This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d31e4b1b-0fa9-4549-a6fa-3a6eb94eef2c.roa File: d31e4b1b-0fa9-4549-a6fa-3a6eb94eef2c.roa (raw, json) Hash identifier: a+8806SMaa3M2ROeQiYl58HIMWMMEwSCzf7miQyuoF0= Subject key identifier: 66:6C:85:05:5A:4A:CE:0C:E8:5F:DC:E7:90:6B:CD:73:2C:9D:E3:A4 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4F98B9CFD5612008DDD4A64D523A92FF9CF47839 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d31e4b1b-0fa9-4549-a6fa-3a6eb94eef2c.roa Signing time: Tue 25 Nov 2025 20:01:02 +0000 ROA not before: Tue 25 Nov 2025 20:01:02 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:840::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:98:b9:cf:d5:61:20:08:dd:d4:a6:4d:52:3a:92:ff:9c:f4:78:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:01:02 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=aee6f88e4f19256f5a34e02bd4678140f96edb2de6fdc6e7e0a844cdea368df4, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:35:bc:df:b9:ad:a5:28:34:b3:66:4a:19:72: fa:1b:12:1f:7d:05:00:ab:91:d4:6a:1b:58:b1:6c: f9:01:a2:8b:d7:10:19:cb:a5:b5:8b:b3:61:ff:0b: 52:d1:e5:04:8b:16:ae:bb:a4:1b:10:5f:45:43:ee: 16:01:91:22:46:e5:98:f7:e0:4e:98:d0:1d:73:f4: 77:e6:97:54:41:3d:7f:34:4c:58:5c:9c:74:ef:12: f9:ad:53:01:e9:14:64:5f:82:36:c8:3b:2e:1a:e0: 67:66:44:6e:e2:16:ef:e9:06:c9:4b:93:43:98:cd: 81:3d:68:f8:d3:f0:87:2d:50:7a:8a:11:dd:d9:27: 23:5b:5d:4c:55:93:c8:0f:81:4e:d5:e6:7d:7f:3f: 06:d5:11:3d:a3:83:96:48:73:09:1c:d3:49:90:47: 85:47:6d:d7:a7:f7:ff:fc:8e:1b:44:ac:6d:c8:8f: 07:d9:ef:f5:2a:5d:df:78:aa:e4:a5:b0:d0:cf:f9: fc:4f:ae:cc:35:9b:3f:f0:60:9d:da:06:60:70:0b: 76:a6:88:23:e2:a8:e9:99:d9:a7:f8:38:e4:0e:2d: d5:b0:b0:ce:80:26:1d:33:83:bb:5e:b5:d3:8e:3f: a7:15:41:4e:70:fc:13:8c:e4:13:81:7f:de:de:2c: b0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:6C:85:05:5A:4A:CE:0C:E8:5F:DC:E7:90:6B:CD:73:2C:9D:E3:A4 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d31e4b1b-0fa9-4549-a6fa-3a6eb94eef2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:840::/46 Signature Algorithm: sha256WithRSAEncryption 8c:fe:2c:5e:ee:ab:00:c9:e9:19:ed:1c:b8:a8:cd:4f:c3:e8: f4:f4:2e:4e:d6:b6:6b:ef:f2:48:90:00:65:cc:16:13:d1:8a: 1f:2d:47:d8:85:07:87:44:92:a8:a9:a5:1a:08:5a:21:63:8f: 02:57:a1:fa:38:b8:a6:2f:bf:d5:62:75:d5:ab:0b:a5:2e:28: 5f:c5:75:b9:29:ce:33:f6:95:ae:c0:bd:f1:91:77:4c:62:e1: 1b:6a:1f:92:ba:7f:a2:dc:3c:72:6a:25:93:1e:44:a0:b3:72: 84:df:90:e2:c4:6c:2d:80:cd:f4:ba:b9:4f:6b:ca:e7:5a:68: 82:28:7b:5d:c5:b9:39:f8:1c:08:49:cd:04:0a:cc:fa:bb:d2: 89:7b:db:66:74:30:4c:d7:91:14:03:90:38:6b:cb:42:34:8e: 6a:d1:17:41:16:a9:a2:1e:a2:ed:32:8f:6f:8e:27:23:a3:7f: 74:b0:55:f8:be:ba:d8:9a:a4:79:72:47:ec:b1:c2:fc:49:9c: 06:2b:b6:e5:11:4c:34:59:45:c4:80:f3:6b:ae:7d:57:77:41: 82:e8:fb:01:a0:3c:bc:58:a0:1d:c9:7b:d0:9a:13:a0:00:85: ba:13:db:ad:e5:eb:8e:88:d9:b9:f4:dd:e1:f9:26:55:e3:ff: e7:4e:40:07 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUT5i5z9VhIAjd1KZNUjqS/5z0eDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAxMDJaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQGFlZTZmODhlNGYxOTI1NmY1YTM0ZTAyYmQ0Njc4MTQwZjk2ZWRiMmRlNmZk YzZlN2UwYTg0NGNkZWEzNjhkZjQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKM1vN+5raUoNLNmShly+hsSH30FAKuR1GobWLFs+QGii9cQGcultYuzYf8L UtHlBIsWrrukGxBfRUPuFgGRIkblmPfgTpjQHXP0d+aXVEE9fzRMWFycdO8S+a1T AekUZF+CNsg7LhrgZ2ZEbuIW7+kGyUuTQ5jNgT1o+NPwhy1QeooR3dknI1tdTFWT yA+BTtXmfX8/BtURPaODlkhzCRzTSZBHhUdt16f3//yOG0SsbciPB9nv9Spd33iq 5KWw0M/5/E+uzDWbP/BgndoGYHALdqaII+Ko6ZnZp/g45A4t1bCwzoAmHTODu161 044/pxVBTnD8E4zkE4F/3t4ssB0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRmbIUF WkrODOhf3OeQa81zLJ3jpDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZDMxZTRiMWItMGZhOS00NTQ5LWE2ZmEtM2E2ZWI5NGVlZjJjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HMI QDANBgkqhkiG9w0BAQsFAAOCAQEAjP4sXu6rAMnpGe0cuKjNT8Po9PQuTta2a+/y SJAAZcwWE9GKHy1H2IUHh0SSqKmlGghaIWOPAleh+ji4pi+/1WJ11asLpS4oX8V1 uSnOM/aVrsC98ZF3TGLhG2ofkrp/otw8cmolkx5EoLNyhN+Q4sRsLYDN9Lq5T2vK 51pogih7XcW5OfgcCEnNBArM+rvSiXvbZnQwTNeRFAOQOGvLQjSOatEXQRapoh6i 7TKPb44nI6N/dLBV+L662JqkeXJH7LHC/EmcBiu25RFMNFlFxIDza659V3dBguj7 AaA8vFigHcl70JoToACFuhPbreXrjojZufTd4fkmVeP/505ABw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:11 2025 by rpki-client