This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d7bcc124-bcd8-42ec-911f-1b551dceda68.roa File: d7bcc124-bcd8-42ec-911f-1b551dceda68.roa (raw, json) Hash identifier: Mu5pPGEaaT+rz3uY1BSYIFre9Ya3vV17jelJi0MRkMo= Subject key identifier: E3:99:20:9A:11:F3:C5:DD:EE:68:38:1E:C6:9F:12:7C:13:2D:9F:51 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 517C06373770E2A1BD4603A313315B96D733AB8A Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d7bcc124-bcd8-42ec-911f-1b551dceda68.roa Signing time: Sat 15 Nov 2025 05:40:11 +0000 ROA not before: Sat 15 Nov 2025 05:40:11 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07e:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:7c:06:37:37:70:e2:a1:bd:46:03:a3:13:31:5b:96:d7:33:ab:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:40:11 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=6d5aec105f0525afa31c843274abd776024de1bee75ee9f9999373fd879dbd46, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a3:77:82:ff:d1:84:00:21:6f:19:e4:05:9a: c4:52:aa:22:35:9c:ee:e9:bd:5f:91:a3:b6:73:03: a4:67:ec:89:13:8b:ee:e0:56:8d:c2:fd:8f:3c:70: bf:69:88:ee:e0:b4:7e:e4:6e:9e:f2:0d:e8:e4:8c: 78:04:a4:76:b4:2f:c3:a2:89:5c:0b:28:05:9d:8a: dd:22:62:d9:e8:b9:a7:96:ae:fd:51:89:65:ee:78: 88:ac:ff:3b:df:b5:94:16:c0:51:40:60:a2:b0:26: 2a:83:82:d3:af:29:4b:d4:bd:de:f6:10:ab:58:02: a4:ee:92:fe:d6:ea:96:3b:32:46:cb:e1:42:e5:0b: 2a:61:5b:c7:fa:bd:5f:03:30:e4:04:fb:03:62:e8: f1:bb:e8:68:0a:88:67:d4:4d:96:9f:8e:a3:1d:89: b1:77:5b:40:56:c5:39:2d:b5:99:23:b2:02:a2:2f: ba:73:da:b4:92:70:c1:99:7b:9f:c8:71:52:7a:7d: 8e:2d:3f:84:67:81:cc:90:38:85:dc:f7:a7:63:78: 41:1e:89:bc:d0:0a:3f:71:04:6b:31:67:9d:27:ce: 59:2c:18:22:f3:da:49:ed:9b:5f:8a:19:1b:28:b6: 68:11:2f:74:c3:fd:fe:1a:be:66:de:6d:a8:01:b2: c3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:99:20:9A:11:F3:C5:DD:EE:68:38:1E:C6:9F:12:7C:13:2D:9F:51 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d7bcc124-bcd8-42ec-911f-1b551dceda68.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07e:e000::/40 Signature Algorithm: sha256WithRSAEncryption 45:c5:38:a5:b0:b1:b9:c4:4d:d9:fd:e7:2e:99:5a:ee:cd:55: 95:ed:8e:b9:ea:89:ea:09:81:f0:b4:89:8c:f6:34:4a:88:d8: fc:b3:2d:eb:73:70:a1:03:55:f7:a0:12:d5:e0:d9:f9:4a:b2: 0c:c7:e1:ca:01:e5:70:ae:c4:69:c5:f6:19:18:1f:56:46:07: 30:30:4a:b4:9e:2f:b2:2b:80:1e:4b:5d:07:43:f7:94:e3:77: 72:8e:65:1d:c0:58:84:8e:bf:6a:e1:83:c7:0d:2a:25:ab:7c: f4:db:59:77:d2:7a:bb:d8:a9:ba:cf:5a:22:52:d8:14:1b:56: ad:70:d0:0e:07:b6:d2:50:79:73:2c:84:98:be:10:0b:d4:8c: fb:d9:a7:0d:fa:a3:a1:36:fa:24:3d:44:f7:e2:2a:f2:f2:73: 09:63:a8:7e:3c:de:f7:a2:7e:07:a7:74:89:94:62:0e:f9:10: df:84:3b:75:c4:81:2d:e9:5e:96:ab:6c:bb:d2:cc:d8:fc:69: 7c:54:94:7c:bb:3b:43:de:8a:3a:ed:a8:6b:9e:ee:49:fb:30: d9:4a:5e:ea:a3:97:e0:94:1b:d1:4c:3d:22:2f:81:f8:d4:fa: 5e:40:a9:39:b2:89:96:2a:66:db:94:40:56:3d:8d:17:2e:5b: 7a:b0:fd:c2 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUUXwGNzdw4qG9RgOjEzFbltczq4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQwMTFaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDZkNWFlYzEwNWYwNTI1YWZhMzFjODQzMjc0YWJkNzc2MDI0ZGUxYmVlNzVl ZTlmOTk5OTM3M2ZkODc5ZGJkNDYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWjd4L/0YQAIW8Z5AWaxFKqIjWc7um9X5GjtnMDpGfsiROL7uBWjcL9jzxw v2mI7uC0fuRunvIN6OSMeASkdrQvw6KJXAsoBZ2K3SJi2ei5p5au/VGJZe54iKz/ O9+1lBbAUUBgorAmKoOC068pS9S93vYQq1gCpO6S/tbqljsyRsvhQuULKmFbx/q9 XwMw5AT7A2Lo8bvoaAqIZ9RNlp+Oox2JsXdbQFbFOS21mSOyAqIvunPatJJwwZl7 n8hxUnp9ji0/hGeBzJA4hdz3p2N4QR6JvNAKP3EEazFnnSfOWSwYIvPaSe2bX4oZ Gyi2aBEvdMP9/hq+Zt5tqAGyw30CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTjmSCa EfPF3e5oOB7GnxJ8Ey2fUTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZDdiY2MxMjQtYmNkOC00MmVjLTkxMWYtMWI1NTFkY2VkYTY4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0H7g MA0GCSqGSIb3DQEBCwUAA4IBAQBFxTilsLG5xE3Z/ecumVruzVWV7Y656onqCYHw tImM9jRKiNj8sy3rc3ChA1X3oBLV4Nn5SrIMx+HKAeVwrsRpxfYZGB9WRgcwMEq0 ni+yK4AeS10HQ/eU43dyjmUdwFiEjr9q4YPHDSolq3z021l30nq72Km6z1oiUtgU G1atcNAOB7bSUHlzLISYvhAL1Iz72acN+qOhNvokPUT34iry8nMJY6h+PN73on4H p3SJlGIO+RDfhDt1xIEt6V6Wq2y70szY/Gl8VJR8uztD3oo67ahrnu5J+zDZSl7q o5fglBvRTD0iL4H41PpeQKk5somWKmbblEBWPY0XLlt6sP3C -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:10 2025 by rpki-client