This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b7d242ad-482b-4700-888a-b677a178a4bf.roa File: b7d242ad-482b-4700-888a-b677a178a4bf.roa (raw, json) Hash identifier: SepJ0s1X0z1dsXzAm81olublVKWGYlcH4hqSTXZ5vdg= Subject key identifier: 38:75:8A:8A:1A:37:FE:A1:F5:1F:5E:4F:73:98:7E:26:A4:7D:B1:10 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 06F85BBD1E1118623499EC3782C6996F9EDDCE39 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b7d242ad-482b-4700-888a-b677a178a4bf.roa Signing time: Sat 15 Nov 2025 06:20:55 +0000 ROA not before: Sat 15 Nov 2025 06:20:55 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:6080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:f8:5b:bd:1e:11:18:62:34:99:ec:37:82:c6:99:6f:9e:dd:ce:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:20:55 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=bf35f16018fc941f937a6c80054586b18629209b17bb225a5b9cc73e7d0708ac, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:29:17:89:14:b1:18:77:2b:8f:74:90:32:d2: e5:af:10:26:ae:a6:63:c5:a2:03:d1:d9:ee:37:38: ec:0f:ea:bd:2e:d9:b3:06:67:4c:33:5f:e8:07:14: 76:dc:32:73:20:dc:7c:86:63:b6:64:05:0b:0d:f2: 1d:4b:f4:75:e3:6f:f0:d6:38:de:09:f8:6f:14:5c: 5c:3b:01:33:cd:d8:9d:9b:3b:51:a3:6d:f5:27:a4: d1:c2:da:a9:80:0c:7c:5d:2d:de:70:6b:97:37:d2: 2c:3a:87:b6:77:43:d4:41:76:c2:e3:86:e4:74:cb: a4:7c:74:59:e5:4c:85:eb:ac:70:a5:55:46:00:03: eb:bd:07:2f:32:2d:55:e2:5c:72:8a:74:01:56:ef: ba:4e:68:9c:31:3f:8a:39:bb:f1:ef:7e:86:ea:a8: 50:91:b3:9a:58:df:fa:02:70:8d:b5:57:57:b8:94: 83:0e:06:b0:62:8e:50:22:25:8d:f6:06:01:c8:d0: 06:ca:f2:4d:08:01:72:87:d5:11:65:3a:0d:8e:11: c1:93:f4:c8:eb:c5:b8:48:34:7f:df:80:9e:bd:1a: d9:40:85:b4:d8:d2:22:5d:f9:ca:5c:47:2d:b2:4e: 07:7d:4e:ad:f8:30:0c:9d:33:b6:af:8f:2f:af:6a: 14:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:75:8A:8A:1A:37:FE:A1:F5:1F:5E:4F:73:98:7E:26:A4:7D:B1:10 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b7d242ad-482b-4700-888a-b677a178a4bf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:6080::/48 Signature Algorithm: sha256WithRSAEncryption 62:3e:f0:83:f0:77:63:d5:7d:6f:3f:b9:2e:91:44:0d:23:6c: f4:e6:31:5d:ba:8d:8d:a2:49:1b:36:67:a2:8c:3d:11:18:23: 24:00:71:93:55:63:54:3c:64:52:9d:fb:ad:97:01:e3:c9:08: b2:19:d8:29:d8:d9:f7:29:ef:03:fc:32:27:a0:f8:22:0c:89: f4:cb:14:f3:10:72:60:d0:f7:b6:f2:89:35:87:ac:7a:98:44: 25:b9:30:9a:f6:05:9e:9f:ce:83:55:61:fc:07:93:a7:e7:1e: 3f:6c:13:bc:f7:de:9e:69:1b:d5:57:66:97:d9:1d:de:e9:50: ed:d7:78:97:2e:43:0a:13:7d:21:47:a6:f0:6c:90:f9:63:73: fa:a0:79:db:c9:c8:a1:64:ac:67:64:d9:65:36:71:e8:5f:4b: d1:cc:8e:e3:50:2c:70:ba:10:e5:53:0d:07:55:b6:ac:bc:80: e0:60:9d:20:eb:0f:6f:be:73:59:86:f0:64:83:23:9b:52:52: 67:01:34:da:ef:4e:10:29:79:a9:ca:d2:0e:70:a6:74:94:4a: 38:f1:f8:4d:e1:2e:8c:ab:b2:eb:d8:8a:9f:d1:94:10:73:f0: 6d:89:f8:fc:36:cb:38:f6:19:56:08:e2:e9:91:d8:9b:a6:4b: 5a:cf:b6:13 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUBvhbvR4RGGI0mew3gsaZb57dzjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjIwNTVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGJmMzVmMTYwMThmYzk0MWY5MzdhNmM4MDA1NDU4NmIxODYyOTIwOWIxN2Ji MjI1YTViOWNjNzNlN2QwNzA4YWMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0pF4kUsRh3K490kDLS5a8QJq6mY8WiA9HZ7jc47A/qvS7ZswZnTDNf6AcU dtwycyDcfIZjtmQFCw3yHUv0deNv8NY43gn4bxRcXDsBM83YnZs7UaNt9Sek0cLa qYAMfF0t3nBrlzfSLDqHtndD1EF2wuOG5HTLpHx0WeVMheuscKVVRgAD670HLzIt VeJccop0AVbvuk5onDE/ijm78e9+huqoUJGzmljf+gJwjbVXV7iUgw4GsGKOUCIl jfYGAcjQBsryTQgBcofVEWU6DY4RwZP0yOvFuEg0f9+Anr0a2UCFtNjSIl35ylxH LbJOB31OrfgwDJ0ztq+PL69qFC0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQ4dYqK Gjf+ofUfXk9zmH4mpH2xEDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjdkMjQyYWQtNDgyYi00NzAwLTg4OGEtYjY3N2ExNzhhNGJmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HJg gDANBgkqhkiG9w0BAQsFAAOCAQEAYj7wg/B3Y9V9bz+5LpFEDSNs9OYxXbqNjaJJ GzZnoow9ERgjJABxk1VjVDxkUp37rZcB48kIshnYKdjZ9ynvA/wyJ6D4IgyJ9MsU 8xByYND3tvKJNYesephEJbkwmvYFnp/Og1Vh/AeTp+ceP2wTvPfenmkb1Vdml9kd 3ulQ7dd4ly5DChN9IUem8GyQ+WNz+qB528nIoWSsZ2TZZTZx6F9L0cyO41AscLoQ 5VMNB1W2rLyA4GCdIOsPb75zWYbwZIMjm1JSZwE02u9OECl5qcrSDnCmdJRKOPH4 TeEujKuy69iKn9GUEHPwbYn4/DbLOPYZVgji6ZHYm6ZLWs+2Ew== -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:09 2025 by rpki-client