This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f97778b4-85b1-4580-ac38-a4872d19261b.roa File: f97778b4-85b1-4580-ac38-a4872d19261b.roa (raw, json) Hash identifier: TVqgQR439j/+2Wt8OmS8XevEw8jXTjb9bJ2hnSBZ3qo= Subject key identifier: 0F:44:D4:55:EC:1D:18:7C:45:94:4D:62:44:A4:9E:6A:5A:9C:AF:0F Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5BDAE2669BC03D762BF3C408121898AB81F12EA8 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f97778b4-85b1-4580-ac38-a4872d19261b.roa Signing time: Wed 10 Dec 2025 06:30:44 +0000 ROA not before: Wed 10 Dec 2025 06:30:44 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d034:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:da:e2:66:9b:c0:3d:76:2b:f3:c4:08:12:18:98:ab:81:f1:2e:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:30:44 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=8ab7eb409e19cdda2c9361958d317bc5728b05b7994ef104b400c3b5515137f9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8a:9e:86:97:67:44:c6:b9:11:85:b6:d4:3f: 95:30:18:cb:f8:83:b1:2b:60:96:61:40:86:9d:cf: 34:2c:6c:3e:e2:e9:30:9c:5a:ab:88:13:5b:6e:de: 93:d5:1a:f2:dc:35:6c:ed:81:d1:f5:9a:4b:74:3c: b3:8b:84:9e:76:b8:cd:4d:46:c5:3a:91:c9:09:26: fc:c2:f9:21:bc:77:83:b5:8d:fe:44:24:c2:54:19: c0:00:d1:69:58:12:fe:a9:b7:2a:8e:af:ab:47:56: 15:8a:42:8a:18:54:81:7d:9c:09:b6:cb:14:8e:29: 8d:ac:6b:65:c8:5a:41:49:c9:e1:69:95:51:16:a9: 6a:d1:e5:14:bb:99:2d:e9:16:86:97:9d:ca:eb:6a: 8a:68:0a:fe:5f:53:d6:78:ad:a0:ca:8e:a3:14:2c: 43:de:af:b5:5b:b6:c8:b7:0f:ae:97:dd:99:da:68: 7a:eb:d2:8b:e7:e9:d0:8e:7d:02:fc:71:cd:b0:74: de:ad:2b:7a:c5:9b:88:c6:14:61:df:2f:d5:70:71: a9:32:9e:aa:11:cb:bc:d7:d1:77:bc:7b:ff:87:df: 17:86:95:c9:19:a5:a1:75:11:d5:64:81:ab:7c:01: 68:a2:86:e0:a0:44:3d:be:ca:a5:25:33:80:91:55: e2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:44:D4:55:EC:1D:18:7C:45:94:4D:62:44:A4:9E:6A:5A:9C:AF:0F X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f97778b4-85b1-4580-ac38-a4872d19261b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d034:5000::/40 Signature Algorithm: sha256WithRSAEncryption 17:59:f5:7a:c2:53:bd:61:65:86:fc:61:f8:ee:ea:b3:12:49: 55:d8:9e:f7:b2:fb:b3:74:96:76:b3:ed:df:b1:ec:b3:26:96: 85:c0:b5:ba:c8:11:4c:4a:67:51:2e:ba:a1:43:6e:74:e6:ad: a4:16:7d:2c:82:a3:b8:39:82:1b:f8:3e:96:39:dd:3c:67:09: e1:ba:d0:da:2a:06:28:bb:6d:2d:82:92:60:bc:e6:91:8c:28: c7:7b:88:72:86:87:f2:b5:11:d5:b2:0f:4e:d1:27:d1:cc:3e: bf:e5:7e:35:2c:ca:f3:92:8c:13:cb:f4:8f:00:83:de:50:c8: d6:8f:d1:a4:62:47:c0:d5:c7:41:5d:b4:70:3e:42:40:4c:b8: 1f:87:8b:ef:0a:0e:7e:00:06:8a:9f:fb:63:eb:72:68:04:2e: bd:55:12:a0:74:3c:fe:f3:08:37:f5:b3:15:49:4e:93:a2:d6: 6c:f3:f7:0e:29:5b:94:ab:b2:1f:02:20:04:80:50:56:da:83: e9:8a:64:bb:05:4e:e4:be:a6:c9:d7:9b:b0:7b:95:91:4e:d7: 52:fc:eb:79:02:73:e3:70:12:40:24:f9:d2:49:32:68:68:43: 4d:c0:32:fa:7e:05:57:e8:ac:2d:2f:17:b3:3a:1b:67:ac:6e: 97:06:4a:7b -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUW9riZpvAPXYr88QIEhiYq4HxLqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjMwNDRaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDhhYjdlYjQwOWUxOWNkZGEyYzkzNjE5NThkMzE3YmM1NzI4YjA1Yjc5OTRl ZjEwNGI0MDBjM2I1NTE1MTM3ZjkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWKnoaXZ0TGuRGFttQ/lTAYy/iDsStglmFAhp3PNCxsPuLpMJxaq4gTW27e k9Ua8tw1bO2B0fWaS3Q8s4uEnna4zU1GxTqRyQkm/ML5Ibx3g7WN/kQkwlQZwADR aVgS/qm3Ko6vq0dWFYpCihhUgX2cCbbLFI4pjaxrZchaQUnJ4WmVURapatHlFLuZ LekWhpedyutqimgK/l9T1nitoMqOoxQsQ96vtVu2yLcPrpfdmdpoeuvSi+fp0I59 AvxxzbB03q0resWbiMYUYd8v1XBxqTKeqhHLvNfRd7x7/4ffF4aVyRmloXUR1WSB q3wBaKKG4KBEPb7KpSUzgJFV4kUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQPRNRV 7B0YfEWUTWJEpJ5qWpyvDzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv Zjk3Nzc4YjQtODViMS00NTgwLWFjMzgtYTQ4NzJkMTkyNjFiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DRQ MA0GCSqGSIb3DQEBCwUAA4IBAQAXWfV6wlO9YWWG/GH47uqzEklV2J73svuzdJZ2 s+3fseyzJpaFwLW6yBFMSmdRLrqhQ2505q2kFn0sgqO4OYIb+D6WOd08ZwnhutDa KgYou20tgpJgvOaRjCjHe4hyhofytRHVsg9O0SfRzD6/5X41LMrzkowTy/SPAIPe UMjWj9GkYkfA1cdBXbRwPkJATLgfh4vvCg5+AAaKn/tj63JoBC69VRKgdDz+8wg3 9bMVSU6TotZs8/cOKVuUq7IfAiAEgFBW2oPpimS7BU7kvqbJ15uwe5WRTtdS/Ot5 AnPjcBJAJPnSSTJoaENNwDL6fgVX6KwtLxezOhtnrG6XBkp7 -----END CERTIFICATE-----Generated at Mon Dec 15 15:30:45 2025 by rpki-client