This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/abbeedab-21fb-4993-b3ce-b753ba293d00.roa File: abbeedab-21fb-4993-b3ce-b753ba293d00.roa (raw, json) Hash identifier: 6iKzNUH6rrVP3wapmWb8GqYBV0WEcFqj0BNLhQ/nYxk= Subject key identifier: 62:70:05:BE:12:0A:F1:E3:99:E2:1B:A4:08:2E:5A:08:CE:15:6D:DE Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5C42F129E5B2733966B78724023215B165B3984C Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/abbeedab-21fb-4993-b3ce-b753ba293d00.roa Signing time: Wed 10 Dec 2025 05:30:45 +0000 ROA not before: Wed 10 Dec 2025 05:30:45 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d050:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:42:f1:29:e5:b2:73:39:66:b7:87:24:02:32:15:b1:65:b3:98:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:30:45 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=a3a7b6eac241d3fcbf164c6a6c9b574e0f2afcda4166691e37422e31645d74ec, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d5:c2:58:fe:d8:a7:81:58:db:79:c6:7a:2f: 5b:aa:8f:72:3f:d3:73:06:c0:6d:38:cb:eb:3c:8c: 89:c8:0f:39:8a:e3:32:ce:76:bf:e8:4e:a4:49:6e: 55:f0:bb:89:4d:a6:65:bc:b4:60:6c:de:e6:de:48: 5b:6d:92:e2:29:6e:74:45:23:43:1a:e8:d8:45:2e: 80:19:d7:53:37:01:da:20:4f:75:46:30:4c:fa:69: b3:d2:a9:85:03:f8:19:42:fa:40:76:6f:4e:01:65: 60:cf:7c:71:2f:ba:1e:b6:ea:c3:a4:8b:36:a8:de: c5:41:ef:52:9c:6a:43:47:b6:be:f4:52:36:10:9a: 3e:2b:5c:61:a4:99:11:2d:05:c1:dd:09:17:a5:18: 26:8d:6d:ad:c8:25:00:22:3d:51:91:96:23:7d:35: 17:12:a6:3a:62:ab:e8:15:27:8f:a6:af:83:8e:25: 51:cf:c5:10:84:00:40:b1:7f:21:d1:5f:18:3d:ea: 71:18:f0:ed:b5:4f:21:8b:5a:07:72:81:79:a6:da: b3:e1:ee:6f:f0:00:05:58:f0:1d:ef:e9:05:30:6f: ce:49:9e:93:e9:a2:c0:9d:74:66:18:21:60:5a:2e: fb:f4:db:6c:46:6b:4f:a1:97:02:16:cd:48:d7:d4: 12:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:70:05:BE:12:0A:F1:E3:99:E2:1B:A4:08:2E:5A:08:CE:15:6D:DE X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/abbeedab-21fb-4993-b3ce-b753ba293d00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d050:e000::/40 Signature Algorithm: sha256WithRSAEncryption 3f:5d:6f:67:0d:48:ae:d1:1e:47:09:27:1a:19:13:f3:6c:06: 22:17:dc:85:90:b4:c0:e0:37:b8:49:c6:a8:69:77:a5:ed:a3: 3d:65:f0:7c:87:13:a0:da:0f:fb:9e:14:af:fc:ff:73:93:68: 6a:69:70:cf:50:cc:a0:31:fb:c2:fb:5d:64:1b:9e:c5:d9:f7: e8:80:da:ea:6a:d6:64:2f:02:e5:a6:c9:5f:2e:d0:cf:3f:82: dd:59:0b:28:73:bb:43:24:bb:2f:a4:8d:9e:f8:79:f3:0c:6d: 34:b3:1e:5a:4f:5a:68:d3:26:9a:8a:64:5e:c4:ff:13:07:fb: 95:19:57:6e:4f:65:f7:8a:76:42:7e:66:8d:61:61:91:d5:86: 76:9d:fb:09:c2:70:e4:e1:8e:28:1b:8a:4c:2c:7c:e0:00:89: bc:24:4f:c4:06:2b:be:15:cf:34:cb:0f:47:07:85:b3:e8:0d: a9:29:29:63:1d:e1:c4:12:1c:76:d3:76:af:85:d2:9f:25:62: 0c:09:79:bd:ab:f6:04:92:77:ed:01:3c:78:14:9d:76:06:12: f4:b4:f8:d8:b5:ad:3b:ac:a7:82:98:e3:a0:a8:46:f0:8b:0e: 89:d3:fa:1f:0a:d7:fc:d0:e2:31:27:23:5a:62:cc:e9:ae:d6: 29:89:5a:e1 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUXELxKeWyczlmt4ckAjIVsWWzmEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTMwNDVaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGEzYTdiNmVhYzI0MWQzZmNiZjE2NGM2YTZjOWI1NzRlMGYyYWZjZGE0MTY2 NjkxZTM3NDIyZTMxNjQ1ZDc0ZWMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMrVwlj+2KeBWNt5xnovW6qPcj/TcwbAbTjL6zyMicgPOYrjMs52v+hOpElu VfC7iU2mZby0YGze5t5IW22S4iludEUjQxro2EUugBnXUzcB2iBPdUYwTPpps9Kp hQP4GUL6QHZvTgFlYM98cS+6Hrbqw6SLNqjexUHvUpxqQ0e2vvRSNhCaPitcYaSZ ES0Fwd0JF6UYJo1trcglACI9UZGWI301FxKmOmKr6BUnj6avg44lUc/FEIQAQLF/ IdFfGD3qcRjw7bVPIYtaB3KBeabas+Hub/AABVjwHe/pBTBvzkmek+miwJ10Zhgh YFou+/TbbEZrT6GXAhbNSNfUEikCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRicAW+ Egrx45niG6QILloIzhVt3jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YWJiZWVkYWItMjFmYi00OTkzLWIzY2UtYjc1M2JhMjkzZDAwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0FDg MA0GCSqGSIb3DQEBCwUAA4IBAQA/XW9nDUiu0R5HCScaGRPzbAYiF9yFkLTA4De4 ScaoaXel7aM9ZfB8hxOg2g/7nhSv/P9zk2hqaXDPUMygMfvC+11kG57F2ffogNrq atZkLwLlpslfLtDPP4LdWQsoc7tDJLsvpI2e+HnzDG00sx5aT1po0yaaimRexP8T B/uVGVduT2X3inZCfmaNYWGR1YZ2nfsJwnDk4Y4oG4pMLHzgAIm8JE/EBiu+Fc80 yw9HB4Wz6A2pKSljHeHEEhx203avhdKfJWIMCXm9q/YEknftATx4FJ12BhL0tPjY ta07rKeCmOOgqEbwiw6J0/ofCtf80OIxJyNaYszprtYpiVrh -----END CERTIFICATE-----Generated at Mon Dec 15 19:47:52 2025 by rpki-client