This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f5e64938-fc2d-4971-b2da-aabc9fe556fc.roa File: f5e64938-fc2d-4971-b2da-aabc9fe556fc.roa (raw, json) Hash identifier: XKVmfkv5f/9EsAueKcoEH9xpry71OyhwHRkA5Qmi/zc= Subject key identifier: 63:24:51:6A:EF:48:8D:54:3F:F3:2D:6D:BE:D8:8E:70:A3:9D:AA:9F Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: FA685E31D48CFF49CEFC55E33FA928F0E631CA Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f5e64938-fc2d-4971-b2da-aabc9fe556fc.roa Signing time: Sat 15 Nov 2025 05:30:10 +0000 ROA not before: Sat 15 Nov 2025 05:30:10 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:6040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: fa:68:5e:31:d4:8c:ff:49:ce:fc:55:e3:3f:a9:28:f0:e6:31:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:30:10 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=b1852db9c2d5bcd62d95b2a3fd12f24e657fbb7f683a88355eeb08cd53848887, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e9:e8:64:6f:ea:c0:d2:65:7b:04:2f:8b:ec: f9:9a:fe:35:1b:6f:b4:1d:4b:a0:c3:1e:82:d2:22: 79:8d:c9:02:5d:55:32:5b:f8:8b:10:7b:82:5e:94: 69:98:52:77:d6:55:5c:83:7e:e9:82:0d:0a:ba:84: 1f:59:f3:bd:36:80:b3:dd:20:54:73:c2:b6:53:39: d3:d8:62:cd:14:0d:da:56:8c:c7:96:bd:fb:82:09: 1a:71:1d:23:fc:71:98:ae:0f:cb:bf:41:52:0e:7f: 23:47:fd:d8:21:9d:a8:ff:6e:15:43:54:d9:87:af: ff:fd:5a:8e:35:bc:78:18:cb:e2:37:5f:47:f2:8c: e1:65:63:e7:b8:dd:fd:5f:d4:48:36:86:1c:84:f6: 9f:9c:96:9c:80:51:e8:04:fb:3c:8d:01:ab:64:e2: 66:de:38:e6:28:30:6c:e8:52:71:b3:47:61:ae:fb: e3:cf:16:52:93:a5:27:6e:64:b6:52:f7:4e:1f:2f: 26:dd:b7:ad:bf:2e:a2:6d:d0:bb:3f:09:6c:52:1d: 48:81:c1:d1:1b:55:48:d4:f8:a3:f9:b1:c5:69:81: bb:81:4b:b5:e4:84:62:7a:85:7a:62:17:ca:a0:f8: 43:d7:e5:63:45:69:03:9c:98:78:4b:aa:84:24:59: 3e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:24:51:6A:EF:48:8D:54:3F:F3:2D:6D:BE:D8:8E:70:A3:9D:AA:9F X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f5e64938-fc2d-4971-b2da-aabc9fe556fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:6040::/48 Signature Algorithm: sha256WithRSAEncryption 1f:c2:72:32:dc:d8:7a:31:b7:df:e9:07:12:97:59:ab:63:c9: 99:43:c4:77:91:b8:bc:77:3a:df:1b:73:12:0e:0f:0b:76:81: a7:42:d2:c5:e9:b8:db:26:6d:b8:fc:83:d6:f5:10:96:a9:ce: fa:5a:06:41:93:b7:02:16:37:f8:62:cb:5d:04:25:6f:9d:a7: f3:39:b2:f3:9e:09:bd:df:5b:6d:3f:87:6e:76:06:7a:c4:de: 87:e2:3d:9a:5d:25:91:63:0d:30:e5:24:1a:ec:c6:66:85:ff: 09:b7:e5:b8:de:c1:5c:cf:01:d4:4a:13:62:44:55:a9:92:8d: bc:1f:bb:d2:82:37:46:88:17:ea:a0:ed:b1:59:19:6d:09:3d: 9e:a9:7b:9c:cb:72:6f:01:0b:09:a3:4e:c0:10:68:7c:f6:8b: 03:88:a7:e4:d0:8a:e2:df:6e:9c:17:a2:da:c5:59:72:85:e2: f2:d3:a5:9d:37:73:43:40:b8:e5:40:0b:bf:9f:b5:c9:ba:ec: 89:2d:e8:48:3f:24:d4:6b:e9:1e:9d:28:69:b4:c6:9a:85:36: b4:c9:8e:55:34:05:42:d9:ea:4b:a1:12:e7:9f:9f:1c:e1:f4: 82:ac:03:0a:6b:d0:11:a7:a4:b9:96:21:d5:20:ff:d0:08:0d: 90:76:d1:e0 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUAPpoXjHUjP9JzvxV4z+pKPDmMcowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMwMTBaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGIxODUyZGI5YzJkNWJjZDYyZDk1YjJhM2ZkMTJmMjRlNjU3ZmJiN2Y2ODNh ODgzNTVlZWIwOGNkNTM4NDg4ODcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM/p6GRv6sDSZXsEL4vs+Zr+NRtvtB1LoMMegtIieY3JAl1VMlv4ixB7gl6U aZhSd9ZVXIN+6YINCrqEH1nzvTaAs90gVHPCtlM509hizRQN2laMx5a9+4IJGnEd I/xxmK4Py79BUg5/I0f92CGdqP9uFUNU2Yev//1ajjW8eBjL4jdfR/KM4WVj57jd /V/USDaGHIT2n5yWnIBR6AT7PI0Bq2TiZt445igwbOhScbNHYa77488WUpOlJ25k tlL3Th8vJt23rb8uom3Quz8JbFIdSIHB0RtVSNT4o/mxxWmBu4FLteSEYnqFemIX yqD4Q9flY0VpA5yYeEuqhCRZPsUCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRjJFFq 70iNVD/zLW2+2I5wo52qnzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZjVlNjQ5MzgtZmMyZC00OTcxLWIyZGEtYWFiYzlmZTU1NmZjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ABg QDANBgkqhkiG9w0BAQsFAAOCAQEAH8JyMtzYejG33+kHEpdZq2PJmUPEd5G4vHc6 3xtzEg4PC3aBp0LSxem42yZtuPyD1vUQlqnO+loGQZO3AhY3+GLLXQQlb52n8zmy 854Jvd9bbT+HbnYGesTeh+I9ml0lkWMNMOUkGuzGZoX/CbfluN7BXM8B1EoTYkRV qZKNvB+70oI3RogX6qDtsVkZbQk9nql7nMtybwELCaNOwBBofPaLA4in5NCK4t9u nBei2sVZcoXi8tOlnTdzQ0C45UALv5+1ybrsiS3oSD8k1GvpHp0oabTGmoU2tMmO VTQFQtnqS6ES55+fHOH0gqwDCmvQEaekuZYh1SD/0AgNkHbR4A== -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:16 2025 by rpki-client