This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/77bc679b-5199-43c2-8199-be5c04a6c0d9.roa File: 77bc679b-5199-43c2-8199-be5c04a6c0d9.roa (raw, json) Hash identifier: CRK7dmQLd0aaWqDKXGR4bT2kxsJPSU/4yA9NlVneYCw= Subject key identifier: A5:A6:DE:AF:CA:5B:7C:00:FA:74:01:CE:93:A8:A1:17:E3:2A:9C:4A Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4173501A69000EC58CBAA9B615C70171D5BDD134 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/77bc679b-5199-43c2-8199-be5c04a6c0d9.roa Signing time: Wed 10 Dec 2025 06:20:06 +0000 ROA not before: Wed 10 Dec 2025 06:20:06 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:c040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:73:50:1a:69:00:0e:c5:8c:ba:a9:b6:15:c7:01:71:d5:bd:d1:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:20:06 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=6bed5cb8cc973a65c024a439ca8a13f743d40e381d763597e1757610f870d952, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ed:59:07:e7:f6:4b:1b:63:7b:c1:e7:dc:26: 9b:7d:6e:ca:3f:6c:fd:a7:1a:2b:ce:f3:ea:8f:ca: c7:45:42:9a:35:71:3f:ed:73:78:75:98:ff:20:f0: a2:7c:18:09:09:0b:ee:61:c2:f2:ff:70:12:6a:37: 94:ba:1d:ea:66:81:02:5e:52:95:52:3e:42:c8:d5: c9:a4:9d:4e:8f:2e:95:9d:52:57:12:66:8b:40:96: bd:49:fa:8b:fd:eb:eb:0c:0d:76:c1:05:20:ef:83: 91:a4:a7:42:06:ee:37:17:aa:4d:52:d3:17:11:e3: 7a:11:e0:6c:ac:cc:4f:af:af:25:5d:73:ee:06:31: 7d:a8:4d:38:54:8d:85:33:34:e7:ea:9a:95:cc:45: 60:8e:a7:9c:47:a5:d9:0e:55:05:2b:e1:27:94:13: f3:a0:40:da:ab:93:bc:00:85:b4:ed:3c:e7:15:f5: af:fa:94:8f:75:40:7a:d9:3e:04:8b:30:0d:2e:a1: ca:b1:6d:ff:c3:26:0e:a2:50:f3:45:a5:20:6a:c7: 9b:8b:c2:47:a2:c1:29:8b:b2:14:9f:de:39:da:51: 8a:fb:86:50:31:4b:92:ee:10:58:ba:ec:ca:08:43: c9:a2:48:9a:9e:2a:a8:6f:86:a1:02:0e:ce:11:e9: 1e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:A6:DE:AF:CA:5B:7C:00:FA:74:01:CE:93:A8:A1:17:E3:2A:9C:4A X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/77bc679b-5199-43c2-8199-be5c04a6c0d9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:c040::/48 Signature Algorithm: sha256WithRSAEncryption 39:84:00:ac:0c:4e:de:65:89:36:8e:b6:2f:c3:01:f2:f4:d5: 47:35:8d:e9:5e:90:d7:8e:49:e2:d5:b8:d0:10:a9:00:7b:45: 1b:bc:3f:9f:90:61:68:eb:68:b3:c2:c3:f6:4d:14:58:33:bd: ce:07:15:89:c4:01:39:62:f5:16:f1:8e:f4:f0:d3:17:6a:51: 0d:73:20:b2:95:43:21:ef:12:04:5a:84:a9:c0:71:25:a3:2a: 5a:2d:bd:cc:70:69:9d:15:c9:b4:61:3e:0a:0b:9c:70:fa:eb: 79:5e:9b:5e:af:28:77:5c:5d:5d:54:17:0f:f8:3d:12:cb:3e: da:a1:7d:ce:11:37:1d:96:33:e4:1c:a3:9c:15:3b:c3:01:77: 31:36:95:66:99:84:6b:d6:6c:72:b9:54:98:95:da:41:87:03: 78:a7:89:65:b5:b4:70:77:90:30:d5:86:d2:26:42:4d:1d:46: a8:04:14:ff:b3:c6:d5:8e:dc:32:27:7e:25:0e:aa:8c:8f:1d: 31:93:3e:3e:bf:33:f4:7b:cc:21:bf:6a:c1:90:88:82:28:0f: 75:92:71:44:c4:ae:f2:ba:a1:ca:9b:02:d7:47:d0:f3:35:3a: 00:43:41:ac:5d:04:fd:73:88:11:9f:68:e4:53:df:05:f5:51: 69:e8:a2:47 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUQXNQGmkADsWMuqm2FccBcdW90TQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjIwMDZaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDZiZWQ1Y2I4Y2M5NzNhNjVjMDI0YTQzOWNhOGExM2Y3NDNkNDBlMzgxZDc2 MzU5N2UxNzU3NjEwZjg3MGQ5NTIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7tWQfn9ksbY3vB59wmm31uyj9s/acaK87z6o/Kx0VCmjVxP+1zeHWY/yDw onwYCQkL7mHC8v9wEmo3lLod6maBAl5SlVI+QsjVyaSdTo8ulZ1SVxJmi0CWvUn6 i/3r6wwNdsEFIO+DkaSnQgbuNxeqTVLTFxHjehHgbKzMT6+vJV1z7gYxfahNOFSN hTM05+qalcxFYI6nnEel2Q5VBSvhJ5QT86BA2quTvACFtO085xX1r/qUj3VAetk+ BIswDS6hyrFt/8MmDqJQ80WlIGrHm4vCR6LBKYuyFJ/eOdpRivuGUDFLku4QWLrs yghDyaJImp4qqG+GoQIOzhHpHtcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSlpt6v ylt8APp0Ac6TqKEX4yqcSjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzdiYzY3OWItNTE5OS00M2MyLTgxOTktYmU1YzA0YTZjMGQ5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H/A QDANBgkqhkiG9w0BAQsFAAOCAQEAOYQArAxO3mWJNo62L8MB8vTVRzWN6V6Q145J 4tW40BCpAHtFG7w/n5BhaOtos8LD9k0UWDO9zgcVicQBOWL1FvGO9PDTF2pRDXMg spVDIe8SBFqEqcBxJaMqWi29zHBpnRXJtGE+CguccPrreV6bXq8od1xdXVQXD/g9 Ess+2qF9zhE3HZYz5ByjnBU7wwF3MTaVZpmEa9ZscrlUmJXaQYcDeKeJZbW0cHeQ MNWG0iZCTR1GqAQU/7PG1Y7cMid+JQ6qjI8dMZM+Pr8z9HvMIb9qwZCIgigPdZJx RMSu8rqhypsC10fQ8zU6AENBrF0E/XOIEZ9o5FPfBfVRaeiiRw== -----END CERTIFICATE-----Generated at Tue Dec 16 22:30:08 2025 by rpki-client