This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e584cad3-b485-48b5-a920-636e55268d8b.roa File: e584cad3-b485-48b5-a920-636e55268d8b.roa (raw, json) Hash identifier: x+qf4XwK17Bxyz85RbuyRaKc3RvtRbD5sSXqRcwEpEw= Subject key identifier: 15:9B:BC:23:8B:B1:DC:9A:09:68:CE:35:5D:8C:DA:56:C0:E9:07:C9 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5AF0C1923EF502D428ADE9EAEDC10EC028868550 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e584cad3-b485-48b5-a920-636e55268d8b.roa Signing time: Wed 10 Dec 2025 06:11:03 +0000 ROA not before: Wed 10 Dec 2025 06:11:03 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:20c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f0:c1:92:3e:f5:02:d4:28:ad:e9:ea:ed:c1:0e:c0:28:86:85:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:11:03 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=cf70a13b63af27c80482b28d199818f844e497e04853f1eb8b4cac97343fb823, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:19:bc:4f:ca:20:c4:dd:f6:17:3f:29:92:01: 73:b6:90:0b:b0:6e:e3:ef:a9:09:25:ba:cb:1b:7d: a6:6f:d3:ae:4a:59:a0:23:57:59:37:f7:97:09:f0: 3f:63:86:5e:df:08:fc:16:61:c2:da:c5:d9:ac:b9: fe:14:d2:25:e6:a5:cb:7d:81:b6:00:ca:c2:26:5f: 51:c3:37:18:12:1f:f9:2a:38:df:ad:51:07:42:c1: dd:54:6e:74:e3:85:e5:21:d1:3a:32:cd:be:a5:60: 93:21:4b:e6:25:da:a1:ed:cf:8f:30:f3:4c:d9:01: eb:c4:1a:5f:62:7f:3f:ca:88:7e:6e:8b:39:9c:d7: 8d:f6:ca:0f:08:c5:63:b4:bc:0a:78:71:8a:23:8f: 70:48:d0:2a:da:02:39:a9:49:87:13:e8:c0:4a:8e: 40:12:d6:ae:76:01:2a:17:1c:65:0a:43:31:1c:60: 98:53:9c:ef:b6:62:93:0c:33:53:84:6d:22:ce:60: ab:95:8a:52:83:61:13:bb:8a:50:4f:e8:81:f1:33: 42:83:0b:2e:9f:7f:da:cc:0b:8a:35:c3:74:13:df: 37:6f:e3:ab:d4:41:76:94:2b:71:b5:d0:b6:71:de: e0:d2:76:18:5d:41:90:3c:4a:a8:ff:77:0c:b3:af: 28:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:9B:BC:23:8B:B1:DC:9A:09:68:CE:35:5D:8C:DA:56:C0:E9:07:C9 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e584cad3-b485-48b5-a920-636e55268d8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:20c0::/48 Signature Algorithm: sha256WithRSAEncryption 4a:e9:3d:aa:b2:87:55:36:3e:4d:c8:93:81:a2:3c:7f:7f:95: 55:ae:52:ed:60:bf:41:61:67:ba:5d:1a:02:dc:13:96:62:60: 5d:0e:9b:8a:00:cf:72:02:2e:71:cf:38:a2:0c:b9:c6:92:b8: 2e:8a:b5:f0:85:2e:0a:58:f4:aa:94:52:78:83:d6:2c:2e:15: 1d:7c:0b:16:38:14:ce:8d:b5:4d:b3:32:3e:d9:3e:bc:5a:ab: fa:28:52:50:a7:0b:7c:62:a1:90:77:7d:e1:99:df:16:f0:f5: 8c:77:bf:2b:86:eb:c6:25:88:ac:45:36:b4:71:17:6b:31:10: 02:61:e7:39:f0:5d:de:45:57:da:1b:19:c8:46:62:6f:91:09: 7f:e2:a3:0b:d0:81:85:b8:ec:63:33:cd:18:8d:56:c6:4b:5b: 0d:62:34:7f:2d:e7:59:f9:1a:29:82:07:10:00:e8:a5:55:0f: e2:72:6e:ba:9b:a5:71:10:02:c6:76:b0:3e:ed:90:42:1d:03: 56:37:c0:7d:a7:82:7e:c1:88:ff:a7:9a:14:bb:f2:f9:b1:3e: 15:e1:76:8b:bb:a1:d8:a9:6f:68:0f:fa:a7:fc:57:20:d3:c6: 99:6b:9a:10:0b:39:d1:2d:a8:25:6c:3d:f2:45:4e:ae:3c:9e: cd:b3:75:c2 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUWvDBkj71AtQorenq7cEOwCiGhVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjExMDNaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGNmNzBhMTNiNjNhZjI3YzgwNDgyYjI4ZDE5OTgxOGY4NDRlNDk3ZTA0ODUz ZjFlYjhiNGNhYzk3MzQzZmI4MjMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJwZvE/KIMTd9hc/KZIBc7aQC7Bu4++pCSW6yxt9pm/TrkpZoCNXWTf3lwnw P2OGXt8I/BZhwtrF2ay5/hTSJealy32BtgDKwiZfUcM3GBIf+So4361RB0LB3VRu dOOF5SHROjLNvqVgkyFL5iXaoe3PjzDzTNkB68QaX2J/P8qIfm6LOZzXjfbKDwjF Y7S8CnhxiiOPcEjQKtoCOalJhxPowEqOQBLWrnYBKhccZQpDMRxgmFOc77Zikwwz U4RtIs5gq5WKUoNhE7uKUE/ogfEzQoMLLp9/2swLijXDdBPfN2/jq9RBdpQrcbXQ tnHe4NJ2GF1BkDxKqP93DLOvKDECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQVm7wj i7HcmglozjVdjNpWwOkHyTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTU4NGNhZDMtYjQ4NS00OGI1LWE5MjAtNjM2ZTU1MjY4ZDhiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H8g wDANBgkqhkiG9w0BAQsFAAOCAQEASuk9qrKHVTY+TciTgaI8f3+VVa5S7WC/QWFn ul0aAtwTlmJgXQ6bigDPcgIucc84ogy5xpK4Loq18IUuClj0qpRSeIPWLC4VHXwL FjgUzo21TbMyPtk+vFqr+ihSUKcLfGKhkHd94ZnfFvD1jHe/K4brxiWIrEU2tHEX azEQAmHnOfBd3kVX2hsZyEZib5EJf+KjC9CBhbjsYzPNGI1WxktbDWI0fy3nWfka KYIHEADopVUP4nJuupulcRACxnawPu2QQh0DVjfAfaeCfsGI/6eaFLvy+bE+FeF2 i7uh2KlvaA/6p/xXINPGmWuaEAs50S2oJWw98kVOrjyezbN1wg== -----END CERTIFICATE-----Generated at Mon Dec 15 15:34:59 2025 by rpki-client