This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fc40321f-72c2-43a4-8c42-0e935f8f1943.roa File: fc40321f-72c2-43a4-8c42-0e935f8f1943.roa (raw, json) Hash identifier: mggRBQGS0xBtQGo/Biro1kexe2sBZ1ms/11B6PsLUZU= Subject key identifier: B4:A5:70:86:CC:7D:50:7E:15:09:D8:D6:8B:ED:40:E6:21:8C:C8:3A Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 149291EBAE26B89BB5B8F155E2C2E4AB18308622 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fc40321f-72c2-43a4-8c42-0e935f8f1943.roa Signing time: Wed 10 Dec 2025 05:51:01 +0000 ROA not before: Wed 10 Dec 2025 05:51:01 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:20c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:92:91:eb:ae:26:b8:9b:b5:b8:f1:55:e2:c2:e4:ab:18:30:86:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:51:01 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=67daa8d4572a23d9e71735798f44e6d9334f936f7e01a16943ba2446ae2f9210, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8c:ca:81:ff:43:e2:30:ad:4b:e8:c1:7d:63: 55:00:cb:e5:00:b5:40:a8:28:d9:63:cb:36:3c:97: 55:87:df:6b:06:98:c7:bc:b6:45:13:b7:fc:be:a1: 57:9c:a5:2c:07:f6:21:ad:70:a0:0f:ef:17:f0:16: f9:69:31:01:9d:f5:2e:8e:99:d4:ba:8a:e5:ad:62: 6e:ab:dd:99:b0:35:e4:40:84:f8:e9:9a:2d:c2:a0: ad:3b:36:44:13:25:d9:54:d4:44:63:b6:ac:5e:8f: 25:37:19:98:28:90:b1:e5:4b:27:bb:b5:bc:d9:b9: ac:6c:6f:21:9f:d0:f0:11:8c:54:20:31:16:86:2b: 7e:f4:b4:83:10:5a:75:af:e1:76:47:fa:a5:3b:5e: a2:70:22:5c:ff:be:55:67:2a:9e:21:e8:9c:94:ba: ca:fd:97:1c:1a:d3:97:4c:ba:ac:51:e0:67:75:a7: 61:83:aa:91:84:f3:8e:a8:f5:16:2b:c3:94:d1:9a: c9:95:3d:23:99:88:dd:b4:f3:b9:a8:46:0f:15:af: 7d:13:0e:5f:2d:f6:06:db:33:42:ac:dc:58:f0:7f: e1:40:25:fb:b2:03:84:f3:ed:61:7b:9d:ed:e7:94: 78:32:4c:be:0b:44:40:1a:36:29:0a:7a:db:3d:02: 4b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A5:70:86:CC:7D:50:7E:15:09:D8:D6:8B:ED:40:E6:21:8C:C8:3A X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fc40321f-72c2-43a4-8c42-0e935f8f1943.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:20c0::/48 Signature Algorithm: sha256WithRSAEncryption 1a:5a:ae:91:f0:30:c6:87:17:4a:18:23:c0:e4:ac:1e:72:5c: b1:58:be:48:a0:eb:c2:0d:62:c2:52:9e:6b:7a:68:8c:c9:65: 65:1b:a9:59:34:0d:a8:1f:94:48:f9:78:d6:b6:0e:4c:ad:13: 51:2a:60:c6:7d:31:05:19:6b:60:9e:92:6e:9f:5c:37:37:bd: 3b:27:cb:50:55:77:8e:60:d4:29:a7:89:b5:f6:fd:13:4b:fd: f7:ba:ff:88:13:3b:ca:78:6e:be:44:95:08:b0:25:09:a5:d5: f5:ca:92:83:56:8b:7f:e2:8f:ce:ba:b1:d9:14:e8:20:0c:5a: 05:b4:22:30:d4:61:73:98:1b:c3:e2:3e:69:9d:c7:98:00:95: 5d:04:5d:82:12:aa:ee:ef:1d:73:0d:11:69:9f:be:de:ad:98: d9:83:d4:9f:3a:77:5a:f6:84:9f:33:62:55:f7:4e:f6:d6:eb: d2:69:9a:3f:28:5e:cb:98:2a:c4:39:49:2b:99:dc:72:97:42: f8:17:a8:e6:87:60:2e:33:0b:5d:bd:4e:ce:cd:d7:9c:18:ee: 8b:5d:6c:0e:f3:05:31:4a:5d:36:a1:ff:6f:62:4d:8b:9a:85: e6:fe:eb:fe:25:3c:be:8c:8d:0b:25:53:1c:f0:b6:e0:d6:b2: 8c:ad:8d:7d -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUFJKR664muJu1uPFV4sLkqxgwhiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUxMDFaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDY3ZGFhOGQ0NTcyYTIzZDllNzE3MzU3OThmNDRlNmQ5MzM0ZjkzNmY3ZTAx YTE2OTQzYmEyNDQ2YWUyZjkyMTAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKqMyoH/Q+IwrUvowX1jVQDL5QC1QKgo2WPLNjyXVYffawaYx7y2RRO3/L6h V5ylLAf2Ia1woA/vF/AW+WkxAZ31Lo6Z1LqK5a1ibqvdmbA15ECE+OmaLcKgrTs2 RBMl2VTURGO2rF6PJTcZmCiQseVLJ7u1vNm5rGxvIZ/Q8BGMVCAxFoYrfvS0gxBa da/hdkf6pTteonAiXP++VWcqniHonJS6yv2XHBrTl0y6rFHgZ3WnYYOqkYTzjqj1 FivDlNGayZU9I5mI3bTzuahGDxWvfRMOXy32BtszQqzcWPB/4UAl+7IDhPPtYXud 7eeUeDJMvgtEQBo2KQp62z0CS4sCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBS0pXCG zH1QfhUJ2NaL7UDmIYzIOjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZmM0MDMyMWYtNzJjMi00M2E0LThjNDItMGU5MzVmOGYxOTQzLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0AAg wDANBgkqhkiG9w0BAQsFAAOCAQEAGlqukfAwxocXShgjwOSsHnJcsVi+SKDrwg1i wlKea3pojMllZRupWTQNqB+USPl41rYOTK0TUSpgxn0xBRlrYJ6Sbp9cNze9OyfL UFV3jmDUKaeJtfb9E0v997r/iBM7ynhuvkSVCLAlCaXV9cqSg1aLf+KPzrqx2RTo IAxaBbQiMNRhc5gbw+I+aZ3HmACVXQRdghKq7u8dcw0RaZ++3q2Y2YPUnzp3WvaE nzNiVfdO9tbr0mmaPyhey5gqxDlJK5nccpdC+Beo5odgLjMLXb1Ozs3XnBjui11s DvMFMUpdNqH/b2JNi5qF5v7r/iU8voyNCyVTHPC24NayjK2NfQ== -----END CERTIFICATE-----Generated at Tue Dec 16 09:43:00 2025 by rpki-client