This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa File: 366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa (raw, json) Hash identifier: ULS9iNP8paXFjg2mO/3wpE5eOzpnM4i/00SrCet4rjw= Subject key identifier: A6:CC:FD:A0:F6:E2:E3:10:39:B3:DA:1B:F2:2B:03:50:97:02:2E:97 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 7485F269160B70B834C3B30C5CBF5883D45EBC3D Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa Signing time: Wed 10 Dec 2025 05:40:11 +0000 ROA not before: Wed 10 Dec 2025 05:40:11 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:4040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:85:f2:69:16:0b:70:b8:34:c3:b3:0c:5c:bf:58:83:d4:5e:bc:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:40:11 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=297d9b8e1c3e1bfebd40dfa18dbce64027426abc8fb88cc0adc618179987440d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ef:1e:20:ab:e7:3c:bf:71:66:b0:a3:5a:f1: f7:71:e0:de:90:d1:eb:36:7e:3e:e9:05:e9:9c:6a: 1a:8e:7c:e3:48:28:69:ec:8e:85:2e:5a:e0:07:cf: ed:1d:f1:80:f7:e1:f9:85:5f:c1:79:d8:49:1f:41: 10:8d:8f:ac:60:a7:c2:86:3f:18:1f:ff:38:cd:f4: 62:7c:5b:76:b7:17:28:68:40:42:ff:77:4d:c8:65: 22:fe:53:6c:54:3e:a1:36:f6:89:95:f3:3b:df:e4: 42:87:42:92:a4:a8:4a:52:45:7e:ca:85:10:3d:01: cf:41:c4:6a:bb:63:9c:13:54:49:2a:30:ab:86:93: 7c:9b:94:8d:5c:41:84:4d:98:62:34:10:de:93:b1: 6d:8d:59:89:e0:5f:75:0f:f8:25:ab:e0:0b:3c:27: 1d:ad:84:94:ef:56:6a:dd:53:8b:87:75:eb:1d:27: 99:51:7c:76:99:24:da:03:85:9e:92:37:9e:c2:7b: 90:9e:26:f4:46:cc:a5:bb:3d:e6:da:c2:e1:cd:e4: f5:7c:7f:96:dc:76:8a:5e:2e:94:53:df:21:53:d6: 87:c5:74:0f:61:3b:02:ec:ca:3e:f3:d1:25:54:84: c0:4b:8c:4f:07:03:9c:2a:54:03:2a:16:67:7c:5b: 28:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:CC:FD:A0:F6:E2:E3:10:39:B3:DA:1B:F2:2B:03:50:97:02:2E:97 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:4040::/48 Signature Algorithm: sha256WithRSAEncryption b1:98:ee:be:26:75:09:c0:d4:6c:69:75:c8:6a:d8:8c:e6:ea: b4:53:d2:55:a9:df:ec:96:3e:64:66:fd:e0:88:f6:fa:99:ed: e6:03:27:de:bc:3f:f7:e7:6d:b5:5d:19:3d:d2:68:96:cb:65: 45:e9:1e:7c:20:07:ed:8a:c2:67:08:8e:15:a9:f9:e1:3f:75: e8:07:51:e2:37:77:5a:d2:d1:bc:f5:c8:83:be:f1:50:04:a5: 36:99:44:68:e8:e4:1a:ad:75:2b:3a:bd:75:9a:43:17:6b:a4: c2:24:84:25:b2:9c:83:b1:25:94:3d:37:72:6e:60:b3:22:40: 0b:3f:44:2a:65:ec:b1:8a:67:3c:92:19:73:88:f2:03:83:04: ad:1e:21:16:aa:88:25:02:db:70:d7:51:7d:5b:81:f7:4a:1b: 9d:39:83:c9:9f:70:35:1a:13:9d:c4:53:58:31:50:bf:bf:c6: 82:ab:fe:15:94:bc:df:a1:33:fa:8a:46:8a:0b:d3:a6:d0:f8: 01:52:5f:aa:d5:df:1c:c2:6d:76:b6:46:bd:89:44:bf:e5:cf: d4:94:d1:63:3b:f4:50:08:f5:a4:cf:6d:cc:c6:b6:c2:05:4d: 42:a8:7a:60:3b:d4:bb:0c:f9:1b:d0:5d:2f:7d:50:b7:24:9b: e1:25:64:69 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUdIXyaRYLcLg0w7MMXL9Yg9RevD0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTQwMTFaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDI5N2Q5YjhlMWMzZTFiZmViZDQwZGZhMThkYmNlNjQwMjc0MjZhYmM4ZmI4 OGNjMGFkYzYxODE3OTk4NzQ0MGQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALXvHiCr5zy/cWawo1rx93Hg3pDR6zZ+PukF6ZxqGo5840goaeyOhS5a4AfP 7R3xgPfh+YVfwXnYSR9BEI2PrGCnwoY/GB//OM30YnxbdrcXKGhAQv93TchlIv5T bFQ+oTb2iZXzO9/kQodCkqSoSlJFfsqFED0Bz0HEartjnBNUSSowq4aTfJuUjVxB hE2YYjQQ3pOxbY1ZieBfdQ/4JavgCzwnHa2ElO9Wat1Ti4d16x0nmVF8dpkk2gOF npI3nsJ7kJ4m9EbMpbs95trC4c3k9Xx/ltx2il4ulFPfIVPWh8V0D2E7AuzKPvPR JVSEwEuMTwcDnCpUAyoWZ3xbKPkCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSmzP2g 9uLjEDmz2hvyKwNQlwIulzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MzY2YzM4MGYtN2YzYy00OTFmLWE3Y2ItYmZmYzYyYWVkMWUwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DFA QDANBgkqhkiG9w0BAQsFAAOCAQEAsZjuviZ1CcDUbGl1yGrYjObqtFPSVanf7JY+ ZGb94Ij2+pnt5gMn3rw/9+dttV0ZPdJolstlRekefCAH7YrCZwiOFan54T916AdR 4jd3WtLRvPXIg77xUASlNplEaOjkGq11Kzq9dZpDF2ukwiSEJbKcg7EllD03cm5g syJACz9EKmXssYpnPJIZc4jyA4MErR4hFqqIJQLbcNdRfVuB90obnTmDyZ9wNRoT ncRTWDFQv7/Ggqv+FZS836Ez+opGigvTptD4AVJfqtXfHMJtdrZGvYlEv+XP1JTR Yzv0UAj1pM9tzMa2wgVNQqh6YDvUuwz5G9BdL31QtySb4SVkaQ== -----END CERTIFICATE-----Generated at Mon Dec 15 19:48:02 2025 by rpki-client