This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/15de004b-cd0f-44a1-99b1-4e2e71ff07d1.roa File: 15de004b-cd0f-44a1-99b1-4e2e71ff07d1.roa (raw, json) Hash identifier: lglBK12Y+oEBk4S9+vILwhbNybJC0RXon7e3D5cbKEM= Subject key identifier: BD:E8:31:32:13:1E:3B:1C:2F:74:88:6F:47:3F:68:90:40:7E:42:87 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3693543D2808109D9A395F591CE9B47F6489ACA6 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/15de004b-cd0f-44a1-99b1-4e2e71ff07d1.roa Signing time: Wed 10 Dec 2025 05:51:02 +0000 ROA not before: Wed 10 Dec 2025 05:51:02 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 22:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:93:54:3d:28:08:10:9d:9a:39:5f:59:1c:e9:b4:7f:64:89:ac:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:51:02 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=d7c68574ffc1bd7ee6d0a58d59c206b56794fc9301b86aba3f170b7b06d5b4a6, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:29:19:c3:a1:25:9c:15:59:08:a7:a8:23:27: de:d2:e0:b5:c6:9f:97:e6:12:24:c9:f0:09:4f:7d: 61:b3:de:76:11:8c:6b:6f:1c:a3:58:da:8c:08:80: 7d:7b:1f:31:ed:3f:9c:53:f5:87:9e:8d:72:20:79: 2c:c5:9b:f1:07:d8:fe:85:2c:7e:a0:54:f7:3f:90: f5:5c:56:19:5b:10:c8:38:f8:ab:ff:11:e3:78:8e: 01:83:3a:9c:75:31:8e:d1:a2:fa:41:50:ae:bb:60: 17:ec:48:1f:4c:5f:50:44:87:39:50:e8:ac:a3:92: 1b:e6:45:1a:57:6f:d4:fd:4b:0f:99:64:1b:10:99: 57:27:cb:16:64:d7:36:1d:5a:b5:5f:65:38:45:a0: 67:04:5a:95:a3:01:ad:85:25:e2:76:63:68:5b:96: f8:12:b1:5d:16:a1:3b:2c:99:ae:72:15:e4:66:4b: c5:03:4f:0e:49:b7:1a:da:74:97:78:66:33:d2:b9: 6f:74:6a:85:0e:8e:f0:6f:34:46:49:2d:82:e5:6b: 0c:e8:fd:03:86:6c:56:17:5d:8e:f4:19:89:0e:d1: 82:a9:52:a8:e6:6d:fa:1e:bd:d5:cc:29:58:06:1c: 97:0c:68:cd:ee:ec:ce:43:c9:b9:39:72:fe:65:a1: ac:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E8:31:32:13:1E:3B:1C:2F:74:88:6F:47:3F:68:90:40:7E:42:87 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/15de004b-cd0f-44a1-99b1-4e2e71ff07d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 7d:dd:24:90:8c:96:20:f5:09:33:c4:c9:b9:09:2a:da:1e:5f: e4:50:54:d8:c7:48:ad:fb:8d:5b:ea:d2:e2:01:fd:11:05:60: f2:cf:7d:50:ce:4f:09:fd:45:4c:2f:d7:81:6a:6c:f5:8b:39: a2:50:6c:65:f8:a3:51:63:b2:e2:f8:a1:68:29:65:5c:99:8a: 8a:9e:45:b3:09:00:61:a6:f6:e1:66:4d:1c:a6:a3:4b:6c:94: 94:a3:64:ce:17:8d:bf:08:b9:5d:7a:19:ec:e1:11:1b:b6:2c: 4e:92:2f:b9:5b:e2:c6:d6:01:31:8a:71:cd:95:87:50:fa:e8: ee:5d:f7:e2:3c:1e:4f:35:f1:53:10:c5:64:7c:ad:0f:c0:8b: b1:19:75:86:7a:a9:18:b2:09:02:f2:a3:8d:d4:99:a4:73:2d: b2:82:79:b2:17:3f:fe:23:53:bd:fb:f3:a1:41:d3:3d:5e:ec: ad:c0:75:f5:d5:51:79:84:fb:d9:a5:9e:cd:1e:b3:88:1e:bf: 54:1d:61:1e:ad:64:20:1a:e0:26:cf:62:40:35:80:c5:46:20: 71:a6:15:61:91:ee:14:80:1b:26:4f:fa:93:62:9a:67:6f:af: 42:22:ad:a7:54:fc:64:e2:34:54:49:fd:42:c2:4c:d5:73:c3: 0c:dd:82:c0 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUNpNUPSgIEJ2aOV9ZHOm0f2SJrKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUxMDJaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGQ3YzY4NTc0ZmZjMWJkN2VlNmQwYTU4ZDU5YzIwNmI1Njc5NGZjOTMwMWI4 NmFiYTNmMTcwYjdiMDZkNWI0YTYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEpGcOhJZwVWQinqCMn3tLgtcafl+YSJMnwCU99YbPedhGMa28co1jajAiA fXsfMe0/nFP1h56NciB5LMWb8QfY/oUsfqBU9z+Q9VxWGVsQyDj4q/8R43iOAYM6 nHUxjtGi+kFQrrtgF+xIH0xfUESHOVDorKOSG+ZFGldv1P1LD5lkGxCZVyfLFmTX Nh1atV9lOEWgZwRalaMBrYUl4nZjaFuW+BKxXRahOyyZrnIV5GZLxQNPDkm3Gtp0 l3hmM9K5b3RqhQ6O8G80RkktguVrDOj9A4ZsVhddjvQZiQ7RgqlSqOZt+h691cwp WAYclwxoze7szkPJuTly/mWhrMcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBS96DEy Ex47HC90iG9HP2iQQH5ChzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTVkZTAwNGItY2QwZi00NGExLTk5YjEtNGUyZTcxZmYwN2QxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H9A wDANBgkqhkiG9w0BAQsFAAOCAQEAfd0kkIyWIPUJM8TJuQkq2h5f5FBU2MdIrfuN W+rS4gH9EQVg8s99UM5PCf1FTC/XgWps9Ys5olBsZfijUWOy4vihaCllXJmKip5F swkAYab24WZNHKajS2yUlKNkzheNvwi5XXoZ7OERG7YsTpIvuVvixtYBMYpxzZWH UPro7l334jweTzXxUxDFZHytD8CLsRl1hnqpGLIJAvKjjdSZpHMtsoJ5shc//iNT vfvzoUHTPV7srcB19dVReYT72aWezR6ziB6/VB1hHq1kIBrgJs9iQDWAxUYgcaYV YZHuFIAbJk/6k2KaZ2+vQiKtp1T8ZOI0VEn9QsJM1XPDDN2CwA== -----END CERTIFICATE-----Generated at Tue Dec 16 04:36:03 2025 by rpki-client