This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eedddbbd-2bbd-4e64-9b37-dddd3392ce8f.roa File: eedddbbd-2bbd-4e64-9b37-dddd3392ce8f.roa (raw, json) Hash identifier: UifpKbedg4Xz7ol2NDR/Pun+cBpBGTQdRRcrXT2sUyY= Subject key identifier: F8:E7:55:4D:AA:56:90:B6:9C:11:B5:0B:BB:3E:81:3F:7C:5B:7A:6C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4AFBEC15694C350AE83A676D8ED5681B0AFA875E Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eedddbbd-2bbd-4e64-9b37-dddd3392ce8f.roa Signing time: Sat 15 Nov 2025 06:10:07 +0000 ROA not before: Sat 15 Nov 2025 06:10:07 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:4040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:fb:ec:15:69:4c:35:0a:e8:3a:67:6d:8e:d5:68:1b:0a:fa:87:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:10:07 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=0022313816db8ae70e5ad11ead6526d0a530f6fb113c86beb3de2b5399644ca3, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c6:ed:14:24:d7:35:c6:ea:24:67:80:6e:f9: 59:a7:52:7f:a2:db:0d:a4:93:13:33:4b:02:52:5c: a2:39:cc:fc:00:9c:75:72:6f:08:a2:2c:53:78:e4: 0d:10:19:cb:7f:be:ac:22:c3:d1:ea:6b:bd:3b:b9: e0:5f:76:e9:d9:81:a3:cd:d8:af:a6:3a:4e:f4:31: 79:be:db:ef:22:40:3c:94:d2:74:5d:6f:52:c1:e2: 38:4e:f3:0e:2d:e7:8c:04:56:dd:62:9d:83:e1:b6: fd:c4:81:1a:7a:35:28:c1:48:c1:d0:67:f7:7a:2e: a5:f7:38:27:65:b6:e4:3b:99:1e:49:ad:d0:d4:c9: 44:77:24:77:05:7c:8d:a0:19:fa:a2:8f:ab:ec:8b: e0:c8:ad:b8:6f:4a:c1:d8:9e:d1:eb:70:2a:70:2d: b9:50:bc:cf:5b:2a:3c:5c:ca:ae:5d:14:3a:f2:7d: 38:b5:88:1a:5c:01:39:39:22:61:2e:bd:5f:a8:d2: a8:82:4e:e2:58:74:18:60:58:62:ff:03:f9:d2:b9: dd:fb:01:cc:62:9c:60:b6:e4:b6:dc:72:29:0c:bd: 03:b8:f3:ca:32:ec:07:b0:8b:18:7f:71:44:09:61: 4c:35:bf:14:27:4b:a5:db:f9:16:2b:b9:b7:fc:86: c2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E7:55:4D:AA:56:90:B6:9C:11:B5:0B:BB:3E:81:3F:7C:5B:7A:6C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eedddbbd-2bbd-4e64-9b37-dddd3392ce8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:4040::/48 Signature Algorithm: sha256WithRSAEncryption 2b:42:3d:c1:0f:b9:19:43:14:da:9f:fb:39:63:0d:cd:4c:11: 58:24:5d:95:90:a9:3a:28:26:d1:72:a9:0d:f1:9d:8b:38:d2: f1:d1:34:3e:e7:72:d3:be:d5:03:87:cd:a5:af:5c:3d:b3:61: 73:a1:51:46:5f:9b:d7:55:ff:f9:0d:c4:08:67:76:83:df:26: 90:a0:83:34:9d:57:fe:e7:c8:a1:28:13:4b:0f:65:6c:f8:2b: b1:67:95:59:e0:7b:8a:e7:3d:17:d1:d1:2e:5e:35:66:a1:4e: 7d:34:24:95:66:4a:d6:6d:c3:8d:ba:60:d8:db:2a:e4:b0:6e: 60:d0:ca:d8:df:44:07:dc:36:de:fc:9c:e9:22:b9:75:a9:eb: 6d:c9:5a:c5:83:25:da:bd:1c:5c:15:9e:da:7a:f7:c7:54:70: 73:2b:64:73:50:fc:10:80:92:ca:1e:c5:5d:00:0b:58:aa:f7: 5f:39:39:0b:7a:05:a1:d1:7f:8f:ee:fe:80:6a:07:2e:94:9a: be:e5:b8:54:57:fe:2b:30:57:88:76:bb:f2:af:3e:3d:38:7c: 4a:25:52:95:83:31:e4:93:2a:56:fd:7e:f1:38:22:4f:91:b6: af:5f:a4:7c:c8:a3:20:39:28:2d:2b:b9:09:92:9c:b3:97:32: ab:62:c3:ab -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUSvvsFWlMNQroOmdtjtVoGwr6h14wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjEwMDdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDAwMjIzMTM4MTZkYjhhZTcwZTVhZDExZWFkNjUyNmQwYTUzMGY2ZmIxMTNj ODZiZWIzZGUyYjUzOTk2NDRjYTMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALXG7RQk1zXG6iRngG75WadSf6LbDaSTEzNLAlJcojnM/ACcdXJvCKIsU3jk DRAZy3++rCLD0eprvTu54F926dmBo83Yr6Y6TvQxeb7b7yJAPJTSdF1vUsHiOE7z Di3njARW3WKdg+G2/cSBGno1KMFIwdBn93oupfc4J2W25DuZHkmt0NTJRHckdwV8 jaAZ+qKPq+yL4MituG9Kwdie0etwKnAtuVC8z1sqPFzKrl0UOvJ9OLWIGlwBOTki YS69X6jSqIJO4lh0GGBYYv8D+dK53fsBzGKcYLbkttxyKQy9A7jzyjLsB7CLGH9x RAlhTDW/FCdLpdv5Fiu5t/yGwlcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBT451VN qlaQtpwRtQu7PoE/fFt6bDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZWVkZGRiYmQtMmJiZC00ZTY0LTliMzctZGRkZDMzOTJjZThmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ABA QDANBgkqhkiG9w0BAQsFAAOCAQEAK0I9wQ+5GUMU2p/7OWMNzUwRWCRdlZCpOigm 0XKpDfGdizjS8dE0Pudy077VA4fNpa9cPbNhc6FRRl+b11X/+Q3ECGd2g98mkKCD NJ1X/ufIoSgTSw9lbPgrsWeVWeB7iuc9F9HRLl41ZqFOfTQklWZK1m3Djbpg2Nsq 5LBuYNDK2N9EB9w23vyc6SK5danrbclaxYMl2r0cXBWe2nr3x1Rwcytkc1D8EICS yh7FXQALWKr3Xzk5C3oFodF/j+7+gGoHLpSavuW4VFf+KzBXiHa78q8+PTh8SiVS lYMx5JMqVv1+8TgiT5G2r1+kfMijIDkoLSu5CZKcs5cyq2LDqw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:50 2025 by rpki-client