This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b83c6ff3-492f-409c-86bf-cb90ca64f452.roa File: b83c6ff3-492f-409c-86bf-cb90ca64f452.roa (raw, json) Hash identifier: FE2caKEBNRHpGUFUyno1FoMzcRt+AmfbuzaDU3UgIEk= Subject key identifier: 58:76:83:81:FF:F8:AE:C5:F5:F0:A0:B0:6C:F1:02:55:22:CB:BA:6E Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1737158F8F0FFB8B82C55F52C350C3157EAF887A Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b83c6ff3-492f-409c-86bf-cb90ca64f452.roa Signing time: Sat 29 Nov 2025 03:10:05 +0000 ROA not before: Sat 29 Nov 2025 03:10:05 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2a05:d059:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:37:15:8f:8f:0f:fb:8b:82:c5:5f:52:c3:50:c3:15:7e:af:88:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:10:05 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=d2b6421a9021f8a708c5952e9086c26e8b0360a97c4a9cdc0bbaf371fedbd88f, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:46:68:9b:72:e1:ab:a7:16:59:21:6f:c5:63: d5:00:13:ac:51:7c:8e:e9:77:3b:d1:29:a8:1a:a9: 34:e3:fa:5e:a0:15:3b:70:57:2f:5c:18:6b:c7:62: 3f:e7:bb:74:e4:21:01:f6:33:03:29:02:22:98:47: 4f:6b:15:51:97:2c:f5:0f:62:93:15:6b:52:48:dc: f3:1f:ac:05:23:66:70:05:46:79:27:e4:70:73:ac: cb:ba:56:1e:67:71:25:a0:7c:fa:1a:43:c7:2d:6e: 79:4a:df:08:c4:2f:58:cb:36:c6:9b:f2:e0:e3:6e: c5:be:f3:33:21:14:66:b7:0a:f4:b0:a8:bd:dc:ad: 06:13:59:d3:76:35:4f:ad:11:7c:86:ba:ff:fc:36: e2:9e:e0:d5:a5:2f:d9:7d:3b:af:9c:73:4f:f3:2a: d8:7d:f3:d9:09:ee:06:dd:bc:01:db:72:0c:08:ac: db:7e:ec:ef:d6:d9:0b:51:ce:2a:b3:71:3a:f0:6f: d9:f2:86:dd:07:ac:ef:bd:ce:8f:80:f0:cf:10:b6: 82:81:ab:2f:50:49:64:47:33:cb:05:73:08:fa:66: 7d:74:88:45:81:10:8c:f9:f1:5d:c4:ae:56:f1:50: 08:27:c2:b1:66:6e:9c:f3:a9:8a:08:9b:ce:f4:26: c5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:76:83:81:FF:F8:AE:C5:F5:F0:A0:B0:6C:F1:02:55:22:CB:BA:6E X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b83c6ff3-492f-409c-86bf-cb90ca64f452.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d059:e000::/40 Signature Algorithm: sha256WithRSAEncryption 6f:20:d7:22:7a:16:52:41:1a:8e:a1:b4:08:6d:84:e9:7b:7a: 4a:d2:cb:00:13:22:6d:2c:9d:ec:f7:8c:70:80:79:b8:72:02: f9:5f:ed:94:f3:fd:8c:11:d3:be:97:c7:a7:3f:c2:f7:c0:bd: 46:c8:f9:c6:e7:34:ad:b9:1c:32:65:00:c0:1e:70:db:06:ad: a2:be:40:3d:43:78:50:c6:f0:18:64:aa:97:60:22:a6:6f:8e: dc:23:6d:e7:c3:d2:aa:e4:5a:1b:2b:17:81:dd:dc:97:22:29: 1a:b4:10:df:7d:28:13:12:82:2b:af:b3:29:d0:b3:25:87:3b: 96:2f:15:a9:c2:cc:01:3d:0f:42:c8:8d:48:40:0f:88:d8:d6: 9c:88:ff:80:fb:68:10:f1:61:62:61:6f:30:aa:9c:c1:8f:e8: 0e:98:10:f6:6e:6e:e1:e7:2f:df:f3:ee:32:97:2c:19:08:c5: 9d:46:8a:d3:ae:e0:cf:41:9d:a5:96:bb:b2:30:f4:18:9e:3a: f1:45:1a:f8:1e:0c:ed:a7:3f:90:82:ed:98:26:6a:bc:09:bb: 59:16:8c:ef:9c:54:df:14:e0:a4:5c:dd:d2:df:23:8b:16:15: b9:69:3c:dd:f0:4a:ce:be:f7:c3:c3:80:66:3c:e5:80:6c:8c: 15:be:9d:8e -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUFzcVj48P+4uCxV9Sw1DDFX6viHowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzEwMDVaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQGQyYjY0MjFhOTAyMWY4YTcwOGM1OTUyZTkwODZjMjZlOGIwMzYwYTk3YzRh OWNkYzBiYmFmMzcxZmVkYmQ4OGYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9GaJty4aunFlkhb8Vj1QATrFF8jul3O9EpqBqpNOP6XqAVO3BXL1wYa8di P+e7dOQhAfYzAykCIphHT2sVUZcs9Q9ikxVrUkjc8x+sBSNmcAVGeSfkcHOsy7pW HmdxJaB8+hpDxy1ueUrfCMQvWMs2xpvy4ONuxb7zMyEUZrcK9LCovdytBhNZ03Y1 T60RfIa6//w24p7g1aUv2X07r5xzT/Mq2H3z2QnuBt28AdtyDAis237s79bZC1HO KrNxOvBv2fKG3Qes773Oj4DwzxC2goGrL1BJZEczywVzCPpmfXSIRYEQjPnxXcSu VvFQCCfCsWZunPOpigibzvQmxfkCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRYdoOB //iuxfXwoLBs8QJVIsu6bjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjgzYzZmZjMtNDkyZi00MDljLTg2YmYtY2I5MGNhNjRmNDUyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0Fng MA0GCSqGSIb3DQEBCwUAA4IBAQBvINciehZSQRqOobQIbYTpe3pK0ssAEyJtLJ3s 94xwgHm4cgL5X+2U8/2MEdO+l8enP8L3wL1GyPnG5zStuRwyZQDAHnDbBq2ivkA9 Q3hQxvAYZKqXYCKmb47cI23nw9Kq5FobKxeB3dyXIikatBDffSgTEoIrr7Mp0LMl hzuWLxWpwswBPQ9CyI1IQA+I2NaciP+A+2gQ8WFiYW8wqpzBj+gOmBD2bm7h5y/f 8+4ylywZCMWdRorTruDPQZ2llruyMPQYnjrxRRr4Hgztpz+Qgu2YJmq8CbtZFozv nFTfFOCkXN3S3yOLFhW5aTzd8ErOvvfDw4BmPOWAbIwVvp2O -----END CERTIFICATE-----Generated at Sat Dec 6 17:36:14 2025 by rpki-client