This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e2d9776f-9750-4d76-93f4-210836f1105b.roa File: e2d9776f-9750-4d76-93f4-210836f1105b.roa (raw, json) Hash identifier: JJ3ij5u86RKTO1pQ4H+Rh5QhnEj5Xbh5SvF/Yws5SMI= Subject key identifier: 6E:16:43:58:82:32:51:EF:0A:30:C9:73:63:45:F0:D1:CF:4E:79:78 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 7E2DAEFA537233341647BBF0C8026219325BE4F3 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e2d9776f-9750-4d76-93f4-210836f1105b.roa Signing time: Tue 25 Nov 2025 20:00:04 +0000 ROA not before: Tue 25 Nov 2025 20:00:04 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:c020::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2d:ae:fa:53:72:33:34:16:47:bb:f0:c8:02:62:19:32:5b:e4:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:00:04 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=5f896960bed9ff8c242b48f50ec6061b4c7654ddd5ff188cead42131ac7f1a3c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:81:39:dd:c1:5d:eb:5d:b9:03:ce:31:00:00: 00:54:70:63:fd:94:5c:96:74:a5:50:e0:4f:28:6d: fa:9a:d6:eb:92:3f:d4:d4:1b:82:9b:b2:d8:c8:af: ab:8a:8b:45:21:3c:e0:cb:7e:cf:94:3c:eb:25:de: 67:56:0f:8b:22:53:14:c5:3e:98:68:12:43:2e:5e: c4:e9:13:a7:c5:df:5d:6c:bd:80:c1:46:bb:91:03: cc:66:aa:b8:c0:07:54:19:1d:ca:3f:4a:e4:83:c0: 52:6f:58:30:38:05:99:a9:d5:f1:54:cd:dd:58:7e: 3b:f9:73:2d:93:59:a7:fc:e0:a1:b3:c1:8a:4d:7e: e3:3b:3d:1e:4b:60:2f:e7:f2:db:56:e8:12:c8:70: 3f:b2:91:69:3c:36:56:7f:92:fc:b5:0f:99:2a:af: a0:3a:d5:75:77:98:20:67:91:88:49:7b:2d:70:5a: c2:85:2d:ea:41:64:8f:fb:2b:c0:d5:c3:7a:84:0b: 02:2b:19:51:1f:19:70:6f:9d:9e:83:62:a3:4e:08: 41:57:7f:81:b7:e8:6e:44:4f:27:b7:bb:9e:dd:08: df:4b:02:04:8b:54:69:64:73:fd:20:71:13:bb:e6: 6f:d3:98:6c:25:35:40:df:41:6a:41:93:23:75:13: d8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:16:43:58:82:32:51:EF:0A:30:C9:73:63:45:F0:D1:CF:4E:79:78 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e2d9776f-9750-4d76-93f4-210836f1105b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:c020::/46 Signature Algorithm: sha256WithRSAEncryption 8f:16:6b:b8:80:08:2b:75:da:11:9a:b5:4c:e3:63:3f:71:92: 0b:31:da:4d:4b:02:7f:69:e5:1f:68:a8:a4:2f:9e:9e:c1:bb: 28:b6:89:6d:37:31:a7:8a:27:90:ab:a5:1c:be:c4:06:ea:01: f2:31:dc:8e:0a:db:60:6c:b8:de:b9:04:0c:3b:a0:ff:d0:ea: a4:22:0e:8a:8d:98:ab:57:5b:bf:25:88:c4:23:0f:13:3f:9f: c3:1b:8e:22:87:c6:63:35:fe:60:60:de:f0:a0:29:ea:ab:65: ad:87:d4:10:84:4d:30:98:ca:e7:1d:4e:aa:bf:4f:65:37:6e: 16:14:c1:e2:1f:51:39:c3:a8:2b:2c:98:83:63:dc:3e:69:7a: 45:c4:16:aa:2c:c7:e4:f7:7d:54:b7:e5:6a:fd:12:67:8d:70: 79:1d:06:9a:a1:85:15:15:50:e7:c5:4d:ad:ef:a0:e9:c2:5a: 7b:a2:71:83:87:ed:0d:4a:1a:35:a8:98:9c:cc:b9:dc:9d:21: 80:9d:c8:04:bd:09:e9:62:d2:3f:78:08:62:5c:e8:3e:90:03: 28:66:65:6b:28:59:66:14:1a:2e:82:24:51:7f:7e:7f:aa:5d: da:55:71:ce:fa:d0:09:94:db:01:7a:6d:29:98:78:0b:6c:26: 70:49:f0:d5 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUfi2u+lNyMzQWR7vwyAJiGTJb5PMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDAwMDRaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDVmODk2OTYwYmVkOWZmOGMyNDJiNDhmNTBlYzYwNjFiNGM3NjU0ZGRkNWZm MTg4Y2VhZDQyMTMxYWM3ZjFhM2MxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANSBOd3BXetduQPOMQAAAFRwY/2UXJZ0pVDgTyht+prW65I/1NQbgpuy2Miv q4qLRSE84Mt+z5Q86yXeZ1YPiyJTFMU+mGgSQy5exOkTp8XfXWy9gMFGu5EDzGaq uMAHVBkdyj9K5IPAUm9YMDgFmanV8VTN3Vh+O/lzLZNZp/zgobPBik1+4zs9Hktg L+fy21boEshwP7KRaTw2Vn+S/LUPmSqvoDrVdXeYIGeRiEl7LXBawoUt6kFkj/sr wNXDeoQLAisZUR8ZcG+dnoNio04IQVd/gbfobkRPJ7e7nt0I30sCBItUaWRz/SBx E7vmb9OYbCU1QN9BakGTI3UT2KcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRuFkNY gjJR7wowyXNjRfDRz055eDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTJkOTc3NmYtOTc1MC00ZDc2LTkzZjQtMjEwODM2ZjExMDViLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HPA IDANBgkqhkiG9w0BAQsFAAOCAQEAjxZruIAIK3XaEZq1TONjP3GSCzHaTUsCf2nl H2iopC+ensG7KLaJbTcxp4onkKulHL7EBuoB8jHcjgrbYGy43rkEDDug/9DqpCIO io2Yq1dbvyWIxCMPEz+fwxuOIofGYzX+YGDe8KAp6qtlrYfUEIRNMJjK5x1Oqr9P ZTduFhTB4h9ROcOoKyyYg2PcPml6RcQWqizH5Pd9VLflav0SZ41weR0GmqGFFRVQ 58VNre+g6cJae6Jxg4ftDUoaNaiYnMy53J0hgJ3IBL0J6WLSP3gIYlzoPpADKGZl ayhZZhQaLoIkUX9+f6pd2lVxzvrQCZTbAXptKZh4C2wmcEnw1Q== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:03 2025 by rpki-client