This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0141b806-c012-49b3-a8da-73590b0cd2b5.roa File: 0141b806-c012-49b3-a8da-73590b0cd2b5.roa (raw, json) Hash identifier: 8ATYLQ/Y/+0h5MbHyyDLWsM3IjY24t5syjFORc9UufM= Subject key identifier: FF:8D:C3:EF:B4:B6:72:B9:39:00:B8:17:69:38:10:BD:99:CB:97:6D Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 53DE2242D783FA572211042E07BDA39C64FD5E2D Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0141b806-c012-49b3-a8da-73590b0cd2b5.roa Signing time: Wed 10 Dec 2025 06:01:05 +0000 ROA not before: Wed 10 Dec 2025 06:01:05 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:50c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:de:22:42:d7:83:fa:57:22:11:04:2e:07:bd:a3:9c:64:fd:5e:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:01:05 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=10c789d1962a0bda4e5237061e800dc0cabee9d1707192217bcb81c263303489, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cd:6a:df:63:9f:ff:37:c4:8f:3f:6c:3c:4e: 56:2f:56:d0:5d:3f:b9:3f:c0:31:2c:69:9c:83:04: e1:49:6e:8d:51:a0:45:30:e3:9f:58:29:c6:61:29: f3:1b:43:c1:17:6d:08:73:f4:85:84:5b:f7:c4:eb: b5:83:d4:0d:7b:75:68:b4:ad:8c:fa:8e:3b:cf:79: d3:46:05:c8:c5:93:a0:96:fc:8c:00:87:41:85:b1: f2:6d:72:4a:b0:db:10:bc:26:16:22:3b:43:9c:f4: ca:0e:fe:a5:e2:23:78:ff:ec:ab:81:4b:6c:64:bc: 0f:d8:b3:34:ff:63:e0:e9:b2:c9:6d:91:93:b1:c9: 13:96:7d:09:d6:63:b2:6d:af:63:f6:de:f2:6e:01: 12:60:7a:dd:dd:86:f1:7f:8a:64:41:db:4a:4e:47: 24:03:72:15:69:6e:f8:65:dd:54:37:a2:3a:a0:47: 7f:b2:fd:0a:7f:b3:cf:fb:6e:e0:53:41:11:33:c3: c1:80:ea:1a:78:ae:c6:de:e8:37:e2:35:c9:9a:ae: 0f:fe:0a:b1:99:25:f2:0d:84:30:85:96:49:4d:a4: 50:4d:a4:4e:53:19:3d:d5:61:7e:60:d1:90:20:64: 0d:7a:85:54:2e:02:42:65:5f:8b:f8:bc:00:57:5e: 32:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:8D:C3:EF:B4:B6:72:B9:39:00:B8:17:69:38:10:BD:99:CB:97:6D X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0141b806-c012-49b3-a8da-73590b0cd2b5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:50c0::/48 Signature Algorithm: sha256WithRSAEncryption 2f:21:25:a0:f8:3d:8f:a6:2c:c4:42:6d:66:e5:0e:de:4e:89: 84:06:88:50:b7:ba:79:c1:e1:64:18:59:22:ad:9a:5f:af:51: 08:41:0a:4a:fc:f9:4a:c1:5a:26:2e:a3:99:cd:35:96:26:57: f1:07:c1:93:38:f0:4a:d0:91:eb:d5:0a:65:2a:ec:d4:6d:46: df:d8:ac:1b:9f:66:ee:01:80:1f:06:76:72:66:d2:d0:d0:a7: 45:d7:12:e8:44:9a:9a:3b:a1:09:46:01:2f:cd:3d:69:c6:f6: 9e:41:89:f2:c3:1d:1f:f4:6c:97:f8:9d:79:47:00:e9:1d:9f: c9:97:9e:c1:2f:55:a3:6c:b0:89:1a:a5:3d:49:d3:c4:78:19: ea:f6:4d:3c:39:d6:bf:7a:78:10:6e:67:6a:fe:89:92:de:ba: 2a:7f:06:4e:7c:9a:61:bd:f3:17:6b:53:40:a9:ad:5c:42:24: 07:03:80:d8:58:f4:b2:c6:3e:1c:b1:e2:a3:ff:d2:ee:4b:f9: 7a:c2:1d:b7:81:b6:b5:4e:e6:c9:ec:88:7a:d7:c4:40:8e:8c: 15:5b:8e:01:67:db:5f:68:02:7f:38:14:d5:5c:30:1d:ad:a2: 4b:52:35:40:7a:7a:cd:a3:29:c8:a2:31:fc:5d:6d:8c:8a:6f: c6:51:32:2d -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUU94iQteD+lciEQQuB72jnGT9Xi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjAxMDVaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDEwYzc4OWQxOTYyYTBiZGE0ZTUyMzcwNjFlODAwZGMwY2FiZWU5ZDE3MDcx OTIyMTdiY2I4MWMyNjMzMDM0ODkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKjNat9jn/83xI8/bDxOVi9W0F0/uT/AMSxpnIME4UlujVGgRTDjn1gpxmEp 8xtDwRdtCHP0hYRb98TrtYPUDXt1aLStjPqOO89500YFyMWToJb8jACHQYWx8m1y SrDbELwmFiI7Q5z0yg7+peIjeP/sq4FLbGS8D9izNP9j4OmyyW2Rk7HJE5Z9CdZj sm2vY/be8m4BEmB63d2G8X+KZEHbSk5HJANyFWlu+GXdVDeiOqBHf7L9Cn+zz/tu 4FNBETPDwYDqGniuxt7oN+I1yZquD/4KsZkl8g2EMIWWSU2kUE2kTlMZPdVhfmDR kCBkDXqFVC4CQmVfi/i8AFdeMmcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBT/jcPv tLZyuTkAuBdpOBC9mcuXbTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MDE0MWI4MDYtYzAxMi00OWIzLWE4ZGEtNzM1OTBiMGNkMmI1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HJQ wDANBgkqhkiG9w0BAQsFAAOCAQEALyEloPg9j6YsxEJtZuUO3k6JhAaIULe6ecHh ZBhZIq2aX69RCEEKSvz5SsFaJi6jmc01liZX8QfBkzjwStCR69UKZSrs1G1G39is G59m7gGAHwZ2cmbS0NCnRdcS6ESamjuhCUYBL809acb2nkGJ8sMdH/Rsl/ideUcA 6R2fyZeewS9Vo2ywiRqlPUnTxHgZ6vZNPDnWv3p4EG5nav6Jkt66Kn8GTnyaYb3z F2tTQKmtXEIkBwOA2Fj0ssY+HLHio//S7kv5esIdt4G2tU7myeyIetfEQI6MFVuO AWfbX2gCfzgU1VwwHa2iS1I1QHp6zaMpyKIx/F1tjIpvxlEyLQ== -----END CERTIFICATE-----Generated at Fri Jan 2 11:04:50 2026 by rpki-client