This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/739d8b08-f82b-4a2a-841c-2faf7a331ffa.roa File: 739d8b08-f82b-4a2a-841c-2faf7a331ffa.roa (raw, json) Hash identifier: yxgxzWQvqlB2p24AEj0ocbVcfw6kRWrKJOA8YDveppw= Subject key identifier: 0E:6E:57:FD:B5:A6:BB:F2:86:38:E3:8C:69:57:2B:08:BD:DC:2F:F2 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 57416EC184E1AF31A8DF7B134BF5A6BA082E1C68 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/739d8b08-f82b-4a2a-841c-2faf7a331ffa.roa Signing time: Wed 10 Dec 2025 06:31:08 +0000 ROA not before: Wed 10 Dec 2025 06:31:08 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07e:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:41:6e:c1:84:e1:af:31:a8:df:7b:13:4b:f5:a6:ba:08:2e:1c:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:31:08 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=57e76ac7694043b274695085bdbbf6ac30a7698c5838e8fe4b33481ff24c9fc7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:31:69:d5:e9:5a:c4:84:84:ce:14:99:40:fe: 7d:f6:69:b1:dd:17:1b:9b:e0:1a:83:62:c0:7c:08: 36:4f:9e:f0:71:bb:cd:3c:81:03:a7:d4:e7:b7:7f: 6e:ea:f7:c7:ca:63:f8:f7:95:69:a6:c5:5f:da:08: 13:b0:fb:31:c9:bc:1a:61:d5:40:d2:de:ad:63:6f: e5:5f:83:65:ce:76:9f:64:6b:5a:b0:03:7a:54:5b: 77:cd:65:ac:f9:e1:fb:1f:e4:29:aa:30:06:06:59: dc:1d:78:ed:f2:9d:49:02:a7:86:25:3c:32:79:56: fc:d1:65:26:61:f5:c7:ac:be:39:81:fc:a1:83:d9: d9:0b:ee:4e:5a:91:86:e4:ac:85:fe:5d:e1:63:15: b4:3c:20:41:68:9c:1b:4c:58:35:2e:2c:92:0f:32: 61:fa:30:1a:c5:2d:79:c5:5c:f1:fd:85:06:75:f9: c9:36:a9:87:4b:58:ec:6c:18:f2:47:16:57:5c:01: 40:b4:ee:57:b5:63:02:0b:81:3b:67:3a:dc:35:ec: 47:04:71:59:e0:cb:61:65:17:cf:6a:4d:97:41:77: 2f:bc:09:5b:a7:e7:bf:d8:66:e6:72:e6:87:8f:30: ba:bd:1d:41:c1:14:d0:e7:4d:37:dc:39:3a:bb:17: 6d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6E:57:FD:B5:A6:BB:F2:86:38:E3:8C:69:57:2B:08:BD:DC:2F:F2 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/739d8b08-f82b-4a2a-841c-2faf7a331ffa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07e:9000::/40 Signature Algorithm: sha256WithRSAEncryption 4a:43:4e:74:14:c3:d6:88:30:fd:4d:29:b1:14:b8:aa:4e:f2: 4a:15:ba:2b:51:5f:08:69:69:32:3b:42:99:a5:ec:90:df:7b: 45:23:5f:aa:21:a5:33:70:d0:48:d3:72:3b:b9:b8:37:ce:b5: f9:58:12:e7:b3:7a:40:6d:6d:c1:aa:9e:21:56:fe:2f:23:dc: 5e:e5:34:a3:f8:8b:3d:74:cd:0f:1c:73:0d:ed:b5:45:08:66: 8a:49:93:c5:e1:04:d2:5a:59:fe:1c:e4:ab:89:20:1e:c2:42: 77:2c:cd:3a:d6:fb:95:75:66:91:e1:db:e4:cd:73:60:69:39: 16:3c:26:74:a4:eb:0d:25:85:4d:58:4b:0c:74:b2:45:59:cd: 11:04:13:3c:d4:34:bd:ba:72:e7:91:39:51:38:fc:75:98:60: be:81:f9:58:a6:bf:83:21:0a:5a:df:89:d7:68:ef:39:69:9f: 35:e2:41:54:dd:39:e8:18:2f:d4:b6:65:f3:34:da:12:8e:67: ac:42:3d:66:c6:51:4d:1e:bd:49:8f:29:89:ff:dc:51:e1:33: 7a:af:17:b6:d2:c8:ef:42:f5:62:57:eb:2e:84:e0:98:c7:06: 1e:83:e4:5b:50:7f:bb:5b:16:00:a0:4e:78:ed:c2:8e:f8:a6: e4:8e:7a:f7 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUV0FuwYThrzGo33sTS/WmugguHGgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjMxMDhaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDU3ZTc2YWM3Njk0MDQzYjI3NDY5NTA4NWJkYmJmNmFjMzBhNzY5OGM1ODM4 ZThmZTRiMzM0ODFmZjI0YzlmYzcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANUxadXpWsSEhM4UmUD+ffZpsd0XG5vgGoNiwHwINk+e8HG7zTyBA6fU57d/ bur3x8pj+PeVaabFX9oIE7D7Mcm8GmHVQNLerWNv5V+DZc52n2RrWrADelRbd81l rPnh+x/kKaowBgZZ3B147fKdSQKnhiU8MnlW/NFlJmH1x6y+OYH8oYPZ2QvuTlqR huSshf5d4WMVtDwgQWicG0xYNS4skg8yYfowGsUtecVc8f2FBnX5yTaph0tY7GwY 8kcWV1wBQLTuV7VjAguBO2c63DXsRwRxWeDLYWUXz2pNl0F3L7wJW6fnv9hm5nLm h48wur0dQcEU0OdNN9w5OrsXbdkCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQOblf9 taa78oY444xpVysIvdwv8jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzM5ZDhiMDgtZjgyYi00YTJhLTg0MWMtMmZhZjdhMzMxZmZhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0H6Q MA0GCSqGSIb3DQEBCwUAA4IBAQBKQ050FMPWiDD9TSmxFLiqTvJKFborUV8IaWky O0KZpeyQ33tFI1+qIaUzcNBI03I7ubg3zrX5WBLns3pAbW3Bqp4hVv4vI9xe5TSj +Is9dM0PHHMN7bVFCGaKSZPF4QTSWln+HOSriSAewkJ3LM061vuVdWaR4dvkzXNg aTkWPCZ0pOsNJYVNWEsMdLJFWc0RBBM81DS9unLnkTlROPx1mGC+gflYpr+DIQpa 34nXaO85aZ814kFU3TnoGC/UtmXzNNoSjmesQj1mxlFNHr1JjymJ/9xR4TN6rxe2 0sjvQvViV+suhOCYxwYeg+RbUH+7WxYAoE547cKO+Kbkjnr3 -----END CERTIFICATE-----Generated at Mon Dec 15 19:47:20 2025 by rpki-client