This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fcc2c855-ca62-4b4c-a1c6-8b4152bc7a05.roa File: fcc2c855-ca62-4b4c-a1c6-8b4152bc7a05.roa (raw, json) Hash identifier: 5QSlPMC78nZUIbr420zGqnwTh/cKdXwvFurmmFimfbs= Subject key identifier: 7C:0F:46:36:00:2E:A2:EC:88:D1:64:BC:0B:CC:DA:0B:F1:D1:81:4D Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 18C63F439379D3F97158363F182CD38663D504D0 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fcc2c855-ca62-4b4c-a1c6-8b4152bc7a05.roa Signing time: Wed 10 Dec 2025 05:50:37 +0000 ROA not before: Wed 10 Dec 2025 05:50:37 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d075:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 14:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:c6:3f:43:93:79:d3:f9:71:58:36:3f:18:2c:d3:86:63:d5:04:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:50:37 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=6d1fe6a73f20effee9b5ea412f5205a9cee96e5034f290143d6e3e320f33a605, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:35:93:23:d7:53:60:bd:63:60:9c:f1:e6:21: 32:0e:e5:a4:c4:3b:d6:51:e6:b1:7a:8f:3e:19:cc: 4c:b8:b5:19:49:29:f8:b8:27:5d:ad:99:6e:bf:6b: 6e:18:a6:8b:ad:ba:a1:d0:12:fd:9d:a2:6e:0f:de: d8:70:e9:a6:2d:92:15:eb:60:da:63:ac:97:52:d4: a2:c3:a0:23:1f:3d:1d:b6:47:36:22:b6:e5:e2:ed: 0f:ba:c6:f6:4f:8c:37:d6:d5:6b:8d:1d:17:59:b7: 08:ff:23:eb:ca:2c:44:d0:eb:98:92:62:49:c9:e6: 12:51:e3:bc:a9:38:31:29:d0:58:55:3f:58:3a:87: cf:7d:12:20:5e:e0:96:ce:69:15:35:8c:b8:93:91: d2:42:e2:3f:fc:61:6a:f5:d2:5c:f3:4f:4e:3f:d9: 00:c2:fb:9c:ce:6b:8c:01:9f:35:e9:af:79:49:50: da:8e:a9:ba:23:2a:13:d9:74:cd:86:ce:de:3a:94: fb:38:3b:e6:ca:71:25:ec:37:3b:1c:e4:0b:a2:4a: 20:cc:ed:08:c8:b7:e6:f0:02:1e:24:c5:c8:1a:8d: ff:68:ce:83:f3:01:2e:a8:a2:77:66:52:43:55:2d: 69:bc:bf:28:19:aa:98:7a:9e:f0:ff:77:f7:cb:18: b2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:0F:46:36:00:2E:A2:EC:88:D1:64:BC:0B:CC:DA:0B:F1:D1:81:4D X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fcc2c855-ca62-4b4c-a1c6-8b4152bc7a05.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d075:c000::/40 Signature Algorithm: sha256WithRSAEncryption 86:cc:4a:bb:17:c3:4e:f9:cf:bc:5f:fe:05:23:fd:f8:82:88: 00:cd:a0:c4:ce:8b:97:97:96:eb:9d:93:22:97:20:ae:4d:0a: 9a:92:c0:6b:6b:15:b7:17:05:8d:37:c0:42:2b:8d:a7:b7:0c: ec:07:9c:c5:42:1f:2a:01:49:b5:2e:af:2a:6a:d0:7c:c6:5c: 0d:6d:c0:74:d0:d5:4e:2e:21:5c:24:72:40:40:38:e5:f1:5a: 9d:a9:13:8b:d6:61:0b:af:d9:c4:dd:a7:52:d4:d7:7c:d7:2e: 58:3b:89:42:8c:cf:3d:54:f8:4e:87:ae:5c:2d:9e:90:cf:85: b0:47:23:f0:56:0a:0b:85:57:47:b0:51:db:f8:af:46:2d:74: c9:10:a5:36:16:4f:9b:32:6e:98:72:3c:2f:ec:ea:f6:21:2d: 69:01:f6:b5:92:d1:2e:aa:14:a8:f5:55:03:ad:d4:ec:7a:e6: 28:aa:a9:5c:27:e0:84:72:9e:8f:50:7d:f8:ed:e7:eb:20:6f: a0:0c:7d:dd:bc:d7:ca:17:49:20:0f:7d:b1:0b:2a:c2:38:57: 4a:cc:b6:b1:28:e2:f6:c9:ed:fc:12:c1:1a:13:d2:e2:cb:1d: fe:c8:87:0d:f7:33:84:32:98:a5:be:ce:27:63:2b:5f:c6:1d: a6:47:46:a5 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUGMY/Q5N50/lxWDY/GCzThmPVBNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUwMzdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDZkMWZlNmE3M2YyMGVmZmVlOWI1ZWE0MTJmNTIwNWE5Y2VlOTZlNTAzNGYy OTAxNDNkNmUzZTMyMGYzM2E2MDUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALc1kyPXU2C9Y2Cc8eYhMg7lpMQ71lHmsXqPPhnMTLi1GUkp+LgnXa2Zbr9r bhimi626odAS/Z2ibg/e2HDppi2SFetg2mOsl1LUosOgIx89HbZHNiK25eLtD7rG 9k+MN9bVa40dF1m3CP8j68osRNDrmJJiScnmElHjvKk4MSnQWFU/WDqHz30SIF7g ls5pFTWMuJOR0kLiP/xhavXSXPNPTj/ZAML7nM5rjAGfNemveUlQ2o6puiMqE9l0 zYbO3jqU+zg75spxJew3OxzkC6JKIMztCMi35vACHiTFyBqN/2jOg/MBLqiid2ZS Q1Utaby/KBmqmHqe8P9398sYstkCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBR8D0Y2 AC6i7IjRZLwLzNoL8dGBTTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZmNjMmM4NTUtY2E2Mi00YjRjLWExYzYtOGI0MTUyYmM3YTA1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HXA MA0GCSqGSIb3DQEBCwUAA4IBAQCGzEq7F8NO+c+8X/4FI/34gogAzaDEzouXl5br nZMilyCuTQqaksBraxW3FwWNN8BCK42ntwzsB5zFQh8qAUm1Lq8qatB8xlwNbcB0 0NVOLiFcJHJAQDjl8VqdqROL1mELr9nE3adS1Nd81y5YO4lCjM89VPhOh65cLZ6Q z4WwRyPwVgoLhVdHsFHb+K9GLXTJEKU2Fk+bMm6Ycjwv7Or2IS1pAfa1ktEuqhSo 9VUDrdTseuYoqqlcJ+CEcp6PUH347efrIG+gDH3dvNfKF0kgD32xCyrCOFdKzLax KOL2ye38EsEaE9Liyx3+yIcN9zOEMpilvs4nYytfxh2mR0al -----END CERTIFICATE-----Generated at Mon Dec 15 17:09:05 2025 by rpki-client