This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f6aec084-593c-47be-8e46-9024b5572011.roa File: f6aec084-593c-47be-8e46-9024b5572011.roa (raw, json) Hash identifier: mwJp37p7USJXlq36bpqAeYB2iKuQXgPseueJUPNoi4c= Subject key identifier: C4:3F:55:53:31:E2:6E:73:27:E9:54:31:DB:8F:2D:AA:B2:D8:49:BF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 43C7B64D216E9768003FC8019656CC5C97F6F8BB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f6aec084-593c-47be-8e46-9024b5572011.roa Signing time: Tue 02 Dec 2025 02:00:07 +0000 ROA not before: Tue 02 Dec 2025 02:00:07 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d030:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:c7:b6:4d:21:6e:97:68:00:3f:c8:01:96:56:cc:5c:97:f6:f8:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 02:00:07 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=f4335eaf5710763f4c8f1b6296ed9a37d0bd369ad06fd246ad01dc63cc635dd9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:46:24:83:7b:fc:8c:c3:90:5f:4e:2c:43:13: 67:1e:14:b4:19:29:15:84:ac:2b:36:f7:65:c1:52: d7:4e:ad:64:a4:b5:a0:b0:7f:4c:01:fe:38:be:b7: 85:fc:90:4b:da:2d:95:c6:7c:a6:19:d8:3e:e0:9e: cd:25:3f:dd:c1:05:f6:7b:7b:3a:d7:9c:87:43:f1: 00:9e:f1:4d:ad:3c:53:c6:8c:a7:f4:0c:ac:35:11: 8e:bd:60:63:46:ea:c1:56:97:02:98:68:f8:11:8d: fa:4a:7a:4d:b7:77:3e:1f:27:db:b8:8c:de:96:ef: 13:60:c9:db:75:66:59:4f:ad:07:ed:1d:35:e6:a5: 9e:65:32:7a:1b:ec:0b:0b:b1:12:9f:45:cd:80:c3: 7d:79:3b:36:78:ea:6c:48:a8:14:ab:bf:bf:98:b5: e7:50:3d:4f:12:72:89:48:02:c3:d9:45:35:b3:c4: 8e:c1:b5:52:0c:c6:f8:ba:39:d5:da:80:e9:e0:1d: b5:56:12:da:f4:c9:aa:d4:ba:82:3c:49:46:82:81: ee:62:9a:35:7f:75:96:d3:56:1a:98:ab:2f:1d:e9: a3:84:4d:2e:5d:6a:8e:ad:e6:2e:6f:42:fb:68:c6: b0:f8:d0:81:01:b4:22:09:37:71:e7:2c:5a:15:ba: c4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:3F:55:53:31:E2:6E:73:27:E9:54:31:DB:8F:2D:AA:B2:D8:49:BF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f6aec084-593c-47be-8e46-9024b5572011.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d030:e000::/40 Signature Algorithm: sha256WithRSAEncryption ad:8d:27:97:60:0f:f8:30:c3:88:4c:5e:4d:0e:b6:d6:95:82: e6:6e:17:9c:d5:2b:8c:ca:d9:4d:3f:68:71:95:bd:ab:f0:0d: 10:2c:c6:f2:44:83:20:1c:83:71:75:05:ea:a4:70:98:35:4a: 61:27:b4:33:d9:96:4c:db:bc:ac:c8:44:1f:d4:3f:8b:cc:1a: b2:18:b9:9c:7b:bc:52:4a:92:06:5b:ad:c9:77:44:b8:21:b0: 82:77:01:aa:a5:00:48:5a:29:1b:3b:57:ea:f1:32:10:c8:58: c6:9a:33:c0:6f:81:e1:89:d2:f9:4c:b3:d0:53:19:f8:93:87: b1:dc:af:ce:05:52:a1:b3:cd:66:cb:71:05:c3:2a:d1:83:74: 7c:91:3b:4e:01:39:71:9d:66:e2:7b:87:e7:e7:ba:4f:08:b5: 6e:83:14:8b:4e:fd:f9:48:83:0a:67:17:f3:12:32:85:2c:04: 2e:c9:67:df:14:e0:13:b2:83:7b:c6:da:3f:20:08:7c:29:47: 93:65:2b:f3:39:cc:99:73:d2:50:bf:b7:d1:44:27:71:7f:81: 76:10:bd:8e:cd:d1:2e:28:2b:ca:a3:ca:cd:9a:d9:e3:0a:b3: 0d:d7:63:68:17:bb:4a:5d:90:3c:19:94:a1:e1:3c:99:ba:34: 6e:bd:2c:01 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUQ8e2TSFul2gAP8gBllbMXJf2+LswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMjAwMDdaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQGY0MzM1ZWFmNTcxMDc2M2Y0YzhmMWI2Mjk2ZWQ5YTM3ZDBiZDM2OWFkMDZm ZDI0NmFkMDFkYzYzY2M2MzVkZDkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBGJIN7/IzDkF9OLEMTZx4UtBkpFYSsKzb3ZcFS106tZKS1oLB/TAH+OL63 hfyQS9otlcZ8phnYPuCezSU/3cEF9nt7Otech0PxAJ7xTa08U8aMp/QMrDURjr1g Y0bqwVaXApho+BGN+kp6Tbd3Ph8n27iM3pbvE2DJ23VmWU+tB+0dNealnmUyehvs CwuxEp9FzYDDfXk7NnjqbEioFKu/v5i151A9TxJyiUgCw9lFNbPEjsG1UgzG+Lo5 1dqA6eAdtVYS2vTJqtS6gjxJRoKB7mKaNX91ltNWGpirLx3po4RNLl1qjq3mLm9C +2jGsPjQgQG0Igk3cecsWhW6xHsCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTEP1VT MeJucyfpVDHbjy2qsthJvzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZjZhZWMwODQtNTkzYy00N2JlLThlNDYtOTAyNGI1NTcyMDExLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DDg MA0GCSqGSIb3DQEBCwUAA4IBAQCtjSeXYA/4MMOITF5NDrbWlYLmbhec1SuMytlN P2hxlb2r8A0QLMbyRIMgHINxdQXqpHCYNUphJ7Qz2ZZM27ysyEQf1D+LzBqyGLmc e7xSSpIGW63Jd0S4IbCCdwGqpQBIWikbO1fq8TIQyFjGmjPAb4HhidL5TLPQUxn4 k4ex3K/OBVKhs81my3EFwyrRg3R8kTtOATlxnWbie4fn57pPCLVugxSLTv35SIMK ZxfzEjKFLAQuyWffFOATsoN7xto/IAh8KUeTZSvzOcyZc9JQv7fRRCdxf4F2EL2O zdEuKCvKo8rNmtnjCrMN12NoF7tKXZA8GZSh4TyZujRuvSwB -----END CERTIFICATE-----Generated at Sat Dec 6 22:36:40 2025 by rpki-client