This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f7a46ea9-b416-4218-a790-28cf84d702ce.roa File: f7a46ea9-b416-4218-a790-28cf84d702ce.roa (raw, json) Hash identifier: bnI6d5SvdRn3mF1rvqdcPBlF8FSjoiowuyNHbNqhPrY= Subject key identifier: F7:A4:0D:E0:DD:3C:BB:99:41:3F:1A:3B:0F:41:B2:2F:EE:11:5E:85 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 72371DD0564BC9EA4DF0FE137A54FFDCBB22ABDC Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f7a46ea9-b416-4218-a790-28cf84d702ce.roa Signing time: Sat 15 Nov 2025 05:30:52 +0000 ROA not before: Sat 15 Nov 2025 05:30:52 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d026::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:37:1d:d0:56:4b:c9:ea:4d:f0:fe:13:7a:54:ff:dc:bb:22:ab:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:30:52 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=e02b043577f1d5af026c0b392af388167484e1413b60a05e7876256c235a1840, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:17:8f:84:3d:f6:71:1a:66:bd:cc:ee:97:a5: 35:aa:b3:30:c8:ce:ef:b6:52:2e:62:8b:83:a5:03: 27:b5:b7:c3:05:1c:10:af:e7:88:61:88:48:94:be: 6e:b9:91:2d:60:0a:2c:d1:3d:51:54:49:f1:6d:39: 50:6b:35:db:6f:41:64:fc:6b:2a:89:14:27:f1:6d: ce:18:40:fb:3e:a3:24:c1:2c:25:47:3e:a6:8e:25: 46:42:80:b2:68:86:4c:16:48:9c:03:ef:37:57:b6: 82:3e:d1:a2:45:20:cc:88:1d:72:6e:e6:1a:a1:ca: 84:82:1d:c1:c2:96:6f:40:50:7c:96:69:08:de:40: 3c:77:56:33:bc:db:b3:da:a9:c0:fe:00:f5:0d:e6: 8d:73:af:32:c4:19:07:c7:03:21:b8:29:7f:ad:aa: 6e:58:57:a6:12:60:03:c2:db:1a:ea:2a:a6:1b:5f: 67:03:4e:38:32:8d:52:27:a6:b7:e9:43:7c:4c:89: 20:1e:02:45:00:9e:5e:22:34:90:d0:9e:d1:e9:08: e9:aa:25:b5:29:5d:b6:d1:0d:d5:b4:b4:05:d3:1c: e7:69:05:f7:e6:28:4a:65:4c:35:81:b0:4f:d9:65: 53:21:04:ff:37:43:f6:54:30:6a:2b:44:c7:d8:cf: fb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A4:0D:E0:DD:3C:BB:99:41:3F:1A:3B:0F:41:B2:2F:EE:11:5E:85 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f7a46ea9-b416-4218-a790-28cf84d702ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d026::/36 Signature Algorithm: sha256WithRSAEncryption 4d:7a:7f:7e:b8:17:e7:10:2f:45:16:24:ec:c5:8f:34:31:34: a3:27:40:33:c1:4d:d2:ed:fa:c5:a7:98:cd:e6:98:41:55:e5: b1:6f:71:ea:65:f5:79:31:28:9f:ad:a7:78:61:1d:da:22:f4: 9f:74:68:0d:52:c0:78:a4:6e:50:42:9b:13:23:63:f5:d6:13: 1b:ef:7c:02:d6:03:57:ba:5a:a3:42:bb:37:14:b9:01:dd:ff: f4:c0:ef:fa:7c:d6:c9:45:a6:2d:e4:1f:81:a4:92:52:2d:1f: 22:d6:0e:c8:cd:97:54:52:d9:66:c7:b4:8b:75:37:10:20:6b: a4:05:61:e9:2e:0b:d2:a4:85:e0:2f:1c:3e:f0:58:24:95:66: db:b0:d2:30:16:d9:0f:32:60:2c:f0:11:1a:da:b4:f0:81:ca: 99:96:42:7e:0c:ca:8e:6d:8e:52:ac:dd:f5:e6:7c:9c:95:33: 88:b4:96:7a:fc:00:ff:2b:1a:9b:98:83:e5:a4:17:20:0b:32: 9a:1f:f0:0e:6a:75:ad:3c:05:58:bb:32:cb:17:a7:8f:21:74: 4f:5d:b6:d9:03:b3:d9:78:60:bb:4c:1b:7f:9e:5a:55:6d:78: e0:a0:30:9a:9c:43:04:35:13:7d:93:88:74:a8:d1:54:b8:a4: 08:bd:88:6c -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUcjcd0FZLyepN8P4TelT/3Lsiq9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTMwNTJaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGUwMmIwNDM1NzdmMWQ1YWYwMjZjMGIzOTJhZjM4ODE2NzQ4NGUxNDEzYjYw YTA1ZTc4NzYyNTZjMjM1YTE4NDAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMEXj4Q99nEaZr3M7pelNaqzMMjO77ZSLmKLg6UDJ7W3wwUcEK/niGGISJS+ brmRLWAKLNE9UVRJ8W05UGs1229BZPxrKokUJ/FtzhhA+z6jJMEsJUc+po4lRkKA smiGTBZInAPvN1e2gj7RokUgzIgdcm7mGqHKhIIdwcKWb0BQfJZpCN5APHdWM7zb s9qpwP4A9Q3mjXOvMsQZB8cDIbgpf62qblhXphJgA8LbGuoqphtfZwNOODKNUiem t+lDfEyJIB4CRQCeXiI0kNCe0ekI6aoltSldttEN1bS0BdMc52kF9+YoSmVMNYGw T9llUyEE/zdD9lQwaitEx9jP+3cCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBT3pA3g 3Ty7mUE/GjsPQbIv7hFehTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZjdhNDZlYTktYjQxNi00MjE4LWE3OTAtMjhjZjg0ZDcwMmNlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0CYA MA0GCSqGSIb3DQEBCwUAA4IBAQBNen9+uBfnEC9FFiTsxY80MTSjJ0AzwU3S7frF p5jN5phBVeWxb3HqZfV5MSifrad4YR3aIvSfdGgNUsB4pG5QQpsTI2P11hMb73wC 1gNXulqjQrs3FLkB3f/0wO/6fNbJRaYt5B+BpJJSLR8i1g7IzZdUUtlmx7SLdTcQ IGukBWHpLgvSpIXgLxw+8FgklWbbsNIwFtkPMmAs8BEa2rTwgcqZlkJ+DMqObY5S rN315nyclTOItJZ6/AD/KxqbmIPlpBcgCzKaH/AOanWtPAVYuzLLF6ePIXRPXbbZ A7PZeGC7TBt/nlpVbXjgoDCanEMENRN9k4h0qNFUuKQIvYhs -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:05 2025 by rpki-client