This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1f2a3923-9e13-4410-95de-11acb160d532.roa File: 1f2a3923-9e13-4410-95de-11acb160d532.roa (raw, json) Hash identifier: +9DvNaBKnOH+729OVuAAv4iQcMfskaP8Ua6l+gqlNVU= Subject key identifier: E2:B4:97:56:C2:F3:5C:A7:81:6E:FC:E7:5F:14:00:DF:D8:7E:0C:2B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 263158665D1B21716B57E65A3AB3556679D8EDE3 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1f2a3923-9e13-4410-95de-11acb160d532.roa Signing time: Tue 13 Jan 2026 19:58:27 +0000 ROA not before: Tue 13 Jan 2026 19:58:27 +0000 ROA not after: Mon 13 Apr 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06b:6080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 02:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:31:58:66:5d:1b:21:71:6b:57:e6:5a:3a:b3:55:66:79:d8:ed:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Jan 13 19:58:27 2026 GMT Not After : Apr 13 23:59:59 2026 GMT Subject: serialNumber=33aaf50285f203556d0a86c11f45f3350b100554f8e39a70280a225eab24669d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3b:2b:91:de:3b:c9:c8:38:e0:3b:40:20:e1: 72:fd:dd:f0:65:f7:ee:90:40:a1:85:5e:ff:fd:5e: b9:eb:38:c0:b0:17:a5:2e:12:85:54:ce:60:78:be: 9c:4e:62:f4:6c:d0:b5:7b:36:6f:e7:4e:38:c6:f6: 1c:ca:7c:54:d6:c7:ec:96:2e:1b:22:11:c6:a6:33: d6:62:4f:88:1f:3b:37:36:37:4b:f2:81:9e:2b:1a: 76:7b:f9:d6:f8:0f:4b:8f:37:5a:5c:66:a7:2d:03: 04:5c:e9:a4:3b:a7:d2:4a:07:ea:1e:08:f3:7d:40: 71:09:7d:04:e9:90:83:a4:d4:1b:17:d6:80:a7:17: ac:f6:76:d7:0a:73:5c:58:d4:24:58:47:8d:80:2a: 73:87:d2:7e:28:7d:3b:7a:5f:a1:e8:97:84:d4:ab: 74:41:1d:60:57:28:f8:85:06:20:d2:29:cd:ce:fb: b8:c1:34:35:00:42:09:b4:2e:73:3a:c5:30:fc:27: f4:92:cc:82:05:70:ad:a0:c4:75:3d:04:1a:12:7f: 52:46:35:66:21:68:56:07:64:47:48:39:b4:1f:d7: bd:2e:e5:4f:d4:3e:b8:66:5f:b5:3f:f2:0f:9e:97: 1a:68:91:2a:0d:f5:13:3c:7d:be:6d:41:ea:38:ae: 0d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B4:97:56:C2:F3:5C:A7:81:6E:FC:E7:5F:14:00:DF:D8:7E:0C:2B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1f2a3923-9e13-4410-95de-11acb160d532.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06b:6080::/48 Signature Algorithm: sha256WithRSAEncryption af:34:6b:64:9a:cc:f4:93:aa:b0:e1:44:20:5a:36:ed:f9:9c: 49:c5:50:c0:3d:4a:c2:c7:2a:6d:ee:1d:ef:89:3b:fd:f2:1a: 59:fe:bc:3d:f8:00:5a:00:e3:11:8d:da:fa:e2:50:68:ce:17: f5:58:6a:67:ea:65:1f:0a:37:af:40:93:18:89:28:0d:68:cb: 68:bb:28:d7:13:d0:9e:3b:ee:a2:66:59:4c:2e:ed:33:c8:ae: 72:af:a2:6c:53:8f:c3:40:0d:9c:ec:6b:41:f7:3b:bc:a0:52: 5f:ab:e7:f1:f8:3b:f6:5d:a9:d8:b4:64:f9:68:f1:06:e4:60: e5:ff:e1:93:78:19:0e:be:b3:ea:eb:60:26:4f:93:14:2d:87: ba:b5:99:e5:f2:fc:b4:18:e4:5f:4a:93:dc:fb:d5:bf:20:5b: 0a:d5:27:a8:6f:a9:0f:90:f9:ff:8e:c3:b3:34:29:99:23:d4: c8:2f:19:2c:51:8d:31:7c:14:fb:3a:6b:2d:e3:d5:c7:0c:60: cd:0a:b1:1d:9c:17:bb:35:a0:49:4e:06:69:c3:7b:c5:c8:53: 1b:24:1d:65:82:32:19:fc:27:6c:07:c6:91:c8:c4:35:0d:96: cf:c1:c2:a4:2f:b6:e8:6e:83:0c:70:0a:42:a2:b1:7c:9e:a0: 86:51:49:3b -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUJjFYZl0bIXFrV+ZaOrNVZnnY7eMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNjAxMTMxOTU4MjdaFw0yNjA0MTMyMzU5NTlaMHoxSTBHBgNV BAUTQDMzYWFmNTAyODVmMjAzNTU2ZDBhODZjMTFmNDVmMzM1MGIxMDA1NTRmOGUz OWE3MDI4MGEyMjVlYWIyNDY2OWQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANc7K5HeO8nIOOA7QCDhcv3d8GX37pBAoYVe//1eues4wLAXpS4ShVTOYHi+ nE5i9GzQtXs2b+dOOMb2HMp8VNbH7JYuGyIRxqYz1mJPiB87NzY3S/KBnisadnv5 1vgPS483Wlxmpy0DBFzppDun0koH6h4I831AcQl9BOmQg6TUGxfWgKcXrPZ21wpz XFjUJFhHjYAqc4fSfih9O3pfoeiXhNSrdEEdYFco+IUGINIpzc77uME0NQBCCbQu czrFMPwn9JLMggVwraDEdT0EGhJ/UkY1ZiFoVgdkR0g5tB/XvS7lT9Q+uGZftT/y D56XGmiRKg31Ezx9vm1B6jiuDUcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTitJdW wvNcp4Fu/OdfFADf2H4MKzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MWYyYTM5MjMtOWUxMy00NDEwLTk1ZGUtMTFhY2IxNjBkNTMyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0Gtg gDANBgkqhkiG9w0BAQsFAAOCAQEArzRrZJrM9JOqsOFEIFo27fmcScVQwD1Kwscq be4d74k7/fIaWf68PfgAWgDjEY3a+uJQaM4X9VhqZ+plHwo3r0CTGIkoDWjLaLso 1xPQnjvuomZZTC7tM8iucq+ibFOPw0ANnOxrQfc7vKBSX6vn8fg79l2p2LRk+Wjx BuRg5f/hk3gZDr6z6utgJk+TFC2HurWZ5fL8tBjkX0qT3PvVvyBbCtUnqG+pD5D5 /47DszQpmSPUyC8ZLFGNMXwU+zprLePVxwxgzQqxHZwXuzWgSU4GacN7xchTGyQd ZYIyGfwnbAfGkcjENQ2Wz8HCpC+26G6DDHAKQqKxfJ6ghlFJOw== -----END CERTIFICATE-----Generated at Sat Jan 17 06:44:24 2026 by rpki-client