This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0d8c280f-edb2-45fb-9207-8226dc900bb1.roa File: 0d8c280f-edb2-45fb-9207-8226dc900bb1.roa (raw, json) Hash identifier: aEMtnT7/EPue05YVNbscLJKr1IMvY+03bNr/XRtmjR8= Subject key identifier: 64:F2:1F:86:64:CE:0E:CF:DA:44:D3:A1:98:A2:AC:FE:87:A6:1B:2C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 57937FDE941638B8CB5875F91477884F6D82911C Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0d8c280f-edb2-45fb-9207-8226dc900bb1.roa Signing time: Wed 10 Dec 2025 05:51:14 +0000 ROA not before: Wed 10 Dec 2025 05:51:14 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d031:5080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:93:7f:de:94:16:38:b8:cb:58:75:f9:14:77:88:4f:6d:82:91:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:51:14 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=044ed8dbc01ca94cbd1c17edfffdad3961fa7445b5bfbddd4095bb9ecbfb5564, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:af:59:4a:de:88:71:51:6c:f8:c0:8e:53:a5: 46:e7:d2:7e:e6:42:fc:4f:da:c2:8b:71:a1:27:f7: df:91:90:dd:4b:e9:62:42:ef:db:df:7a:00:e9:67: 0e:45:67:78:7b:6a:4d:c4:dd:79:75:68:0b:8f:95: 6d:3f:37:2e:ce:99:a9:41:3b:88:7d:a0:53:8b:b1: 87:d7:8c:6f:e9:af:29:dc:86:8f:65:be:01:5f:8b: c0:e3:3a:c9:54:3e:12:e8:5d:83:d5:53:61:15:fa: 85:9a:09:28:de:e4:f9:cc:cc:59:48:dd:9f:c5:34: 2e:02:6e:1b:2a:ef:b4:1f:1f:55:29:7a:01:fc:55: 14:67:1a:12:99:b8:2a:d2:d7:97:79:9e:92:a3:06: b4:a1:dd:21:d4:3d:71:96:f1:db:65:81:ad:95:d6: cf:06:bf:e2:1c:4d:35:66:73:be:0a:db:f1:46:c3: 53:1f:cf:39:cd:c9:0e:25:8f:40:87:07:ae:64:25: 61:c8:f2:4d:41:98:bf:6e:de:6d:82:27:ed:c6:e1: ed:93:82:fa:96:6b:57:42:6b:fd:43:c3:59:8e:8d: 73:77:cf:5a:fd:96:50:57:b0:5d:28:4f:c1:38:cf: 33:1c:ed:fa:48:d8:a3:fb:19:b8:08:e1:f0:ff:e8: bf:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F2:1F:86:64:CE:0E:CF:DA:44:D3:A1:98:A2:AC:FE:87:A6:1B:2C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0d8c280f-edb2-45fb-9207-8226dc900bb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d031:5080::/48 Signature Algorithm: sha256WithRSAEncryption 98:5e:e1:19:20:f3:5a:82:33:4b:80:45:0f:78:ae:03:44:f1: 7e:92:27:10:d8:62:82:d0:69:42:45:4f:87:34:41:20:70:80: 3a:ee:45:d7:65:ff:9d:55:02:25:a2:c0:a1:e7:74:d1:a4:b4: 72:9d:5f:ec:e3:b4:57:14:f1:fe:0a:48:1b:a8:9b:84:db:98: 07:0a:1a:31:8e:a1:e9:ea:ee:f4:aa:37:9b:11:4e:68:02:01: eb:79:5b:22:37:b8:ec:85:05:4c:c9:09:c4:d4:12:15:9c:21: e1:12:9c:4b:0a:77:11:2e:4a:74:ed:7a:df:93:ba:d8:ac:f8: 24:50:93:11:01:a7:f5:36:5c:f8:bd:4f:ce:d8:63:68:87:b6: 95:14:8f:43:f8:bb:de:e6:6b:cb:3d:de:ae:20:0f:50:9a:ad: ed:1e:1f:e3:e6:72:ce:a7:2b:cc:7d:0c:91:a6:b5:b9:af:af: d4:6c:4b:01:c0:a5:68:d6:d4:56:ce:1b:92:66:7b:b5:b0:82: 32:e7:f6:94:48:36:b1:dc:95:20:50:e2:03:83:75:3f:f4:98: 00:0a:fa:bc:02:f5:8a:7b:7c:2e:28:81:ad:eb:9f:0a:0d:5d: 57:0a:b9:54:58:90:56:0b:83:fd:24:bf:91:db:72:99:41:d8: eb:6d:9c:37 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUV5N/3pQWOLjLWHX5FHeIT22CkRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUxMTRaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDA0NGVkOGRiYzAxY2E5NGNiZDFjMTdlZGZmZmRhZDM5NjFmYTc0NDViNWJm YmRkZDQwOTViYjllY2JmYjU1NjQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSvWUreiHFRbPjAjlOlRufSfuZC/E/awotxoSf335GQ3UvpYkLv2996AOln DkVneHtqTcTdeXVoC4+VbT83Ls6ZqUE7iH2gU4uxh9eMb+mvKdyGj2W+AV+LwOM6 yVQ+Euhdg9VTYRX6hZoJKN7k+czMWUjdn8U0LgJuGyrvtB8fVSl6AfxVFGcaEpm4 KtLXl3mekqMGtKHdIdQ9cZbx22WBrZXWzwa/4hxNNWZzvgrb8UbDUx/POc3JDiWP QIcHrmQlYcjyTUGYv27ebYIn7cbh7ZOC+pZrV0Jr/UPDWY6Nc3fPWv2WUFewXShP wTjPMxzt+kjYo/sZuAjh8P/ov5kCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRk8h+G ZM4Oz9pE06GYoqz+h6YbLDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MGQ4YzI4MGYtZWRiMi00NWZiLTkyMDctODIyNmRjOTAwYmIxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DFQ gDANBgkqhkiG9w0BAQsFAAOCAQEAmF7hGSDzWoIzS4BFD3iuA0TxfpInENhigtBp QkVPhzRBIHCAOu5F12X/nVUCJaLAoed00aS0cp1f7OO0VxTx/gpIG6ibhNuYBwoa MY6h6eru9Ko3mxFOaAIB63lbIje47IUFTMkJxNQSFZwh4RKcSwp3ES5KdO1635O6 2Kz4JFCTEQGn9TZc+L1PzthjaIe2lRSPQ/i73uZryz3eriAPUJqt7R4f4+Zyzqcr zH0Mkaa1ua+v1GxLAcClaNbUVs4bkmZ7tbCCMuf2lEg2sdyVIFDiA4N1P/SYAAr6 vAL1int8LiiBreufCg1dVwq5VFiQVguD/SS/kdtymUHY622cNw== -----END CERTIFICATE-----Generated at Fri Jan 2 11:04:14 2026 by rpki-client