This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/844bcbfb-bad7-4932-ae17-78fb6fdced41.roa File: 844bcbfb-bad7-4932-ae17-78fb6fdced41.roa (raw, json) Hash identifier: 0X0HyNL80UziZYDpcaBlFnI3Jkx3s5LmuwW8MapDXy0= Subject key identifier: 90:53:45:8C:99:0C:33:78:30:35:68:F2:69:6C:A0:79:BC:0A:68:61 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1C8EF5901FB978CDDAC018136E1A1AE4FC792C66 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/844bcbfb-bad7-4932-ae17-78fb6fdced41.roa Signing time: Tue 13 Jan 2026 19:58:33 +0000 ROA not before: Tue 13 Jan 2026 19:58:33 +0000 ROA not after: Mon 13 Apr 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06b:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 02:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:8e:f5:90:1f:b9:78:cd:da:c0:18:13:6e:1a:1a:e4:fc:79:2c:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Jan 13 19:58:33 2026 GMT Not After : Apr 13 23:59:59 2026 GMT Subject: serialNumber=0879dda84381a71aeaaa08107ec83e71be58c616a6e9f66a889640ecd9a0d600, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:78:c5:e5:6a:8e:14:c6:9a:21:b8:d3:e3:65: 14:9c:e1:1c:23:ef:15:da:31:fc:ed:c1:b6:d8:8b: 7a:21:55:56:52:b7:0f:af:e1:27:a1:63:91:cc:71: 34:9f:1a:56:d4:2a:16:16:ad:6e:b1:d6:2e:cd:60: c2:8a:bb:b2:4e:94:71:75:cd:f4:5f:d4:70:9a:b5: 4b:f4:37:55:79:e1:bb:47:ba:24:fc:fd:7a:07:f3: 49:71:ca:37:db:43:8c:1d:39:8b:ae:2a:c2:cd:cf: 9a:03:bb:24:98:c4:e8:b3:a9:6e:dc:d6:44:b4:2c: af:fa:a6:a5:05:b2:f3:05:e4:68:41:a2:d2:de:8f: d3:8e:35:c6:56:24:6d:52:4b:dc:28:88:fa:64:f0: 31:cf:bb:3a:f4:62:f2:60:f2:7f:0f:38:59:8e:e1: c9:cb:5e:4e:26:b1:3e:b9:ce:d5:a6:0d:20:a8:82: 99:10:1d:52:d0:c2:70:f3:6d:b2:28:ef:12:a1:35: bb:11:ee:ce:2d:d2:2f:16:58:00:0e:ba:dd:dc:2d: 09:21:dc:7f:07:20:2a:ed:32:b1:88:08:85:e4:93: 0f:57:ff:48:fb:b1:01:e7:ef:a3:06:c4:f7:b2:cc: 85:3d:d4:f9:f5:e3:50:23:e0:b5:72:0c:9e:a5:cc: 8f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:53:45:8C:99:0C:33:78:30:35:68:F2:69:6C:A0:79:BC:0A:68:61 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/844bcbfb-bad7-4932-ae17-78fb6fdced41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06b:a040::/48 Signature Algorithm: sha256WithRSAEncryption 61:7c:21:f3:18:b3:eb:53:d6:10:51:f9:a7:18:12:b2:ae:47: ae:12:b7:e8:71:77:61:3a:ec:a5:67:1e:f4:93:bb:76:6b:6d: 6d:c4:9c:dc:6e:98:14:e2:f7:4b:c7:c2:f0:7e:02:69:8d:1c: 55:b0:60:46:90:99:b0:21:4d:4e:9f:cf:1c:db:05:f0:be:ea: 1e:f5:b0:6f:f0:39:3d:cc:61:51:1e:14:6e:ea:76:f6:b4:72: 9d:69:e5:c6:24:db:1b:82:8f:87:a3:0e:36:ba:bd:af:96:71: 59:89:6e:38:a0:09:69:9a:08:5e:5a:9d:18:9e:a5:cf:c3:a8: 11:15:cb:8e:2d:1d:72:02:76:9e:b6:ec:f7:2c:73:02:1c:6e: ea:58:ee:41:ef:bd:5f:43:b7:95:8e:68:5b:a3:e1:64:c3:d9: fb:4f:ac:c4:69:67:a8:0b:2d:97:4c:9d:5c:60:5b:be:99:a4: c4:fe:12:22:f7:e9:46:d9:b7:21:04:21:7f:be:ea:7c:76:c8: a0:c1:8d:8b:60:79:4d:db:f8:86:f9:82:fc:2f:08:8b:e6:bb: 0e:d2:0e:d7:5e:8a:dc:bf:29:22:d3:06:70:bd:59:2d:e0:18: 6d:af:f6:5b:65:95:4b:d5:d0:7b:10:88:9a:fb:20:c9:98:1d: a9:20:3f:28 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUHI71kB+5eM3awBgTbhoa5Px5LGYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNjAxMTMxOTU4MzNaFw0yNjA0MTMyMzU5NTlaMHoxSTBHBgNV BAUTQDA4NzlkZGE4NDM4MWE3MWFlYWFhMDgxMDdlYzgzZTcxYmU1OGM2MTZhNmU5 ZjY2YTg4OTY0MGVjZDlhMGQ2MDAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJd4xeVqjhTGmiG40+NlFJzhHCPvFdox/O3BttiLeiFVVlK3D6/hJ6Fjkcxx NJ8aVtQqFhatbrHWLs1gwoq7sk6UcXXN9F/UcJq1S/Q3VXnhu0e6JPz9egfzSXHK N9tDjB05i64qws3PmgO7JJjE6LOpbtzWRLQsr/qmpQWy8wXkaEGi0t6P0441xlYk bVJL3CiI+mTwMc+7OvRi8mDyfw84WY7hycteTiaxPrnO1aYNIKiCmRAdUtDCcPNt sijvEqE1uxHuzi3SLxZYAA663dwtCSHcfwcgKu0ysYgIheSTD1f/SPuxAefvowbE 97LMhT3U+fXjUCPgtXIMnqXMjxsCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSQU0WM mQwzeDA1aPJpbKB5vApoYTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ODQ0YmNiZmItYmFkNy00OTMyLWFlMTctNzhmYjZmZGNlZDQxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0Gug QDANBgkqhkiG9w0BAQsFAAOCAQEAYXwh8xiz61PWEFH5pxgSsq5HrhK36HF3YTrs pWce9JO7dmttbcSc3G6YFOL3S8fC8H4CaY0cVbBgRpCZsCFNTp/PHNsF8L7qHvWw b/A5PcxhUR4Ubup29rRynWnlxiTbG4KPh6MONrq9r5ZxWYluOKAJaZoIXlqdGJ6l z8OoERXLji0dcgJ2nrbs9yxzAhxu6ljuQe+9X0O3lY5oW6PhZMPZ+0+sxGlnqAst l0ydXGBbvpmkxP4SIvfpRtm3IQQhf77qfHbIoMGNi2B5Tdv4hvmC/C8Ii+a7DtIO 116K3L8pItMGcL1ZLeAYba/2W2WVS9XQexCImvsgyZgdqSA/KA== -----END CERTIFICATE-----Generated at Sat Jan 17 08:19:12 2026 by rpki-client