This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5f3054b8-54ee-4b8b-afc8-531f24d59fa7.roa File: 5f3054b8-54ee-4b8b-afc8-531f24d59fa7.roa (raw, json) Hash identifier: mpxePCEmdclA8lh/t1kO5HOyLE54AOwqK9rBjChUIoM= Subject key identifier: E7:91:6B:24:62:68:43:54:6C:DB:08:9A:AE:99:FD:86:BB:58:20:07 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3887058A0E83F49E7B7F3BE1032C250273FC2476 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5f3054b8-54ee-4b8b-afc8-531f24d59fa7.roa Signing time: Tue 18 Nov 2025 00:40:11 +0000 ROA not before: Tue 18 Nov 2025 00:40:11 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d034:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 20 Nov 2025 23:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:87:05:8a:0e:83:f4:9e:7b:7f:3b:e1:03:2c:25:02:73:fc:24:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 18 00:40:11 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=c210dafb6e470cff703ce6dc04937ac061037bbfbc6200a246f6c108942e263b, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:14:fd:c2:b2:58:2c:39:49:d8:ce:02:59:c9: b8:f1:7a:72:72:99:a3:a3:70:cd:17:7c:3f:e1:6a: d7:1b:12:f0:b1:79:f2:de:b6:0d:ce:85:40:e7:12: 52:b1:50:4a:3e:55:ed:08:a0:0c:66:b6:e0:cb:53: c0:f3:5c:3a:0e:d6:24:65:52:04:a2:80:cb:5b:4e: ea:0e:58:58:fe:9e:45:04:7f:b6:74:43:a3:fb:7f: bc:79:51:c2:a7:ae:37:7d:28:b0:a6:b0:97:95:73: 33:4d:62:3e:0c:5e:d0:2c:48:db:ce:44:ec:3f:f5: 4f:32:0a:ec:87:39:2e:3b:10:3c:29:30:b5:ab:57: 01:d5:4a:8e:77:2c:b5:2a:af:56:9d:28:10:b1:59: a6:e0:c4:3f:38:f6:98:7e:fe:08:23:a5:b4:2d:0d: f2:fe:1a:78:e1:08:1c:ce:1c:93:e7:ae:d2:39:6e: e6:f6:af:3a:af:94:d6:a8:df:9d:17:c9:87:71:23: 73:8c:2f:e4:30:fc:ec:94:98:6b:d7:fb:2f:ec:55: d8:79:71:af:7b:3f:7e:00:80:7b:f9:d8:19:10:ba: cf:98:e4:b8:5f:e5:7c:e8:37:e3:12:21:98:71:ec: 20:8d:c8:8b:4e:60:70:df:8d:79:8e:97:a0:94:4c: ac:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:91:6B:24:62:68:43:54:6C:DB:08:9A:AE:99:FD:86:BB:58:20:07 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5f3054b8-54ee-4b8b-afc8-531f24d59fa7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d034:8000::/40 Signature Algorithm: sha256WithRSAEncryption 54:7e:b1:0d:51:9b:1c:be:cd:cc:16:3e:2f:dd:f2:e4:9e:f7: 30:13:9d:46:a4:69:d3:b8:e1:b3:a7:99:c3:13:6c:20:71:75: 5a:68:e9:d7:9c:e1:d8:71:dd:56:88:48:c7:c4:36:d6:c8:19: 19:71:e8:59:42:e6:83:1b:89:58:18:10:a7:fe:1d:16:9e:a7: d9:be:d3:34:f2:64:b3:aa:ab:fe:35:5d:e8:69:e8:37:ac:30: 9e:82:b1:d8:4a:79:69:78:c5:83:11:d6:b4:2e:26:57:1c:bf: ac:2b:d6:b8:e0:aa:f3:01:46:15:50:6c:74:c1:1a:2d:49:12: af:4b:7a:f0:1b:62:58:ff:80:f4:cf:9a:13:29:df:2f:3f:da: 70:69:ac:16:e4:3a:0c:2e:fc:58:a7:02:55:eb:cf:77:2d:52: e4:d3:5e:aa:1c:ce:bc:14:e7:e4:bd:a0:99:47:16:1e:76:6d: ed:f0:1b:ab:d9:4f:a2:14:09:67:32:41:a9:11:31:08:55:73: ff:5e:c5:24:60:61:94:ab:55:75:72:27:4a:72:3f:a4:e2:6e: 6e:de:08:dd:49:14:e2:29:fe:c6:79:15:93:de:b4:be:6f:fb: d9:32:cf:c0:df:82:66:e7:a5:ea:d0:49:cf:ab:50:87:5b:3a: 88:50:16:e8 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUOIcFig6D9J57fzvhAywlAnP8JHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTgwMDQwMTFaFw0yNjAyMTYyMzU5NTlaMHoxSTBHBgNV BAUTQGMyMTBkYWZiNmU0NzBjZmY3MDNjZTZkYzA0OTM3YWMwNjEwMzdiYmZiYzYy MDBhMjQ2ZjZjMTA4OTQyZTI2M2IxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJQU/cKyWCw5SdjOAlnJuPF6cnKZo6NwzRd8P+Fq1xsS8LF58t62Dc6FQOcS UrFQSj5V7QigDGa24MtTwPNcOg7WJGVSBKKAy1tO6g5YWP6eRQR/tnRDo/t/vHlR wqeuN30osKawl5VzM01iPgxe0CxI285E7D/1TzIK7Ic5LjsQPCkwtatXAdVKjncs tSqvVp0oELFZpuDEPzj2mH7+CCOltC0N8v4aeOEIHM4ck+eu0jlu5vavOq+U1qjf nRfJh3Ejc4wv5DD87JSYa9f7L+xV2Hlxr3s/fgCAe/nYGRC6z5jkuF/lfOg34xIh mHHsII3Ii05gcN+NeY6XoJRMrCMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTnkWsk YmhDVGzbCJqumf2Gu1ggBzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NWYzMDU0YjgtNTRlZS00YjhiLWFmYzgtNTMxZjI0ZDU5ZmE3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DSA MA0GCSqGSIb3DQEBCwUAA4IBAQBUfrENUZscvs3MFj4v3fLknvcwE51GpGnTuOGz p5nDE2wgcXVaaOnXnOHYcd1WiEjHxDbWyBkZcehZQuaDG4lYGBCn/h0WnqfZvtM0 8mSzqqv+NV3oaeg3rDCegrHYSnlpeMWDEda0LiZXHL+sK9a44KrzAUYVUGx0wRot SRKvS3rwG2JY/4D0z5oTKd8vP9pwaawW5DoMLvxYpwJV6893LVLk016qHM68FOfk vaCZRxYedm3t8Bur2U+iFAlnMkGpETEIVXP/XsUkYGGUq1V1cidKcj+k4m5u3gjd SRTiKf7GeRWT3rS+b/vZMs/A34Jm56Xq0EnPq1CHWzqIUBbo -----END CERTIFICATE-----Generated at Thu Nov 20 03:57:05 2025 by rpki-client