This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8553b3da-6a47-43ee-87d3-5259a23c371b.roa File: 8553b3da-6a47-43ee-87d3-5259a23c371b.roa (raw, json) Hash identifier: vbHsVXmS+P9pUVA/r8ZDBOI/KkgdCrXoppluC/fJsCk= Subject key identifier: EE:E2:06:8B:8F:16:DC:80:0D:07:35:B2:9C:9E:63:BD:B5:71:A1:4A Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 11C26A2A015E22A10FEA4AB8EAFD921135C60E92 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8553b3da-6a47-43ee-87d3-5259a23c371b.roa Signing time: Wed 10 Dec 2025 06:21:25 +0000 ROA not before: Wed 10 Dec 2025 06:21:25 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d071:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:c2:6a:2a:01:5e:22:a1:0f:ea:4a:b8:ea:fd:92:11:35:c6:0e:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:21:25 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=5d15a6d0c1bd99b231220236cda17e9bc14a44c311afa76d097c3256d359e3d0, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c8:d9:02:73:14:5a:cb:68:0f:17:d1:2f:cc: 5d:41:9e:fe:cf:26:8c:17:0f:3a:35:7b:5a:77:2b: 1b:c6:36:ac:84:43:9c:64:6f:a7:e3:3d:df:b3:78: 8f:3e:cf:5b:f4:44:0d:67:07:d1:49:a6:38:7b:c8: 45:ca:81:14:d2:9a:49:63:b4:3f:31:15:19:48:c7: 45:f7:ab:97:fc:d3:e3:ad:32:58:17:f2:8e:a4:85: 9b:82:33:47:fb:bb:0d:af:52:b7:2f:b2:46:90:2e: 4a:f3:26:cf:62:34:1b:73:0c:01:94:c1:81:1c:f3: c3:ab:a7:c8:d8:7b:c9:50:c6:f9:07:36:5c:82:59: 9b:ee:b9:f0:14:73:df:d9:00:c1:c6:8e:9a:a4:ed: 5c:92:23:79:77:f0:49:d6:c4:f7:45:f5:78:65:dc: d4:92:d0:f6:1c:e6:e7:01:81:fd:79:d3:d3:0e:1c: 44:34:a7:d4:cf:5b:e7:4a:0a:81:42:b7:e5:21:e3: 1c:67:2e:ff:f4:ac:3e:81:87:bc:0b:52:57:98:eb: b7:12:a8:54:c3:c9:9b:04:82:c0:92:62:d4:e8:87: 93:3c:b9:44:43:70:ae:7a:ef:76:9e:b5:d8:a5:91: 25:1a:60:1d:58:89:be:5f:52:6a:d4:eb:55:4c:2f: 5a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E2:06:8B:8F:16:DC:80:0D:07:35:B2:9C:9E:63:BD:B5:71:A1:4A X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8553b3da-6a47-43ee-87d3-5259a23c371b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d071:2000::/40 Signature Algorithm: sha256WithRSAEncryption 67:85:f1:3d:71:90:73:b9:e9:32:31:55:18:6a:36:49:60:db: ea:07:d1:cf:c5:a4:22:a3:99:f8:ec:dc:2c:a5:21:4f:14:cb: 48:c0:b8:19:67:9e:00:66:fd:fa:b5:0b:6b:5f:c0:7d:f6:f0: 29:bf:3e:20:1e:6d:d3:5b:1f:17:80:fa:cb:42:f0:ff:43:7d: 8b:76:95:7c:43:02:99:b0:79:9a:83:75:b8:2a:f7:6e:62:c1: 4f:20:8c:6d:5d:23:96:8a:f9:e3:ca:d6:df:f7:01:94:94:9b: b5:43:5c:1d:1a:3c:25:ea:73:09:b2:00:45:e3:cd:be:01:3b: 20:9a:33:f8:ae:df:13:aa:77:f8:95:30:1c:c9:ca:8a:a9:eb: c3:c7:c1:04:b9:e9:5d:8a:8c:db:b9:1f:86:30:ee:e5:77:ce: 01:be:4e:4b:f1:f3:7a:da:49:66:6e:94:df:7e:fb:76:80:fa: 94:7b:8d:1b:e8:ee:d9:7a:b0:c5:58:f8:c7:40:f2:1a:46:e2: 22:c3:c2:85:8d:e1:a5:21:b6:0d:25:70:72:8a:e3:17:86:c5: fc:45:22:03:91:01:17:62:99:43:84:35:9b:92:c0:25:fc:30: 2a:dd:51:14:60:2d:32:6e:d9:bf:4f:5b:e0:0a:ba:10:85:d6: 2e:af:64:d5 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUEcJqKgFeIqEP6kq46v2SETXGDpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjIxMjVaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDVkMTVhNmQwYzFiZDk5YjIzMTIyMDIzNmNkYTE3ZTliYzE0YTQ0YzMxMWFm YTc2ZDA5N2MzMjU2ZDM1OWUzZDAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTI2QJzFFrLaA8X0S/MXUGe/s8mjBcPOjV7WncrG8Y2rIRDnGRvp+M937N4 jz7PW/REDWcH0UmmOHvIRcqBFNKaSWO0PzEVGUjHRferl/zT460yWBfyjqSFm4Iz R/u7Da9Sty+yRpAuSvMmz2I0G3MMAZTBgRzzw6unyNh7yVDG+Qc2XIJZm+658BRz 39kAwcaOmqTtXJIjeXfwSdbE90X1eGXc1JLQ9hzm5wGB/XnT0w4cRDSn1M9b50oK gUK35SHjHGcu//SsPoGHvAtSV5jrtxKoVMPJmwSCwJJi1OiHkzy5RENwrnrvdp61 2KWRJRpgHViJvl9SatTrVUwvWjECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTu4gaL jxbcgA0HNbKcnmO9tXGhSjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ODU1M2IzZGEtNmE0Ny00M2VlLTg3ZDMtNTI1OWEyM2MzNzFiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HEg MA0GCSqGSIb3DQEBCwUAA4IBAQBnhfE9cZBzuekyMVUYajZJYNvqB9HPxaQio5n4 7NwspSFPFMtIwLgZZ54AZv36tQtrX8B99vApvz4gHm3TWx8XgPrLQvD/Q32LdpV8 QwKZsHmag3W4KvduYsFPIIxtXSOWivnjytbf9wGUlJu1Q1wdGjwl6nMJsgBF482+ ATsgmjP4rt8Tqnf4lTAcycqKqevDx8EEueldiozbuR+GMO7ld84Bvk5L8fN62klm bpTffvt2gPqUe40b6O7ZerDFWPjHQPIaRuIiw8KFjeGlIbYNJXByiuMXhsX8RSID kQEXYplDhDWbksAl/DAq3VEUYC0ybtm/T1vgCroQhdYur2TV -----END CERTIFICATE-----Generated at Mon Dec 15 19:52:18 2025 by rpki-client