This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e584cad3-b485-48b5-a920-636e55268d8b.roa File: e584cad3-b485-48b5-a920-636e55268d8b.roa (raw, json) Hash identifier: ZRv7eZ8mjVD0nSOarhrxrFub1gF5ikzdODccIlrzB/c= Subject key identifier: 25:38:AF:79:D5:B6:7D:02:39:FB:3E:A0:77:E1:2D:7E:D4:75:AD:50 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 49D9C1A8A790993E10C5A8AC42C9085B4D6FDD14 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e584cad3-b485-48b5-a920-636e55268d8b.roa Signing time: Sat 15 Nov 2025 06:20:39 +0000 ROA not before: Sat 15 Nov 2025 06:20:39 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:20c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d9:c1:a8:a7:90:99:3e:10:c5:a8:ac:42:c9:08:5b:4d:6f:dd:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:20:39 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=83efa560178c868aa87d227aa0c97c523721fe56ba78422f780a6de09c597449, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d4:20:7d:a9:a2:39:c3:2d:cc:6a:a4:da:7b: ef:bc:da:99:11:c9:ec:eb:0c:fa:2a:27:36:24:de: f3:8f:dc:75:bc:4f:ea:c5:98:6f:f5:86:e2:45:8c: b8:3b:1e:d0:6d:16:45:17:e1:7b:a6:4f:d7:61:cc: b0:4d:65:18:5f:46:9e:60:55:58:0a:98:4c:0e:15: 97:75:1b:5e:a2:f8:4f:00:0f:80:b1:8f:57:41:24: 14:02:13:4a:d4:77:1a:9e:95:6f:0d:ae:ed:73:21: 71:6b:6e:48:55:1e:96:d9:f9:ed:53:95:73:d6:50: 43:67:ea:8d:6f:6f:4f:73:28:d6:36:71:7f:cf:4a: 7e:2c:a5:60:4c:c9:ad:d2:b5:f8:32:41:16:29:93: a7:3f:1f:72:9e:8c:d2:f8:ff:11:05:35:80:d3:76: 88:77:a9:da:60:62:35:08:ca:be:5a:f3:c9:90:c2: 39:6e:2a:35:32:9b:2b:58:ce:65:66:79:c7:d7:db: 6b:00:12:09:5d:f1:fe:33:de:e4:6f:c5:01:bf:78: d2:48:45:d6:7b:06:84:4c:75:40:15:0c:dc:9b:c9: 7c:4f:c2:11:18:3a:0b:4d:26:18:e1:3e:df:ea:1b: 7c:d4:45:ec:58:3d:c1:8f:7c:20:33:f0:34:ec:6b: 8c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:38:AF:79:D5:B6:7D:02:39:FB:3E:A0:77:E1:2D:7E:D4:75:AD:50 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e584cad3-b485-48b5-a920-636e55268d8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:20c0::/48 Signature Algorithm: sha256WithRSAEncryption 61:64:ef:42:99:95:c1:dc:ae:f3:d9:7c:33:1c:c9:a0:aa:5b: 4e:a9:8a:3f:42:83:80:af:5b:b0:5c:25:d2:87:85:62:09:cc: 0e:b7:54:e2:41:82:29:19:c8:86:1a:21:55:6b:2d:02:83:9c: 90:3f:55:61:3f:bb:1d:a2:e7:83:05:f1:18:9e:02:b2:c7:ef: 7a:2e:92:d3:35:df:5a:ca:d9:05:0c:5b:6d:7b:c0:fc:87:a2: f4:ec:c3:24:88:2a:2c:0b:e8:b3:87:da:0f:cb:a2:47:fc:c7: cd:bb:01:f3:40:34:5c:1e:f6:a9:de:84:1e:0a:53:ee:48:64: a4:1f:b8:47:26:8a:ff:19:81:8a:46:f3:af:c0:a7:5c:29:6b: 90:2f:ef:24:aa:6c:51:9a:bc:93:bb:3e:0d:f9:ff:66:d4:72: fe:40:53:c8:2c:be:a7:d2:6e:d9:e9:ae:dd:a6:2f:a2:98:b4: 54:11:8d:38:ea:82:38:65:5c:20:7d:35:e3:44:24:20:b7:90: 15:04:95:f2:c0:6e:b0:3e:a5:45:3a:db:ea:27:b0:34:61:01: 01:0d:d3:d8:12:90:c3:bb:18:a2:46:c2:bf:64:40:ba:43:b6: 83:34:12:be:35:d8:36:60:f6:c1:ef:13:9c:a7:8f:0a:d7:50: d3:d7:cd:09 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUSdnBqKeQmT4QxaisQskIW01v3RQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjIwMzlaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDgzZWZhNTYwMTc4Yzg2OGFhODdkMjI3YWEwYzk3YzUyMzcyMWZlNTZiYTc4 NDIyZjc4MGE2ZGUwOWM1OTc0NDkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALfUIH2pojnDLcxqpNp777zamRHJ7OsM+ionNiTe84/cdbxP6sWYb/WG4kWM uDse0G0WRRfhe6ZP12HMsE1lGF9GnmBVWAqYTA4Vl3UbXqL4TwAPgLGPV0EkFAIT StR3Gp6Vbw2u7XMhcWtuSFUeltn57VOVc9ZQQ2fqjW9vT3Mo1jZxf89KfiylYEzJ rdK1+DJBFimTpz8fcp6M0vj/EQU1gNN2iHep2mBiNQjKvlrzyZDCOW4qNTKbK1jO ZWZ5x9fbawASCV3x/jPe5G/FAb940khF1nsGhEx1QBUM3JvJfE/CERg6C00mGOE+ 3+obfNRF7Fg9wY98IDPwNOxrjOECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQlOK95 1bZ9Ajn7PqB34S1+1HWtUDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTU4NGNhZDMtYjQ4NS00OGI1LWE5MjAtNjM2ZTU1MjY4ZDhiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H8g wDANBgkqhkiG9w0BAQsFAAOCAQEAYWTvQpmVwdyu89l8MxzJoKpbTqmKP0KDgK9b sFwl0oeFYgnMDrdU4kGCKRnIhhohVWstAoOckD9VYT+7HaLngwXxGJ4Cssfvei6S 0zXfWsrZBQxbbXvA/Iei9OzDJIgqLAvos4faD8uiR/zHzbsB80A0XB72qd6EHgpT 7khkpB+4RyaK/xmBikbzr8CnXClrkC/vJKpsUZq8k7s+Dfn/ZtRy/kBTyCy+p9Ju 2emu3aYvopi0VBGNOOqCOGVcIH0140QkILeQFQSV8sBusD6lRTrb6iewNGEBAQ3T 2BKQw7sYokbCv2RAukO2gzQSvjXYNmD2we8TnKePCtdQ09fNCQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:54 2025 by rpki-client