO6FrWQT47029EmDVlWZ9i5Igs= Subject key identifier: 81:CB:F2:89:15:30:C9:3E:C7:AE:F1:1C:B2:23:06:25:21:8C:DD:D1 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 56594CFD7CEB9011A67EFE6D3CF8EB8D81BF7AA3 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b3515426-a058-439f-a8fc-e68eaafc8806.roa Signing time: Sat 15 Nov 2025 06:20:53 +0000 ROA not before: Sat 15 Nov 2025 06:20:53 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2a05:d06f:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:59:4c:fd:7c:eb:90:11:a6:7e:fe:6d:3c:f8:eb:8d:81:bf:7a:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:20:53 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=918c591e72f1bd269ae12777c2495e626ac1192b07c86bc233e86c94648a05ea, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f3:8e:f9:b6:07:12:8a:e8:52:9f:26:b8:25: cd:df:45:51:7a:66:16:ac:5c:0d:5d:fe:08:be:46: 1a:ac:4e:b4:14:a4:77:bf:5a:1c:08:74:29:80:23: 71:14:25:c1:46:95:b3:bb:5e:0b:5a:8e:c4:f1:5c: 58:e2:c4:d6:47:d7:b3:66:3e:8d:f1:12:ce:f8:c8: 66:ed:10:32:27:28:0e:d5:6b:95:1f:b5:f2:19:40: 1e:15:91:58:ec:62:2a:c4:fc:3f:1d:e2:a1:43:9a: c7:7d:9d:bd:f9:46:1c:0d:b5:3e:2e:24:47:80:b0: fd:3d:fa:7c:4b:0e:03:18:de:f1:49:05:4b:2d:7b: 17:b7:e9:4e:7e:eb:7e:fa:66:44:14:b8:d7:49:39: 9b:f0:18:00:28:17:e8:bd:2e:87:3b:37:96:35:a0: 5d:15:81:a8:f2:0e:4c:eb:cf:38:c2:05:7c:dc:a1: 7a:60:06:25:03:ac:ca:9a:44:e7:6b:95:5f:d7:69: 97:05:89:2e:35:19:08:4d:21:69:a2:86:da:d1:89: 27:d6:03:dd:09:77:29:69:96:16:3f:fb:1b:2a:ce: 7b:37:2d:56:1e:42:6b:8e:42:57:61:e1:f1:b7:de: 76:be:2b:25:de:33:b9:95:95:71:e9:42:72:83:d9: 62:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:CB:F2:89:15:30:C9:3E:C7:AE:F1:1C:B2:23:06:25:21:8C:DD:D1 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b3515426-a058-439f-a8fc-e68eaafc8806.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06f:8000::/40 Signature Algorithm: sha256WithRSAEncryption 9d:a4:b2:e2:0b:e0:04:85:89:d3:f2:6b:c9:d9:e1:a8:a3:e2: 8c:d4:13:46:c9:20:4a:49:90:15:5e:4f:b5:b1:19:a1:4d:95: f4:bd:41:ca:d6:3b:80:71:a0:d7:10:54:2a:1e:a8:14:19:96: 83:56:a8:a8:c1:6d:6d:6c:23:6a:2a:22:08:e1:4d:55:2e:ba: 02:bd:a0:1b:c6:a4:55:f7:0e:9f:f8:66:ec:c3:69:d3:8b:21: 78:0c:55:41:47:d0:d4:0c:86:34:56:02:9a:e5:7f:07:16:0f: 71:dc:64:b6:7d:1b:4c:45:da:fa:ef:03:f6:9f:e9:ae:cc:d0: f1:25:21:14:d4:ee:2e:b1:f3:01:e2:dd:e1:6f:4e:dd:e7:05: 08:1a:a6:c7:a9:ae:24:78:65:18:48:dc:90:e2:bf:b9:5d:a8: d6:86:10:d0:53:b1:3f:10:77:85:b4:21:3d:6f:f9:e0:54:c7: e5:2c:29:5b:57:70:c6:a1:b0:ae:d2:8a:e8:e5:f5:7c:87:55: 29:bf:4f:d2:ed:6a:40:a2:d3:e9:44:e4:2d:c7:ce:e8:59:a9: df:08:23:0a:94:53:55:ad:4e:91:d7:23:a8:93:61:ac:78:c4: 9d:9e:7b:02:68:98:f5:bf:43:c0:52:8c:82:18:36:4f:07:b3: 1c:39:ab:4c -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUVllM/XzrkBGmfv5tPPjrjYG/eqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjIwNTNaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDkxOGM1OTFlNzJmMWJkMjY5YWUxMjc3N2MyNDk1ZTYyNmFjMTE5MmIwN2M4 NmJjMjMzZTg2Yzk0NjQ4YTA1ZWExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAODzjvm2BxKK6FKfJrglzd9FUXpmFqxcDV3+CL5GGqxOtBSkd79aHAh0KYAj cRQlwUaVs7teC1qOxPFcWOLE1kfXs2Y+jfESzvjIZu0QMicoDtVrlR+18hlAHhWR WOxiKsT8Px3ioUOax32dvflGHA21Pi4kR4Cw/T36fEsOAxje8UkFSy17F7fpTn7r fvpmRBS410k5m/AYACgX6L0uhzs3ljWgXRWBqPIOTOvPOMIFfNyhemAGJQOsyppE 52uVX9dplwWJLjUZCE0haaKG2tGJJ9YD3Ql3KWmWFj/7GyrOezctVh5Ca45CV2Hh 8bfedr4rJd4zuZWVcelCcoPZYmUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSBy/KJ FTDJPseu8RyyIwYlIYzd0TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjM1MTU0MjYtYTA1OC00MzlmLWE4ZmMtZTY4ZWFhZmM4ODA2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0G+A MA0GCSqGSIb3DQEBCwUAA4IBAQCdpLLiC+AEhYnT8mvJ2eGoo+KM1BNGySBKSZAV Xk+1sRmhTZX0vUHK1juAcaDXEFQqHqgUGZaDVqiowW1tbCNqKiII4U1VLroCvaAb xqRV9w6f+Gbsw2nTiyF4DFVBR9DUDIY0VgKa5X8HFg9x3GS2fRtMRdr67wP2n+mu zNDxJSEU1O4usfMB4t3hb07d5wUIGqbHqa4keGUYSNyQ4r+5XajWhhDQU7E/EHeF tCE9b/ngVMflLClbV3DGobCu0oro5fV8h1Upv0/S7WpAotPpROQtx87oWanfCCMK lFNVrU6R1yOok2GseMSdnnsCaJj1v0PAUoyCGDZPB7McOatM -----END CERTIFICATE-----Generated at Sat Dec 6 22:33:34 2025 by rpki-client