This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c575b6fa-c023-458f-85c8-9694aa053e43.roa File: c575b6fa-c023-458f-85c8-9694aa053e43.roa (raw, json) Hash identifier: eIbuf14sTQlIfEAYQudtxKo+FH4uWXsTZkgU2Uwad+M= Subject key identifier: 18:AD:AF:65:4E:7B:08:73:4C:28:9C:D6:FC:9A:82:3B:5A:2F:2A:0D Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1550D02CFB049C9B8E3145B938443C09A1835AA4 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c575b6fa-c023-458f-85c8-9694aa053e43.roa Signing time: Sat 15 Nov 2025 05:51:07 +0000 ROA not before: Sat 15 Nov 2025 05:51:07 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:50:d0:2c:fb:04:9c:9b:8e:31:45:b9:38:44:3c:09:a1:83:5a:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:51:07 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=581f68e473a35799e4304679c6cdb42b90aa94d9aab663922c7c2d12222822e6, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3a:96:ca:84:6c:ec:49:c2:e1:98:c8:03:47: c7:ec:1f:91:fb:6a:fa:85:71:65:53:e9:82:67:2b: f9:1c:15:9d:8e:ac:c9:b7:cf:a5:ad:0f:e4:af:59: 77:4a:a6:84:66:08:6e:c9:85:dd:2e:81:43:ed:e0: f6:51:38:8a:46:90:09:12:dd:2b:e7:47:5b:f8:54: 7f:1c:6d:6d:81:ec:d1:09:8e:fb:17:39:6c:ba:ee: 07:8e:01:a3:54:8a:dd:99:b7:86:92:4f:3f:da:20: ea:a6:8d:f7:56:e7:c2:23:d7:d9:5b:e5:e8:42:43: ef:ab:7b:97:3c:70:18:ed:64:63:d3:ea:82:68:52: 91:3c:db:e8:bf:77:36:f7:77:41:ab:ab:e9:2e:dc: 61:4d:5b:51:5d:67:da:01:53:26:f1:59:45:21:7a: 17:ef:38:fe:64:a1:a1:7c:bf:91:93:4d:3b:ad:b0: b6:c2:36:4a:e1:7a:21:97:a4:84:a1:ef:6e:01:07: 60:eb:b4:e1:c4:98:fc:90:94:d2:5f:71:12:ee:ff: 21:21:1a:29:a3:a6:9d:33:3a:74:33:3a:b3:ac:3d: a3:f7:5c:11:5c:08:bb:2b:6b:1a:27:a5:d4:2b:d6: 98:fe:42:45:2b:ed:e9:05:dc:c1:b4:a7:32:55:0e: a3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:AD:AF:65:4E:7B:08:73:4C:28:9C:D6:FC:9A:82:3B:5A:2F:2A:0D X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c575b6fa-c023-458f-85c8-9694aa053e43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:4080::/48 Signature Algorithm: sha256WithRSAEncryption c3:ae:92:ac:44:08:79:16:b2:8b:1b:34:19:f7:88:73:23:95: 17:8d:80:e1:5f:d4:0e:92:05:28:3b:97:b8:b4:8f:e7:c9:68: bc:81:9b:e1:02:12:ec:72:25:a8:43:fb:1e:09:5a:2e:45:69: f8:35:a9:4a:13:b2:1d:bf:b1:03:53:dc:36:21:86:7e:a3:3c: fa:b3:15:9f:a8:35:b8:fa:9d:cc:f2:8c:c2:4e:84:11:55:0a: 72:af:c1:59:4f:d5:4f:2a:e5:82:64:10:49:07:33:9b:a9:85: cf:17:6f:0e:f5:f3:80:c8:61:c0:4b:31:56:33:19:02:1e:f6: 00:01:d4:0c:55:bb:85:d8:da:d9:90:f9:4a:9e:fc:05:15:de: 25:e0:55:79:7f:fb:26:0e:bf:26:eb:59:c8:eb:ff:95:c3:27: 35:2d:73:3a:ff:5b:db:57:10:bb:a3:cc:2d:b7:00:96:e4:76: 69:40:29:0d:b2:7b:ea:ce:77:b7:06:06:13:e6:f9:fc:d4:2b: 7b:b9:c5:88:52:7b:ac:69:4d:38:b2:41:cc:87:e8:55:c4:f1: e3:e8:51:9c:95:f7:d9:de:24:83:54:67:9a:31:69:bb:de:5c: 36:70:78:7a:65:95:f7:5c:58:29:48:a7:db:60:80:24:ab:ff: 53:80:e4:12 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUFVDQLPsEnJuOMUW5OEQ8CaGDWqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTUxMDdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDU4MWY2OGU0NzNhMzU3OTllNDMwNDY3OWM2Y2RiNDJiOTBhYTk0ZDlhYWI2 NjM5MjJjN2MyZDEyMjIyODIyZTYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMo6lsqEbOxJwuGYyANHx+wfkftq+oVxZVPpgmcr+RwVnY6sybfPpa0P5K9Z d0qmhGYIbsmF3S6BQ+3g9lE4ikaQCRLdK+dHW/hUfxxtbYHs0QmO+xc5bLruB44B o1SK3Zm3hpJPP9og6qaN91bnwiPX2Vvl6EJD76t7lzxwGO1kY9PqgmhSkTzb6L93 Nvd3Qaur6S7cYU1bUV1n2gFTJvFZRSF6F+84/mShoXy/kZNNO62wtsI2SuF6IZek hKHvbgEHYOu04cSY/JCU0l9xEu7/ISEaKaOmnTM6dDM6s6w9o/dcEVwIuytrGiel 1CvWmP5CRSvt6QXcwbSnMlUOo7sCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQYra9l TnsIc0wonNb8moI7Wi8qDTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YzU3NWI2ZmEtYzAyMy00NThmLTg1YzgtOTY5NGFhMDUzZTQzLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DFA gDANBgkqhkiG9w0BAQsFAAOCAQEAw66SrEQIeRayixs0GfeIcyOVF42A4V/UDpIF KDuXuLSP58lovIGb4QIS7HIlqEP7HglaLkVp+DWpShOyHb+xA1PcNiGGfqM8+rMV n6g1uPqdzPKMwk6EEVUKcq/BWU/VTyrlgmQQSQczm6mFzxdvDvXzgMhhwEsxVjMZ Ah72AAHUDFW7hdja2ZD5Sp78BRXeJeBVeX/7Jg6/JutZyOv/lcMnNS1zOv9b21cQ u6PMLbcAluR2aUApDbJ76s53twYGE+b5/NQre7nFiFJ7rGlNOLJBzIfoVcTx4+hR nJX32d4kg1RnmjFpu95cNnB4emWV91xYKUin22CAJKv/U4DkEg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:41 2025 by rpki-client