This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ea271f77-763d-42f8-a315-60081847d059.roa File: ea271f77-763d-42f8-a315-60081847d059.roa (raw, json) Hash identifier: Y9R4PhHuxfxba2FeeRHmAC+5DYSbjGRE0IUUkh+gUtQ= Subject key identifier: C9:AE:24:7A:4A:BE:29:ED:3B:CF:5A:8D:D7:4A:AD:88:9A:53:2B:D5 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2C92F7B053292B5CE0CA47934B51C278534FE458 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ea271f77-763d-42f8-a315-60081847d059.roa Signing time: Sat 15 Nov 2025 05:30:14 +0000 ROA not before: Sat 15 Nov 2025 05:30:14 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:92:f7:b0:53:29:2b:5c:e0:ca:47:93:4b:51:c2:78:53:4f:e4:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:30:14 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=f29413528c7286141f05d10f24591d3583bead40421795e3888102e8ba62fdbd, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6c:ab:ad:03:6f:53:80:a0:8b:12:d2:18:7e: 77:c6:d9:36:80:d3:62:c1:41:59:1f:34:a5:85:47: a5:c3:d9:69:04:3e:f1:7d:ac:2f:3b:e0:4c:6c:b6: 25:93:01:cc:83:31:5b:8e:28:68:39:c1:5c:14:8e: 96:74:4f:b8:78:2c:4b:cb:61:5c:cd:23:81:a5:d8: b8:03:b9:6f:00:68:ec:7d:4d:3b:15:54:80:e8:0e: e1:31:cc:af:4e:95:ba:f9:2e:d7:17:50:1d:27:b3: 98:a9:9d:b6:8f:9b:1a:6c:98:ec:dc:a2:f3:47:5b: 48:16:58:f8:77:89:e4:15:a9:53:4a:9f:09:ce:de: a3:07:69:0a:3a:d1:da:23:e3:c5:a0:64:ec:69:04: db:b2:57:5c:f2:ec:11:d4:fa:64:59:97:6b:c7:78: 79:d1:93:4d:05:a6:1e:e8:0b:1e:7d:d3:c2:e8:d8: b8:75:a7:22:62:69:8d:b1:f6:f1:f7:64:cf:f2:7c: e2:e3:40:8d:72:2e:29:84:c4:bd:54:47:c0:e8:fa: 00:12:9d:81:c3:90:5c:c2:4c:cd:aa:2a:44:db:14: be:f0:0e:38:cd:fc:c5:b2:3e:30:1a:a3:85:98:c4: 32:e3:b0:4f:e3:ce:59:f3:cc:df:f1:2f:cb:c5:7e: 2a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:AE:24:7A:4A:BE:29:ED:3B:CF:5A:8D:D7:4A:AD:88:9A:53:2B:D5 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ea271f77-763d-42f8-a315-60081847d059.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:e040::/48 Signature Algorithm: sha256WithRSAEncryption 49:28:e3:c4:27:7f:de:55:a8:d8:45:b8:bd:89:13:14:98:a9: d3:e7:90:da:16:fc:76:70:1a:e5:62:0f:e6:80:17:17:5b:1d: a7:38:d7:fb:0b:69:a7:43:13:cc:65:64:27:92:17:a3:f8:2b: 9d:ca:b2:af:67:0d:6f:9d:d0:ab:70:d0:7b:df:6f:bd:d8:fb: cf:0a:cb:1f:0e:a4:7e:db:0b:47:1a:d3:41:7b:df:05:df:c4: e1:47:0e:79:5a:92:6b:6c:ab:92:67:45:b5:3b:29:aa:31:f3: 7a:a4:7a:af:08:cf:11:7b:9b:f2:6e:9a:41:9f:c7:4d:30:c2: 96:31:f2:08:9d:4c:bb:a5:ad:87:bd:12:df:4b:75:84:14:f5: e3:0f:e5:4c:82:26:55:9c:ea:d3:a0:ea:31:75:4f:f4:c6:7d: 5b:8b:30:33:94:c2:c5:58:03:f6:53:ef:ff:0f:34:b0:7c:72: cd:07:09:7b:a5:34:34:f5:2b:1c:04:82:c1:10:24:6a:41:84: 0c:4f:08:53:be:72:01:54:93:08:d0:3d:89:f4:34:32:a4:41: 36:48:cc:9b:17:e8:40:3a:8e:1a:08:6d:c2:f9:84:34:93:d4: 1c:b4:ac:ef:b6:7c:61:4d:bd:59:85:18:c0:49:d3:79:b1:d6: 99:6a:32:d3 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIULJL3sFMpK1zgykeTS1HCeFNP5FgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMwMTRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGYyOTQxMzUyOGM3Mjg2MTQxZjA1ZDEwZjI0NTkxZDM1ODNiZWFkNDA0MjE3 OTVlMzg4ODEwMmU4YmE2MmZkYmQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALVsq60Db1OAoIsS0hh+d8bZNoDTYsFBWR80pYVHpcPZaQQ+8X2sLzvgTGy2 JZMBzIMxW44oaDnBXBSOlnRPuHgsS8thXM0jgaXYuAO5bwBo7H1NOxVUgOgO4THM r06Vuvku1xdQHSezmKmdto+bGmyY7Nyi80dbSBZY+HeJ5BWpU0qfCc7eowdpCjrR 2iPjxaBk7GkE27JXXPLsEdT6ZFmXa8d4edGTTQWmHugLHn3TwujYuHWnImJpjbH2 8fdkz/J84uNAjXIuKYTEvVRHwOj6ABKdgcOQXMJMzaoqRNsUvvAOOM38xbI+MBqj hZjEMuOwT+POWfPM3/Evy8V+Ki8CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTJriR6 Sr4p7TvPWo3XSq2ImlMr1TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZWEyNzFmNzctNzYzZC00MmY4LWEzMTUtNjAwODE4NDdkMDU5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DHg QDANBgkqhkiG9w0BAQsFAAOCAQEASSjjxCd/3lWo2EW4vYkTFJip0+eQ2hb8dnAa 5WIP5oAXF1sdpzjX+wtpp0MTzGVkJ5IXo/grncqyr2cNb53Qq3DQe99vvdj7zwrL Hw6kftsLRxrTQXvfBd/E4UcOeVqSa2yrkmdFtTspqjHzeqR6rwjPEXub8m6aQZ/H TTDCljHyCJ1Mu6Wth70S30t1hBT14w/lTIImVZzq06DqMXVP9MZ9W4swM5TCxVgD 9lPv/w80sHxyzQcJe6U0NPUrHASCwRAkakGEDE8IU75yAVSTCNA9ifQ0MqRBNkjM mxfoQDqOGghtwvmENJPUHLSs77Z8YU29WYUYwEnTebHWmWoy0w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:25 2025 by rpki-client