This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1c81ae85-a97a-41c4-97f7-3327ccf0dc21.roa File: 1c81ae85-a97a-41c4-97f7-3327ccf0dc21.roa (raw, json) Hash identifier: siBbBDTDoS9wJKLApCYd3xeaLEsH2xjjaop1iw3HK0M= Subject key identifier: 10:6E:04:D1:48:E1:44:0A:6F:51:9F:23:66:C9:F7:7D:70:E1:54:D6 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 636EE8FA4F7B79B20AC19C7A5B38F871AD892414 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1c81ae85-a97a-41c4-97f7-3327ccf0dc21.roa Signing time: Wed 10 Dec 2025 06:01:23 +0000 ROA not before: Wed 10 Dec 2025 06:01:23 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d000:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:6e:e8:fa:4f:7b:79:b2:0a:c1:9c:7a:5b:38:f8:71:ad:89:24:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:01:23 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=351081be27aa026773c32971ed68b9d122090782e83f9597fa9b25bdd3b8a553, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:ab:cf:5d:3b:42:33:88:83:5a:b8:0e:1f: d2:08:b7:c6:02:3b:c5:7c:75:2f:35:03:b3:28:3d: 79:66:6b:5a:84:04:e6:cf:9a:ce:aa:b9:1d:6b:52: c3:26:6c:c1:b6:9f:81:67:f0:9f:71:53:6e:48:3a: 19:2b:3c:c6:f4:bc:0c:b2:a7:b6:ff:ee:2b:25:c0: 86:86:b4:45:2d:a5:a3:d8:62:dc:4b:49:0c:70:43: f3:51:98:9d:cf:fa:b2:ea:7e:74:8f:b4:6e:12:12: df:ce:b1:c0:97:93:23:44:88:62:4b:d8:cc:98:c6: c3:95:f5:6e:45:88:fb:4e:75:df:f5:1d:79:c8:37: a0:36:29:ad:b9:fa:c5:06:1f:84:a5:86:8a:fc:af: 92:fe:18:77:3e:0a:4e:d7:04:dc:dd:26:bd:ef:e1: 30:c5:66:cb:ac:3b:9a:cc:2b:f1:54:5c:85:06:f1: 68:f3:ca:bd:aa:04:bd:8a:42:97:2e:9f:86:b3:1c: a7:6c:36:7b:f5:4a:2e:04:31:ec:f3:a8:5c:13:e2: f8:c4:e5:3a:bf:41:18:3c:34:da:3e:c6:48:69:89: ca:7b:14:6e:fb:b9:4c:fc:0a:ed:af:f7:a3:0b:f0: 0c:ad:8a:57:11:9d:43:9a:1f:5c:78:22:d1:59:93: 86:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:6E:04:D1:48:E1:44:0A:6F:51:9F:23:66:C9:F7:7D:70:E1:54:D6 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1c81ae85-a97a-41c4-97f7-3327ccf0dc21.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d000:a040::/48 Signature Algorithm: sha256WithRSAEncryption 11:62:77:97:03:89:1d:a6:63:22:60:77:27:01:db:b5:f3:bc: e9:41:49:b6:44:ea:50:99:30:77:ad:9d:4f:72:cc:d1:7e:ba: 73:20:b2:9c:e5:3f:f7:0a:28:30:39:7f:24:b2:ca:9f:26:f2: fb:1e:08:d8:dd:90:38:56:c8:cf:16:54:01:c2:ce:cc:ea:03: 03:61:77:3f:07:5d:68:15:1a:e2:81:50:95:2e:57:af:c2:7c: b8:c4:d7:3d:b4:4a:f3:97:e3:84:84:0f:90:23:b5:73:3f:06: 9c:92:72:f8:1b:e6:5b:cd:3f:19:9a:02:b4:ea:81:78:5b:e3: 75:e5:6d:1a:27:84:db:4f:45:05:cd:34:02:20:64:fd:60:09: 90:7b:6e:f0:08:24:2c:c5:f1:30:8a:6f:07:50:d9:ab:a4:ad: aa:fd:9e:09:08:1b:da:6d:f7:b0:04:05:d9:ff:3d:93:21:b5: ff:74:c0:84:fd:77:29:47:65:79:33:2f:25:68:59:b7:73:90: 93:95:aa:48:05:a2:6c:08:52:40:0c:aa:8c:20:7d:f3:bc:53: 99:2a:3c:97:3c:96:dc:97:10:fe:28:4a:ff:d6:ef:c5:e5:b4: 81:f4:18:d6:4b:79:dd:96:b5:2a:30:34:15:84:5c:97:f2:e4: 07:c7:17:ed -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUY27o+k97ebIKwZx6Wzj4ca2JJBQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjAxMjNaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDM1MTA4MWJlMjdhYTAyNjc3M2MzMjk3MWVkNjhiOWQxMjIwOTA3ODJlODNm OTU5N2ZhOWIyNWJkZDNiOGE1NTMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNUq89dO0IziINauA4f0gi3xgI7xXx1LzUDsyg9eWZrWoQE5s+azqq5HWtS wyZswbafgWfwn3FTbkg6GSs8xvS8DLKntv/uKyXAhoa0RS2lo9hi3EtJDHBD81GY nc/6sup+dI+0bhIS386xwJeTI0SIYkvYzJjGw5X1bkWI+0513/Udecg3oDYprbn6 xQYfhKWGivyvkv4Ydz4KTtcE3N0mve/hMMVmy6w7mswr8VRchQbxaPPKvaoEvYpC ly6fhrMcp2w2e/VKLgQx7POoXBPi+MTlOr9BGDw02j7GSGmJynsUbvu5TPwK7a/3 owvwDK2KVxGdQ5ofXHgi0VmThisCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQQbgTR SOFECm9RnyNmyfd9cOFU1jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MWM4MWFlODUtYTk3YS00MWM0LTk3ZjctMzMyN2NjZjBkYzIxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0ACg QDANBgkqhkiG9w0BAQsFAAOCAQEAEWJ3lwOJHaZjImB3JwHbtfO86UFJtkTqUJkw d62dT3LM0X66cyCynOU/9wooMDl/JLLKnyby+x4I2N2QOFbIzxZUAcLOzOoDA2F3 PwddaBUa4oFQlS5Xr8J8uMTXPbRK85fjhIQPkCO1cz8GnJJy+BvmW80/GZoCtOqB eFvjdeVtGieE209FBc00AiBk/WAJkHtu8AgkLMXxMIpvB1DZq6Stqv2eCQgb2m33 sAQF2f89kyG1/3TAhP13KUdleTMvJWhZt3OQk5WqSAWibAhSQAyqjCB987xTmSo8 lzyW3JcQ/ihK/9bvxeW0gfQY1kt53Za1KjA0FYRcl/LkB8cX7Q== -----END CERTIFICATE-----Generated at Fri Jan 2 09:28:38 2026 by rpki-client