This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d6931f13-0c44-4edc-b1b7-89dc8e035321.roa File: d6931f13-0c44-4edc-b1b7-89dc8e035321.roa (raw, json) Hash identifier: NdyfR0IaueCxjmzqK7x8MomJ/ttNfhz8182IXBQOhSc= Subject key identifier: 8C:AE:61:77:27:91:87:93:7F:11:CB:0E:B9:F7:EB:38:B6:99:09:E1 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 7470313E743538C81C80478D54F013ECB29C55B4 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d6931f13-0c44-4edc-b1b7-89dc8e035321.roa Signing time: Sat 15 Nov 2025 05:40:06 +0000 ROA not before: Sat 15 Nov 2025 05:40:06 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d058::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:70:31:3e:74:35:38:c8:1c:80:47:8d:54:f0:13:ec:b2:9c:55:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:40:06 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=384bf146971361700583de38b80fc6e628897b16e34d763570c8a768203b9d79, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e0:a2:32:2b:4c:27:f1:69:d7:ef:aa:b7:72: a0:04:a5:49:2d:d6:7c:a0:05:56:f3:41:71:60:77: 4e:a8:25:9a:19:73:d2:11:17:6d:0d:34:28:3a:d3: d2:24:ed:f5:d9:e0:00:62:41:7d:96:68:fa:bd:55: 6f:bb:ef:10:51:ad:da:9e:98:98:12:ea:e0:dd:52: 3c:ce:18:b2:3e:ab:01:12:60:3f:0c:e0:dd:df:52: 29:67:a4:b9:2b:38:eb:c3:c2:94:1d:09:3d:4f:24: da:00:d0:95:62:ca:c8:6d:ff:ed:66:83:95:de:ab: 2f:19:da:c0:95:d4:9e:73:6b:66:fb:58:72:ed:2c: bd:7f:30:b1:b3:55:17:8a:1a:9d:b9:4b:92:44:4e: 11:f9:ee:35:f2:99:4b:95:06:73:97:ed:c5:4d:92: 4b:d6:29:76:be:cc:d6:f8:13:c4:62:f4:74:f2:d6: 4b:02:84:a2:80:e2:c2:d1:45:8a:20:ba:79:a6:5a: 5c:76:bb:aa:03:8e:15:d1:7a:1a:8a:3e:f3:4f:36: 1f:6d:46:d2:e9:24:26:23:7f:dd:bf:c0:be:ae:fc: 58:f6:02:78:44:17:e2:ae:ab:f3:7f:f3:ad:b4:74: f3:7e:7b:0e:e2:1b:8e:04:8d:94:8b:5b:01:8b:21: f8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:AE:61:77:27:91:87:93:7F:11:CB:0E:B9:F7:EB:38:B6:99:09:E1 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d6931f13-0c44-4edc-b1b7-89dc8e035321.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d058::/32 Signature Algorithm: sha256WithRSAEncryption 4b:4f:e1:57:14:df:b9:dd:c2:48:ec:94:39:a7:16:3a:6f:7f: 81:b0:f3:64:9b:64:4b:5d:3c:31:1e:cd:81:a1:85:4d:9a:ad: b1:0f:55:7a:b9:93:f1:4f:5f:5e:fc:3e:fb:49:b8:fc:fd:f8: 57:c7:9f:07:f0:7b:88:4b:22:bd:04:d5:ae:d5:b3:34:a5:e7: a7:dd:1c:f4:f7:53:48:61:30:f4:66:73:eb:ce:29:9b:4f:ce: b1:70:f1:ac:35:1c:d0:09:24:81:9c:01:e9:a5:e6:c6:07:ca: fa:eb:f9:fb:79:c6:90:96:0f:d0:02:94:b3:5b:b7:6c:b9:4f: 09:44:35:60:2d:3c:b0:dd:48:fe:04:09:f4:b4:04:4f:d4:c1: 6f:32:90:8a:12:e6:9c:cd:ee:51:76:62:f3:ab:26:74:81:a1: 7b:5a:8f:37:c0:db:96:52:a0:b6:35:6c:db:97:83:a5:88:0e: 85:72:a6:e3:06:e3:76:e9:4f:ee:46:79:87:19:6f:92:d7:7f: d0:df:99:2a:de:8c:7c:7b:8e:57:c2:9a:24:90:ee:a5:b8:64: 66:13:0a:75:5c:68:5c:18:f9:ac:ba:83:06:ea:ac:07:30:82: 37:44:00:95:d0:a5:bd:c4:d3:4d:9e:5b:b7:df:a4:9f:c8:75: ce:54:84:1d -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUdHAxPnQ1OMgcgEeNVPAT7LKcVbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQwMDZaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDM4NGJmMTQ2OTcxMzYxNzAwNTgzZGUzOGI4MGZjNmU2Mjg4OTdiMTZlMzRk NzYzNTcwYzhhNzY4MjAzYjlkNzkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO3gojIrTCfxadfvqrdyoASlSS3WfKAFVvNBcWB3Tqglmhlz0hEXbQ00KDrT 0iTt9dngAGJBfZZo+r1Vb7vvEFGt2p6YmBLq4N1SPM4Ysj6rARJgPwzg3d9SKWek uSs468PClB0JPU8k2gDQlWLKyG3/7WaDld6rLxnawJXUnnNrZvtYcu0svX8wsbNV F4oanblLkkROEfnuNfKZS5UGc5ftxU2SS9Ypdr7M1vgTxGL0dPLWSwKEooDiwtFF iiC6eaZaXHa7qgOOFdF6Goo+8082H21G0ukkJiN/3b/Avq78WPYCeEQX4q6r83/z rbR08357DuIbjgSNlItbAYsh+CcCAwEAAaOCAiIwggIeMB0GA1UdDgQWBBSMrmF3 J5GHk38Ryw659+s4tpkJ4TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZDY5MzFmMTMtMGM0NC00ZWRjLWIxYjctODlkYzhlMDM1MzIxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoF0Fgw DQYJKoZIhvcNAQELBQADggEBAEtP4VcU37ndwkjslDmnFjpvf4Gw82SbZEtdPDEe zYGhhU2arbEPVXq5k/FPX178PvtJuPz9+FfHnwfwe4hLIr0E1a7VszSl56fdHPT3 U0hhMPRmc+vOKZtPzrFw8aw1HNAJJIGcAeml5sYHyvrr+ft5xpCWD9AClLNbt2y5 TwlENWAtPLDdSP4ECfS0BE/UwW8ykIoS5pzN7lF2YvOrJnSBoXtajzfA25ZSoLY1 bNuXg6WIDoVypuMG43bpT+5GeYcZb5LXf9DfmSrejHx7jlfCmiSQ7qW4ZGYTCnVc aFwY+ay6gwbqrAcwgjdEAJXQpb3E002eW7ffpJ/Idc5UhB0= -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:20 2025 by rpki-client