This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/96632b04-b91d-4e29-8e82-14fddf17bed9.roa File: 96632b04-b91d-4e29-8e82-14fddf17bed9.roa (raw, json) Hash identifier: RWmjLxqIq+Rq4FwebzDUDgrYeXLCkxa//18ScdihGfA= Subject key identifier: FC:25:F2:0B:52:AA:65:B1:CE:14:C5:5F:EA:BF:69:5C:AC:77:8E:6E Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 127695C0EC442419B4EA88D63AE711915C5897A4 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/96632b04-b91d-4e29-8e82-14fddf17bed9.roa Signing time: Wed 10 Dec 2025 06:20:57 +0000 ROA not before: Wed 10 Dec 2025 06:20:57 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:8060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:76:95:c0:ec:44:24:19:b4:ea:88:d6:3a:e7:11:91:5c:58:97:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:20:57 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=66017e67369b792468c83913cdc391311b091eb9ef6df27d72fcd1d06ba8ae3b, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:77:4f:b5:8a:5a:3e:cd:f5:9e:43:86:39:b8: 72:1f:da:92:4e:94:4b:62:8f:a7:71:70:fc:d8:72: 89:1c:65:b6:dc:2e:28:ec:01:29:5e:51:be:35:12: 9f:b9:79:4b:14:27:6a:ab:a8:50:7a:b7:05:30:6d: db:25:27:bb:e7:01:8a:d9:fe:02:d0:a9:03:a9:2f: b2:91:a4:0c:87:4b:4e:f5:b8:6a:f1:f6:2e:07:a6: 07:2b:43:df:21:74:94:f0:21:60:56:a4:22:ff:94: a9:5d:87:be:e6:3a:2a:6f:5e:34:eb:e3:55:8a:ff: 12:da:cd:04:64:76:a8:bb:0f:fd:02:7d:86:40:7c: 31:cd:f3:90:3a:cb:dc:19:d5:1d:13:57:84:68:e8: a8:aa:f0:f0:62:2b:0a:80:8f:e8:fe:71:4c:7a:57: de:71:0f:11:d4:76:0d:51:d1:1f:0f:26:73:3e:48: 7c:4a:5a:dd:be:0f:b3:2f:83:66:a6:c7:09:8c:40: 9b:00:19:a8:1d:dd:da:d3:2d:b8:18:b3:e6:be:06: 10:b4:b7:73:06:fc:c4:7f:2d:a4:40:fe:90:ad:2b: 3f:20:92:2c:9e:b1:ad:32:00:89:0e:68:63:ab:de: c2:71:0c:35:7b:36:ae:ec:25:a9:a2:5e:54:8c:23: 0e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:25:F2:0B:52:AA:65:B1:CE:14:C5:5F:EA:BF:69:5C:AC:77:8E:6E X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/96632b04-b91d-4e29-8e82-14fddf17bed9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:8060::/48 Signature Algorithm: sha256WithRSAEncryption 50:93:05:72:46:e5:1d:ff:9e:54:47:18:7a:52:a1:66:65:fd: 90:a6:12:df:1b:e5:b7:bb:56:9c:e4:e8:aa:90:d7:ae:7e:ae: ae:89:6f:83:e1:91:2a:1e:e5:cc:e4:ec:c1:4e:0c:6c:65:6f: 67:af:f6:0c:9f:74:e8:d0:41:73:32:c7:e2:9e:b5:4d:60:50: c3:1b:d3:af:5f:68:05:c5:34:87:79:10:12:ba:83:6d:e4:43: 43:9d:aa:d2:8e:d1:7e:9f:9e:f6:a4:75:59:c3:ad:30:00:48: a0:2c:cd:27:7d:c3:cd:2f:8b:f0:3f:be:58:9c:00:4b:bd:6e: 42:57:2b:41:db:79:ca:7f:75:00:33:5b:3d:eb:be:5f:1e:e2: 0d:b1:35:d3:c8:9e:f7:b2:e9:51:a1:dc:a2:5c:18:1c:76:38: a0:ad:a4:25:a2:ea:5a:33:5d:b5:8c:de:18:45:e9:ee:14:a4: 4d:e5:d7:5d:e8:4b:b7:d3:a6:8b:b8:ee:e7:ff:29:0c:28:af: 33:13:d8:1b:48:67:f1:20:be:20:d3:93:fb:6f:f0:89:2f:28: 77:dd:56:54:17:bb:f1:5e:47:67:68:e4:29:3d:0a:06:7b:02: e9:6d:77:b2:2a:9a:2e:1f:9f:3c:f9:fa:df:20:ad:fa:30:b5: 22:b1:3f:75 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUEnaVwOxEJBm06ojWOucRkVxYl6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjIwNTdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDY2MDE3ZTY3MzY5Yjc5MjQ2OGM4MzkxM2NkYzM5MTMxMWIwOTFlYjllZjZk ZjI3ZDcyZmNkMWQwNmJhOGFlM2IxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALN3T7WKWj7N9Z5Dhjm4ch/akk6US2KPp3Fw/NhyiRxlttwuKOwBKV5RvjUS n7l5SxQnaquoUHq3BTBt2yUnu+cBitn+AtCpA6kvspGkDIdLTvW4avH2LgemBytD 3yF0lPAhYFakIv+UqV2HvuY6Km9eNOvjVYr/EtrNBGR2qLsP/QJ9hkB8Mc3zkDrL 3BnVHRNXhGjoqKrw8GIrCoCP6P5xTHpX3nEPEdR2DVHRHw8mcz5IfEpa3b4Psy+D ZqbHCYxAmwAZqB3d2tMtuBiz5r4GELS3cwb8xH8tpED+kK0rPyCSLJ6xrTIAiQ5o Y6vewnEMNXs2ruwlqaJeVIwjDv0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBT8JfIL Uqplsc4UxV/qv2lcrHeObjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTY2MzJiMDQtYjkxZC00ZTI5LThlODItMTRmZGRmMTdiZWQ5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H+A YDANBgkqhkiG9w0BAQsFAAOCAQEAUJMFckblHf+eVEcYelKhZmX9kKYS3xvlt7tW nOToqpDXrn6urolvg+GRKh7lzOTswU4MbGVvZ6/2DJ906NBBczLH4p61TWBQwxvT r19oBcU0h3kQErqDbeRDQ52q0o7Rfp+e9qR1WcOtMABIoCzNJ33DzS+L8D++WJwA S71uQlcrQdt5yn91ADNbPeu+Xx7iDbE108ie97LpUaHcolwYHHY4oK2kJaLqWjNd tYzeGEXp7hSkTeXXXehLt9Omi7ju5/8pDCivMxPYG0hn8SC+INOT+2/wiS8od91W VBe78V5HZ2jkKT0KBnsC6W13siqaLh+fPPn63yCt+jC1IrE/dQ== -----END CERTIFICATE-----Generated at Tue Dec 16 09:43:00 2025 by rpki-client