This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4a7b2b27-8130-47da-97da-78c91087b05e.roa File: 4a7b2b27-8130-47da-97da-78c91087b05e.roa (raw, json) Hash identifier: 02pWSYtvlqhDhRwoWLd78cn0/OfoSeu1HBpGnyMXtlU= Subject key identifier: 9E:92:25:ED:91:94:51:1F:7F:17:84:13:E2:0C:2F:7C:1E:FD:94:F9 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 264F24F15E799BFFA2F19CFB39AD24656E6F1F57 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4a7b2b27-8130-47da-97da-78c91087b05e.roa Signing time: Wed 10 Dec 2025 05:40:08 +0000 ROA not before: Wed 10 Dec 2025 05:40:08 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:c040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:4f:24:f1:5e:79:9b:ff:a2:f1:9c:fb:39:ad:24:65:6e:6f:1f:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:40:08 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=30fa9044e46b9c363127461e9603c5ab0a481a94685cff59d439c59b53b1683f, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:69:6c:49:ff:6e:a0:c0:63:77:b9:a5:1c:db: f0:94:3a:d6:24:f0:63:c4:2e:17:6b:37:59:39:2d: 72:d7:48:53:46:32:b3:4d:b2:c8:36:d0:d3:ad:52: 73:13:2d:26:cf:08:66:57:cc:4d:c7:41:1a:c6:45: 39:8e:b5:fb:20:52:a9:67:cb:c3:43:33:21:74:52: bf:a1:03:24:79:e5:2e:f8:ee:f8:02:6c:12:77:c7: 2a:0d:aa:02:f8:c3:2f:f6:90:42:d6:d8:43:a8:ca: 06:63:d2:9e:4f:2f:f7:22:41:c9:0a:b8:6f:7a:50: de:22:aa:a4:74:18:80:a2:70:fe:36:6d:39:ee:fe: ff:86:e4:1b:51:7f:1d:16:19:63:fe:f0:76:16:d8: e7:98:a6:bf:6d:44:59:82:6e:9a:93:5c:35:f5:b1: 7b:85:02:81:59:71:b5:af:49:31:d9:21:f2:1a:96: aa:29:ba:a3:a9:14:8c:fd:04:ba:d4:99:57:52:08: 1d:86:4b:7e:2c:38:30:09:a7:54:c8:9b:d1:7a:9d: b9:81:cf:8b:b9:e2:58:12:11:f2:76:f3:ed:54:95: eb:67:aa:67:65:20:69:a1:5c:85:d0:6c:2b:f7:9b: 22:4f:f1:60:97:c1:0e:00:da:ef:4a:0c:32:24:6b: 40:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:92:25:ED:91:94:51:1F:7F:17:84:13:E2:0C:2F:7C:1E:FD:94:F9 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4a7b2b27-8130-47da-97da-78c91087b05e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:c040::/48 Signature Algorithm: sha256WithRSAEncryption 6f:60:07:26:f0:3d:13:b2:dc:a5:e5:36:6b:10:f5:5c:04:47: 61:ee:30:5f:38:2e:98:fc:40:bf:83:c0:43:d7:b6:79:53:a6: 35:54:7c:30:9f:82:17:88:f7:5b:e9:e4:a0:1d:8b:88:08:32: a1:fc:65:73:5e:e2:c1:d5:52:d2:91:9b:27:71:d7:29:1a:a0: 18:9c:7b:fa:d7:a8:41:2f:9b:ff:cb:d4:bc:49:e9:ef:8f:ba: fa:7e:1c:75:7f:f2:02:97:d8:47:8f:77:fa:4f:9f:f5:2c:7a: a1:4f:de:0a:f9:7f:65:d8:d6:d7:d7:e1:e8:55:34:d7:b5:cb: fc:38:aa:8e:76:2c:17:c9:4f:a3:2e:38:74:2c:40:7b:67:6f: 3b:38:94:30:d5:88:a5:d4:74:51:d5:12:2e:11:b0:08:eb:24: 03:53:9f:39:72:c9:ff:f5:64:df:02:3f:dc:e1:69:e2:07:c8: 60:55:f7:0d:35:4c:e3:bb:79:18:ad:91:60:c8:8f:a2:d3:64: 8d:82:b8:ac:1a:9d:41:24:9c:a6:77:c2:a5:6e:bf:ba:54:ba: 09:cd:11:a9:36:0b:0e:a9:f1:0e:81:1b:e7:31:9b:a0:fb:24: d2:cb:30:24:3e:6a:60:5c:df:db:6f:16:8c:27:65:f0:be:01: 02:38:84:51 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUJk8k8V55m/+i8Zz7Oa0kZW5vH1cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTQwMDhaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDMwZmE5MDQ0ZTQ2YjljMzYzMTI3NDYxZTk2MDNjNWFiMGE0ODFhOTQ2ODVj ZmY1OWQ0MzljNTliNTNiMTY4M2YxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKlpbEn/bqDAY3e5pRzb8JQ61iTwY8QuF2s3WTktctdIU0Yys02yyDbQ061S cxMtJs8IZlfMTcdBGsZFOY61+yBSqWfLw0MzIXRSv6EDJHnlLvju+AJsEnfHKg2q AvjDL/aQQtbYQ6jKBmPSnk8v9yJByQq4b3pQ3iKqpHQYgKJw/jZtOe7+/4bkG1F/ HRYZY/7wdhbY55imv21EWYJumpNcNfWxe4UCgVlxta9JMdkh8hqWqim6o6kUjP0E utSZV1IIHYZLfiw4MAmnVMib0XqduYHPi7niWBIR8nbz7VSV62eqZ2UgaaFchdBs K/ebIk/xYJfBDgDa70oMMiRrQCMCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSekiXt kZRRH38XhBPiDC98Hv2U+TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NGE3YjJiMjctODEzMC00N2RhLTk3ZGEtNzhjOTEwODdiMDVlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HLA QDANBgkqhkiG9w0BAQsFAAOCAQEAb2AHJvA9E7LcpeU2axD1XARHYe4wXzgumPxA v4PAQ9e2eVOmNVR8MJ+CF4j3W+nkoB2LiAgyofxlc17iwdVS0pGbJ3HXKRqgGJx7 +teoQS+b/8vUvEnp74+6+n4cdX/yApfYR493+k+f9Sx6oU/eCvl/ZdjW19fh6FU0 17XL/DiqjnYsF8lPoy44dCxAe2dvOziUMNWIpdR0UdUSLhGwCOskA1OfOXLJ//Vk 3wI/3OFp4gfIYFX3DTVM47t5GK2RYMiPotNkjYK4rBqdQSScpnfCpW6/ulS6Cc0R qTYLDqnxDoEb5zGboPsk0sswJD5qYFzf228WjCdl8L4BAjiEUQ== -----END CERTIFICATE-----Generated at Fri Jan 2 09:28:46 2026 by rpki-client