This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e5179068-cbcf-4f9a-864d-3c97430c84f4.roa File: e5179068-cbcf-4f9a-864d-3c97430c84f4.roa (raw, json) Hash identifier: 64CehKjycWVY6Ud9RvYXf45rRclgip18xPggDh48cug= Subject key identifier: F1:50:42:61:88:34:C2:5A:28:25:C3:B1:C8:E3:12:0E:7F:29:3A:DE Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 7551BAABF70E1F74FFE467FCA39920557C5D5B5C Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e5179068-cbcf-4f9a-864d-3c97430c84f4.roa Signing time: Sat 15 Nov 2025 06:30:50 +0000 ROA not before: Sat 15 Nov 2025 06:30:50 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d015::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:51:ba:ab:f7:0e:1f:74:ff:e4:67:fc:a3:99:20:55:7c:5d:5b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:30:50 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=d2643fb5f477b9e299a7b6767c90176cad3cd6ac970841c1fd93d4421d958ddb, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:36:0b:6f:b4:af:8d:97:80:1e:03:38:89:7f: de:a1:a7:13:86:3a:82:9f:07:ee:4d:d5:c4:d4:03: 9d:b4:e9:27:95:bc:ac:e5:30:e7:76:cd:e8:80:af: 0d:eb:39:72:d7:1d:95:99:69:56:19:0f:c1:bc:d9: 27:e3:35:7f:da:ee:c0:ef:8a:83:7d:f6:3d:f7:ad: 50:59:11:4f:15:42:b4:d2:74:e4:6e:1c:03:fe:19: 6f:f0:3a:23:ae:fc:e6:6d:d7:47:96:80:f8:af:5f: 82:65:d1:7c:f4:32:a1:1c:8d:e7:20:04:a8:2d:f1: a3:e7:14:5c:4e:53:bc:18:9d:84:0d:44:e9:06:f8: aa:ed:a9:e3:cb:3b:ba:07:db:31:93:01:39:b4:0b: c7:5a:92:5b:46:fd:66:49:2c:c6:b1:c9:15:4b:9e: c6:15:24:52:19:dd:b4:fd:93:ac:25:36:43:75:72: e4:8f:40:ea:48:ae:18:69:fd:0f:fe:09:8f:1f:ea: 8a:8f:c3:63:cf:82:01:26:80:47:2c:58:53:6c:0c: c1:fe:c8:4d:90:0c:a3:f4:e8:69:de:44:46:c5:4e: 33:83:cf:c2:d9:7e:66:d6:13:26:9c:4b:51:81:aa: c5:9c:3f:c7:cd:53:bd:e0:c9:b6:03:4a:0b:8b:aa: a5:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:50:42:61:88:34:C2:5A:28:25:C3:B1:C8:E3:12:0E:7F:29:3A:DE X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e5179068-cbcf-4f9a-864d-3c97430c84f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d015::/38 Signature Algorithm: sha256WithRSAEncryption b2:1c:4d:23:89:f6:09:cb:72:7a:f9:a4:ec:8a:93:e3:84:ba: 66:10:25:62:98:16:ce:03:5a:16:d3:55:3e:8d:37:ee:ad:a4: 68:c1:5a:ee:fa:4c:3c:35:70:a3:e6:a8:dc:69:63:bd:40:23: 7c:93:fc:1a:50:fc:1d:2d:c6:b4:69:3c:71:89:3f:b0:6d:0d: 48:c5:0a:b8:fa:16:16:79:91:6b:f3:3f:43:05:74:2c:ad:ea: e1:99:b6:0a:2e:cc:50:a7:23:8d:76:7f:51:fc:fe:dc:e2:29: 5e:64:8c:e0:6c:ac:0c:76:da:0e:f5:24:7b:87:7a:d5:26:8b: 95:47:96:d4:56:92:f5:23:14:0d:5f:49:40:fb:eb:e7:ff:ac: 72:d0:74:23:e5:7a:06:e5:9f:ef:16:80:a8:ba:7e:25:7d:ba: 19:7e:82:30:4f:7c:a1:f3:07:91:15:d5:2e:8f:59:fa:04:27: 85:b5:bd:81:88:19:d5:ad:05:e3:82:18:16:5d:a3:19:41:fb: 6c:13:5b:2a:78:21:f5:11:d4:ef:13:2e:b7:cc:20:df:25:c4: fb:dc:c3:bd:f7:a2:e0:24:cc:4a:ed:9d:2a:be:cc:3e:95:22: 50:6c:9d:ef:9b:c1:dc:9f:07:34:76:42:3e:3f:95:84:bd:96: f8:2f:b3:4d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUdVG6q/cOH3T/5Gf8o5kgVXxdW1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjMwNTBaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGQyNjQzZmI1ZjQ3N2I5ZTI5OWE3YjY3NjdjOTAxNzZjYWQzY2Q2YWM5NzA4 NDFjMWZkOTNkNDQyMWQ5NThkZGIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOo2C2+0r42XgB4DOIl/3qGnE4Y6gp8H7k3VxNQDnbTpJ5W8rOUw53bN6ICv Des5ctcdlZlpVhkPwbzZJ+M1f9ruwO+Kg332PfetUFkRTxVCtNJ05G4cA/4Zb/A6 I6785m3XR5aA+K9fgmXRfPQyoRyN5yAEqC3xo+cUXE5TvBidhA1E6Qb4qu2p48s7 ugfbMZMBObQLx1qSW0b9ZkksxrHJFUuexhUkUhndtP2TrCU2Q3Vy5I9A6kiuGGn9 D/4Jjx/qio/DY8+CASaARyxYU2wMwf7ITZAMo/Toad5ERsVOM4PPwtl+ZtYTJpxL UYGqxZw/x81TveDJtgNKC4uqpR8CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTxUEJh iDTCWiglw7HI4xIOfyk63jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTUxNzkwNjgtY2JjZi00ZjlhLTg2NGQtM2M5NzQzMGM4NGY0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAioF0BUA MA0GCSqGSIb3DQEBCwUAA4IBAQCyHE0jifYJy3J6+aTsipPjhLpmECVimBbOA1oW 01U+jTfuraRowVru+kw8NXCj5qjcaWO9QCN8k/waUPwdLca0aTxxiT+wbQ1IxQq4 +hYWeZFr8z9DBXQsrerhmbYKLsxQpyONdn9R/P7c4ileZIzgbKwMdtoO9SR7h3rV JouVR5bUVpL1IxQNX0lA++vn/6xy0HQj5XoG5Z/vFoCoun4lfboZfoIwT3yh8weR FdUuj1n6BCeFtb2BiBnVrQXjghgWXaMZQftsE1sqeCH1EdTvEy63zCDfJcT73MO9 96LgJMxK7Z0qvsw+lSJQbJ3vm8Hcnwc0dkI+P5WEvZb4L7NN -----END CERTIFICATE-----Generated at Sat Dec 6 17:30:43 2025 by rpki-client