This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fec4786d-f73f-4e64-99a3-0377bdf5c566.roa File: fec4786d-f73f-4e64-99a3-0377bdf5c566.roa (raw, json) Hash identifier: zGwIhE547qMZCyErIR8poALdB/Uhpq/fVzu2pW3jRkg= Subject key identifier: 95:25:55:49:AC:CF:33:AD:EA:00:AE:EB:5F:70:62:56:7E:DC:A6:83 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1DECDBDA489D42092A0306A46B301425AE933678 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fec4786d-f73f-4e64-99a3-0377bdf5c566.roa Signing time: Sat 15 Nov 2025 05:41:24 +0000 ROA not before: Sat 15 Nov 2025 05:41:24 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d02e::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ec:db:da:48:9d:42:09:2a:03:06:a4:6b:30:14:25:ae:93:36:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:41:24 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=3a9cf9015e98d3922815f9838caa831c898ab52bcb618ca3c15f290ef41d8976, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:04:84:dd:d6:10:8f:09:ae:a7:7f:86:72:a8: 6e:fc:99:6e:25:f2:30:88:39:b4:23:f5:bd:58:0c: ff:4e:c9:21:0e:87:5c:1a:1c:4a:e7:6e:ea:94:dd: 27:e6:13:b8:d6:59:f6:ac:19:e5:a5:fa:4f:90:46: 1e:5d:c7:2e:31:dc:a6:d6:66:48:0b:5a:86:be:de: fe:4f:82:34:9d:c5:7a:00:36:71:c2:90:fe:a6:ef: 72:06:11:7b:e0:ce:b5:a1:c6:3c:72:73:56:3d:c1: 42:9a:3f:00:1b:03:8b:41:0d:0d:07:95:29:75:bc: 7b:58:10:4e:0c:16:8c:04:d9:a4:21:f1:6e:5b:34: f0:77:8b:f9:30:88:ed:8b:8c:89:47:62:1e:5a:3d: de:b0:53:15:f9:01:7a:fd:53:53:ad:33:1e:87:fc: d2:9c:3a:7a:87:f6:81:0d:46:00:60:58:2a:8b:a0: 21:d6:a9:3d:57:b1:6c:4d:d8:28:e6:29:2f:54:c1: f0:40:90:12:f2:10:f1:92:ba:a7:73:e0:1f:28:72: 52:62:0c:43:2b:cd:a7:31:b4:e5:ac:89:80:6c:96: 31:da:11:7d:bd:a0:0c:ec:68:2e:5e:58:04:2c:cf: b5:00:08:63:74:0a:17:ee:e8:12:55:46:9a:1d:c4: f6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:25:55:49:AC:CF:33:AD:EA:00:AE:EB:5F:70:62:56:7E:DC:A6:83 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fec4786d-f73f-4e64-99a3-0377bdf5c566.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d02e::/36 Signature Algorithm: sha256WithRSAEncryption c2:1f:51:7e:f8:e0:8a:81:02:34:46:0b:d9:17:f8:02:e8:fb: 19:8f:ae:b0:05:4c:6d:ec:04:11:d5:ad:87:64:c1:b2:9c:7a: c5:ce:2a:3f:e9:d0:24:05:44:4b:32:66:9d:05:73:36:47:30: b9:9e:c6:a8:3d:e5:98:ec:4e:ab:a7:ba:74:6c:89:0c:da:68: cb:92:b7:83:77:30:6f:f5:71:46:77:c1:06:9c:93:af:c9:9a: ad:bf:83:24:9a:90:5d:d9:fc:cb:8a:a1:45:11:1d:c2:ed:df: 3e:70:0c:63:b4:6b:d6:b1:31:74:bd:5b:d0:6f:4f:c4:c5:2e: 79:76:ab:b9:61:b1:bd:39:a8:b2:85:3d:b3:1a:d9:21:c1:cb: e9:3d:19:7e:f5:f0:2e:5f:83:78:a9:23:23:8c:61:3d:54:3a: dc:69:c0:d2:76:ee:eb:78:84:75:95:4f:8b:00:72:fc:1e:0a: cb:83:d6:db:34:ed:d5:f1:48:ff:45:fc:c1:84:55:b3:51:91: 8b:eb:b5:da:68:f6:a5:c9:5d:15:69:d8:13:14:7e:13:1c:33: c0:f1:15:e4:8b:a5:d8:75:d6:d4:93:dd:72:9b:94:ff:a2:52: a0:8f:22:df:81:1e:71:68:ef:1b:61:cd:f4:18:d7:4b:b3:7e: e5:7c:13:82 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUHezb2kidQgkqAwakazAUJa6TNngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQxMjRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDNhOWNmOTAxNWU5OGQzOTIyODE1Zjk4MzhjYWE4MzFjODk4YWI1MmJjYjYx OGNhM2MxNWYyOTBlZjQxZDg5NzYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALAEhN3WEI8Jrqd/hnKobvyZbiXyMIg5tCP1vVgM/07JIQ6HXBocSudu6pTd J+YTuNZZ9qwZ5aX6T5BGHl3HLjHcptZmSAtahr7e/k+CNJ3FegA2ccKQ/qbvcgYR e+DOtaHGPHJzVj3BQpo/ABsDi0ENDQeVKXW8e1gQTgwWjATZpCHxbls08HeL+TCI 7YuMiUdiHlo93rBTFfkBev1TU60zHof80pw6eof2gQ1GAGBYKougIdapPVexbE3Y KOYpL1TB8ECQEvIQ8ZK6p3PgHyhyUmIMQyvNpzG05ayJgGyWMdoRfb2gDOxoLl5Y BCzPtQAIY3QKF+7oElVGmh3E9pcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSVJVVJ rM8zreoArutfcGJWftymgzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZmVjNDc4NmQtZjczZi00ZTY0LTk5YTMtMDM3N2JkZjVjNTY2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0C4A MA0GCSqGSIb3DQEBCwUAA4IBAQDCH1F++OCKgQI0RgvZF/gC6PsZj66wBUxt7AQR 1a2HZMGynHrFzio/6dAkBURLMmadBXM2RzC5nsaoPeWY7E6rp7p0bIkM2mjLkreD dzBv9XFGd8EGnJOvyZqtv4MkmpBd2fzLiqFFER3C7d8+cAxjtGvWsTF0vVvQb0/E xS55dqu5YbG9OaiyhT2zGtkhwcvpPRl+9fAuX4N4qSMjjGE9VDrcacDSdu7reIR1 lU+LAHL8HgrLg9bbNO3V8Uj/RfzBhFWzUZGL67XaaPalyV0VadgTFH4THDPA8RXk i6XYddbUk91ym5T/olKgjyLfgR5xaO8bYc30GNdLs37lfBOC -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:00 2025 by rpki-client