This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c7743543-1a04-47c2-8128-1b90de9136a9.roa File: c7743543-1a04-47c2-8128-1b90de9136a9.roa (raw, json) Hash identifier: 3lu0T9C6GrdbLw5NzJcNvM81wTB5wWVqEY07afjjSn8= Subject key identifier: 7F:6F:A4:E7:51:A2:EA:AB:21:DC:FD:F9:5E:72:56:69:77:66:6E:8C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 7DDC4317F17C23788EA8C685B59911A0E10072B9 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c7743543-1a04-47c2-8128-1b90de9136a9.roa Signing time: Sat 15 Nov 2025 06:01:09 +0000 ROA not before: Sat 15 Nov 2025 06:01:09 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:8090::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:dc:43:17:f1:7c:23:78:8e:a8:c6:85:b5:99:11:a0:e1:00:72:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:01:09 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=f2c70a1b8404590cbe5874729b7ddaa2a25c6290f6227b6f03431bf22b4ca1c4, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8c:97:fd:ed:8f:61:0c:28:46:bc:80:7b:78: c1:5b:24:3a:05:a5:4b:b6:c4:cf:5b:ed:d9:01:55: 5c:c9:52:79:a9:59:e3:07:02:38:8d:3c:17:c7:5a: 5e:b8:64:f4:42:cb:1b:ac:7f:7f:db:36:63:ed:d6: c2:d5:0c:38:e7:28:0b:bd:14:89:fb:77:51:27:a4: 28:94:cd:bb:af:72:8d:88:d5:47:2c:21:a7:e6:b7: bb:e0:b5:67:ce:06:88:1c:8f:0f:05:fb:53:e8:1b: d6:50:76:69:f3:eb:2d:99:11:2b:c0:3d:17:a1:a2: e2:20:de:11:3b:2a:42:83:ee:86:cb:d8:0f:27:34: 48:be:4a:20:c7:b9:35:08:5f:6a:7c:8a:20:cc:49: 0d:94:e3:bc:7f:9e:29:b5:8c:f5:1b:8b:20:83:9c: d1:c8:76:64:57:7d:df:2d:10:48:14:3d:29:e3:37: fd:47:77:87:65:02:e6:03:2d:1d:e0:bf:93:af:c3: ce:20:15:06:48:0b:f5:52:d9:cf:2d:e3:2b:86:c7: 7e:c7:ee:9a:1c:ff:17:36:98:8e:c5:0f:8d:b8:e6: c3:51:24:25:ef:29:78:79:2f:f6:5f:2d:ee:d6:cf: 46:47:45:6e:ff:30:ea:b3:bf:d1:92:91:ee:05:b5: 94:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:6F:A4:E7:51:A2:EA:AB:21:DC:FD:F9:5E:72:56:69:77:66:6E:8C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c7743543-1a04-47c2-8128-1b90de9136a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:8090::/48 Signature Algorithm: sha256WithRSAEncryption 7d:02:ff:23:81:df:4c:dd:e6:ac:a1:a5:18:bb:bb:08:57:a6: ed:3b:f3:28:3a:5d:2d:de:bb:0d:1e:f6:dc:fd:7a:74:5e:46: b8:0a:ea:5d:58:0e:ff:9e:8b:42:e6:01:b9:e0:5d:83:a4:bd: 22:fb:ac:14:ec:8b:53:62:14:d8:7b:23:70:b7:4a:2d:99:5b: b3:fe:42:73:5d:dc:a8:8f:6b:9f:03:63:cf:7b:01:88:6a:8b: 49:ba:85:8e:d5:5d:76:fa:b2:33:61:ad:67:1e:2c:a2:01:46: 42:c1:02:9e:ea:3b:72:bd:cd:03:14:60:26:c0:d0:b3:40:53: 75:a4:e2:8c:d4:1d:22:17:97:61:63:0a:76:59:00:1d:54:d5: 0a:ef:49:cf:b8:50:26:ad:22:9a:74:eb:f1:51:02:bb:3d:bc: e5:09:6f:40:f5:86:48:70:bd:33:3d:24:4a:03:9a:de:00:bc: d3:4f:4b:7a:56:fc:63:f4:1c:6d:6b:12:61:59:de:1e:cd:6d: 19:5c:93:76:77:6a:f3:39:7f:4f:ac:c3:b5:9e:8e:fe:df:77: ee:57:5a:ec:46:8e:00:71:ad:7d:88:04:9b:92:bd:2b:33:b1: 96:bf:4a:a3:07:97:15:3e:23:e5:4a:d3:26:47:fd:d4:d3:84: c8:6a:db:15 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUfdxDF/F8I3iOqMaFtZkRoOEAcrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjAxMDlaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGYyYzcwYTFiODQwNDU5MGNiZTU4NzQ3MjliN2RkYWEyYTI1YzYyOTBmNjIy N2I2ZjAzNDMxYmYyMmI0Y2ExYzQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOKMl/3tj2EMKEa8gHt4wVskOgWlS7bEz1vt2QFVXMlSealZ4wcCOI08F8da Xrhk9ELLG6x/f9s2Y+3WwtUMOOcoC70Uift3USekKJTNu69yjYjVRywhp+a3u+C1 Z84GiByPDwX7U+gb1lB2afPrLZkRK8A9F6Gi4iDeETsqQoPuhsvYDyc0SL5KIMe5 NQhfanyKIMxJDZTjvH+eKbWM9RuLIIOc0ch2ZFd93y0QSBQ9KeM3/Ud3h2UC5gMt HeC/k6/DziAVBkgL9VLZzy3jK4bHfsfumhz/FzaYjsUPjbjmw1EkJe8peHkv9l8t 7tbPRkdFbv8w6rO/0ZKR7gW1lPsCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBR/b6Tn UaLqqyHc/fleclZpd2ZujDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv Yzc3NDM1NDMtMWEwNC00N2MyLTgxMjgtMWI5MGRlOTEzNmE5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H+A kDANBgkqhkiG9w0BAQsFAAOCAQEAfQL/I4HfTN3mrKGlGLu7CFem7TvzKDpdLd67 DR723P16dF5GuArqXVgO/56LQuYBueBdg6S9IvusFOyLU2IU2HsjcLdKLZlbs/5C c13cqI9rnwNjz3sBiGqLSbqFjtVddvqyM2GtZx4sogFGQsECnuo7cr3NAxRgJsDQ s0BTdaTijNQdIheXYWMKdlkAHVTVCu9Jz7hQJq0imnTr8VECuz285QlvQPWGSHC9 Mz0kSgOa3gC8009Lelb8Y/QcbWsSYVneHs1tGVyTdndq8zl/T6zDtZ6O/t937lda 7EaOAHGtfYgEm5K9KzOxlr9KoweXFT4j5UrTJkf91NOEyGrbFQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:53 2025 by rpki-client