This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fad76837-d6e1-4885-9781-3088c0b0c06c.roa File: fad76837-d6e1-4885-9781-3088c0b0c06c.roa (raw, json) Hash identifier: ngFnYo+E4jxemhMB3m16CuCMk+KCsrKDezqAyumtfdk= Subject key identifier: 76:DC:FB:43:1E:59:80:57:BC:3F:DE:EC:B1:68:13:4D:F3:7D:D0:12 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 34475AC7291D9085B18FC5BC22B2C1354B7E1A58 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fad76837-d6e1-4885-9781-3088c0b0c06c.roa Signing time: Wed 10 Dec 2025 06:21:26 +0000 ROA not before: Wed 10 Dec 2025 06:21:26 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d038:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:47:5a:c7:29:1d:90:85:b1:8f:c5:bc:22:b2:c1:35:4b:7e:1a:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:21:26 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=fc41152d905b0986df9cb472ba15c1e28894c70d24e3c53fdf62d1cb92332817, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:91:37:92:86:92:44:53:a3:16:40:61:e7:dd: 85:8a:49:bf:5a:62:ad:3a:e5:c5:9d:e0:5c:da:06: 1a:d9:b2:9e:5b:ac:14:61:9b:8e:63:d8:5d:53:a9: ee:d3:e8:71:b2:ff:d4:ef:f3:ac:de:7e:94:d7:bc: 1a:29:78:0d:31:b9:97:00:4b:42:03:ea:b0:02:9e: 42:8e:0c:79:ac:70:fc:3b:48:c2:c4:f9:09:d4:c6: 12:39:07:b1:12:15:bf:67:88:5c:f0:6b:33:50:d3: e1:69:34:ff:7f:0a:1c:bf:ae:be:cb:d7:ff:3f:9d: 00:83:bc:ce:32:cb:f2:c6:62:f6:8b:07:61:c9:e4: 1b:1b:06:4c:fd:1e:99:7e:f3:23:25:21:17:83:b2: e8:a3:7a:90:73:a8:ce:8b:25:21:d9:17:fb:59:71: 0c:8f:c5:31:75:c1:e1:22:61:0f:f6:d0:81:2c:8c: 3e:0b:f3:d1:75:80:2f:8a:49:3b:0f:eb:ef:9d:ef: 4e:f3:41:be:df:b1:9e:bb:13:15:42:60:0b:17:88: 8e:58:de:40:03:28:a4:16:e9:11:55:13:66:9f:db: 7d:db:1f:d5:fe:51:1f:f7:05:80:02:21:d7:43:29: 32:40:73:cf:13:2c:58:29:7d:f4:59:63:ad:da:a6: cb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:DC:FB:43:1E:59:80:57:BC:3F:DE:EC:B1:68:13:4D:F3:7D:D0:12 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fad76837-d6e1-4885-9781-3088c0b0c06c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d038:6000::/40 Signature Algorithm: sha256WithRSAEncryption 58:b6:99:e1:de:7a:8b:7b:f4:63:dd:e6:2f:bb:90:55:18:e0: 33:b8:e6:fb:05:61:d8:59:09:13:96:61:d5:7f:44:b1:c4:86: e8:85:d1:bb:96:8a:74:1a:78:ec:f2:73:fb:bf:90:da:ce:b1: 2d:e8:59:b5:55:3c:ce:21:f2:84:18:9c:05:fd:d0:38:cb:76: e0:38:56:f3:44:1e:ed:76:e7:3c:da:3e:cf:31:56:9e:cc:6e: 53:47:9e:f4:14:0b:db:ad:c6:78:28:9d:c4:1b:86:71:5d:0a: 42:c0:ed:6d:b6:99:fd:9e:5f:0c:db:76:4f:ef:d5:62:5f:5a: 12:43:23:43:f7:14:a7:86:01:48:c3:ed:55:79:cb:5b:6f:70: 50:ff:cf:44:72:6b:f5:bd:ac:7c:74:65:66:c2:89:9b:71:00: d6:32:db:65:a6:48:ad:79:6f:a6:c0:33:1c:93:06:f2:fb:43: 6e:67:6c:2b:3f:91:21:a0:e2:5b:2d:a0:88:c8:30:88:f8:0a: d6:74:68:e2:47:1d:42:40:1a:89:3c:c5:0d:21:1d:64:9a:93: 5a:97:94:b8:98:66:3a:80:ed:c7:e4:6a:8f:b4:51:87:cb:75: 42:f9:71:8b:0b:3f:28:58:06:62:ba:d3:77:bc:7a:6c:77:9d: ff:4e:f4:1d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUNEdaxykdkIWxj8W8IrLBNUt+GlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjIxMjZaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGZjNDExNTJkOTA1YjA5ODZkZjljYjQ3MmJhMTVjMWUyODg5NGM3MGQyNGUz YzUzZmRmNjJkMWNiOTIzMzI4MTcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSRN5KGkkRToxZAYefdhYpJv1pirTrlxZ3gXNoGGtmynlusFGGbjmPYXVOp 7tPocbL/1O/zrN5+lNe8Gil4DTG5lwBLQgPqsAKeQo4Meaxw/DtIwsT5CdTGEjkH sRIVv2eIXPBrM1DT4Wk0/38KHL+uvsvX/z+dAIO8zjLL8sZi9osHYcnkGxsGTP0e mX7zIyUhF4Oy6KN6kHOozoslIdkX+1lxDI/FMXXB4SJhD/bQgSyMPgvz0XWAL4pJ Ow/r753vTvNBvt+xnrsTFUJgCxeIjljeQAMopBbpEVUTZp/bfdsf1f5RH/cFgAIh 10MpMkBzzxMsWCl99Fljrdqmy/ECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBR23PtD HlmAV7w/3uyxaBNN833QEjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZmFkNzY4MzctZDZlMS00ODg1LTk3ODEtMzA4OGMwYjBjMDZjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0Dhg MA0GCSqGSIb3DQEBCwUAA4IBAQBYtpnh3nqLe/Rj3eYvu5BVGOAzuOb7BWHYWQkT lmHVf0SxxIbohdG7lop0Gnjs8nP7v5DazrEt6Fm1VTzOIfKEGJwF/dA4y3bgOFbz RB7tduc82j7PMVaezG5TR570FAvbrcZ4KJ3EG4ZxXQpCwO1ttpn9nl8M23ZP79Vi X1oSQyND9xSnhgFIw+1Vectbb3BQ/89Ecmv1vax8dGVmwombcQDWMttlpkiteW+m wDMckwby+0NuZ2wrP5EhoOJbLaCIyDCI+ArWdGjiRx1CQBqJPMUNIR1kmpNal5S4 mGY6gO3H5GqPtFGHy3VC+XGLCz8oWAZiutN3vHpsd53/TvQd -----END CERTIFICATE-----Generated at Mon Dec 15 19:48:36 2025 by rpki-client