This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b41919f2-4e07-4adf-8fc6-43f8940080d4.roa File: b41919f2-4e07-4adf-8fc6-43f8940080d4.roa (raw, json) Hash identifier: NZbqDwoH54JPlSVC7HBXjGcWIhOZkoY7e+c6RNx8yGM= Subject key identifier: A7:E0:59:FA:65:0F:55:53:87:02:EF:39:4D:73:E6:35:FF:82:51:F8 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1614AC45FFCEB7BF5E5085FAB4028E692EE7CAD2 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b41919f2-4e07-4adf-8fc6-43f8940080d4.roa Signing time: Tue 02 Dec 2025 01:51:03 +0000 ROA not before: Tue 02 Dec 2025 01:51:03 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d030:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:14:ac:45:ff:ce:b7:bf:5e:50:85:fa:b4:02:8e:69:2e:e7:ca:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:51:03 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=3b5725a134d91a6c67705710177c221939c6712fe243bd8c9a86d23e971fce24, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:65:6a:44:06:20:13:dd:7a:bb:12:54:5d:d0: eb:69:8e:eb:19:8a:7a:b7:8a:8b:70:48:66:fd:a1: ca:25:1e:b8:a9:6c:9d:9c:7b:b8:66:95:fc:6f:0c: 4c:48:23:1c:a8:31:f2:73:48:07:4c:0b:ca:0f:38: a4:64:18:5e:fc:b4:32:7b:a3:15:32:f5:e0:2f:81: a2:1c:37:a8:f7:1e:13:30:c6:ad:78:f4:f3:da:06: 84:a3:03:86:1d:36:89:2b:f7:c6:5c:a5:ed:b2:11: 9e:fc:37:97:b6:15:1c:cf:eb:aa:e7:d8:68:9e:36: 39:56:47:ea:de:bf:a7:1d:8d:bd:39:0b:5d:ea:2e: c2:da:ac:7a:31:46:00:5a:87:8f:66:18:1a:3b:37: 55:93:b9:b3:3f:e5:1f:c0:61:76:2c:b7:75:a7:4e: b3:74:68:5f:0f:69:7e:a1:4a:15:fc:0f:81:da:e6: e3:60:c6:a8:9d:dd:8b:67:e0:ba:98:63:df:75:25: 74:b0:2a:9e:1b:37:31:8c:00:23:23:31:55:74:ea: 39:a5:01:c8:6a:0d:0f:60:98:c7:9d:26:1d:1b:0b: d4:5f:9b:6e:b0:75:94:26:ce:15:fc:25:a2:e7:fe: d3:bd:dc:6e:11:37:17:cf:8b:eb:27:13:d5:f6:d1: 32:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E0:59:FA:65:0F:55:53:87:02:EF:39:4D:73:E6:35:FF:82:51:F8 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b41919f2-4e07-4adf-8fc6-43f8940080d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d030:9000::/40 Signature Algorithm: sha256WithRSAEncryption ac:dc:38:2b:ef:16:09:e9:fb:de:66:8b:f9:16:81:02:0a:5b: 18:c2:9f:4b:9b:90:0d:9c:f3:60:0a:5b:4d:ec:09:ac:37:46: d5:3a:24:5a:d8:14:f3:66:38:28:3a:24:31:8d:20:3c:c7:2d: 4b:93:ba:2c:3a:cf:70:73:23:37:d9:8f:e9:ae:eb:72:ea:4c: 05:ea:7a:20:e5:d5:98:94:89:70:82:c4:78:18:2a:bf:aa:6e: d7:43:84:b3:e3:fb:93:4c:f4:45:a9:de:45:bd:ea:67:bc:5a: 2c:15:98:c0:04:6b:15:70:3c:a4:8d:96:84:b0:ba:de:5c:19: 42:1e:1e:6a:de:4c:1d:cc:4c:f3:2a:2b:89:82:b0:ac:ed:90: af:69:fd:d6:33:1e:2d:2a:e7:d6:73:dd:5b:bc:95:e1:0a:80: 2c:6b:c5:1a:15:44:8d:df:a8:e3:6e:67:59:cd:b8:03:40:80: 59:81:db:cb:7e:4b:9b:8d:23:38:6e:b4:32:0f:3d:af:b9:1d: ac:de:2a:01:36:c8:25:d1:46:f1:0a:ff:2e:6f:61:5c:93:18: 08:e4:d0:32:04:68:65:b7:78:6b:87:32:9a:41:dc:93:00:3f: 95:ea:f9:12:bf:a8:58:2c:c0:ea:4a:51:35:9b:60:5d:0f:93: 52:96:1b:d9 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUFhSsRf/Ot79eUIX6tAKOaS7nytIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUxMDNaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDNiNTcyNWExMzRkOTFhNmM2NzcwNTcxMDE3N2MyMjE5MzljNjcxMmZlMjQz YmQ4YzlhODZkMjNlOTcxZmNlMjQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI9lakQGIBPdersSVF3Q62mO6xmKereKi3BIZv2hyiUeuKlsnZx7uGaV/G8M TEgjHKgx8nNIB0wLyg84pGQYXvy0MnujFTL14C+Bohw3qPceEzDGrXj089oGhKMD hh02iSv3xlyl7bIRnvw3l7YVHM/rqufYaJ42OVZH6t6/px2NvTkLXeouwtqsejFG AFqHj2YYGjs3VZO5sz/lH8Bhdiy3dadOs3RoXw9pfqFKFfwPgdrm42DGqJ3di2fg uphj33UldLAqnhs3MYwAIyMxVXTqOaUByGoND2CYx50mHRsL1F+bbrB1lCbOFfwl ouf+073cbhE3F8+L6ycT1fbRMl8CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSn4Fn6 ZQ9VU4cC7zlNc+Y1/4JR+DAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjQxOTE5ZjItNGUwNy00YWRmLThmYzYtNDNmODk0MDA4MGQ0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DCQ MA0GCSqGSIb3DQEBCwUAA4IBAQCs3Dgr7xYJ6fveZov5FoECClsYwp9Lm5ANnPNg CltN7AmsN0bVOiRa2BTzZjgoOiQxjSA8xy1Lk7osOs9wcyM32Y/pruty6kwF6nog 5dWYlIlwgsR4GCq/qm7XQ4Sz4/uTTPRFqd5FvepnvFosFZjABGsVcDykjZaEsLre XBlCHh5q3kwdzEzzKiuJgrCs7ZCvaf3WMx4tKufWc91bvJXhCoAsa8UaFUSN36jj bmdZzbgDQIBZgdvLfkubjSM4brQyDz2vuR2s3ioBNsgl0UbxCv8ub2FckxgI5NAy BGhlt3hrhzKaQdyTAD+V6vkSv6hYLMDqSlE1m2BdD5NSlhvZ -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:38 2025 by rpki-client