This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/538037c5-70a6-4b45-b84c-b4af8015af39.roa File: 538037c5-70a6-4b45-b84c-b4af8015af39.roa (raw, json) Hash identifier: YR//4WtKiaGOA4GPaHHCoK+NegQTAaeJEST8up1q4LU= Subject key identifier: 7F:0F:4C:35:43:47:02:31:BC:50:FB:CF:4D:D0:10:C1:F8:07:93:21 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0A935D72410645F2ACF8D6B2A3414FB5703D2876 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/538037c5-70a6-4b45-b84c-b4af8015af39.roa Signing time: Wed 10 Dec 2025 05:20:48 +0000 ROA not before: Wed 10 Dec 2025 05:20:48 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d029::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:93:5d:72:41:06:45:f2:ac:f8:d6:b2:a3:41:4f:b5:70:3d:28:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:20:48 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=cd7fca46186ca815fa0880d21eedfeaffb4679c7807293efb76813e5ad8baf95, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:82:f6:f7:81:be:09:21:d9:89:11:92:f5:7e: 5c:63:a3:68:66:88:ad:06:e7:98:34:b3:45:3e:60: 7c:b4:2b:34:66:c9:b9:eb:0e:4a:b8:f3:f1:9a:cd: fa:70:23:ac:89:88:c0:c2:39:37:6d:20:e4:ce:d0: 50:2b:19:64:02:8e:ac:cb:b6:a9:c9:95:35:9e:f3: ff:49:ff:14:22:92:b0:dd:6c:28:3a:bb:38:6f:a0: c7:b7:48:16:8a:24:bc:6f:88:a7:62:a4:8c:4b:d8: 1b:b0:de:dd:fb:91:ab:c0:6f:3b:09:cd:49:15:41: 7b:f3:4a:fc:74:e6:44:10:d2:c6:96:8d:92:74:49: ed:18:2f:95:2e:93:7b:bd:a4:82:13:c0:a7:b4:25: f0:21:5c:4d:59:c4:30:7c:6c:30:69:c2:35:c3:bb: 2c:61:70:6b:5c:10:13:72:30:75:f6:b1:72:e5:a6: f2:8f:be:65:6f:b6:f9:ff:b3:86:0c:e0:45:38:15: fb:1b:29:c0:de:9e:a7:f2:f8:a2:21:78:2c:8f:54: 24:96:3a:8e:b3:12:13:72:f5:ab:f7:4d:92:21:6e: 27:10:fc:c8:42:f5:30:d1:d4:75:1d:54:91:e6:70: f6:5d:22:71:a7:c3:cb:de:2a:69:f3:34:2e:33:08: 45:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0F:4C:35:43:47:02:31:BC:50:FB:CF:4D:D0:10:C1:F8:07:93:21 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/538037c5-70a6-4b45-b84c-b4af8015af39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d029::/36 Signature Algorithm: sha256WithRSAEncryption ac:dc:b4:04:2c:8d:c3:4b:fe:06:69:43:20:a5:b0:06:1b:3a: 67:14:a7:fe:37:54:61:c0:10:60:be:1d:56:fe:b9:03:ed:a7: 78:9d:47:04:71:66:59:06:21:62:96:8b:7e:2a:5b:89:ea:c5: 17:e6:a9:2b:c5:93:a6:8d:55:98:90:74:57:f7:0e:a4:c1:ef: 41:e7:2f:3d:f0:81:08:f1:61:e1:bf:e8:6f:d7:aa:68:d3:c8: 3d:b3:b6:46:96:87:0b:7c:72:80:ae:4e:60:26:f4:bf:d9:17: 12:9a:74:5c:5e:f2:d6:1b:83:eb:1e:56:ab:6b:df:c4:4d:49: 34:a8:51:4a:be:00:c3:67:bd:22:92:fb:61:96:07:cb:e1:aa: f9:55:04:9c:d6:c2:26:38:e6:9e:36:0a:c8:9e:3b:41:57:8e: b6:97:05:de:d6:4b:d8:6a:2d:d6:fd:ed:1f:8a:c9:ec:05:a6: cc:bd:df:39:cf:b4:fa:c0:ae:fc:db:03:f7:df:ee:e4:07:d5: 40:b3:98:d3:93:15:e1:d9:d7:4e:fa:b0:09:01:b1:f2:11:ed: 65:89:26:f3:2e:b6:3a:d4:68:6e:12:d4:d1:7d:df:63:10:57: d5:04:3f:89:af:27:97:93:e3:40:f5:58:6d:8e:0a:53:73:c4: 3f:f9:72:e2 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUCpNdckEGRfKs+Nayo0FPtXA9KHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTIwNDhaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGNkN2ZjYTQ2MTg2Y2E4MTVmYTA4ODBkMjFlZWRmZWFmZmI0Njc5Yzc4MDcy OTNlZmI3NjgxM2U1YWQ4YmFmOTUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ2C9veBvgkh2YkRkvV+XGOjaGaIrQbnmDSzRT5gfLQrNGbJuesOSrjz8ZrN +nAjrImIwMI5N20g5M7QUCsZZAKOrMu2qcmVNZ7z/0n/FCKSsN1sKDq7OG+gx7dI FookvG+Ip2KkjEvYG7De3fuRq8BvOwnNSRVBe/NK/HTmRBDSxpaNknRJ7RgvlS6T e72kghPAp7Ql8CFcTVnEMHxsMGnCNcO7LGFwa1wQE3IwdfaxcuWm8o++ZW+2+f+z hgzgRTgV+xspwN6ep/L4oiF4LI9UJJY6jrMSE3L1q/dNkiFuJxD8yEL1MNHUdR1U keZw9l0icafDy94qafM0LjMIRc8CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBR/D0w1 Q0cCMbxQ+89N0BDB+AeTITAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTM4MDM3YzUtNzBhNi00YjQ1LWI4NGMtYjRhZjgwMTVhZjM5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0CkA MA0GCSqGSIb3DQEBCwUAA4IBAQCs3LQELI3DS/4GaUMgpbAGGzpnFKf+N1RhwBBg vh1W/rkD7ad4nUcEcWZZBiFilot+KluJ6sUX5qkrxZOmjVWYkHRX9w6kwe9B5y89 8IEI8WHhv+hv16po08g9s7ZGlocLfHKArk5gJvS/2RcSmnRcXvLWG4PrHlara9/E TUk0qFFKvgDDZ70ikvthlgfL4ar5VQSc1sImOOaeNgrInjtBV462lwXe1kvYai3W /e0fisnsBabMvd85z7T6wK782wP33+7kB9VAs5jTkxXh2ddO+rAJAbHyEe1liSbz LrY61GhuEtTRfd9jEFfVBD+JryeXk+NA9VhtjgpTc8Q/+XLi -----END CERTIFICATE-----Generated at Fri Jan 2 10:57:09 2026 by rpki-client