This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fb455f5d-6ce6-4373-b5bc-1c1e034a148a.roa File: fb455f5d-6ce6-4373-b5bc-1c1e034a148a.roa (raw, json) Hash identifier: aKvgvQGxsaas9Gd3HNs9v9P83vssc8kjGgnxeeVdBeE= Subject key identifier: 8E:40:81:1C:B8:02:7F:E0:3E:F3:8E:65:15:61:C1:59:13:48:54:88 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6F3BAE8542D95C4E73BF7D1751DFA06776040DA9 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fb455f5d-6ce6-4373-b5bc-1c1e034a148a.roa Signing time: Sat 15 Nov 2025 05:40:05 +0000 ROA not before: Sat 15 Nov 2025 05:40:05 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:4060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:3b:ae:85:42:d9:5c:4e:73:bf:7d:17:51:df:a0:67:76:04:0d:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:40:05 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=23ce0d65d1d232d8eada4b19b3dabab8183bcca7dca2b232cca0ee32a4187bf4, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7d:6a:ff:5c:e1:70:5a:64:12:3e:21:dd:f3: fd:89:d0:15:a3:b1:05:08:0d:95:b0:af:dd:63:19: e9:ac:4f:b7:54:c7:9a:d1:3e:65:fe:35:50:27:1f: 60:9b:17:d1:cf:cd:8f:50:24:92:ae:88:8c:66:f4: 7a:24:1f:da:60:e0:ac:5a:8f:72:3c:88:60:59:4c: 85:84:a0:a0:d8:f9:49:9c:d4:92:ba:d8:0a:6d:79: 59:6c:28:49:ac:f0:2d:49:c8:a7:09:04:9c:65:9d: f2:36:f0:0f:90:81:3c:3f:35:c4:8a:fd:89:06:c3: dd:af:b3:df:94:c9:1f:b8:62:df:5c:91:0c:6c:33: 43:7f:93:67:4a:7a:46:b5:18:cb:fe:07:2e:24:c5: 22:69:00:b7:4d:d0:b6:b4:f0:4f:50:db:3b:70:81: 54:93:90:53:30:3b:cc:67:73:9d:1c:87:03:af:2a: a3:5e:3f:83:e3:61:b6:35:19:2d:0a:31:b7:41:a3: 49:3c:15:c1:50:e1:e7:de:95:d7:eb:03:1b:c5:72: eb:3f:1d:37:13:4b:42:b7:b9:7f:9b:0e:14:3f:d0: 86:b2:e6:f1:0d:41:7e:c3:e1:00:16:ab:2f:51:21: 20:f2:b7:ae:30:d8:dd:42:d7:84:d7:a1:62:ef:a7: 90:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:40:81:1C:B8:02:7F:E0:3E:F3:8E:65:15:61:C1:59:13:48:54:88 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fb455f5d-6ce6-4373-b5bc-1c1e034a148a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:4060::/48 Signature Algorithm: sha256WithRSAEncryption 31:a1:1c:8d:83:22:61:f5:3e:4c:c8:de:74:41:fb:e0:24:35: 8c:e6:35:ed:9a:89:fd:00:0f:18:78:c8:31:66:44:b5:32:e8: a7:28:03:78:4f:fd:2d:70:c6:b2:a4:04:17:d9:65:d8:91:8c: e9:3d:6d:3d:ec:f2:0a:48:85:f9:b1:a9:e5:f3:88:77:f1:dd: bd:28:81:6c:8e:4b:5a:9b:b0:bd:87:fc:8a:9f:6f:62:f9:94: 86:b2:06:15:43:a9:7a:ec:ce:00:4b:9b:53:e4:8b:45:b6:f0: cf:1d:f1:f5:08:16:88:55:84:1e:cc:5f:88:86:0f:4f:bd:3b: f5:af:15:cb:97:4a:23:eb:6d:76:10:49:68:30:78:a5:47:86: 38:93:90:c0:68:b7:6e:97:ac:a9:3c:ef:b5:39:c0:78:02:2b: 69:0d:bd:c6:6d:6b:4c:51:b3:fd:e0:84:d8:bd:9f:ed:d6:97: 51:73:0a:c9:b5:81:d7:87:3c:36:72:57:32:70:1f:4b:e5:a3: 20:0e:17:78:bd:21:71:c4:2d:a5:63:fd:b2:a8:2c:72:4f:48: 49:26:c5:32:b8:cc:32:86:00:48:b9:e6:0c:78:f0:4d:00:b6: 43:40:aa:45:5b:d3:97:cc:93:19:02:ce:a0:ea:88:48:27:4c: 43:d8:5c:a4 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUbzuuhULZXE5zv30XUd+gZ3YEDakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQwMDVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDIzY2UwZDY1ZDFkMjMyZDhlYWRhNGIxOWIzZGFiYWI4MTgzYmNjYTdkY2Ey YjIzMmNjYTBlZTMyYTQxODdiZjQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZ9av9c4XBaZBI+Id3z/YnQFaOxBQgNlbCv3WMZ6axPt1THmtE+Zf41UCcf YJsX0c/Nj1Akkq6IjGb0eiQf2mDgrFqPcjyIYFlMhYSgoNj5SZzUkrrYCm15WWwo SazwLUnIpwkEnGWd8jbwD5CBPD81xIr9iQbD3a+z35TJH7hi31yRDGwzQ3+TZ0p6 RrUYy/4HLiTFImkAt03QtrTwT1DbO3CBVJOQUzA7zGdznRyHA68qo14/g+NhtjUZ LQoxt0GjSTwVwVDh596V1+sDG8Vy6z8dNxNLQre5f5sOFD/QhrLm8Q1BfsPhABar L1EhIPK3rjDY3ULXhNehYu+nkBkCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSOQIEc uAJ/4D7zjmUVYcFZE0hUiDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZmI0NTVmNWQtNmNlNi00MzczLWI1YmMtMWMxZTAzNGExNDhhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ABA YDANBgkqhkiG9w0BAQsFAAOCAQEAMaEcjYMiYfU+TMjedEH74CQ1jOY17ZqJ/QAP GHjIMWZEtTLopygDeE/9LXDGsqQEF9ll2JGM6T1tPezyCkiF+bGp5fOId/HdvSiB bI5LWpuwvYf8ip9vYvmUhrIGFUOpeuzOAEubU+SLRbbwzx3x9QgWiFWEHsxfiIYP T7079a8Vy5dKI+ttdhBJaDB4pUeGOJOQwGi3bpesqTzvtTnAeAIraQ29xm1rTFGz /eCE2L2f7daXUXMKybWB14c8NnJXMnAfS+WjIA4XeL0hccQtpWP9sqgsck9ISSbF MrjMMoYASLnmDHjwTQC2Q0CqRVvTl8yTGQLOoOqISCdMQ9hcpA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:36 2025 by rpki-client