This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/efc2799b-d173-40c0-a6ee-0c0ad41cbd49.roa File: efc2799b-d173-40c0-a6ee-0c0ad41cbd49.roa (raw, json) Hash identifier: PHDnnf0Htv05F6BtEdq7KdvdPgcnpT/dmT+ygDSRCkU= Subject key identifier: 7B:24:A1:D1:9D:24:A6:12:C7:AC:50:50:9E:53:9F:73:50:8C:22:E7 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4E249153C70363FB6B619F95D22D933B1C936D58 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/efc2799b-d173-40c0-a6ee-0c0ad41cbd49.roa Signing time: Sat 06 Dec 2025 00:40:09 +0000 ROA not before: Sat 06 Dec 2025 00:40:09 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06c:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:24:91:53:c7:03:63:fb:6b:61:9f:95:d2:2d:93:3b:1c:93:6d:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 6 00:40:09 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=1516ad4ca36ea053ebd0038b2ffeec01e35d1d3c186f1c01cfdeb4a3f4cb5615, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:80:ad:be:fb:43:ea:38:dc:f9:1d:b0:a7:4e: bb:75:ce:53:8d:a3:c8:71:12:86:79:95:40:18:68: d8:c8:88:12:38:a7:e6:84:c4:c7:5e:9a:46:e0:d5: 30:b3:cb:32:25:7f:79:63:09:99:c2:14:a9:a1:1e: 1e:07:de:f4:30:f9:70:ec:93:9e:41:bb:96:1d:48: fd:57:3d:c8:70:c1:c4:28:ac:6f:ed:75:6e:24:0b: 70:86:cc:70:a2:c3:c1:7a:a9:bf:ce:27:02:16:84: 73:c0:7e:74:39:dc:1f:1b:eb:ed:02:a5:3c:e8:50: 05:03:e4:42:05:34:5c:db:03:37:36:69:f0:db:f5: 4e:0b:cd:15:49:cd:36:04:7e:73:6c:10:72:d6:95: 36:1a:25:6c:35:ff:1d:4c:81:32:0d:5e:4a:69:e5: 71:95:58:b5:eb:68:53:8e:e4:c4:6e:b5:3b:e2:f0: d0:56:1b:41:27:b8:34:a3:a3:40:17:78:19:2b:6d: 0d:cc:39:e8:f6:d6:aa:c3:41:4d:69:90:8c:f0:ac: b2:53:1d:a1:e6:97:87:ed:a2:bd:e0:58:fc:b9:d7: 2c:9c:a4:9f:ba:02:24:5c:12:b1:fe:d3:7e:4c:47: 07:a8:18:90:f4:36:30:e5:27:56:e7:fe:3b:7e:cb: f7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:24:A1:D1:9D:24:A6:12:C7:AC:50:50:9E:53:9F:73:50:8C:22:E7 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/efc2799b-d173-40c0-a6ee-0c0ad41cbd49.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06c:2000::/48 Signature Algorithm: sha256WithRSAEncryption 19:e1:45:ab:99:02:f4:97:d4:c3:07:c4:80:bf:9b:3a:a8:bb: 30:ac:1d:2e:0c:a3:23:14:38:d6:7b:a6:91:b8:89:77:4c:4b: 98:3e:0b:b0:18:1a:5e:4e:10:6d:29:32:34:84:ca:83:29:75: 12:bb:d3:fb:34:29:a9:e2:7b:0c:d6:6b:96:96:17:a6:56:f0: 93:cf:a5:c1:75:76:f0:f9:f9:91:f1:29:50:ed:01:72:56:e3: 2a:ac:44:45:69:93:8c:c8:dd:77:9d:2d:96:1c:0b:8a:b6:e0: 06:2b:53:dc:67:9a:36:ce:1f:4a:7e:ad:2c:10:fc:56:cb:46: b4:99:8a:ec:99:d3:d8:d1:a0:8d:0c:03:41:51:85:c5:fc:6f: 3b:de:9d:b3:ba:83:6a:61:92:d4:f5:75:38:c3:ad:0c:42:57: 22:ec:81:96:21:c8:63:ab:94:fb:e8:07:96:fd:2b:88:51:11: 9c:74:fb:57:8e:6e:dc:fc:47:95:9c:dd:74:13:fa:c9:e7:df: 8b:12:e9:17:89:8f:32:9b:ae:a2:77:5f:f4:c5:53:c1:79:e7: d9:d8:a1:22:7c:e3:d2:4a:7e:73:6f:13:f9:1d:df:21:fa:d4: 90:bb:ca:18:2d:f3:21:2c:0e:3d:1d:c8:2d:e8:68:ff:fb:74: 82:43:ab:0a -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUTiSRU8cDY/trYZ+V0i2TOxyTbVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDYwMDQwMDlaFw0yNjAzMDYyMzU5NTlaMHoxSTBHBgNV BAUTQDE1MTZhZDRjYTM2ZWEwNTNlYmQwMDM4YjJmZmVlYzAxZTM1ZDFkM2MxODZm MWMwMWNmZGViNGEzZjRjYjU2MTUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALaArb77Q+o43PkdsKdOu3XOU42jyHEShnmVQBho2MiIEjin5oTEx16aRuDV MLPLMiV/eWMJmcIUqaEeHgfe9DD5cOyTnkG7lh1I/Vc9yHDBxCisb+11biQLcIbM cKLDwXqpv84nAhaEc8B+dDncHxvr7QKlPOhQBQPkQgU0XNsDNzZp8Nv1TgvNFUnN NgR+c2wQctaVNholbDX/HUyBMg1eSmnlcZVYtetoU47kxG61O+Lw0FYbQSe4NKOj QBd4GSttDcw56PbWqsNBTWmQjPCsslMdoeaXh+2iveBY/LnXLJykn7oCJFwSsf7T fkxHB6gYkPQ2MOUnVuf+O37L948CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBR7JKHR nSSmEsesUFCeU59zUIwi5zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZWZjMjc5OWItZDE3My00MGMwLWE2ZWUtMGMwYWQ0MWNiZDQ5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0Gwg ADANBgkqhkiG9w0BAQsFAAOCAQEAGeFFq5kC9JfUwwfEgL+bOqi7MKwdLgyjIxQ4 1numkbiJd0xLmD4LsBgaXk4QbSkyNITKgyl1ErvT+zQpqeJ7DNZrlpYXplbwk8+l wXV28Pn5kfEpUO0BclbjKqxERWmTjMjdd50tlhwLirbgBitT3GeaNs4fSn6tLBD8 VstGtJmK7JnT2NGgjQwDQVGFxfxvO96ds7qDamGS1PV1OMOtDEJXIuyBliHIY6uU ++gHlv0riFERnHT7V45u3PxHlZzddBP6yeffixLpF4mPMpuuondf9MVTwXnn2dih Inzj0kp+c28T+R3fIfrUkLvKGC3zISwOPR3ILeho//t0gkOrCg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:43 2025 by rpki-client