This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/190e1645-8146-4d32-be0a-feed324f8efa.roa File: 190e1645-8146-4d32-be0a-feed324f8efa.roa (raw, json) Hash identifier: SDh2jFol8gOrIPiiSdYKr+2lR9Brhmu9p9GskSJH6gU= Subject key identifier: 3C:E1:E9:F9:0F:80:FF:DF:87:3E:2D:29:F8:D8:B8:BE:10:E1:A0:02 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 344770336B51A219396985D504BB80868B49536D Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/190e1645-8146-4d32-be0a-feed324f8efa.roa Signing time: Sat 15 Nov 2025 05:41:03 +0000 ROA not before: Sat 15 Nov 2025 05:41:03 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d034:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 10:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:47:70:33:6b:51:a2:19:39:69:85:d5:04:bb:80:86:8b:49:53:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:41:03 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=c43c7a3e3222f5f1d13c542c6bd202eed10140a4bb03865e6813fabf33189ecd, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:21:a7:37:83:f4:e3:d2:e8:22:f3:4a:08:6a: 17:16:6f:e4:7d:76:ad:d3:30:07:77:a3:ef:33:f2: 88:19:26:b8:0d:8d:68:8e:5f:63:03:e1:08:2f:fc: 7e:27:65:b5:e8:84:cf:81:07:7a:d4:e5:ea:10:fd: 18:55:d4:52:f3:33:66:cd:1f:9a:55:37:e7:ac:bd: 13:82:d4:89:86:6b:d0:2a:d2:09:ce:fa:05:74:92: 4e:c0:bb:ed:8f:1f:cc:03:1b:60:e2:dc:ca:2b:e8: d2:54:46:dd:4c:9e:15:4d:b5:76:f7:8a:6a:77:10: 37:b0:06:f4:b4:bc:09:a6:19:95:22:bd:a7:d1:20: 19:7f:fe:d4:cd:9e:29:7c:f0:26:af:50:fe:1a:1d: 4e:a5:76:da:04:80:73:0c:a3:3e:3b:88:ec:b2:b6: 24:a6:5c:95:46:19:da:fd:7e:28:aa:0d:a0:0e:24: 47:19:75:ac:6f:f4:9f:e8:76:17:33:ed:e5:bd:41: 45:a1:68:56:9d:0d:31:0e:e3:b2:00:72:f8:2a:5b: ca:ec:a7:f0:6d:7a:f4:c7:a1:00:c5:34:4f:56:57: da:39:6e:89:98:03:95:d3:b9:5c:98:54:67:11:01: f2:b9:30:cc:8a:7c:eb:2d:a7:a0:d8:21:93:19:b1: f1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:E1:E9:F9:0F:80:FF:DF:87:3E:2D:29:F8:D8:B8:BE:10:E1:A0:02 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/190e1645-8146-4d32-be0a-feed324f8efa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d034:a000::/40 Signature Algorithm: sha256WithRSAEncryption 8f:5f:21:6c:94:b4:d4:a3:48:4a:a3:c9:17:89:e4:dc:16:a7: 71:05:a6:36:4f:2f:72:2a:22:49:8e:e8:13:28:e1:e6:67:82: a0:44:b0:70:1b:52:c6:a0:d3:fd:b6:da:61:0f:8c:00:f2:f7: 16:fd:92:15:03:da:cb:cd:dd:66:4d:a6:94:23:87:09:7c:0c: 3c:0f:28:5a:17:da:41:02:a8:bf:dd:4c:57:9c:3d:04:e0:00: 22:1f:07:0b:97:68:69:b9:87:a0:5c:07:2b:d4:80:5a:fd:c7: 1f:e6:0a:30:af:42:84:04:c5:9d:c8:a3:c9:f4:9d:a8:ae:9a: 75:3f:40:0a:33:8d:0d:db:4e:d3:93:ad:05:33:48:ff:35:19: d3:d1:6b:3b:a7:23:b7:b8:06:2e:82:3c:c6:a8:52:5c:66:7d: 7c:2d:68:52:c9:ba:79:9f:28:06:71:ca:b4:36:4d:f0:57:fa: d1:35:36:71:0a:e9:fa:5a:b2:13:4d:b8:fe:0a:4a:4b:ac:a0: e7:b1:2f:5a:aa:af:fb:cd:2c:10:75:85:b1:ea:5f:4d:36:bd: 01:74:3a:8e:11:a9:fb:7b:ac:28:f8:26:f1:0f:d1:64:ad:7f: e1:c4:28:74:20:98:f1:40:e5:d4:79:4a:e3:18:9e:7c:a4:a3: 4f:af:fc:06 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUNEdwM2tRohk5aYXVBLuAhotJU20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQxMDNaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGM0M2M3YTNlMzIyMmY1ZjFkMTNjNTQyYzZiZDIwMmVlZDEwMTQwYTRiYjAz ODY1ZTY4MTNmYWJmMzMxODllY2QxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIhpzeD9OPS6CLzSghqFxZv5H12rdMwB3ej7zPyiBkmuA2NaI5fYwPhCC/8 fidlteiEz4EHetTl6hD9GFXUUvMzZs0fmlU356y9E4LUiYZr0CrSCc76BXSSTsC7 7Y8fzAMbYOLcyivo0lRG3UyeFU21dveKancQN7AG9LS8CaYZlSK9p9EgGX/+1M2e KXzwJq9Q/hodTqV22gSAcwyjPjuI7LK2JKZclUYZ2v1+KKoNoA4kRxl1rG/0n+h2 FzPt5b1BRaFoVp0NMQ7jsgBy+Cpbyuyn8G169MehAMU0T1ZX2jluiZgDldO5XJhU ZxEB8rkwzIp86y2noNghkxmx8X0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQ84en5 D4D/34c+LSn42Li+EOGgAjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MTkwZTE2NDUtODE0Ni00ZDMyLWJlMGEtZmVlZDMyNGY4ZWZhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DSg MA0GCSqGSIb3DQEBCwUAA4IBAQCPXyFslLTUo0hKo8kXieTcFqdxBaY2Ty9yKiJJ jugTKOHmZ4KgRLBwG1LGoNP9ttphD4wA8vcW/ZIVA9rLzd1mTaaUI4cJfAw8Dyha F9pBAqi/3UxXnD0E4AAiHwcLl2hpuYegXAcr1IBa/ccf5gowr0KEBMWdyKPJ9J2o rpp1P0AKM40N207Tk60FM0j/NRnT0Ws7pyO3uAYugjzGqFJcZn18LWhSybp5nygG ccq0Nk3wV/rRNTZxCun6WrITTbj+CkpLrKDnsS9aqq/7zSwQdYWx6l9NNr0BdDqO Ean7e6wo+CbxD9FkrX/hxCh0IJjxQOXUeUrjGJ58pKNPr/wG -----END CERTIFICATE-----Generated at Thu Nov 27 12:56:17 2025 by rpki-client