This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b372f24e-bac5-49dc-a087-d851b1fad482.roa File: b372f24e-bac5-49dc-a087-d851b1fad482.roa (raw, json) Hash identifier: uAj4K8Ru4neSOefM//DEds1pjjit1pXXv1x7NY8hWPk= Subject key identifier: 8B:CB:17:C1:CB:4A:E6:7B:32:78:B3:D3:A9:06:BB:01:9B:27:15:BA Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2C2D226BCC299560747B2423BFDCF2D243C62F69 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b372f24e-bac5-49dc-a087-d851b1fad482.roa Signing time: Tue 13 Jan 2026 20:07:01 +0000 ROA not before: Tue 13 Jan 2026 20:07:01 +0000 ROA not after: Mon 13 Apr 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06b:c000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 02:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:2d:22:6b:cc:29:95:60:74:7b:24:23:bf:dc:f2:d2:43:c6:2f:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Jan 13 20:07:01 2026 GMT Not After : Apr 13 23:59:59 2026 GMT Subject: serialNumber=248a440aae7803c39f3b2573445ad8d66cfc2852df9f11d8c0897d5d1ad850a4, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a2:d3:25:21:77:82:32:e5:67:4f:ee:c1:cd: c6:02:82:c9:d2:fb:85:3c:8b:ff:cf:18:34:03:5f: da:57:b6:1c:36:e5:3d:a4:b2:28:c4:5d:50:25:bf: 39:88:16:f0:42:86:54:54:17:94:e8:3e:61:ce:e7: b7:74:79:bb:f9:e3:fa:f9:f4:ca:b7:61:78:63:fa: 58:56:e8:a9:d3:0b:69:dd:9d:67:28:1c:05:ac:35: b6:00:ee:b2:e2:2d:a1:cb:c5:a3:2e:5d:ce:33:86: cf:94:8b:71:52:1e:57:43:83:cf:d4:7c:70:ab:ff: d1:f7:c8:a4:db:c9:9e:1d:b7:9f:d5:1b:76:e3:68: 6b:e7:2f:9a:c3:72:01:3d:35:81:d4:65:77:95:bf: 0e:c4:f9:9c:28:a7:7e:e1:36:87:8d:f4:41:3a:e8: 1f:83:ef:80:2e:12:e4:03:1b:10:4d:ba:1a:bb:57: d6:c9:5b:cc:97:36:9f:9a:06:a8:35:78:0e:74:40: 90:05:dd:a9:a3:be:2c:42:39:cd:21:eb:6e:12:f9: 02:7e:36:4e:1b:ce:2f:72:ee:d2:24:d1:76:0e:a3: 4f:2e:eb:04:44:8c:b7:b9:60:26:50:cb:4b:c7:04: d3:31:31:cf:dc:83:ce:a9:94:5e:2c:7e:50:1c:63: 50:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CB:17:C1:CB:4A:E6:7B:32:78:B3:D3:A9:06:BB:01:9B:27:15:BA X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b372f24e-bac5-49dc-a087-d851b1fad482.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06b:c000::/40 Signature Algorithm: sha256WithRSAEncryption 8b:5c:f3:1f:29:56:51:98:37:1e:8c:cc:65:2b:57:3f:2a:35: 30:18:d3:d9:de:e8:90:3c:d5:3e:21:91:34:7e:ec:38:b3:34: df:bb:41:bd:83:e7:a0:39:f4:8d:12:e0:b8:d7:a8:f7:ab:f3: 1b:0d:15:54:cb:75:53:e5:f9:4a:1d:71:42:c6:ea:48:7a:7c: 87:e6:8b:e3:a1:8a:7a:de:1d:13:3d:4b:57:40:6c:fc:65:9b: 77:57:70:7f:fb:f8:c0:8d:66:8f:29:8b:c9:9d:0b:13:2d:c7: d1:ea:a3:f2:6d:c6:8c:fd:02:e8:0b:f9:fc:36:f7:03:dd:ca: c9:55:ef:ea:fc:f2:23:2d:85:d3:b0:50:39:fa:8a:fe:23:55: 2a:3c:45:e4:93:17:3d:ca:41:74:6f:8e:c6:9f:b6:32:42:54: b7:96:81:20:88:2f:89:f8:79:4f:91:8b:83:44:05:d4:29:a8: 8d:74:28:79:47:98:55:68:e4:c7:0a:93:fc:06:f7:68:a5:e0: 80:9f:6b:28:56:47:31:df:51:85:c9:68:b2:0c:35:d0:fc:e9: 5d:d6:c2:28:11:7a:c0:a8:d7:ee:84:f6:18:4f:14:26:b5:32: 4e:82:6e:ba:03:92:d5:0b:d4:65:41:92:b4:9c:b1:fc:72:55: 0a:fe:24:6a -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIULC0ia8wplWB0eyQjv9zy0kPGL2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNjAxMTMyMDA3MDFaFw0yNjA0MTMyMzU5NTlaMHoxSTBHBgNV BAUTQDI0OGE0NDBhYWU3ODAzYzM5ZjNiMjU3MzQ0NWFkOGQ2NmNmYzI4NTJkZjlm MTFkOGMwODk3ZDVkMWFkODUwYTQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKKi0yUhd4Iy5WdP7sHNxgKCydL7hTyL/88YNANf2le2HDblPaSyKMRdUCW/ OYgW8EKGVFQXlOg+Yc7nt3R5u/nj+vn0yrdheGP6WFboqdMLad2dZygcBaw1tgDu suItocvFoy5dzjOGz5SLcVIeV0ODz9R8cKv/0ffIpNvJnh23n9UbduNoa+cvmsNy AT01gdRld5W/DsT5nCinfuE2h430QTroH4PvgC4S5AMbEE26GrtX1slbzJc2n5oG qDV4DnRAkAXdqaO+LEI5zSHrbhL5An42ThvOL3Lu0iTRdg6jTy7rBESMt7lgJlDL S8cE0zExz9yDzqmUXix+UBxjUE0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSLyxfB y0rmezJ4s9OpBrsBmycVujAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjM3MmYyNGUtYmFjNS00OWRjLWEwODctZDg1MWIxZmFkNDgyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0GvA MA0GCSqGSIb3DQEBCwUAA4IBAQCLXPMfKVZRmDcejMxlK1c/KjUwGNPZ3uiQPNU+ IZE0fuw4szTfu0G9g+egOfSNEuC416j3q/MbDRVUy3VT5flKHXFCxupIenyH5ovj oYp63h0TPUtXQGz8ZZt3V3B/+/jAjWaPKYvJnQsTLcfR6qPybcaM/QLoC/n8NvcD 3crJVe/q/PIjLYXTsFA5+or+I1UqPEXkkxc9ykF0b47Gn7YyQlS3loEgiC+J+HlP kYuDRAXUKaiNdCh5R5hVaOTHCpP8BvdopeCAn2soVkcx31GFyWiyDDXQ/Old1sIo EXrAqNfuhPYYTxQmtTJOgm66A5LVC9RlQZK0nLH8clUK/iRq -----END CERTIFICATE-----Generated at Sat Jan 17 06:44:29 2026 by rpki-client