This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bd75b960-96a2-4735-8f78-a99099ccb684.roa File: bd75b960-96a2-4735-8f78-a99099ccb684.roa (raw, json) Hash identifier: RnbiqJqWy0nEeKM2Q6nGLoCaglArD36PV2QYY8oRqMc= Subject key identifier: E0:1E:55:99:91:EC:65:55:31:03:FA:CF:88:13:37:16:F5:A1:DA:63 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3EF317BE8DEEB5403781F2ECF423E132E267660E Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bd75b960-96a2-4735-8f78-a99099ccb684.roa Signing time: Tue 25 Nov 2025 20:01:03 +0000 ROA not before: Tue 25 Nov 2025 20:01:03 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f3:17:be:8d:ee:b5:40:37:81:f2:ec:f4:23:e1:32:e2:67:66:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:01:03 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=ca08e45a8bbf966d266cf89b9fafcf763df06140d4b71870fe250589f5d5ac46, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:87:a6:f2:08:44:69:9e:ed:0f:8d:62:92:53: 9c:da:2f:0a:ee:d3:94:df:56:a8:bc:1d:5b:61:16: 80:4d:41:ba:05:ff:4f:88:2c:98:0c:92:11:43:19: 91:9c:0e:e0:37:cb:f4:89:37:1d:9d:04:80:57:97: de:76:2a:5c:7c:5a:c3:43:52:5e:1b:2d:a2:7a:81: 7f:d7:cd:15:84:51:fb:46:a9:d6:aa:8c:71:e4:b0: c8:47:45:4a:19:0e:26:bc:3e:af:da:b4:4e:a9:c8: d8:ce:ab:75:15:41:3e:c5:3c:aa:19:75:f6:a0:97: 69:15:b8:1c:a1:75:26:a8:cb:8c:dd:af:8e:af:32: dd:78:b0:9d:07:56:54:a2:79:0d:16:2d:7f:1e:23: 82:2b:49:e1:b6:f0:5e:c4:cf:52:2c:9d:c1:20:ee: 80:b5:3d:35:86:b7:ec:2d:55:d8:a7:40:fb:39:e2: 53:25:47:59:95:63:1e:33:51:b0:fe:ea:43:69:3d: ec:ed:56:30:b1:14:c8:fc:0b:df:2e:7f:ac:3b:22: 56:2d:df:89:28:a8:6c:c4:e1:44:af:dc:da:ef:7b: c6:25:d1:5d:b2:bb:5a:41:11:e9:00:6d:f4:81:51: 89:ba:d6:b7:8d:49:a1:4f:31:94:2d:5d:37:29:a0: 74:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:1E:55:99:91:EC:65:55:31:03:FA:CF:88:13:37:16:F5:A1:DA:63 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bd75b960-96a2-4735-8f78-a99099ccb684.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:1000::/40 Signature Algorithm: sha256WithRSAEncryption 06:3f:3a:af:fe:da:d8:a5:8f:f6:6a:d5:60:8d:f9:a8:c7:e0: 6f:8a:0a:1a:fe:11:0b:db:f2:4c:c1:54:32:85:db:e2:e2:69: 62:93:d1:d2:46:1a:7c:2b:90:15:16:0c:31:6a:19:2c:af:76: fe:03:88:7a:00:4e:bf:cd:5c:ca:a4:3e:7f:80:d4:5b:72:ed: 98:34:38:43:aa:dc:e5:62:ed:63:9b:cd:89:43:60:a7:a3:4b: c5:ea:54:90:c6:1d:81:67:ad:90:4d:53:e2:16:30:64:05:5c: 0f:72:97:eb:2c:2a:ed:ba:7f:f2:37:c2:a3:f5:08:f6:05:6a: e7:e3:98:73:bc:02:a2:38:5e:56:2b:02:df:80:68:05:fb:37: 40:03:3b:8d:a3:f3:4b:44:a0:53:08:c7:e0:db:a4:f6:45:2c: ca:94:56:71:63:17:d9:1c:b6:42:39:d8:7f:cf:6e:2b:9b:0c: 45:68:40:f4:53:e0:08:19:e0:db:df:ad:9b:8f:45:5f:c4:38: 88:24:e1:a1:15:85:e6:e7:96:b0:38:98:49:b7:87:51:d6:f0: 12:80:fc:65:f4:77:d7:66:cf:7f:3c:1c:43:16:84:ce:64:e8: 9e:3f:3e:a5:ed:3e:89:a1:16:09:6c:88:3c:48:b4:b6:29:a1: 16:6f:8d:fb -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUPvMXvo3utUA3gfLs9CPhMuJnZg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAxMDNaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQGNhMDhlNDVhOGJiZjk2NmQyNjZjZjg5YjlmYWZjZjc2M2RmMDYxNDBkNGI3 MTg3MGZlMjUwNTg5ZjVkNWFjNDYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANOHpvIIRGme7Q+NYpJTnNovCu7TlN9WqLwdW2EWgE1BugX/T4gsmAySEUMZ kZwO4DfL9Ik3HZ0EgFeX3nYqXHxaw0NSXhstonqBf9fNFYRR+0ap1qqMceSwyEdF ShkOJrw+r9q0TqnI2M6rdRVBPsU8qhl19qCXaRW4HKF1JqjLjN2vjq8y3XiwnQdW VKJ5DRYtfx4jgitJ4bbwXsTPUiydwSDugLU9NYa37C1V2KdA+zniUyVHWZVjHjNR sP7qQ2k97O1WMLEUyPwL3y5/rDsiVi3fiSiobMThRK/c2u97xiXRXbK7WkER6QBt 9IFRibrWt41JoU8xlC1dNymgdMECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTgHlWZ kexlVTED+s+IEzcW9aHaYzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YmQ3NWI5NjAtOTZhMi00NzM1LThmNzgtYTk5MDk5Y2NiNjg0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HMQ MA0GCSqGSIb3DQEBCwUAA4IBAQAGPzqv/trYpY/2atVgjfmox+Bvigoa/hEL2/JM wVQyhdvi4mlik9HSRhp8K5AVFgwxahksr3b+A4h6AE6/zVzKpD5/gNRbcu2YNDhD qtzlYu1jm82JQ2Cno0vF6lSQxh2BZ62QTVPiFjBkBVwPcpfrLCrtun/yN8Kj9Qj2 BWrn45hzvAKiOF5WKwLfgGgF+zdAAzuNo/NLRKBTCMfg26T2RSzKlFZxYxfZHLZC Odh/z24rmwxFaED0U+AIGeDb362bj0VfxDiIJOGhFYXm55awOJhJt4dR1vASgPxl 9HfXZs9/PBxDFoTOZOiePz6l7T6JoRYJbIg8SLS2KaEWb437 -----END CERTIFICATE-----Generated at Sat Dec 6 10:53:51 2025 by rpki-client