This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ea558c9c-d0cf-4cf0-99cc-884d490bd330.roa File: ea558c9c-d0cf-4cf0-99cc-884d490bd330.roa (raw, json) Hash identifier: +RDKjFctknxKAns3FMfqpDIR2XYWgpcFMrsrhPiFnDg= Subject key identifier: D2:27:0F:35:32:C9:C3:91:B7:CC:3B:E3:27:88:D4:34:6A:88:96:F5 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3D734695B3CCF52BC64CEA88EC506A7B4CBA4E20 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ea558c9c-d0cf-4cf0-99cc-884d490bd330.roa Signing time: Tue 25 Nov 2025 20:10:33 +0000 ROA not before: Tue 25 Nov 2025 20:10:33 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d073:1040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:73:46:95:b3:cc:f5:2b:c6:4c:ea:88:ec:50:6a:7b:4c:ba:4e:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 25 20:10:33 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=18f7558f26541054ad785f4637915ae17a02ae2aceef0f817d1a2f9e8d270118, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:88:9c:64:f9:5b:58:d2:6f:75:41:e0:d4:69: 7c:02:1e:e4:3a:72:c9:e6:61:0c:96:5f:e3:d6:32: 35:24:e4:8d:3d:33:64:03:6d:f3:ba:eb:13:d1:2d: 22:79:9d:cd:57:a9:4f:40:15:d9:db:b1:d7:20:47: 7b:f7:01:d6:84:38:e8:94:64:28:7a:94:ac:14:3b: 42:27:e8:72:01:f9:24:f5:08:46:38:db:45:96:1a: cb:de:5d:00:95:e4:bd:0c:6a:fe:54:40:9b:7d:56: b4:ad:9a:94:e3:5a:10:b6:8d:29:13:39:02:9d:77: b4:eb:44:dd:25:08:9a:b1:0e:e3:f2:04:9d:e6:60: 87:9d:24:e2:a5:77:83:ed:35:e7:80:e7:47:42:76: f2:5c:00:31:86:cb:ae:85:03:36:13:ad:08:50:74: d6:10:54:bb:8c:10:84:6c:08:dc:86:14:f2:9b:b0: b9:2b:60:dc:9e:02:a1:0f:65:4e:34:1f:d9:9d:fa: 4d:c3:f6:78:1c:29:e6:c9:eb:b3:c7:94:ef:fb:79: 0e:49:50:80:23:b9:08:f1:6b:8c:4f:79:d5:69:c7: 45:4d:bc:e7:dd:99:91:e2:4b:89:27:42:ea:fe:61: f0:29:7b:f8:02:ee:27:ef:98:2d:72:ba:48:54:cb: c9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:27:0F:35:32:C9:C3:91:B7:CC:3B:E3:27:88:D4:34:6A:88:96:F5 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ea558c9c-d0cf-4cf0-99cc-884d490bd330.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d073:1040::/46 Signature Algorithm: sha256WithRSAEncryption 82:b7:04:b0:fc:35:e4:86:40:f9:03:e3:47:5a:8f:a6:80:fe: d8:7f:6a:80:eb:67:a5:74:a2:3c:bd:2b:80:0d:d3:ec:c1:f4: 6d:76:99:98:3d:66:76:c5:2e:80:7f:a5:47:c7:fa:4f:e2:8e: 2b:ed:de:46:bc:38:df:56:25:17:b2:38:d4:a2:ba:22:01:02: f6:25:bf:2e:43:70:1d:71:bb:8a:92:c5:e1:9b:bb:37:b7:be: ba:4c:5f:a3:4f:00:86:43:06:ef:2d:e8:ec:b2:a9:ef:fc:b7: b6:14:6a:70:9e:5b:b8:7d:74:9a:6c:01:23:5e:c4:d2:e5:ef: 0f:4c:86:6b:63:e2:2e:99:2c:64:ed:cd:c9:97:c7:7f:df:a4: 57:d0:c4:a1:db:e4:f2:4d:4e:82:42:89:e7:09:08:6f:55:f0: 32:2b:ef:72:0c:75:35:9c:39:ac:ba:72:ac:4a:b6:39:21:53: 45:cf:8d:a0:81:a0:cb:d4:3c:05:32:c8:8a:27:1b:d6:ab:dc: 7f:b8:00:22:bc:6e:90:f7:80:2b:56:43:25:1b:de:aa:6e:7f: 91:63:03:7c:79:43:cb:6e:cf:b1:d7:f7:07:0a:c8:e6:75:f7: 6c:db:1a:95:d3:5d:2e:ec:bd:40:7d:24:06:42:5d:3e:ed:31: 0e:5a:0b:2f -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUPXNGlbPM9SvGTOqI7FBqe0y6TiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjUyMDEwMzNaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDE4Zjc1NThmMjY1NDEwNTRhZDc4NWY0NjM3OTE1YWUxN2EwMmFlMmFjZWVm MGY4MTdkMWEyZjllOGQyNzAxMTgxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6InGT5W1jSb3VB4NRpfAIe5DpyyeZhDJZf49YyNSTkjT0zZANt87rrE9Et InmdzVepT0AV2dux1yBHe/cB1oQ46JRkKHqUrBQ7QifocgH5JPUIRjjbRZYay95d AJXkvQxq/lRAm31WtK2alONaELaNKRM5Ap13tOtE3SUImrEO4/IEneZgh50k4qV3 g+0154DnR0J28lwAMYbLroUDNhOtCFB01hBUu4wQhGwI3IYU8puwuStg3J4CoQ9l TjQf2Z36TcP2eBwp5snrs8eU7/t5DklQgCO5CPFrjE951WnHRU28592ZkeJLiSdC 6v5h8Cl7+ALuJ++YLXK6SFTLyQUCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTSJw81 MsnDkbfMO+MniNQ0aoiW9TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZWE1NThjOWMtZDBjZi00Y2YwLTk5Y2MtODg0ZDQ5MGJkMzMwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HMQ QDANBgkqhkiG9w0BAQsFAAOCAQEAgrcEsPw15IZA+QPjR1qPpoD+2H9qgOtnpXSi PL0rgA3T7MH0bXaZmD1mdsUugH+lR8f6T+KOK+3eRrw431YlF7I41KK6IgEC9iW/ LkNwHXG7ipLF4Zu7N7e+ukxfo08AhkMG7y3o7LKp7/y3thRqcJ5buH10mmwBI17E 0uXvD0yGa2PiLpksZO3NyZfHf9+kV9DEodvk8k1OgkKJ5wkIb1XwMivvcgx1NZw5 rLpyrEq2OSFTRc+NoIGgy9Q8BTLIiicb1qvcf7gAIrxukPeAK1ZDJRveqm5/kWMD fHlDy27Psdf3BwrI5nX3bNsaldNdLuy9QH0kBkJdPu0xDloLLw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:54 2025 by rpki-client