This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e615fea3-3826-4c59-9574-72fb6cc8f2ee.roa File: e615fea3-3826-4c59-9574-72fb6cc8f2ee.roa (raw, json) Hash identifier: t+G4f0c9LwEOZ85jtWAHwSO4cGrh8MUCh/WbrYdOwgU= Subject key identifier: CE:E2:E7:72:FB:3A:45:2C:24:5F:53:96:C1:68:59:FE:99:BA:54:32 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 411939563EE387363D021A1521639582090F69A6 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e615fea3-3826-4c59-9574-72fb6cc8f2ee.roa Signing time: Sat 06 Dec 2025 00:40:06 +0000 ROA not before: Sat 06 Dec 2025 00:40:06 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d076:a000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:19:39:56:3e:e3:87:36:3d:02:1a:15:21:63:95:82:09:0f:69:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 6 00:40:06 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=9b6b23a2047dc29c41d92c2594e5aefac4be6a3aa0788b0a12ab966f7447599e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ce:7d:3e:9f:dc:ba:de:01:ab:80:ef:cf:f0: 19:f1:20:c7:1e:1f:ca:b8:1c:c0:61:87:86:78:27: 31:b7:6e:e6:44:72:08:5b:cb:fa:43:be:7e:c7:2b: 66:41:dc:b5:cb:8a:f0:d7:da:33:fb:0b:29:86:11: d1:03:0d:f3:5f:1c:24:d2:9d:90:3a:94:da:a9:ea: d9:aa:45:82:16:03:43:a7:42:94:b4:15:21:76:de: 28:8d:ca:c5:36:79:6c:2d:eb:11:41:af:a8:0a:09: a3:81:03:9d:0b:c0:06:25:7a:03:37:05:4e:66:a7: db:32:d2:de:71:55:d4:46:bc:3c:7e:16:9f:2b:77: 02:ea:6f:08:75:4c:8e:51:13:34:8c:04:29:fb:b0: fe:a7:be:09:84:b6:14:ad:44:0a:a2:2d:5d:34:6a: 1f:c7:bc:d0:81:49:3f:cf:b4:a5:13:9e:c6:52:ee: 5c:9d:ac:fa:bf:8e:fe:f1:55:fd:40:c8:36:c4:6e: a5:40:0a:d8:8d:c8:d6:fd:d4:14:a4:6c:d5:c7:50: fb:fe:8d:49:63:54:33:c0:5f:93:b9:3f:fc:48:56: e6:bd:97:75:4d:d0:26:a7:7f:d0:bd:1a:2e:24:e8: 28:91:63:82:15:aa:da:c3:6a:ce:b1:87:37:5c:37: 68:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E2:E7:72:FB:3A:45:2C:24:5F:53:96:C1:68:59:FE:99:BA:54:32 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e615fea3-3826-4c59-9574-72fb6cc8f2ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d076:a000::/40 Signature Algorithm: sha256WithRSAEncryption 1f:36:a7:d4:31:d0:50:fb:9a:d2:de:e7:8e:5e:3a:bd:2a:94: 3c:49:af:4b:36:f5:49:e2:7e:c0:b1:a6:9c:d1:75:a5:3e:df: de:4b:b5:37:62:ac:77:7f:ba:20:88:5a:40:07:42:7d:9b:a2: 34:c7:cc:2f:bb:eb:87:3a:1e:27:54:60:59:47:7c:e9:9a:48: a0:59:ff:e5:b3:f0:a3:b8:22:30:18:0e:88:f9:5b:f0:23:f8: cd:f2:65:2b:6c:46:b6:4d:fe:83:7d:ee:f7:ba:46:a4:cf:b0: e6:4e:a9:79:76:8a:20:4b:d2:0d:52:52:44:b9:f2:c9:73:61: 40:b9:96:f4:01:3a:5f:e4:d6:4e:f0:d1:36:fe:98:a8:12:d4: 88:3c:11:d3:c8:58:fe:df:d3:89:bc:06:d6:cb:33:64:6d:d7: 8b:c4:24:39:31:7f:fd:7d:c4:d6:8f:da:f5:c3:04:19:36:03: 6b:79:4f:46:13:ec:95:1f:02:06:a2:8d:1e:5e:3c:77:a0:33: f2:61:8e:1d:47:48:44:5b:65:57:33:4f:03:94:ac:16:4b:c3: b0:ed:06:ee:84:ca:a4:31:3f:46:19:2b:e8:c0:f0:8a:eb:a6: 50:cf:ce:49:9b:39:48:86:88:08:a8:7d:79:f5:39:98:11:3d: da:6a:d9:53 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUQRk5Vj7jhzY9AhoVIWOVggkPaaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDYwMDQwMDZaFw0yNjAzMDYyMzU5NTlaMHoxSTBHBgNV BAUTQDliNmIyM2EyMDQ3ZGMyOWM0MWQ5MmMyNTk0ZTVhZWZhYzRiZTZhM2FhMDc4 OGIwYTEyYWI5NjZmNzQ0NzU5OWUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO3OfT6f3LreAauA78/wGfEgxx4fyrgcwGGHhngnMbdu5kRyCFvL+kO+fscr ZkHctcuK8NfaM/sLKYYR0QMN818cJNKdkDqU2qnq2apFghYDQ6dClLQVIXbeKI3K xTZ5bC3rEUGvqAoJo4EDnQvABiV6AzcFTman2zLS3nFV1Ea8PH4Wnyt3AupvCHVM jlETNIwEKfuw/qe+CYS2FK1ECqItXTRqH8e80IFJP8+0pROexlLuXJ2s+r+O/vFV /UDINsRupUAK2I3I1v3UFKRs1cdQ+/6NSWNUM8Bfk7k//EhW5r2XdU3QJqd/0L0a LiToKJFjghWq2sNqzrGHN1w3aAUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTO4udy +zpFLCRfU5bBaFn+mbpUMjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTYxNWZlYTMtMzgyNi00YzU5LTk1NzQtNzJmYjZjYzhmMmVlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0Hag MA0GCSqGSIb3DQEBCwUAA4IBAQAfNqfUMdBQ+5rS3ueOXjq9KpQ8Sa9LNvVJ4n7A saac0XWlPt/eS7U3Yqx3f7ogiFpAB0J9m6I0x8wvu+uHOh4nVGBZR3zpmkigWf/l s/CjuCIwGA6I+VvwI/jN8mUrbEa2Tf6Dfe73ukakz7DmTql5doogS9INUlJEufLJ c2FAuZb0ATpf5NZO8NE2/pioEtSIPBHTyFj+39OJvAbWyzNkbdeLxCQ5MX/9fcTW j9r1wwQZNgNreU9GE+yVHwIGoo0eXjx3oDPyYY4dR0hEW2VXM08DlKwWS8Ow7Qbu hMqkMT9GGSvowPCK66ZQz85JmzlIhogIqH159TmYET3aatlT -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:03 2025 by rpki-client