This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6236cad2-ab49-4574-b740-7b70c27fae87.roa File: 6236cad2-ab49-4574-b740-7b70c27fae87.roa (raw, json) Hash identifier: C/t79sWjDph10Yn66h3UEHfMsSaH3CPxuAJAWjq3BTE= Subject key identifier: B3:99:79:87:F5:FC:F4:AE:5A:BB:95:64:5B:E7:E7:1F:BA:DA:43:73 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 560F3B83795A0519437475F06F30D80F875F1AF8 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6236cad2-ab49-4574-b740-7b70c27fae87.roa Signing time: Wed 10 Dec 2025 05:50:56 +0000 ROA not before: Wed 10 Dec 2025 05:50:56 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d010:8400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:0f:3b:83:79:5a:05:19:43:74:75:f0:6f:30:d8:0f:87:5f:1a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:50:56 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=2e160c5503a4031cfa7ad2ebbb89647e52a4bde042b53dc0afac6e7a989a0f98, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e0:84:16:ba:fb:63:36:62:e0:40:9a:47:29: 02:82:cb:43:ef:c3:55:29:0c:72:d2:da:7c:2b:08: c5:55:00:10:31:fe:e0:95:12:26:48:70:43:f9:f4: 8d:23:dd:f5:8e:25:42:50:f5:44:12:10:dc:dc:d8: f7:55:76:0d:ea:31:20:37:6e:c3:9c:ca:83:ae:20: 63:a0:83:90:a0:04:9e:c3:18:b2:8a:d6:c8:f3:04: dc:23:c4:16:8b:27:d4:ac:c4:32:0f:8a:94:32:06: de:30:1e:a7:60:04:c2:2e:82:4b:70:9c:cd:ba:52: 8e:84:d8:b3:35:f9:32:b9:f0:0f:e7:fa:88:d3:91: b7:d2:df:65:b2:5d:16:37:e5:5e:49:50:7b:35:53: 9d:35:aa:db:b4:8d:8f:69:cf:de:a2:ce:9e:c9:df: fe:18:65:c4:db:7d:38:42:e5:c5:5e:85:d2:54:78: 8e:46:41:f8:a5:57:77:0d:ea:4b:f8:ed:ac:e3:29: 33:ed:ac:d1:da:c0:45:60:4a:18:87:82:1a:6b:f3: e1:ae:0a:66:9e:b1:02:27:e4:1a:68:11:d5:9e:cf: ef:2a:c0:83:9e:9a:38:5a:11:71:be:90:77:ac:99: 5f:00:16:73:84:a8:ef:b1:1a:02:c6:a0:67:d5:ff: 74:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:99:79:87:F5:FC:F4:AE:5A:BB:95:64:5B:E7:E7:1F:BA:DA:43:73 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6236cad2-ab49-4574-b740-7b70c27fae87.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d010:8400::/38 Signature Algorithm: sha256WithRSAEncryption 00:31:55:cc:64:24:24:37:44:57:2a:ea:d1:4c:88:a0:c6:c5: de:ef:e3:64:80:84:c7:32:e9:b2:43:4d:10:ba:54:41:9c:00: c4:f0:70:9f:03:08:c0:92:52:f7:47:19:06:5e:a4:ac:c4:d4: 0d:3b:92:ee:d9:e0:a7:21:a3:ce:73:21:ea:8d:25:48:50:fb: ba:f1:26:60:f3:fe:d5:9e:6c:5f:87:87:7f:ef:a1:35:b5:ec: 5f:01:0f:70:8c:83:db:84:6b:11:ab:40:29:a3:46:d2:29:50: 96:6a:43:4d:a4:a1:a9:59:12:eb:c4:0f:ed:06:df:46:df:be: 4f:7e:4b:b5:1f:4f:c0:73:c6:5e:ed:7f:fe:58:f4:47:07:85: 59:a8:91:fc:4a:a3:56:c3:45:d1:7e:19:7b:dd:2e:bb:53:0e: 5d:97:c3:d4:ee:d9:f7:fc:80:3e:dc:0f:6f:78:13:d4:d5:5b: 90:fa:c4:26:7d:0c:da:38:f5:e7:2e:bc:bf:5a:3c:d9:d1:ac: a4:23:eb:73:cf:73:04:51:41:96:4c:64:25:77:b1:45:7e:9f: 19:7d:b0:4b:6e:e1:86:a9:03:6e:3b:79:62:fb:dd:5d:31:b2: b5:eb:a2:02:4a:64:74:ac:29:47:f5:46:f9:bf:d5:d1:67:0f: fc:6f:8d:53 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUVg87g3laBRlDdHXwbzDYD4dfGvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUwNTZaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDJlMTYwYzU1MDNhNDAzMWNmYTdhZDJlYmJiODk2NDdlNTJhNGJkZTA0MmI1 M2RjMGFmYWM2ZTdhOTg5YTBmOTgxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjghBa6+2M2YuBAmkcpAoLLQ+/DVSkMctLafCsIxVUAEDH+4JUSJkhwQ/n0 jSPd9Y4lQlD1RBIQ3NzY91V2DeoxIDduw5zKg64gY6CDkKAEnsMYsorWyPME3CPE Fosn1KzEMg+KlDIG3jAep2AEwi6CS3CczbpSjoTYszX5MrnwD+f6iNORt9LfZbJd FjflXklQezVTnTWq27SNj2nP3qLOnsnf/hhlxNt9OELlxV6F0lR4jkZB+KVXdw3q S/jtrOMpM+2s0drARWBKGIeCGmvz4a4KZp6xAifkGmgR1Z7P7yrAg56aOFoRcb6Q d6yZXwAWc4So77EaAsagZ9X/dI0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSzmXmH 9fz0rlq7lWRb5+cfutpDczAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NjIzNmNhZDItYWI0OS00NTc0LWI3NDAtN2I3MGMyN2ZhZTg3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAioF0BCE MA0GCSqGSIb3DQEBCwUAA4IBAQAAMVXMZCQkN0RXKurRTIigxsXe7+NkgITHMumy Q00QulRBnADE8HCfAwjAklL3RxkGXqSsxNQNO5Lu2eCnIaPOcyHqjSVIUPu68SZg 8/7Vnmxfh4d/76E1texfAQ9wjIPbhGsRq0Apo0bSKVCWakNNpKGpWRLrxA/tBt9G 375Pfku1H0/Ac8Ze7X/+WPRHB4VZqJH8SqNWw0XRfhl73S67Uw5dl8PU7tn3/IA+ 3A9veBPU1VuQ+sQmfQzaOPXnLry/WjzZ0aykI+tzz3MEUUGWTGQld7FFfp8ZfbBL buGGqQNuO3li+91dMbK166ICSmR0rClH9Ub5v9XRZw/8b41T -----END CERTIFICATE-----Generated at Fri Jan 2 09:29:19 2026 by rpki-client