This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/113e55fd-9531-4700-bcdc-5abe9a806b41.roa File: 113e55fd-9531-4700-bcdc-5abe9a806b41.roa (raw, json) Hash identifier: tmNcXO7/Alf8fSj1AJ455Zk6bzbSh9u4ZDSLJYisrBM= Subject key identifier: B3:AD:48:35:35:BE:66:DD:65:89:31:4E:F2:B0:E4:FD:B5:BD:DD:EF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 08F10B3CCFCEE93346B4B9BAECB6A7D8941D322A Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/113e55fd-9531-4700-bcdc-5abe9a806b41.roa Signing time: Sun 07 Dec 2025 03:00:06 +0000 ROA not before: Sun 07 Dec 2025 03:00:06 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d076:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:f1:0b:3c:cf:ce:e9:33:46:b4:b9:ba:ec:b6:a7:d8:94:1d:32:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 7 03:00:06 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=91944ba7620f32a855f445c79dbcfe3d0d018a1c65da9d63d7f1bd22a15d4083, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e2:27:eb:06:0a:b5:f9:7f:ad:93:ef:34:6d: 85:89:a2:f4:0d:12:c7:ff:20:fb:09:80:85:7e:b1: c2:08:2f:51:49:ca:50:fb:87:55:f4:70:79:59:cb: 44:c7:3b:82:4d:b4:16:0d:7a:5f:81:37:ea:69:6a: 53:4f:4e:1b:e8:ec:56:29:4c:e3:07:0e:96:5e:4e: 67:02:37:18:2c:cf:df:18:a5:bc:36:db:a1:99:fb: c4:8b:57:f6:b9:bf:67:06:af:c1:b9:ff:36:72:fe: 94:f2:f9:84:db:f7:1c:c1:9d:f3:e0:53:03:3e:00: 9f:35:6d:01:6b:c7:b0:e1:05:41:6b:6c:60:eb:9a: 6f:ee:03:ab:4b:30:8c:b5:36:b1:7b:43:fb:0b:a8: cc:94:b9:91:e0:4d:d0:8b:49:d1:20:bd:b9:e2:28: d3:06:c8:15:0a:68:bd:76:0a:20:f3:11:7f:2f:8b: 19:57:d2:af:9b:85:6d:92:64:af:5b:ec:a0:c3:a7: 8d:c7:e8:a8:3d:31:6a:25:74:52:0d:3c:ea:73:06: 15:aa:38:5d:42:ce:74:a0:9c:ad:9f:83:14:c1:b2: 29:0d:c5:05:d6:0a:9b:db:3c:bc:67:d9:1c:87:5e: 59:12:e2:31:47:00:17:a4:8c:d4:f2:bc:f3:b6:ba: e0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:AD:48:35:35:BE:66:DD:65:89:31:4E:F2:B0:E4:FD:B5:BD:DD:EF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/113e55fd-9531-4700-bcdc-5abe9a806b41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d076:800::/40 Signature Algorithm: sha256WithRSAEncryption 48:2d:ec:4f:b7:03:b5:f1:ec:10:1d:02:33:b9:91:a9:85:ac: 75:c3:69:8e:d5:c3:79:5e:b4:ef:17:56:9a:c0:f2:26:42:a3: 0e:5a:74:1b:65:fa:b7:34:21:e1:bf:1a:bb:85:9b:20:b0:26: a2:a3:57:5d:7a:66:76:49:4c:a3:1a:f7:51:b3:b1:56:e2:ca: 5c:98:a8:7c:86:c4:47:32:32:bc:9a:3c:91:bf:f6:bd:db:79: 61:6b:39:3d:24:c6:f7:56:2e:58:4f:af:69:d6:68:50:85:b3: af:e4:0b:72:8a:b6:aa:ec:25:c4:ef:b1:22:37:d0:db:e1:6b: 47:28:db:f5:19:ba:1a:f1:3d:4a:e3:17:b1:02:78:6a:64:10: 27:0e:d9:c9:b5:a6:94:30:00:77:94:81:43:3a:88:84:76:5b: 9d:3a:98:e3:d0:d7:9a:20:22:75:97:da:0b:2c:91:9f:87:61: 6b:74:36:d8:a4:8b:29:7e:96:3e:90:e4:6e:3c:ed:d7:df:88: 9b:aa:df:a8:0e:33:19:4f:c6:68:9f:06:48:ba:8e:ad:c1:ad: f9:57:9c:07:de:6f:e0:e9:e7:48:fe:2c:a4:f4:7e:72:e9:ba: 3f:ed:6a:91:61:41:3c:87:e2:93:4a:38:9c:b5:5f:6b:61:fc: 6c:91:3d:10 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUCPELPM/O6TNGtLm67Lan2JQdMiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDcwMzAwMDZaFw0yNjAzMDcyMzU5NTlaMHoxSTBHBgNV BAUTQDkxOTQ0YmE3NjIwZjMyYTg1NWY0NDVjNzlkYmNmZTNkMGQwMThhMWM2NWRh OWQ2M2Q3ZjFiZDIyYTE1ZDQwODMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJPiJ+sGCrX5f62T7zRthYmi9A0Sx/8g+wmAhX6xwggvUUnKUPuHVfRweVnL RMc7gk20Fg16X4E36mlqU09OG+jsVilM4wcOll5OZwI3GCzP3xilvDbboZn7xItX 9rm/Zwavwbn/NnL+lPL5hNv3HMGd8+BTAz4AnzVtAWvHsOEFQWtsYOuab+4Dq0sw jLU2sXtD+wuozJS5keBN0ItJ0SC9ueIo0wbIFQpovXYKIPMRfy+LGVfSr5uFbZJk r1vsoMOnjcfoqD0xaiV0Ug086nMGFao4XULOdKCcrZ+DFMGyKQ3FBdYKm9s8vGfZ HIdeWRLiMUcAF6SM1PK887a64GkCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSzrUg1 Nb5m3WWJMU7ysOT9tb3d7zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTEzZTU1ZmQtOTUzMS00NzAwLWJjZGMtNWFiZTlhODA2YjQxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HYI MA0GCSqGSIb3DQEBCwUAA4IBAQBILexPtwO18ewQHQIzuZGphax1w2mO1cN5XrTv F1aawPImQqMOWnQbZfq3NCHhvxq7hZsgsCaio1ddemZ2SUyjGvdRs7FW4spcmKh8 hsRHMjK8mjyRv/a923lhazk9JMb3Vi5YT69p1mhQhbOv5Atyiraq7CXE77EiN9Db 4WtHKNv1Gboa8T1K4xexAnhqZBAnDtnJtaaUMAB3lIFDOoiEdludOpjj0NeaICJ1 l9oLLJGfh2FrdDbYpIspfpY+kORuPO3X34ibqt+oDjMZT8ZonwZIuo6twa35V5wH 3m/g6edI/iyk9H5y6bo/7WqRYUE8h+KTSjictV9rYfxskT0Q -----END CERTIFICATE-----Generated at Tue Dec 16 23:18:21 2025 by rpki-client