This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/27140a0d-612c-4da4-a60a-55c28faff6fe.roa File: 27140a0d-612c-4da4-a60a-55c28faff6fe.roa (raw, json) Hash identifier: hwW4Y7PY2V/QDPCWheNfT81I5ovdn5NXpVjPOvFQvqU= Subject key identifier: 32:20:23:9E:5C:1D:77:95:5A:4B:38:2F:C8:3E:29:06:91:7E:1A:DB Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0BD31728E7E768B73FF797B30599115FBA5BF33C Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/27140a0d-612c-4da4-a60a-55c28faff6fe.roa Signing time: Wed 10 Dec 2025 05:20:49 +0000 ROA not before: Wed 10 Dec 2025 05:20:49 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06f:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d3:17:28:e7:e7:68:b7:3f:f7:97:b3:05:99:11:5f:ba:5b:f3:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:20:49 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=60b9d2c932beab9e4cab905b15f05a16d3cf1736f73803c4900a8f8056b5246d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:77:14:41:84:3c:91:a2:c6:2b:d9:de:2a:b5: c6:79:4c:40:35:b5:b0:f1:5a:d2:1f:04:7b:13:1c: e2:8a:0d:a9:75:06:66:0e:93:8f:aa:66:4a:fb:4a: c9:d1:8a:3e:51:14:21:cb:b2:26:30:57:d2:92:54: 17:a5:99:4c:25:65:1b:bc:5c:28:f9:11:73:42:cc: 76:84:9d:3f:05:64:91:8b:02:ea:6d:49:f9:c6:a1: 7c:a5:34:a9:b1:30:bb:8c:59:6f:9c:76:24:0e:3e: ca:36:be:ff:fe:f6:76:3d:fa:fe:8e:b4:9d:22:ec: 3b:1d:dd:58:77:70:40:68:73:7f:ed:d8:6a:22:e3: 87:8d:95:cd:81:48:58:f9:81:0a:04:8a:d6:42:b3: 79:fa:f1:35:25:e3:15:8a:e7:12:cc:f7:bf:db:45: d3:55:13:4a:b2:64:89:64:3f:04:4a:e7:69:17:24: 94:a4:f1:d6:71:ac:7b:83:42:63:22:31:de:55:5e: 12:67:36:03:1f:28:ef:5d:cd:f0:6d:ab:56:04:bc: 25:e6:20:7e:18:fd:97:b2:73:47:d0:e5:06:ec:a1: c6:b6:cb:a7:3f:43:75:bc:7f:40:41:d5:07:cd:2f: ef:1b:96:d7:30:d8:15:4e:d9:9f:69:b6:ff:19:bd: df:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:20:23:9E:5C:1D:77:95:5A:4B:38:2F:C8:3E:29:06:91:7E:1A:DB X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/27140a0d-612c-4da4-a60a-55c28faff6fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06f:5000::/40 Signature Algorithm: sha256WithRSAEncryption 44:1d:16:2d:bf:e7:6f:f5:4b:e1:74:0d:8d:79:8a:56:c9:94: 94:2d:11:3a:26:af:4e:5a:37:47:c8:cc:21:88:d2:cb:6f:7b: b4:0a:88:50:21:bb:55:8d:7d:68:4b:c7:9d:ce:4e:c2:64:e2: f0:8b:99:90:0c:97:8f:77:0a:68:4f:ee:2e:f4:21:e0:8c:d9: df:60:2e:06:29:58:cd:9b:5f:cf:2b:a1:46:bd:55:10:a1:76: d0:03:d8:f0:1f:f0:f9:45:d9:8f:78:2d:23:8d:88:14:65:f4: 4f:c1:fa:9e:bf:6c:b2:7d:c0:6b:c6:04:59:5a:ee:53:f1:98: db:bb:1b:11:09:08:ac:c6:a1:f4:40:a1:57:ad:89:c7:f6:4f: 0e:1b:0f:81:93:01:15:fb:86:1e:af:a0:1a:94:2c:06:b9:63: c2:ab:41:ec:66:a9:8a:fc:fd:d4:e4:1a:bf:80:ab:8b:a1:3c: 4e:d0:68:8f:dc:ec:2c:25:18:21:3f:7f:0f:d6:db:6c:09:38: c5:c3:93:07:2d:51:3e:be:bf:ea:39:2d:fd:95:96:12:ad:b3: 30:ed:bf:7b:d5:1e:f6:03:2d:e2:5d:a5:0b:8b:2d:08:34:ef: 37:ba:c4:da:60:ed:c9:da:0e:48:b0:03:93:84:d5:15:a9:8d: d9:73:33:c6 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUC9MXKOfnaLc/95ezBZkRX7pb8zwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTIwNDlaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDYwYjlkMmM5MzJiZWFiOWU0Y2FiOTA1YjE1ZjA1YTE2ZDNjZjE3MzZmNzM4 MDNjNDkwMGE4ZjgwNTZiNTI0NmQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK53FEGEPJGixivZ3iq1xnlMQDW1sPFa0h8EexMc4ooNqXUGZg6Tj6pmSvtK ydGKPlEUIcuyJjBX0pJUF6WZTCVlG7xcKPkRc0LMdoSdPwVkkYsC6m1J+cahfKU0 qbEwu4xZb5x2JA4+yja+//72dj36/o60nSLsOx3dWHdwQGhzf+3YaiLjh42VzYFI WPmBCgSK1kKzefrxNSXjFYrnEsz3v9tF01UTSrJkiWQ/BErnaRcklKTx1nGse4NC YyIx3lVeEmc2Ax8o713N8G2rVgS8JeYgfhj9l7JzR9DlBuyhxrbLpz9Ddbx/QEHV B80v7xuW1zDYFU7Zn2m2/xm935ECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQyICOe XB13lVpLOC/IPikGkX4a2zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MjcxNDBhMGQtNjEyYy00ZGE0LWE2MGEtNTVjMjhmYWZmNmZlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0G9Q MA0GCSqGSIb3DQEBCwUAA4IBAQBEHRYtv+dv9UvhdA2NeYpWyZSULRE6Jq9OWjdH yMwhiNLLb3u0CohQIbtVjX1oS8edzk7CZOLwi5mQDJePdwpoT+4u9CHgjNnfYC4G KVjNm1/PK6FGvVUQoXbQA9jwH/D5RdmPeC0jjYgUZfRPwfqev2yyfcBrxgRZWu5T 8ZjbuxsRCQisxqH0QKFXrYnH9k8OGw+BkwEV+4Yer6AalCwGuWPCq0HsZqmK/P3U 5Bq/gKuLoTxO0GiP3OwsJRghP38P1ttsCTjFw5MHLVE+vr/qOS39lZYSrbMw7b97 1R72Ay3iXaULiy0INO83usTaYO3J2g5IsAOThNUVqY3ZczPG -----END CERTIFICATE-----Generated at Mon Dec 15 19:49:28 2025 by rpki-client