This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/93c73d28-6ada-4f65-bb8d-8fbee434c001.roa File: 93c73d28-6ada-4f65-bb8d-8fbee434c001.roa (raw, json) Hash identifier: i+EGdEMVgmJGWnfVINTsIHFjtmOSGQQ2QKfwSGc+0XU= Subject key identifier: 1B:F7:70:0D:5A:FC:BF:B0:9C:E0:E6:D6:36:D3:FF:EC:8D:7C:50:8B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 269D6E78E2DB89914B44CDACEE15CEC83E14B0A2 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/93c73d28-6ada-4f65-bb8d-8fbee434c001.roa Signing time: Wed 10 Dec 2025 05:50:09 +0000 ROA not before: Wed 10 Dec 2025 05:50:09 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d015:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:9d:6e:78:e2:db:89:91:4b:44:cd:ac:ee:15:ce:c8:3e:14:b0:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:50:09 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=bead87e0d5f4666db1647d7176b2215fe34e4cb87e046a44eeffeb6c7113a6a5, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1e:1c:2e:ca:23:ca:7e:f2:35:79:85:1a:7f: 15:4a:28:aa:83:b7:88:4e:a9:dc:88:4b:ee:53:19: e0:fc:6c:55:46:3f:be:f3:57:5f:d4:20:4e:06:90: f2:e9:df:39:75:3a:e8:c8:bc:f1:77:1c:44:af:dd: 13:82:a4:f1:1e:99:f7:34:60:1b:e9:7b:9e:50:2b: 95:c9:52:be:24:a0:f7:84:fe:32:8d:6a:f7:97:4a: 4a:a2:db:00:f9:cc:1c:21:94:86:e0:75:d8:be:31: 90:2c:0d:48:02:5b:89:b5:42:5a:76:d7:71:a3:ef: 2b:05:c9:87:5f:1f:77:1b:9e:71:c0:d3:89:0c:65: 64:5c:e0:df:21:24:b5:3e:5b:e7:a9:d3:b5:b5:63: 32:6f:48:5d:8b:4e:21:4b:84:87:ad:cd:0f:86:b8: e6:05:ed:1f:3b:f4:74:69:d5:6e:13:ff:cb:e2:dc: ab:01:83:d0:2b:30:1a:e4:9f:ad:31:0e:8e:bf:32: 2d:eb:e5:01:e9:7e:ac:70:87:20:cb:58:fe:93:f6: 22:63:9f:d0:f3:27:c3:75:da:1a:df:86:62:03:32: 0b:e9:44:09:df:c5:57:ed:f6:f1:a5:c6:32:63:ca: a3:20:08:9f:b0:bf:aa:3b:37:4f:51:bb:2f:56:e7: 92:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F7:70:0D:5A:FC:BF:B0:9C:E0:E6:D6:36:D3:FF:EC:8D:7C:50:8B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/93c73d28-6ada-4f65-bb8d-8fbee434c001.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d015:400::/38 Signature Algorithm: sha256WithRSAEncryption 19:44:77:ea:9b:b6:e4:a6:a8:8b:1c:c2:bb:d1:48:14:91:15: 75:26:8f:4a:17:03:90:78:59:28:fd:62:9c:96:ba:88:f2:7b: a5:cf:39:93:a8:60:83:7e:e3:29:6f:f6:9a:12:44:3a:72:23: ec:7b:85:bc:e8:77:50:6d:55:67:95:29:da:3f:8a:62:36:cb: 05:02:18:92:8c:bf:96:14:97:95:1e:91:fe:4a:f3:0a:82:95: bc:25:77:27:ca:a4:cf:f6:74:0f:b8:2e:77:c5:76:6d:cd:b0: 94:88:e3:91:43:18:92:a5:d7:b0:ea:c5:2b:94:65:d3:d5:76: 4b:de:eb:6e:be:3d:da:cc:74:b9:d8:40:33:73:c6:cf:c2:2e: 8e:f8:8d:15:70:8f:79:e5:5d:27:b2:59:df:12:c6:16:cc:bf: ee:3d:ea:8c:79:12:88:3e:b1:d3:a2:bc:0c:2d:14:08:37:ea: 4d:d8:ca:36:af:68:79:74:48:f5:c4:9f:fb:3b:14:ec:82:f7: 42:33:dd:b9:07:7f:74:ca:4a:c7:a2:dc:ab:dc:c8:52:1f:c5: 33:a7:4c:a4:fb:01:df:0c:c0:3a:da:f0:1a:37:3a:32:fd:54: 1a:8b:42:56:49:fe:a1:52:5e:ac:98:19:fe:b6:fc:10:56:b6: 55:cc:05:3f -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUJp1ueOLbiZFLRM2s7hXOyD4UsKIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUwMDlaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGJlYWQ4N2UwZDVmNDY2NmRiMTY0N2Q3MTc2YjIyMTVmZTM0ZTRjYjg3ZTA0 NmE0NGVlZmZlYjZjNzExM2E2YTUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALEeHC7KI8p+8jV5hRp/FUooqoO3iE6p3IhL7lMZ4PxsVUY/vvNXX9QgTgaQ 8unfOXU66Mi88XccRK/dE4Kk8R6Z9zRgG+l7nlArlclSviSg94T+Mo1q95dKSqLb APnMHCGUhuB12L4xkCwNSAJbibVCWnbXcaPvKwXJh18fdxueccDTiQxlZFzg3yEk tT5b56nTtbVjMm9IXYtOIUuEh63ND4a45gXtHzv0dGnVbhP/y+LcqwGD0CswGuSf rTEOjr8yLevlAel+rHCHIMtY/pP2ImOf0PMnw3XaGt+GYgMyC+lECd/FV+328aXG MmPKoyAIn7C/qjs3T1G7L1bnkiUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQb93AN Wvy/sJzg5tY20//sjXxQizAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTNjNzNkMjgtNmFkYS00ZjY1LWJiOGQtOGZiZWU0MzRjMDAxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAioF0BUE MA0GCSqGSIb3DQEBCwUAA4IBAQAZRHfqm7bkpqiLHMK70UgUkRV1Jo9KFwOQeFko /WKclrqI8nulzzmTqGCDfuMpb/aaEkQ6ciPse4W86HdQbVVnlSnaP4piNssFAhiS jL+WFJeVHpH+SvMKgpW8JXcnyqTP9nQPuC53xXZtzbCUiOORQxiSpdew6sUrlGXT 1XZL3utuvj3azHS52EAzc8bPwi6O+I0VcI955V0nslnfEsYWzL/uPeqMeRKIPrHT orwMLRQIN+pN2Mo2r2h5dEj1xJ/7OxTsgvdCM925B390ykrHotyr3MhSH8Uzp0yk +wHfDMA62vAaNzoy/VQai0JWSf6hUl6smBn+tvwQVrZVzAU/ -----END CERTIFICATE-----Generated at Tue Dec 16 23:22:23 2025 by rpki-client