This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa File: e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa (raw, json) Hash identifier: 9PMdO+vwIPhrpNJWQVfF4ezUQ4kNSBMPx5uOYbUxDKg= Subject key identifier: C2:DA:62:1F:B1:8B:0D:34:0A:E4:A5:04:8A:72:49:BC:1C:1F:19:7A Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 44041D23DD714D4EDAC4829648A214BD2352CC52 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa Signing time: Sat 15 Nov 2025 05:41:05 +0000 ROA not before: Sat 15 Nov 2025 05:41:05 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07e:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:04:1d:23:dd:71:4d:4e:da:c4:82:96:48:a2:14:bd:23:52:cc:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:41:05 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=10e4b74297f5b00f5c7e43dd798bc519e0119919b8359257f940292aa33669f3, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0b:42:78:57:f7:e8:9a:de:b8:b6:63:6b:0d: b1:12:d2:44:0b:37:bf:a9:91:f6:0a:1b:2e:86:4e: 78:cf:46:05:e1:fd:41:7f:6f:45:fc:93:bb:dc:b9: e4:ff:5e:d4:a9:68:61:1b:54:d4:db:df:f8:29:eb: 6c:5b:88:19:e5:7e:20:1a:dd:a9:e3:cd:c9:27:33: 22:ad:cf:1f:9e:dc:ba:5a:37:12:50:bd:e5:72:a1: 2e:f4:e8:cc:fd:23:d2:bb:67:80:c4:f2:fe:41:0d: 11:b1:cf:4b:f7:a1:09:4b:60:8f:b4:fe:2a:b3:fc: 51:ee:1c:7f:22:70:cc:09:44:3c:4f:fe:47:67:e4: a7:15:3b:bc:e7:9a:94:c7:a1:00:0d:af:08:a0:43: 08:24:fc:df:00:7f:23:ae:45:bd:5c:f4:0a:07:3f: a1:4e:78:52:83:a2:1e:36:04:35:52:b9:43:29:41: 0d:8c:c6:e0:c4:04:c1:bd:55:6d:6a:29:9f:cd:3d: 60:17:cf:cd:24:c6:a9:8a:de:28:77:0e:a2:e1:c6: 2e:76:da:68:00:b4:3d:46:93:fd:ff:21:26:a7:a5: 3e:0b:d3:37:b2:bc:c4:35:35:27:a9:69:b5:e3:a5: d2:3c:45:59:d7:ea:f9:01:15:ec:ea:01:93:6d:02: 2f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:DA:62:1F:B1:8B:0D:34:0A:E4:A5:04:8A:72:49:BC:1C:1F:19:7A X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07e:c000::/40 Signature Algorithm: sha256WithRSAEncryption 3b:8d:32:d6:c4:a4:a0:00:36:92:a9:fe:e4:fd:22:00:06:e2: 52:19:df:a9:0b:96:a6:19:0a:b2:09:0c:57:20:32:15:30:96: 56:9d:f4:f3:d8:26:08:c2:9c:2e:0b:33:7c:fc:d1:91:a2:d4: c3:94:27:14:7d:e7:8b:95:43:f4:d9:0b:b3:0d:89:ad:79:20: d9:ee:91:2e:52:ef:d6:36:70:34:07:33:d6:1a:5c:59:6a:c6: 1a:1f:28:6b:4f:e6:d0:65:49:90:b1:14:f4:09:a9:44:1a:69: 03:94:05:56:0c:84:74:c1:ef:66:fa:50:11:8c:6e:a2:70:7d: 76:30:1a:36:d4:6b:76:6e:96:64:ab:df:a1:3d:31:be:8c:50: af:40:05:ea:36:f4:af:7c:55:7a:aa:99:3e:75:74:88:c1:1a: 74:cb:97:24:f4:0a:96:ad:0b:9c:29:4c:d1:f8:de:4d:a9:be: d6:51:85:2b:3f:cf:81:84:01:0e:a1:38:7e:97:43:df:47:1a: a2:2e:86:b6:49:94:72:9e:d9:44:04:cb:9d:d3:c6:49:15:d0: 66:84:52:89:1d:c8:a5:73:81:e6:b1:84:d2:2f:f7:04:06:82: 4e:84:57:c1:04:7e:5f:53:9f:c4:73:f1:8e:03:b8:ca:b4:52: 72:f3:d8:cd -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIURAQdI91xTU7axIKWSKIUvSNSzFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQxMDVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDEwZTRiNzQyOTdmNWIwMGY1YzdlNDNkZDc5OGJjNTE5ZTAxMTk5MTliODM1 OTI1N2Y5NDAyOTJhYTMzNjY5ZjMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO0LQnhX9+ia3ri2Y2sNsRLSRAs3v6mR9gobLoZOeM9GBeH9QX9vRfyTu9y5 5P9e1KloYRtU1Nvf+CnrbFuIGeV+IBrdqePNySczIq3PH57culo3ElC95XKhLvTo zP0j0rtngMTy/kENEbHPS/ehCUtgj7T+KrP8Ue4cfyJwzAlEPE/+R2fkpxU7vOea lMehAA2vCKBDCCT83wB/I65FvVz0Cgc/oU54UoOiHjYENVK5QylBDYzG4MQEwb1V bWopn809YBfPzSTGqYreKHcOouHGLnbaaAC0PUaT/f8hJqelPgvTN7K8xDU1J6lp teOl0jxFWdfq+QEV7OoBk20CL2ECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTC2mIf sYsNNArkpQSKckm8HB8ZejAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTZhYzBkZWYtODMzZi00ZTFiLWE3NWQtMmQxZmIzYjhjM2Q2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0H7A MA0GCSqGSIb3DQEBCwUAA4IBAQA7jTLWxKSgADaSqf7k/SIABuJSGd+pC5amGQqy CQxXIDIVMJZWnfTz2CYIwpwuCzN8/NGRotTDlCcUfeeLlUP02QuzDYmteSDZ7pEu Uu/WNnA0BzPWGlxZasYaHyhrT+bQZUmQsRT0CalEGmkDlAVWDIR0we9m+lARjG6i cH12MBo21Gt2bpZkq9+hPTG+jFCvQAXqNvSvfFV6qpk+dXSIwRp0y5ck9AqWrQuc KUzR+N5Nqb7WUYUrP8+BhAEOoTh+l0PfRxqiLoa2SZRyntlEBMud08ZJFdBmhFKJ Hcilc4HmsYTSL/cEBoJOhFfBBH5fU5/Ec/GOA7jKtFJy89jN -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:09 2025 by rpki-client