This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9f26696-5522-477d-b8bf-72de7350b09a.roa File: b9f26696-5522-477d-b8bf-72de7350b09a.roa (raw, json) Hash identifier: mbexXHVGmg/7/mZxRdHD4Befxy2mnWsChct8W9LTDgk= Subject key identifier: BE:FA:E9:53:4E:6A:9C:3B:B0:09:2D:F5:7C:0C:9C:2A:C5:47:C2:66 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: D28275B3348E5274DF0CD8A764A5DD3A84B2C2 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9f26696-5522-477d-b8bf-72de7350b09a.roa Signing time: Sat 15 Nov 2025 05:30:37 +0000 ROA not before: Sat 15 Nov 2025 05:30:37 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d2:82:75:b3:34:8e:52:74:df:0c:d8:a7:64:a5:dd:3a:84:b2:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:30:37 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=e708f58c135fb1d2c1defd82ec6f6e3a732a999a232affda8ed537bb64e33795, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c9:00:e7:46:d7:c3:97:00:44:8b:6d:65:b8: 35:d7:3d:19:27:78:ef:fb:7a:f6:0e:dd:cd:f1:43: 6e:9e:8a:67:25:21:ce:a7:50:bc:84:b4:94:90:1d: e2:52:c5:d4:be:79:94:2b:aa:95:e8:fb:64:4c:6d: 6f:7f:8f:bc:0e:a3:3d:d4:e7:55:10:81:54:ce:69: fc:80:e3:12:53:04:f4:cb:6b:ec:1e:5e:21:22:ce: 1a:0b:ba:2a:d6:81:86:30:ae:be:17:2e:68:d2:29: f8:27:ec:d3:98:72:2c:d6:2e:90:16:74:ad:fe:ce: 6b:e7:d8:da:2a:86:a8:bc:6b:37:5f:3a:ae:da:b6: 73:f0:83:60:79:07:88:e0:5a:71:e6:08:59:9d:cd: 1c:75:a1:82:0e:18:cc:be:90:69:ef:63:a0:85:62: b2:28:81:2c:1b:be:18:f4:a3:d0:52:9c:80:20:67: b6:55:08:86:8e:05:7c:1a:73:59:54:92:88:01:6c: 2c:45:93:32:0c:37:a4:f8:60:a6:48:2a:fe:6d:1e: ee:6e:5b:80:93:54:94:59:f0:d4:12:56:85:f8:30: 25:1b:5b:2e:18:d2:62:61:44:1f:ab:09:a3:93:f0: dc:16:ef:6c:32:e7:91:f3:5e:0d:5c:ae:4d:49:ee: d3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:FA:E9:53:4E:6A:9C:3B:B0:09:2D:F5:7C:0C:9C:2A:C5:47:C2:66 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9f26696-5522-477d-b8bf-72de7350b09a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:5000::/40 Signature Algorithm: sha256WithRSAEncryption 6c:dc:9d:83:0d:af:9a:db:1a:88:9b:ea:ff:4a:93:84:fc:d2: d2:5e:e1:0c:9f:27:2e:0b:01:70:5d:ef:5a:21:db:ce:0e:7c: 34:59:ea:3d:e8:3e:4e:a7:a5:0a:bf:90:0f:bd:0e:d5:da:58: 94:43:ad:6f:18:4c:43:5b:16:65:a7:fd:5b:b9:1c:a7:e9:e5: 34:03:33:8c:fc:03:7e:aa:81:1c:02:03:b2:09:14:77:10:22: a3:f8:d9:b4:72:ea:60:e8:0f:e9:f3:11:e7:49:6b:7b:94:47: be:96:be:27:04:6e:af:ea:5a:47:cc:a4:c3:93:0c:2d:2a:39: ec:8a:69:63:1b:5c:90:78:8e:1b:41:69:94:d8:22:33:b2:b8: 8b:79:a7:4f:8d:c4:f1:aa:15:d3:51:6d:0e:14:50:10:25:15: 3a:44:fe:be:8f:ae:6d:29:fc:fa:39:58:9f:ac:24:70:81:ae: 6a:ff:d9:8b:c6:f3:bc:9a:f3:55:c9:79:1b:c0:53:15:4b:02: 84:a6:84:ae:40:09:eb:d7:47:a6:76:88:95:ee:d4:b8:d0:b6: fb:71:3b:79:c3:d7:61:03:ff:a4:12:0f:5c:7f:9d:54:9e:4d: 5c:0b:df:c2:be:9a:40:fe:75:ce:fd:a3:b2:ee:70:a9:84:20: 36:f5:dc:8d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUANKCdbM0jlJ03wzYp2Sl3TqEssIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMwMzdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGU3MDhmNThjMTM1ZmIxZDJjMWRlZmQ4MmVjNmY2ZTNhNzMyYTk5OWEyMzJh ZmZkYThlZDUzN2JiNjRlMzM3OTUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKbJAOdG18OXAESLbWW4Ndc9GSd47/t69g7dzfFDbp6KZyUhzqdQvIS0lJAd 4lLF1L55lCuqlej7ZExtb3+PvA6jPdTnVRCBVM5p/IDjElME9Mtr7B5eISLOGgu6 KtaBhjCuvhcuaNIp+Cfs05hyLNYukBZ0rf7Oa+fY2iqGqLxrN186rtq2c/CDYHkH iOBaceYIWZ3NHHWhgg4YzL6Qae9joIVisiiBLBu+GPSj0FKcgCBntlUIho4FfBpz WVSSiAFsLEWTMgw3pPhgpkgq/m0e7m5bgJNUlFnw1BJWhfgwJRtbLhjSYmFEH6sJ o5Pw3BbvbDLnkfNeDVyuTUnu05cCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBS++ulT TmqcO7AJLfV8DJwqxUfCZjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjlmMjY2OTYtNTUyMi00NzdkLWI4YmYtNzJkZTczNTBiMDlhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HJQ MA0GCSqGSIb3DQEBCwUAA4IBAQBs3J2DDa+a2xqIm+r/SpOE/NLSXuEMnycuCwFw Xe9aIdvODnw0Weo96D5Op6UKv5APvQ7V2liUQ61vGExDWxZlp/1buRyn6eU0AzOM /AN+qoEcAgOyCRR3ECKj+Nm0cupg6A/p8xHnSWt7lEe+lr4nBG6v6lpHzKTDkwwt KjnsimljG1yQeI4bQWmU2CIzsriLeadPjcTxqhXTUW0OFFAQJRU6RP6+j65tKfz6 OVifrCRwga5q/9mLxvO8mvNVyXkbwFMVSwKEpoSuQAnr10emdoiV7tS40Lb7cTt5 w9dhA/+kEg9cf51Unk1cC9/CvppA/nXO/aOy7nCphCA29dyN -----END CERTIFICATE-----Generated at Sat Dec 6 17:31:09 2025 by rpki-client