This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cead5bc0-2620-45bc-b97b-adb00020a426.roa File: cead5bc0-2620-45bc-b97b-adb00020a426.roa (raw, json) Hash identifier: Z/aD85aBsUNl+uOp2lNnd2oGBfjVz//lmOnDXyZJzqU= Subject key identifier: CA:B8:6C:9E:43:E8:88:5F:32:8C:64:B4:98:A1:10:72:4B:62:E2:D7 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 100529C2482081D0F162E3203C631585C7E32608 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cead5bc0-2620-45bc-b97b-adb00020a426.roa Signing time: Sat 15 Nov 2025 06:30:14 +0000 ROA not before: Sat 15 Nov 2025 06:30:14 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:05:29:c2:48:20:81:d0:f1:62:e3:20:3c:63:15:85:c7:e3:26:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:30:14 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=622aef4e2ac3365ae5c097ef86f5fa0fb9c8037b1cd1073d50988414dc579e07, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f0:5d:39:25:48:00:5a:fd:4e:80:44:6b:cb: e9:50:09:01:3d:d8:48:c5:54:ff:81:39:08:92:1d: ef:59:b7:ce:05:cd:0e:54:09:d4:e4:6a:ff:27:f3: 2c:6d:47:94:63:dc:37:90:6a:92:0f:92:49:1c:a6: 57:8e:c9:ab:7c:03:17:dd:97:08:71:9d:31:86:23: a8:6f:57:bf:4f:5f:51:20:d8:54:0e:fe:41:0f:7e: 6f:7d:cf:34:f2:ca:6f:96:80:d4:55:6d:f6:16:83: 16:46:ca:4d:3a:25:62:b1:ff:d0:f3:ed:58:7c:65: 57:3d:89:7e:78:e2:d2:ad:c0:24:9c:e0:9c:ff:a9: c1:7c:a8:9b:d5:e3:de:16:e4:f5:54:9c:c6:c5:d7: 82:6b:79:2e:1f:3c:8c:d7:f6:42:a2:b3:8d:5e:27: 19:57:ed:76:77:39:4d:d0:00:ad:e1:ae:97:fc:fc: 17:49:88:fb:1b:7d:a2:4f:67:54:16:a7:14:c9:b4: 74:ad:9f:99:bd:73:97:b6:cd:9a:01:81:76:fa:18: 23:01:89:9c:3a:72:d9:4e:95:07:77:a7:ea:ec:34: ca:f6:1b:21:04:f4:c6:8d:9d:33:7f:7f:ef:72:6b: 17:ad:61:20:03:48:f7:09:6b:a2:a0:b1:8a:8c:f2: bc:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B8:6C:9E:43:E8:88:5F:32:8C:64:B4:98:A1:10:72:4B:62:E2:D7 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cead5bc0-2620-45bc-b97b-adb00020a426.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:e080::/48 Signature Algorithm: sha256WithRSAEncryption c1:6d:bc:94:5b:ee:71:a2:d8:c0:70:37:46:08:40:3b:58:20: 4e:a7:33:c7:98:b8:04:bf:f5:c3:dc:01:3b:1a:76:32:70:99: 41:ab:c7:a4:90:d4:12:bd:be:6a:81:3d:03:57:7d:7f:6a:e4: ce:18:93:61:91:54:54:8e:e0:cf:c6:b2:5d:21:93:b3:1c:44: 63:ac:63:b4:5a:82:ad:a0:85:e2:f6:f0:b0:f5:cb:2a:e2:b2: f1:05:6b:a2:3d:1d:97:23:91:f3:b7:5d:f9:5f:52:10:4c:4a: 29:75:26:81:0d:ee:c7:5f:58:d6:e1:48:9e:a4:a7:a1:9d:2c: 7a:90:85:20:ff:4e:09:9d:26:17:39:3f:a8:8f:b8:ed:0b:90: 31:59:ae:c6:a6:64:62:4c:74:1b:f3:9d:18:3c:7a:f0:d6:7e: b5:09:69:60:91:bf:3e:48:3f:49:33:8a:a2:38:f5:2a:1c:b7: 86:48:06:b3:93:de:2a:72:94:3f:13:4a:a8:be:d1:ee:2b:cc: 82:41:52:b6:0b:0d:a7:3b:14:ad:08:18:78:3c:a1:2f:73:9f: 7a:57:4a:6e:66:14:02:d5:da:fb:b8:27:19:45:37:58:40:49: 04:18:63:d6:96:a1:e5:13:77:1a:fd:04:d3:3f:0d:df:be:6a: 97:2e:b4:3d -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUEAUpwkgggdDxYuMgPGMVhcfjJggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjMwMTRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDYyMmFlZjRlMmFjMzM2NWFlNWMwOTdlZjg2ZjVmYTBmYjljODAzN2IxY2Qx MDczZDUwOTg4NDE0ZGM1NzllMDcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJLwXTklSABa/U6ARGvL6VAJAT3YSMVU/4E5CJId71m3zgXNDlQJ1ORq/yfz LG1HlGPcN5Bqkg+SSRymV47Jq3wDF92XCHGdMYYjqG9Xv09fUSDYVA7+QQ9+b33P NPLKb5aA1FVt9haDFkbKTTolYrH/0PPtWHxlVz2Jfnji0q3AJJzgnP+pwXyom9Xj 3hbk9VScxsXXgmt5Lh88jNf2QqKzjV4nGVftdnc5TdAAreGul/z8F0mI+xt9ok9n VBanFMm0dK2fmb1zl7bNmgGBdvoYIwGJnDpy2U6VB3en6uw0yvYbIQT0xo2dM39/ 73JrF61hIANI9wlroqCxiozyvEUCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTKuGye Q+iIXzKMZLSYoRByS2Li1zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv Y2VhZDViYzAtMjYyMC00NWJjLWI5N2ItYWRiMDAwMjBhNDI2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ADg gDANBgkqhkiG9w0BAQsFAAOCAQEAwW28lFvucaLYwHA3RghAO1ggTqczx5i4BL/1 w9wBOxp2MnCZQavHpJDUEr2+aoE9A1d9f2rkzhiTYZFUVI7gz8ayXSGTsxxEY6xj tFqCraCF4vbwsPXLKuKy8QVroj0dlyOR87dd+V9SEExKKXUmgQ3ux19Y1uFInqSn oZ0sepCFIP9OCZ0mFzk/qI+47QuQMVmuxqZkYkx0G/OdGDx68NZ+tQlpYJG/Pkg/ STOKojj1Khy3hkgGs5PeKnKUPxNKqL7R7ivMgkFStgsNpzsUrQgYeDyhL3OfeldK bmYUAtXa+7gnGUU3WEBJBBhj1pah5RN3Gv0E0z8N375qly60PQ== -----END CERTIFICATE-----Generated at Sat Dec 6 22:36:18 2025 by rpki-client