This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d58dbbef-7392-498d-b094-189de828de57.roa File: d58dbbef-7392-498d-b094-189de828de57.roa (raw, json) Hash identifier: UyUrlQV+jGADzHmcszUZkuMSDRpjtNslI2JZaALdvA4= Subject key identifier: A6:16:D0:0D:74:52:34:2B:06:97:A7:90:26:0D:74:B8:DE:E3:02:57 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 40C6F76B76D6EF6D180284EB3418870EF1CCAF53 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d58dbbef-7392-498d-b094-189de828de57.roa Signing time: Tue 25 Nov 2025 20:10:05 +0000 ROA not before: Tue 25 Nov 2025 20:10:05 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:c020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:c6:f7:6b:76:d6:ef:6d:18:02:84:eb:34:18:87:0e:f1:cc:af:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:10:05 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=2a14c1bdfa1ee9f9e24cb8216b113d655bb565bb3a55cfa6d87b473600d97ae7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b7:73:83:b0:4d:e0:d2:fc:97:b7:64:f0:aa: e4:2c:12:37:ac:e5:4b:12:84:71:3c:35:74:b8:dc: c5:5f:46:ac:f3:5d:ed:7e:54:3f:d4:52:71:c2:02: 62:a2:05:d1:a6:97:b1:3c:bf:5e:b6:13:71:de:57: 2c:5c:0e:89:43:ba:cb:0a:91:ac:7d:db:4d:1a:01: 3c:02:ab:c8:d7:2b:d1:45:f7:86:71:57:4a:b6:2a: 63:0b:4c:c6:ff:97:e8:36:4f:b5:32:80:90:6b:41: 0f:0e:52:58:85:81:0a:f7:4e:22:27:43:b0:ad:45: 29:1e:8b:69:99:59:f3:53:e3:cd:d4:c5:df:09:95: 51:a5:4b:43:69:8a:fb:ef:6f:e2:52:83:aa:8c:22: 49:a3:6b:34:ec:f4:47:9a:49:96:51:8d:38:02:b1: b2:79:94:c5:c9:ec:ce:1a:d9:94:47:11:7b:c7:ec: 61:98:bc:79:c1:c0:72:05:78:20:73:f3:06:30:12: 02:e8:c2:ea:fa:1f:d1:30:67:e9:9d:29:01:9f:10: c3:ad:b0:b0:e7:e6:ef:db:3e:b3:6d:52:a4:b6:e3: eb:f8:69:5a:c4:e9:92:cc:1b:6a:22:16:ba:1f:da: ce:e3:13:24:d8:22:1a:8d:83:ac:03:8a:77:ab:0c: 3d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:16:D0:0D:74:52:34:2B:06:97:A7:90:26:0D:74:B8:DE:E3:02:57 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d58dbbef-7392-498d-b094-189de828de57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:c020::/48 Signature Algorithm: sha256WithRSAEncryption 60:bd:85:ac:8d:c7:1a:d8:ee:8e:9c:f2:b4:4b:c3:0d:83:f2: b3:d6:39:e8:e1:fd:42:e9:06:62:a8:32:06:6d:8e:23:e3:15: 7b:1a:aa:df:07:e1:f9:da:56:e6:b3:a3:7b:24:ca:a6:ca:d8: 50:c2:75:80:32:1c:99:93:2b:cc:e7:3f:16:95:3a:01:a3:35: 7f:29:e0:a4:32:32:d6:f7:72:95:47:52:f7:1b:54:74:9b:58: b4:e6:3a:88:7b:76:17:54:6a:1b:0d:51:2c:59:6e:ef:9c:34: e8:09:38:aa:06:e4:18:09:47:eb:97:c0:08:2a:ff:16:c7:23: 38:cd:72:80:91:49:68:4a:d3:80:01:ad:00:65:ce:7f:8a:e8: 7e:73:5a:67:52:c6:0d:da:b2:38:3b:eb:b2:76:a6:c1:cc:71: 7f:47:1e:88:c4:e5:68:de:a9:22:8c:9e:ff:f5:73:b6:27:22: 07:7d:36:73:48:d8:9f:77:23:4d:bd:3e:8f:02:e1:b9:94:4e: ca:43:72:d6:3d:d8:47:ca:d2:da:8c:b2:6f:21:48:28:53:fa: d9:ee:23:54:6f:70:a7:e7:cd:2b:b1:f6:2b:d8:9b:82:9e:1f: 91:03:2b:98:bc:fa:90:ed:19:01:cb:e0:53:6b:7b:d5:cc:87: 5e:14:1d:d7 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUQMb3a3bW720YAoTrNBiHDvHMr1MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDEwMDVaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDJhMTRjMWJkZmExZWU5ZjllMjRjYjgyMTZiMTEzZDY1NWJiNTY1YmIzYTU1 Y2ZhNmQ4N2I0NzM2MDBkOTdhZTcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMO3c4OwTeDS/Je3ZPCq5CwSN6zlSxKEcTw1dLjcxV9GrPNd7X5UP9RSccIC YqIF0aaXsTy/XrYTcd5XLFwOiUO6ywqRrH3bTRoBPAKryNcr0UX3hnFXSrYqYwtM xv+X6DZPtTKAkGtBDw5SWIWBCvdOIidDsK1FKR6LaZlZ81PjzdTF3wmVUaVLQ2mK ++9v4lKDqowiSaNrNOz0R5pJllGNOAKxsnmUxcnszhrZlEcRe8fsYZi8ecHAcgV4 IHPzBjASAujC6vof0TBn6Z0pAZ8Qw62wsOfm79s+s21SpLbj6/hpWsTpkswbaiIW uh/azuMTJNgiGo2DrAOKd6sMPQsCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSmFtAN dFI0KwaXp5AmDXS43uMCVzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZDU4ZGJiZWYtNzM5Mi00OThkLWIwOTQtMTg5ZGU4MjhkZTU3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DHA IDANBgkqhkiG9w0BAQsFAAOCAQEAYL2FrI3HGtjujpzytEvDDYPys9Y56OH9QukG YqgyBm2OI+MVexqq3wfh+dpW5rOjeyTKpsrYUMJ1gDIcmZMrzOc/FpU6AaM1fyng pDIy1vdylUdS9xtUdJtYtOY6iHt2F1RqGw1RLFlu75w06Ak4qgbkGAlH65fACCr/ FscjOM1ygJFJaErTgAGtAGXOf4rofnNaZ1LGDdqyODvrsnamwcxxf0ceiMTlaN6p Ioye//VzticiB302c0jYn3cjTb0+jwLhuZROykNy1j3YR8rS2oyybyFIKFP62e4j VG9wp+fNK7H2K9ibgp4fkQMrmLz6kO0ZAcvgU2t71cyHXhQd1w== -----END CERTIFICATE-----Generated at Sat Dec 6 17:31:21 2025 by rpki-client