This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/03f51c56-79aa-48ca-895c-790a431bbd73.roa File: 03f51c56-79aa-48ca-895c-790a431bbd73.roa (raw, json) Hash identifier: JNqyDe/0N1sxIE209zTi3Jpjn+3RE3/hwCcjzkvRlQg= Subject key identifier: 0E:86:0F:57:7B:5F:F4:4D:39:72:AE:D2:21:74:23:B7:6C:59:41:C9 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 26CE23DE3D7EF9BD9BCB2F9EC14124C8CBDA932F Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/03f51c56-79aa-48ca-895c-790a431bbd73.roa Signing time: Mon 08 Dec 2025 02:10:27 +0000 ROA not before: Mon 08 Dec 2025 02:10:27 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d075:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:ce:23:de:3d:7e:f9:bd:9b:cb:2f:9e:c1:41:24:c8:cb:da:93:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 8 02:10:27 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=366150269aad142f5f750cf43fff8860832160a5df229e0530e306a9093c42b7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b0:5c:28:01:8f:5f:f9:a5:60:56:c2:7e:6b: a0:e2:03:13:5b:52:43:b8:ec:aa:ba:98:48:9d:26: c3:ca:2c:9c:98:86:6d:4a:13:5f:66:31:5a:ae:5e: 06:bb:ca:cb:ec:b3:f6:a7:e8:d6:8b:1e:a6:ea:9c: 83:ac:7c:c7:40:79:1a:28:16:54:df:38:97:bd:73: e8:42:2c:95:18:e5:36:12:0e:f3:57:59:18:e5:7d: 40:a5:f7:31:c3:b8:24:63:50:16:af:f8:74:7f:7f: 88:f0:65:ab:48:67:c2:91:fd:40:4f:49:e1:96:82: 16:63:44:7b:02:d6:4d:e2:71:5f:78:3c:f3:0e:52: f5:b8:33:b8:19:19:da:82:d6:90:82:d7:ff:24:6a: 57:74:30:20:82:1c:af:85:80:b4:06:50:47:a5:38: 60:2c:66:7a:e6:ad:c6:1d:d7:0b:1f:f0:e8:d5:bc: 8f:57:e6:a5:4b:4e:f4:23:b4:91:60:55:8b:95:37: 2f:cf:7d:55:df:a3:46:97:e2:0a:98:0f:a7:8f:f1: 6e:f4:23:b9:24:d5:1a:cd:55:10:14:a2:ab:c9:98: 62:88:b3:fe:f4:d6:b2:33:e5:bc:4d:b1:3f:31:51: 4f:91:5c:87:6d:e8:5e:a7:eb:3f:d0:66:ce:c9:f0: bd:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:86:0F:57:7B:5F:F4:4D:39:72:AE:D2:21:74:23:B7:6C:59:41:C9 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/03f51c56-79aa-48ca-895c-790a431bbd73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d075:800::/40 Signature Algorithm: sha256WithRSAEncryption bd:16:4c:b3:b4:76:81:29:ba:50:b8:41:e7:d5:6e:6f:2e:a4: 40:26:49:5d:6e:96:60:b7:1e:9e:f6:64:47:de:5b:a5:d9:b8: a2:56:76:af:db:de:dd:6d:56:ee:1a:f2:24:9a:0d:93:f2:14: 25:d6:d2:f8:42:0d:5a:5e:fa:3a:e8:e8:fb:df:e5:80:90:b1: ec:b9:2b:6d:47:48:2d:1b:4c:cc:60:53:08:55:02:da:52:a6: 68:71:d1:c2:97:e6:cc:52:96:17:60:41:a6:a7:e3:ec:5d:7d: 6d:7c:a9:d4:2b:26:d2:24:0e:dc:21:77:41:c6:52:62:74:19: fd:f0:84:6d:1f:52:5d:5d:63:66:90:5f:f1:96:ce:b5:88:4e: 4d:a8:96:8f:46:30:8b:f2:b9:5a:dd:6d:34:14:d4:ca:8c:d0: 79:3d:0c:4c:93:9e:bc:4b:24:75:a4:4c:48:17:c4:1c:91:b7: 94:41:3b:1d:ba:35:37:4d:6b:ba:60:aa:72:43:06:32:4a:cf: ca:e9:47:51:1d:6d:cf:eb:7f:8d:1b:11:fd:e3:e4:90:8a:9e: d9:f7:ef:56:fe:0c:7b:24:7e:1d:6c:78:2d:45:b0:71:a4:f7: 24:28:75:d8:e4:30:46:2b:c2:96:49:05:6f:49:70:0e:44:e5: 6f:f4:25:b1 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUJs4j3j1++b2byy+ewUEkyMvaky8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDgwMjEwMjdaFw0yNjAzMDgyMzU5NTlaMHoxSTBHBgNV BAUTQDM2NjE1MDI2OWFhZDE0MmY1Zjc1MGNmNDNmZmY4ODYwODMyMTYwYTVkZjIy OWUwNTMwZTMwNmE5MDkzYzQyYjcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANiwXCgBj1/5pWBWwn5roOIDE1tSQ7jsqrqYSJ0mw8osnJiGbUoTX2YxWq5e BrvKy+yz9qfo1osepuqcg6x8x0B5GigWVN84l71z6EIslRjlNhIO81dZGOV9QKX3 McO4JGNQFq/4dH9/iPBlq0hnwpH9QE9J4ZaCFmNEewLWTeJxX3g88w5S9bgzuBkZ 2oLWkILX/yRqV3QwIIIcr4WAtAZQR6U4YCxmeuatxh3XCx/w6NW8j1fmpUtO9CO0 kWBVi5U3L899Vd+jRpfiCpgPp4/xbvQjuSTVGs1VEBSiq8mYYoiz/vTWsjPlvE2x PzFRT5Fch23oXqfrP9BmzsnwvXsCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQOhg9X e1/0TTlyrtIhdCO3bFlByTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MDNmNTFjNTYtNzlhYS00OGNhLTg5NWMtNzkwYTQzMWJiZDczLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HUI MA0GCSqGSIb3DQEBCwUAA4IBAQC9FkyztHaBKbpQuEHn1W5vLqRAJkldbpZgtx6e 9mRH3lul2biiVnav297dbVbuGvIkmg2T8hQl1tL4Qg1aXvo66Oj73+WAkLHsuStt R0gtG0zMYFMIVQLaUqZocdHCl+bMUpYXYEGmp+PsXX1tfKnUKybSJA7cIXdBxlJi dBn98IRtH1JdXWNmkF/xls61iE5NqJaPRjCL8rla3W00FNTKjNB5PQxMk568SyR1 pExIF8QckbeUQTsdujU3TWu6YKpyQwYySs/K6UdRHW3P63+NGxH94+SQip7Z9+9W /gx7JH4dbHgtRbBxpPckKHXY5DBGK8KWSQVvSXAOROVv9CWx -----END CERTIFICATE-----Generated at Wed Dec 17 13:27:01 2025 by rpki-client