This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c7743543-1a04-47c2-8128-1b90de9136a9.roa File: c7743543-1a04-47c2-8128-1b90de9136a9.roa (raw, json) Hash identifier: drqW1FH4aCOndVhT87NdDzv7u5guyeenPBPwvPomco8= Subject key identifier: 9C:6C:5E:F8:FC:D2:76:30:A7:FB:12:6D:FE:A4:0A:89:47:0F:FB:EB Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 7173C85BB30F88FB3433033B5BFFBE6ECA972598 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c7743543-1a04-47c2-8128-1b90de9136a9.roa Signing time: Wed 10 Dec 2025 06:00:40 +0000 ROA not before: Wed 10 Dec 2025 06:00:40 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:8090::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:73:c8:5b:b3:0f:88:fb:34:33:03:3b:5b:ff:be:6e:ca:97:25:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:00:40 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=c132adba86f2df12615082d80a46ee0400d8a6d4d0bf6b230d1b74e2c66d6e5a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e5:2b:41:0a:26:f1:7d:02:b3:a2:84:b8:3d: b9:c5:bd:85:52:00:bf:8c:8b:54:4a:c4:d6:f8:0c: da:db:2a:81:6a:da:39:98:58:fe:4b:49:92:4c:e9: 93:8e:dd:6a:de:2b:fa:56:2e:0c:f2:2c:a8:43:bc: 8b:a8:ad:35:c0:d9:18:c0:57:a7:24:da:e1:af:59: c4:c1:10:6f:5b:dd:80:64:fe:06:44:00:34:db:45: 29:57:0f:ef:c0:57:6e:0d:ef:1e:ef:4a:fb:28:2b: 46:b4:51:d0:50:c8:38:e6:c8:f5:67:59:d3:3b:ce: 99:5e:85:d9:f9:13:31:1c:22:98:ce:d8:2a:42:65: 40:98:40:74:2f:05:6f:ee:5f:ff:50:6f:f0:b5:5e: 3f:0e:39:17:9c:bf:52:c9:93:22:59:cd:16:81:30: f3:34:2d:af:56:1e:96:67:e8:12:7c:8b:a7:b1:cf: c7:12:84:35:51:e9:43:94:5d:e4:96:8c:65:91:4b: cf:0a:21:cf:a2:eb:32:b6:29:5d:65:ef:d1:84:33: a3:74:5f:69:85:ea:af:af:79:f6:5d:9a:63:fd:b7: 7d:b0:5c:f5:86:b8:c2:80:7d:e0:a4:80:73:9d:2d: 5f:10:a2:b9:c2:c7:de:d2:8c:e0:98:6c:75:00:0c: 33:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:6C:5E:F8:FC:D2:76:30:A7:FB:12:6D:FE:A4:0A:89:47:0F:FB:EB X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c7743543-1a04-47c2-8128-1b90de9136a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:8090::/48 Signature Algorithm: sha256WithRSAEncryption 12:14:b2:d7:ac:62:23:02:10:e2:be:89:6c:16:ad:39:b6:93: ed:57:3f:67:9c:a9:20:37:cf:cb:b5:12:41:92:1e:6c:55:a5: e2:60:d3:b7:63:07:6f:8d:18:53:8e:1a:30:3a:1a:86:18:7e: 8d:27:ea:5d:9b:fd:92:31:95:99:18:68:36:3a:39:bb:7e:7d: 0d:d5:46:a5:e5:eb:3c:6c:bd:4e:d1:91:18:d9:ac:31:5e:60: 70:8b:79:87:6e:3d:61:9b:28:43:7b:ce:fc:20:2f:c8:ff:05: cd:65:22:65:9c:98:57:96:ba:31:d0:1a:d2:e5:e5:80:25:b0: 6f:44:bf:8b:93:7f:15:54:11:7e:96:5e:c1:65:30:e8:46:19: 5e:99:81:78:d9:53:49:ca:72:12:d4:61:f3:18:a2:b7:09:fa: d3:4c:69:a5:17:82:c3:e3:57:36:4d:b6:d7:4f:da:61:39:29: ce:16:5b:3c:c0:d0:a7:69:6e:f1:b8:00:38:15:9b:39:58:0a: 7a:74:e4:ea:3f:49:ea:f8:74:8b:d4:be:6f:ce:14:4f:27:19: f0:49:39:64:a9:ad:b0:a9:a5:8d:6d:64:18:ac:27:24:28:fc: 30:8e:25:49:8a:05:de:de:41:c6:db:99:71:c6:d5:e0:f8:75: b9:38:cd:a5 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUcXPIW7MPiPs0MwM7W/++bsqXJZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjAwNDBaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGMxMzJhZGJhODZmMmRmMTI2MTUwODJkODBhNDZlZTA0MDBkOGE2ZDRkMGJm NmIyMzBkMWI3NGUyYzY2ZDZlNWExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTlK0EKJvF9ArOihLg9ucW9hVIAv4yLVErE1vgM2tsqgWraOZhY/ktJkkzp k47dat4r+lYuDPIsqEO8i6itNcDZGMBXpyTa4a9ZxMEQb1vdgGT+BkQANNtFKVcP 78BXbg3vHu9K+ygrRrRR0FDIOObI9WdZ0zvOmV6F2fkTMRwimM7YKkJlQJhAdC8F b+5f/1Bv8LVePw45F5y/UsmTIlnNFoEw8zQtr1YelmfoEnyLp7HPxxKENVHpQ5Rd 5JaMZZFLzwohz6LrMrYpXWXv0YQzo3RfaYXqr6959l2aY/23fbBc9Ya4woB94KSA c50tXxCiucLH3tKM4JhsdQAMMzECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBScbF74 /NJ2MKf7Em3+pAqJRw/76zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv Yzc3NDM1NDMtMWEwNC00N2MyLTgxMjgtMWI5MGRlOTEzNmE5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H+A kDANBgkqhkiG9w0BAQsFAAOCAQEAEhSy16xiIwIQ4r6JbBatObaT7Vc/Z5ypIDfP y7USQZIebFWl4mDTt2MHb40YU44aMDoahhh+jSfqXZv9kjGVmRhoNjo5u359DdVG peXrPGy9TtGRGNmsMV5gcIt5h249YZsoQ3vO/CAvyP8FzWUiZZyYV5a6MdAa0uXl gCWwb0S/i5N/FVQRfpZewWUw6EYZXpmBeNlTScpyEtRh8xiitwn600xppReCw+NX Nk2210/aYTkpzhZbPMDQp2lu8bgAOBWbOVgKenTk6j9J6vh0i9S+b84UTycZ8Ek5 ZKmtsKmljW1kGKwnJCj8MI4lSYoF3t5BxtuZccbV4Ph1uTjNpQ== -----END CERTIFICATE-----Generated at Mon Dec 15 19:51:59 2025 by rpki-client