This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/631196a4-90f5-4760-982e-15fbaf4805ec.roa File: 631196a4-90f5-4760-982e-15fbaf4805ec.roa (raw, json) Hash identifier: czDUm4Bc4Ac6dLUocrEnkgXZrWoO5gQwuQ+21k7UlNc= Subject key identifier: 3F:9B:BF:53:A5:04:8F:04:05:BD:29:98:80:65:74:B2:77:26:5F:6E Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 72E98A79C2C7CC79995335AAD72D60320BDEDC3F Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/631196a4-90f5-4760-982e-15fbaf4805ec.roa Signing time: Mon 08 Dec 2025 02:10:31 +0000 ROA not before: Mon 08 Dec 2025 02:10:31 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d020:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:e9:8a:79:c2:c7:cc:79:99:53:35:aa:d7:2d:60:32:0b:de:dc:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 8 02:10:31 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=f882f895c73edb37555bd0e279bdf3d78ff850589083073f41d5d29a3c96e83d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4e:c0:7b:1e:b1:76:8c:55:36:40:06:31:b1: 18:c5:4f:3c:43:bc:08:8f:09:fa:c9:3d:84:b9:f4: 48:6d:e0:d7:f7:6b:69:be:22:1a:5e:ed:d0:75:03: 1c:e1:9f:9c:59:0b:d1:15:49:db:e1:c6:d9:19:11: d8:1e:b1:a9:62:c3:79:7f:66:b2:8b:32:ec:80:24: 40:61:0e:6c:cf:a9:24:dc:65:26:5e:ae:f0:6e:be: 1c:4f:ba:cc:a0:92:6e:b3:84:d5:e0:21:88:b9:f0: 3e:2b:26:aa:7a:bd:a8:99:f7:fa:44:ab:47:58:f1: 92:23:50:3b:82:27:5c:da:ac:48:f7:4d:84:2d:fd: 0a:b1:fd:ea:61:86:2b:ba:c7:a1:40:ed:5a:78:80: 33:90:49:08:bd:e4:d0:f1:78:2f:c1:79:56:08:5b: df:59:70:89:03:09:6f:b9:d3:51:33:60:83:5e:98: 45:7c:93:e9:7e:cd:fb:02:5a:ad:06:a1:0e:b3:17: 1d:41:06:06:2b:83:f4:83:8d:e3:00:e9:7e:9b:89: 9b:dc:b6:d9:3c:72:72:5b:87:aa:7a:12:7f:8b:f9: 4b:51:48:d0:a0:06:c0:4e:e5:62:fc:d6:05:32:3d: 0c:2c:c0:f3:8d:83:51:72:a3:99:e0:16:8b:55:e6: 5f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9B:BF:53:A5:04:8F:04:05:BD:29:98:80:65:74:B2:77:26:5F:6E X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/631196a4-90f5-4760-982e-15fbaf4805ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d020:8000::/36 Signature Algorithm: sha256WithRSAEncryption 37:9b:20:09:55:90:e5:3d:e4:c3:fc:aa:c8:a6:3e:42:02:0d: d9:42:da:fd:6e:fc:b4:42:52:94:6d:c3:12:a0:4a:5f:e1:db: 34:34:59:c4:84:a7:b0:48:bc:c5:32:c7:6c:2c:0e:9b:ad:41: 7a:45:9b:3f:89:14:b6:74:57:fb:d2:bb:67:55:b3:58:10:e4: 19:04:4d:4f:6f:d5:22:4c:01:93:c0:50:9d:a7:dd:91:f1:d5: ef:24:84:ae:0f:37:44:b6:fd:ad:d1:86:cf:1a:21:1e:9b:d3: be:af:4a:33:96:9a:a0:aa:0c:d9:01:a6:88:bd:7c:bf:89:e9: 09:ef:40:d3:db:19:9b:26:7b:e9:d0:bc:65:c1:a1:2a:80:e5: f8:a8:8a:56:d3:f7:6c:ec:53:02:ab:f2:69:dd:17:d0:f2:1b: ad:41:bc:e0:4b:5f:bd:17:ec:c1:26:15:72:bb:48:1c:aa:20: 05:6d:51:6d:7f:38:51:21:0e:69:d0:75:db:8e:56:63:0b:70: 55:a8:bb:7c:07:a9:f3:ac:a0:9d:33:f2:ce:75:e0:c4:40:73: 47:8b:0d:f6:8a:c6:b4:20:7f:62:0d:ee:70:1c:ac:b9:33:31: 8c:9d:b5:f2:85:c5:c8:71:8f:2b:91:6e:75:90:6c:52:9f:23: b0:b6:63:87 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUcumKecLHzHmZUzWq1y1gMgve3D8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDgwMjEwMzFaFw0yNjAzMDgyMzU5NTlaMHoxSTBHBgNV BAUTQGY4ODJmODk1YzczZWRiMzc1NTViZDBlMjc5YmRmM2Q3OGZmODUwNTg5MDgz MDczZjQxZDVkMjlhM2M5NmU4M2QxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANtOwHsesXaMVTZABjGxGMVPPEO8CI8J+sk9hLn0SG3g1/drab4iGl7t0HUD HOGfnFkL0RVJ2+HG2RkR2B6xqWLDeX9msosy7IAkQGEObM+pJNxlJl6u8G6+HE+6 zKCSbrOE1eAhiLnwPismqnq9qJn3+kSrR1jxkiNQO4InXNqsSPdNhC39CrH96mGG K7rHoUDtWniAM5BJCL3k0PF4L8F5Vghb31lwiQMJb7nTUTNgg16YRXyT6X7N+wJa rQahDrMXHUEGBiuD9ION4wDpfpuJm9y22TxycluHqnoSf4v5S1FI0KAGwE7lYvzW BTI9DCzA842DUXKjmeAWi1XmX8cCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQ/m79T pQSPBAW9KZiAZXSydyZfbjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NjMxMTk2YTQtOTBmNS00NzYwLTk4MmUtMTVmYmFmNDgwNWVjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0CCA MA0GCSqGSIb3DQEBCwUAA4IBAQA3myAJVZDlPeTD/KrIpj5CAg3ZQtr9bvy0QlKU bcMSoEpf4ds0NFnEhKewSLzFMsdsLA6brUF6RZs/iRS2dFf70rtnVbNYEOQZBE1P b9UiTAGTwFCdp92R8dXvJISuDzdEtv2t0YbPGiEem9O+r0ozlpqgqgzZAaaIvXy/ iekJ70DT2xmbJnvp0LxlwaEqgOX4qIpW0/ds7FMCq/Jp3RfQ8hutQbzgS1+9F+zB JhVyu0gcqiAFbVFtfzhRIQ5p0HXbjlZjC3BVqLt8B6nzrKCdM/LOdeDEQHNHiw32 isa0IH9iDe5wHKy5MzGMnbXyhcXIcY8rkW51kGxSnyOwtmOH -----END CERTIFICATE-----Generated at Fri Jan 2 09:28:25 2026 by rpki-client