This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa File: 183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa (raw, json) Hash identifier: GdcFA7cRIErM5JdGXLsg54DWll1mF0HoOCA/4lKQIJo= Subject key identifier: F1:34:3E:47:D7:47:15:8B:DC:22:D3:42:F2:AA:09:19:F4:68:0B:71 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0963FDFCC9D0796C9AF78C6702C533A8CAB4B1BE Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa Signing time: Wed 10 Dec 2025 06:20:47 +0000 ROA not before: Wed 10 Dec 2025 06:20:47 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d058:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:63:fd:fc:c9:d0:79:6c:9a:f7:8c:67:02:c5:33:a8:ca:b4:b1:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:20:47 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=cd380cc59773d048c810e67b46b982652c0b5c9266a8adcd22e56b21b5d1b786, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fe:6f:5e:66:1d:66:f9:da:4d:6e:09:e8:a8: d0:4c:52:2c:dd:04:a4:89:66:8e:fe:9b:3f:17:9a: 2d:af:77:99:0d:7a:00:c7:fa:c2:cd:4a:b6:7a:b5: cc:a2:4b:51:a9:4d:31:5d:e3:61:cb:f0:87:39:08: e4:23:fc:17:05:78:fc:28:2a:e4:c9:86:1e:59:1a: f4:0a:b8:54:9b:75:72:35:18:b5:6f:62:ea:f5:43: c2:68:7a:ce:dc:28:77:25:50:0d:7d:a2:56:24:ef: 8c:19:68:08:37:35:54:78:68:3e:bc:33:23:6c:16: b6:50:45:c9:d7:f0:69:76:69:19:e5:c3:35:fb:2b: fa:61:31:b3:ca:d7:5a:6e:56:54:c4:fa:87:0d:0b: 5b:f9:5a:14:82:3b:f8:fc:7f:65:82:fe:ab:a9:07: a5:a2:e4:7f:ee:55:54:87:c1:29:00:4a:06:eb:1f: 06:cc:46:1b:71:12:d1:c6:a4:5e:85:fb:33:63:ad: 14:d9:74:7a:07:24:59:7d:78:d1:de:67:cb:01:f9: fe:7f:98:0d:2a:b9:d1:82:bf:07:51:04:7d:6f:91: d0:f1:b6:b6:c5:ba:a1:d0:02:e7:02:30:b3:89:07: 05:9e:fc:dd:1f:5e:c9:1c:78:20:5f:7d:e3:59:a2: f3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:34:3E:47:D7:47:15:8B:DC:22:D3:42:F2:AA:09:19:F4:68:0B:71 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/183eb583-3fb3-4c3a-badb-9fe0a4e50fd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d058:1000::/40 Signature Algorithm: sha256WithRSAEncryption a5:57:05:7c:4b:23:a6:83:52:b9:70:7c:0b:5e:02:3c:3d:cd: 67:98:40:32:4e:9f:0e:fe:35:87:cb:13:ea:eb:84:e4:e1:39: 99:6a:db:0b:00:d8:85:69:a2:56:c0:5a:5c:16:01:60:48:f4: b5:d3:80:17:9b:43:59:5d:8c:79:b9:d8:d0:e9:3d:40:b9:6d: b3:b7:0d:fe:e7:43:e2:c2:c4:78:c1:62:d3:93:a5:73:48:b3: 8d:69:89:5f:e7:5a:9b:6f:7b:41:b2:ed:09:3c:e1:8c:59:0a: 99:19:d0:3d:7a:83:3a:dd:9f:26:8b:2f:38:89:a0:0f:4c:3c: 20:cb:37:c7:70:1a:67:e2:37:b3:22:bc:4a:df:e9:9e:36:9f: d1:de:95:e4:f8:a2:f0:2c:d3:b9:e5:13:8a:df:61:a7:e0:bc: a4:59:83:d1:93:08:b8:e9:a0:45:9a:40:35:f6:25:4a:51:61: 85:f0:12:f1:68:55:1d:13:5b:ff:4d:1b:6e:2d:76:9a:f4:be: 53:de:df:9f:7b:75:63:6c:d3:19:5c:bf:06:f5:7f:47:1d:59: fc:94:44:5b:f1:7c:ec:23:15:ee:3a:e4:80:e0:a8:3b:c6:98: 69:70:0f:49:18:13:40:5d:a6:e4:01:a4:b3:ec:69:02:2b:a8: f9:6d:86:a2 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUCWP9/MnQeWya94xnAsUzqMq0sb4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjIwNDdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGNkMzgwY2M1OTc3M2QwNDhjODEwZTY3YjQ2Yjk4MjY1MmMwYjVjOTI2NmE4 YWRjZDIyZTU2YjIxYjVkMWI3ODYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKb+b15mHWb52k1uCeio0ExSLN0EpIlmjv6bPxeaLa93mQ16AMf6ws1Ktnq1 zKJLUalNMV3jYcvwhzkI5CP8FwV4/Cgq5MmGHlka9Aq4VJt1cjUYtW9i6vVDwmh6 ztwodyVQDX2iViTvjBloCDc1VHhoPrwzI2wWtlBFydfwaXZpGeXDNfsr+mExs8rX Wm5WVMT6hw0LW/laFII7+Px/ZYL+q6kHpaLkf+5VVIfBKQBKBusfBsxGG3ES0cak XoX7M2OtFNl0egckWX140d5nywH5/n+YDSq50YK/B1EEfW+R0PG2tsW6odAC5wIw s4kHBZ783R9eyRx4IF9941mi84sCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTxND5H 10cVi9wi00LyqgkZ9GgLcTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTgzZWI1ODMtM2ZiMy00YzNhLWJhZGItOWZlMGE0ZTUwZmQyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0FgQ MA0GCSqGSIb3DQEBCwUAA4IBAQClVwV8SyOmg1K5cHwLXgI8Pc1nmEAyTp8O/jWH yxPq64Tk4TmZatsLANiFaaJWwFpcFgFgSPS104AXm0NZXYx5udjQ6T1AuW2ztw3+ 50PiwsR4wWLTk6VzSLONaYlf51qbb3tBsu0JPOGMWQqZGdA9eoM63Z8miy84iaAP TDwgyzfHcBpn4jezIrxK3+meNp/R3pXk+KLwLNO55ROK32Gn4LykWYPRkwi46aBF mkA19iVKUWGF8BLxaFUdE1v/TRtuLXaa9L5T3t+fe3VjbNMZXL8G9X9HHVn8lERb 8XzsIxXuOuSA4Kg7xphpcA9JGBNAXabkAaSz7GkCK6j5bYai -----END CERTIFICATE-----Generated at Fri Jan 2 11:04:42 2026 by rpki-client