This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e0f2e0c7-6d9c-428b-85e5-6a924e7414db.roa File: e0f2e0c7-6d9c-428b-85e5-6a924e7414db.roa (raw, json) Hash identifier: 27Js7uANazSYWHuHQBLM4aONSDUfphCmoYnvzkOULgQ= Subject key identifier: 18:60:7E:F0:11:D6:D1:1D:50:6B:34:BC:4B:66:1A:BA:D1:40:9E:4B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 49DCB6E4EBB577C2546E0860729FD4BFBA2A3EFB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e0f2e0c7-6d9c-428b-85e5-6a924e7414db.roa Signing time: Tue 25 Nov 2025 20:00:45 +0000 ROA not before: Tue 25 Nov 2025 20:00:45 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:50c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:dc:b6:e4:eb:b5:77:c2:54:6e:08:60:72:9f:d4:bf:ba:2a:3e:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:00:45 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=a9ce4de916c0edbd486a739ccee46b47c46f013d302febca8baa83241bddac74, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4a:a3:b2:06:bf:ff:cc:b3:08:b7:67:07:08: 48:09:2d:1d:82:e8:19:89:75:bb:eb:1f:42:72:ff: 10:d9:af:13:9d:7a:f3:68:cd:4f:ee:d2:cc:cd:93: 8c:4b:4e:04:57:90:6d:76:6c:67:71:f1:20:5c:78: ad:b5:85:08:91:f7:de:3d:28:35:80:06:29:d0:4c: 6e:22:28:7d:e8:11:d7:51:1d:2f:80:ca:23:25:78: 85:9b:10:b8:37:85:9e:6a:df:3e:cb:b4:1f:17:47: 85:5d:25:eb:05:9a:85:63:08:70:fb:0b:d4:48:65: f4:68:b9:8d:68:0d:c1:32:c4:80:19:fb:00:5e:7e: 11:2e:50:97:17:77:0b:94:9d:51:35:12:4f:24:b0: 2f:6f:5b:b1:c2:c3:3d:f7:d3:df:4e:db:b1:90:c5: 0d:30:48:09:58:5b:c4:e8:d4:21:c8:d1:44:67:fd: bd:ea:e0:8c:22:8d:80:94:48:dc:07:00:53:2b:3d: 02:c5:72:7f:12:5a:3c:7a:26:aa:f0:88:5f:ad:3d: e4:da:c1:34:10:40:1c:96:25:97:fe:01:7c:07:59: ed:e4:93:60:96:ab:d1:c8:bd:c5:e8:93:99:1e:31: 1f:73:63:23:5b:ef:24:d6:da:53:5b:21:dc:d1:1b: b4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:60:7E:F0:11:D6:D1:1D:50:6B:34:BC:4B:66:1A:BA:D1:40:9E:4B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e0f2e0c7-6d9c-428b-85e5-6a924e7414db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:50c0::/46 Signature Algorithm: sha256WithRSAEncryption 3d:2c:7d:a6:9e:41:da:ed:27:8a:7c:12:fb:6a:21:e1:67:84: 6d:ab:1e:dd:01:e8:d7:00:fe:80:e3:3d:69:17:50:86:f6:47: d1:de:f7:44:ec:4b:2f:db:44:fa:cd:c7:e5:ec:56:3a:9b:9d: b3:17:00:d6:f8:ec:c4:75:57:8c:88:2d:b9:c6:c2:11:c1:26: 75:23:e5:69:17:c9:b7:2e:d1:33:03:07:c4:4d:17:32:f0:7d: 95:d9:05:04:6c:fc:bf:b9:1a:9e:55:df:ce:ef:a3:27:1a:0c: 96:fc:80:10:60:ff:ee:0e:5d:17:dd:82:cf:e4:60:07:d5:8a: d5:85:c3:56:77:b2:ae:ec:15:59:f7:42:65:94:b4:28:e8:47: a3:61:41:8c:92:20:13:0d:89:73:81:58:98:0f:93:13:2a:05: 68:9f:23:d3:ac:82:8b:7b:50:78:9a:c7:a9:8c:aa:96:5a:98: c5:b0:66:63:f7:b7:74:dd:60:57:4c:b9:b9:c4:53:80:c9:ec: ac:e1:f5:d8:36:54:71:ed:99:21:01:05:6f:2c:b9:08:f0:94: ee:e7:54:d9:22:46:2b:7d:20:c5:fd:ce:93:56:fb:76:d6:3b: e7:e1:83:cc:c6:92:7e:7e:40:d1:cc:88:b8:db:4e:d7:c1:ac: 91:35:92:3e -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUSdy25Ou1d8JUbghgcp/Uv7oqPvswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAwNDVaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQGE5Y2U0ZGU5MTZjMGVkYmQ0ODZhNzM5Y2NlZTQ2YjQ3YzQ2ZjAxM2QzMDJm ZWJjYThiYWE4MzI0MWJkZGFjNzQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALhKo7IGv//Mswi3ZwcISAktHYLoGYl1u+sfQnL/ENmvE51682jNT+7SzM2T jEtOBFeQbXZsZ3HxIFx4rbWFCJH33j0oNYAGKdBMbiIofegR11EdL4DKIyV4hZsQ uDeFnmrfPsu0HxdHhV0l6wWahWMIcPsL1Ehl9Gi5jWgNwTLEgBn7AF5+ES5Qlxd3 C5SdUTUSTySwL29bscLDPffT307bsZDFDTBICVhbxOjUIcjRRGf9vergjCKNgJRI 3AcAUys9AsVyfxJaPHomqvCIX6095NrBNBBAHJYll/4BfAdZ7eSTYJar0ci9xeiT mR4xH3NjI1vvJNbaU1sh3NEbtLUCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQYYH7w EdbRHVBrNLxLZhq60UCeSzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTBmMmUwYzctNmQ5Yy00MjhiLTg1ZTUtNmE5MjRlNzQxNGRiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HNQ wDANBgkqhkiG9w0BAQsFAAOCAQEAPSx9pp5B2u0ninwS+2oh4WeEbase3QHo1wD+ gOM9aRdQhvZH0d73ROxLL9tE+s3H5exWOpudsxcA1vjsxHVXjIgtucbCEcEmdSPl aRfJty7RMwMHxE0XMvB9ldkFBGz8v7kanlXfzu+jJxoMlvyAEGD/7g5dF92Cz+Rg B9WK1YXDVneyruwVWfdCZZS0KOhHo2FBjJIgEw2Jc4FYmA+TEyoFaJ8j06yCi3tQ eJrHqYyqllqYxbBmY/e3dN1gV0y5ucRTgMnsrOH12DZUce2ZIQEFbyy5CPCU7udU 2SJGK30gxf3Ok1b7dtY75+GDzMaSfn5A0cyIuNtO18GskTWSPg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:35 2025 by rpki-client