This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9902e563-fe64-4a01-9616-0424a53839fb.roa File: 9902e563-fe64-4a01-9616-0424a53839fb.roa (raw, json) Hash identifier: fgAL+Jgdm0bFO9oUpmtwHLCsfMAI62Sb82fafkG61h0= Subject key identifier: 90:05:C1:1F:F3:16:28:9A:AC:F1:CD:A6:76:53:3C:23:84:DF:A9:AC Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 30E25ECBE076BF62070D055B79F63DD79FEB1844 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9902e563-fe64-4a01-9616-0424a53839fb.roa Signing time: Wed 10 Dec 2025 05:50:10 +0000 ROA not before: Wed 10 Dec 2025 05:50:10 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:e2:5e:cb:e0:76:bf:62:07:0d:05:5b:79:f6:3d:d7:9f:eb:18:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:50:10 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=23c0e0105add8b8f61e0854896426e6c2a8e3f8e0d0b88e8f2150a9b87d543b1, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9e:f7:58:af:89:79:a9:57:6d:e1:99:42:30: e3:5f:10:88:9e:d8:de:03:c0:c3:5f:02:04:0a:cd: 54:6c:31:7d:b2:ca:76:cd:2a:ac:4b:5f:46:53:b6: a2:94:e3:a0:45:9c:8c:74:3c:5b:8c:bb:7b:25:06: db:bf:fe:3a:74:b5:22:dc:63:19:06:49:07:0e:d1: 4c:eb:4f:93:0a:f4:c9:0c:52:b1:61:5a:f0:76:02: ab:c6:ec:5b:32:81:b2:e8:1e:02:7c:68:27:01:bd: 42:78:f1:cd:24:10:20:0c:e1:b1:79:80:c4:74:63: 2d:16:e8:75:4a:46:e6:ff:83:ac:eb:c8:ae:9b:32: 17:88:5d:af:02:21:ee:08:71:98:f9:56:ad:54:c5: 88:2a:2b:34:44:d6:7b:46:5e:75:b9:c0:4c:5b:2b: 35:69:11:12:4b:79:26:89:02:a6:89:60:f5:97:c5: 09:c7:aa:40:4a:68:9e:45:ca:33:af:88:b0:ce:71: 36:75:2d:87:cc:a9:f1:a6:0e:d6:4a:29:da:c0:20: b2:89:45:9b:23:72:0d:0e:9c:93:72:a3:06:34:9a: 36:26:f5:8a:93:87:b1:e2:f1:ff:f2:c0:84:2a:2e: 09:03:28:31:32:3c:e1:7e:55:48:e3:e3:6c:8d:1c: 34:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:05:C1:1F:F3:16:28:9A:AC:F1:CD:A6:76:53:3C:23:84:DF:A9:AC X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9902e563-fe64-4a01-9616-0424a53839fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 12:2e:84:5c:60:20:ad:50:3f:93:60:85:c1:d0:51:80:0c:27: 4e:3b:72:58:be:98:bb:f2:fa:86:79:d7:c3:ab:5a:57:e9:6e: f3:b5:45:6f:4c:b2:9a:38:9c:12:2b:a7:f4:8c:5f:6c:71:31: 7b:dd:ba:ca:ce:51:70:9c:35:82:99:eb:2d:2f:3a:e4:16:f9: 84:5b:f4:d7:bf:b8:93:d7:ca:b6:65:83:fb:d4:71:37:bc:b4: bb:91:f9:cd:ad:1b:00:5d:e3:4d:cd:9b:fd:8d:3e:3d:c8:2d: db:07:f8:d6:b5:1a:12:29:df:b8:71:2e:7d:55:1c:4d:f4:28: ea:70:73:f3:c8:e6:1d:3d:25:9a:5e:bd:c3:b0:a6:b5:a5:2f: a6:c7:ab:7d:82:58:cb:f0:23:5d:dc:44:c8:bc:ea:3f:5b:b6: f5:b4:cc:83:ee:ae:3d:09:6f:8d:9d:fd:cf:8c:1d:db:a9:76: 89:13:d5:fa:ec:49:4b:d0:b3:98:d1:29:0d:14:1c:1e:47:b8: 5d:bf:95:1f:f6:53:b8:8f:64:6a:44:20:85:d9:89:bd:83:b9: 67:a9:9a:8a:41:d8:0b:a2:27:c0:44:c3:b5:41:fe:88:d3:6a: e8:34:81:d6:dd:c0:a0:ae:6b:c1:54:74:e7:08:b0:25:cf:05: f4:f6:de:ea -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUMOJey+B2v2IHDQVbefY915/rGEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUwMTBaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDIzYzBlMDEwNWFkZDhiOGY2MWUwODU0ODk2NDI2ZTZjMmE4ZTNmOGUwZDBi ODhlOGYyMTUwYTliODdkNTQzYjExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+e91iviXmpV23hmUIw418QiJ7Y3gPAw18CBArNVGwxfbLKds0qrEtfRlO2 opTjoEWcjHQ8W4y7eyUG27/+OnS1ItxjGQZJBw7RTOtPkwr0yQxSsWFa8HYCq8bs WzKBsugeAnxoJwG9QnjxzSQQIAzhsXmAxHRjLRbodUpG5v+DrOvIrpsyF4hdrwIh 7ghxmPlWrVTFiCorNETWe0ZedbnATFsrNWkREkt5JokCpolg9ZfFCceqQEponkXK M6+IsM5xNnUth8yp8aYO1kop2sAgsolFmyNyDQ6ck3KjBjSaNib1ipOHseLx//LA hCouCQMoMTI84X5VSOPjbI0cNKsCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSQBcEf 8xYomqzxzaZ2UzwjhN+prDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTkwMmU1NjMtZmU2NC00YTAxLTk2MTYtMDQyNGE1MzgzOWZiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ACA wDANBgkqhkiG9w0BAQsFAAOCAQEAEi6EXGAgrVA/k2CFwdBRgAwnTjtyWL6Yu/L6 hnnXw6taV+lu87VFb0yymjicEiun9IxfbHExe926ys5RcJw1gpnrLS865Bb5hFv0 17+4k9fKtmWD+9RxN7y0u5H5za0bAF3jTc2b/Y0+Pcgt2wf41rUaEinfuHEufVUc TfQo6nBz88jmHT0lml69w7CmtaUvpserfYJYy/AjXdxEyLzqP1u29bTMg+6uPQlv jZ39z4wd26l2iRPV+uxJS9CzmNEpDRQcHke4Xb+VH/ZTuI9kakQghdmJvYO5Z6ma ikHYC6InwETDtUH+iNNq6DSB1t3AoK5rwVR05wiwJc8F9Pbe6g== -----END CERTIFICATE-----Generated at Tue Dec 16 22:34:03 2025 by rpki-client