This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/da8369e9-0146-44b6-865e-0064a4d1ed72.roa File: da8369e9-0146-44b6-865e-0064a4d1ed72.roa (raw, json) Hash identifier: ZthVRkkkXduUroj2D81X/hcfHV+Dm0KJcS47Ye2PKK0= Subject key identifier: 80:0A:83:E0:54:07:F2:74:DF:6E:13:8B:30:26:18:1C:5A:CF:95:E3 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0ABCB621220C2555F0CE8BEC1D1878EF39CA42D2 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/da8369e9-0146-44b6-865e-0064a4d1ed72.roa Signing time: Sat 15 Nov 2025 05:30:35 +0000 ROA not before: Sat 15 Nov 2025 05:30:35 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:bc:b6:21:22:0c:25:55:f0:ce:8b:ec:1d:18:78:ef:39:ca:42:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:30:35 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=0256f3adcd70d7d7733aefeabe6a660c011c4c362d11625fbda46de09cd4ea96, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:87:8e:78:06:24:18:47:27:6a:ec:2b:f4:0a: f7:72:33:88:81:a5:8d:f6:be:58:f5:f1:0a:d6:f0: 50:1b:2e:c9:49:eb:19:9f:c0:0d:8f:29:2b:a0:14: 83:48:73:c1:b7:d1:5a:3f:95:76:8e:2a:4e:4b:5a: 46:6a:92:19:48:b7:cd:70:9f:cf:51:c8:c9:e4:77: 63:0b:e0:86:2e:2f:1e:ca:2f:24:24:7c:43:89:d1: d2:91:c2:01:2c:c8:9c:03:7d:dc:41:2a:62:de:2b: ef:d2:36:a4:17:94:07:49:5d:8c:8a:72:e3:1b:9c: a3:ab:88:2e:eb:b7:40:ea:e2:40:da:ba:37:4c:48: 4f:31:c8:ac:18:ed:91:e8:76:52:41:11:0e:30:44: e1:00:48:52:54:b7:54:c0:b7:87:47:ff:93:1b:4c: 83:43:43:bc:0f:b1:84:ac:c5:56:1b:e6:17:40:64: 8e:d8:e8:da:17:a8:8e:c0:af:aa:ec:a4:4e:71:e9: 12:27:34:02:28:92:64:92:a7:ed:13:80:7e:f0:cd: 8a:a2:dd:4f:d2:b4:82:8c:c9:7d:fe:66:a3:b4:0f: 99:f7:23:4f:d0:1a:a4:da:61:aa:36:74:f5:47:03: 84:62:72:60:52:b0:ca:d5:55:bd:71:50:47:1d:a3: 71:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:0A:83:E0:54:07:F2:74:DF:6E:13:8B:30:26:18:1C:5A:CF:95:E3 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/da8369e9-0146-44b6-865e-0064a4d1ed72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:6000::/40 Signature Algorithm: sha256WithRSAEncryption c7:fb:9b:c7:51:c6:65:a6:7a:45:f8:05:f8:85:5e:8d:ea:61: 18:ac:d3:92:ee:85:e1:8f:c9:23:c2:1a:31:52:b7:30:4e:1f: 57:a8:29:56:dc:f0:aa:3c:95:57:11:61:43:e4:4a:d9:d7:0d: 11:b4:be:44:f5:11:b2:3a:27:f5:a9:82:01:f8:49:de:cd:95: 05:7b:19:88:7b:39:95:d6:d0:c4:6d:5c:b3:7a:fc:59:ad:d6: 66:b4:a0:ab:aa:85:a6:0e:84:11:2f:44:af:3a:32:16:88:64: 46:02:74:3a:d0:f6:45:83:7c:a9:f6:e5:3d:f3:aa:f2:2e:ec: 0d:80:f2:7c:51:b0:d1:e1:c4:7b:83:a5:14:64:81:6d:bc:0c: e7:d6:5e:99:49:ba:59:05:f6:95:e6:5a:70:87:8f:cf:43:03: ee:f5:9d:b5:71:6c:be:d6:6e:03:7a:82:22:b1:62:a5:f8:db: 50:8e:a6:65:80:46:24:48:96:1c:d4:2c:f2:a4:03:a6:f8:d2: ac:99:f2:3d:49:3e:9d:78:d3:98:00:4f:f2:7c:a4:0c:7a:8d: 6b:ca:c4:f3:f1:18:ec:94:13:32:64:1b:c9:2c:95:7b:7d:ad: ac:ad:fa:2c:88:16:04:87:62:4b:22:96:ad:3f:5f:bf:d3:fe: 2d:63:6d:1a -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUCry2ISIMJVXwzovsHRh47znKQtIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMwMzVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDAyNTZmM2FkY2Q3MGQ3ZDc3MzNhZWZlYWJlNmE2NjBjMDExYzRjMzYyZDEx NjI1ZmJkYTQ2ZGUwOWNkNGVhOTYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+HjngGJBhHJ2rsK/QK93IziIGljfa+WPXxCtbwUBsuyUnrGZ/ADY8pK6AU g0hzwbfRWj+Vdo4qTktaRmqSGUi3zXCfz1HIyeR3Ywvghi4vHsovJCR8Q4nR0pHC ASzInAN93EEqYt4r79I2pBeUB0ldjIpy4xuco6uILuu3QOriQNq6N0xITzHIrBjt keh2UkERDjBE4QBIUlS3VMC3h0f/kxtMg0NDvA+xhKzFVhvmF0Bkjtjo2heojsCv quykTnHpEic0AiiSZJKn7ROAfvDNiqLdT9K0gozJff5mo7QPmfcjT9AapNphqjZ0 9UcDhGJyYFKwytVVvXFQRx2jcZMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSACoPg VAfydN9uE4swJhgcWs+V4zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZGE4MzY5ZTktMDE0Ni00NGI2LTg2NWUtMDA2NGE0ZDFlZDcyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DFg MA0GCSqGSIb3DQEBCwUAA4IBAQDH+5vHUcZlpnpF+AX4hV6N6mEYrNOS7oXhj8kj whoxUrcwTh9XqClW3PCqPJVXEWFD5ErZ1w0RtL5E9RGyOif1qYIB+EnezZUFexmI ezmV1tDEbVyzevxZrdZmtKCrqoWmDoQRL0SvOjIWiGRGAnQ60PZFg3yp9uU986ry LuwNgPJ8UbDR4cR7g6UUZIFtvAzn1l6ZSbpZBfaV5lpwh4/PQwPu9Z21cWy+1m4D eoIisWKl+NtQjqZlgEYkSJYc1CzypAOm+NKsmfI9ST6deNOYAE/yfKQMeo1rysTz 8RjslBMyZBvJLJV7fa2srfosiBYEh2JLIpatP1+/0/4tY20a -----END CERTIFICATE-----Generated at Sat Dec 6 22:36:48 2025 by rpki-client