This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ddb8169-a0ba-4989-b488-a344085c56c9.roa File: 6ddb8169-a0ba-4989-b488-a344085c56c9.roa (raw, json) Hash identifier: 3pmBhFyBjM383eSh14OcGMaVIvR28bXaHgoamOCnik4= Subject key identifier: 25:32:06:27:D8:8B:BE:45:CC:D6:93:56:DE:12:BD:08:51:C8:5E:D6 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6BE27B249E6A567C7214E86904364A071C652C68 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ddb8169-a0ba-4989-b488-a344085c56c9.roa Signing time: Wed 10 Dec 2025 06:00:42 +0000 ROA not before: Wed 10 Dec 2025 06:00:42 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d071:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:e2:7b:24:9e:6a:56:7c:72:14:e8:69:04:36:4a:07:1c:65:2c:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:00:42 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=23222daaafa635f4a4a3d24da72c65ca39c8c977c28ad3098bc42972148bf50c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:52:e2:30:b5:b2:9d:8c:bc:5d:66:0f:eb:68: c5:ae:51:c0:2b:d1:e1:bb:69:20:c5:a7:d8:20:99: 3d:9c:c5:8d:6e:b5:a8:e0:e5:43:af:6c:c4:ce:82: 57:69:2d:3e:55:87:17:4b:f9:42:ad:24:cc:21:8c: ac:9e:73:0c:e4:c5:6b:16:f8:ba:9d:51:bf:41:4b: 1a:b5:15:d6:e6:c0:a4:24:39:8e:47:3f:dd:1d:44: f8:45:3c:5e:be:1a:5d:57:65:97:e0:29:11:37:7f: 5c:9e:fc:5e:91:01:d7:64:97:70:f5:0b:8d:7b:bf: fc:aa:a2:10:57:da:d3:b2:61:e0:ae:32:6d:8a:8f: 50:ff:dc:95:93:74:7a:45:08:22:14:e7:54:1c:fd: dd:f1:3e:0a:99:b7:84:70:24:ab:9f:20:1f:6d:e1: 24:1b:fd:5b:2e:f1:6e:f1:31:33:92:b6:15:a4:f8: 26:b1:b9:b0:31:52:1d:47:b2:53:22:24:31:42:bb: bb:ca:6a:4a:65:11:ad:e2:d4:14:21:df:ed:67:28: 68:c6:24:af:dc:71:58:2b:eb:55:9d:11:4e:56:9d: 99:dc:51:eb:d6:16:4f:b8:36:84:b2:94:4d:f9:65: e7:47:6a:d0:14:f6:1f:78:86:f1:f3:1b:92:4a:ab: 79:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:32:06:27:D8:8B:BE:45:CC:D6:93:56:DE:12:BD:08:51:C8:5E:D6 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ddb8169-a0ba-4989-b488-a344085c56c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d071:c000::/40 Signature Algorithm: sha256WithRSAEncryption 2b:d5:f0:ee:4b:47:9c:9e:b1:2c:b2:c0:ea:4f:cd:f5:95:65: d4:02:cb:48:ad:6b:eb:6c:55:b0:b0:88:15:35:e8:c2:90:f2: 08:1c:af:b1:7e:1d:77:f1:65:34:a2:a4:11:20:96:3b:0d:40: 9e:07:0f:57:05:e8:c1:46:7c:be:a7:68:a9:e8:2c:20:64:c1: 14:9f:6f:4f:f2:0a:ee:9c:ff:81:03:b0:30:95:c9:17:2f:1c: 8a:27:f4:c7:11:b0:7d:c4:9a:5f:db:2d:b9:52:0f:0c:09:a8: da:8e:d4:64:ed:d4:f9:87:5b:21:ff:7b:4b:4b:cd:07:4d:a7: 9f:b8:a8:b0:a0:ec:6a:6d:ad:48:9b:4c:ff:40:9e:02:04:8a: 50:7b:6b:73:2f:8c:1b:d8:c1:9a:d6:76:1a:6f:98:eb:cc:8a: f4:f4:7b:9c:8a:ea:5b:9a:8c:17:e1:d4:ed:f9:03:ed:64:63: 26:49:2b:44:28:79:c9:08:9b:c4:32:23:da:26:a7:e2:6a:d2: 33:78:7c:a9:4c:d3:1a:33:72:2b:69:56:71:90:7e:65:cf:6b: 51:84:a6:7a:ed:94:44:55:71:07:b3:06:98:e3:d9:8c:b3:07: de:b2:cb:22:80:5b:30:af:0d:a5:05:75:ca:f5:ef:ed:b3:1b: b9:37:14:a8 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUa+J7JJ5qVnxyFOhpBDZKBxxlLGgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjAwNDJaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDIzMjIyZGFhYWZhNjM1ZjRhNGEzZDI0ZGE3MmM2NWNhMzljOGM5NzdjMjhh ZDMwOThiYzQyOTcyMTQ4YmY1MGMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5S4jC1sp2MvF1mD+toxa5RwCvR4btpIMWn2CCZPZzFjW61qODlQ69sxM6C V2ktPlWHF0v5Qq0kzCGMrJ5zDOTFaxb4up1Rv0FLGrUV1ubApCQ5jkc/3R1E+EU8 Xr4aXVdll+ApETd/XJ78XpEB12SXcPULjXu//KqiEFfa07Jh4K4ybYqPUP/clZN0 ekUIIhTnVBz93fE+Cpm3hHAkq58gH23hJBv9Wy7xbvExM5K2FaT4JrG5sDFSHUey UyIkMUK7u8pqSmURreLUFCHf7WcoaMYkr9xxWCvrVZ0RTladmdxR69YWT7g2hLKU Tfll50dq0BT2H3iG8fMbkkqreYcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQlMgYn 2Iu+RczWk1beEr0IUche1jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmRkYjgxNjktYTBiYS00OTg5LWI0ODgtYTM0NDA4NWM1NmM5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HHA MA0GCSqGSIb3DQEBCwUAA4IBAQAr1fDuS0ecnrEsssDqT831lWXUAstIrWvrbFWw sIgVNejCkPIIHK+xfh138WU0oqQRIJY7DUCeBw9XBejBRny+p2ip6CwgZMEUn29P 8grunP+BA7AwlckXLxyKJ/THEbB9xJpf2y25Ug8MCajajtRk7dT5h1sh/3tLS80H TaefuKiwoOxqba1Im0z/QJ4CBIpQe2tzL4wb2MGa1nYab5jrzIr09HuciupbmowX 4dTt+QPtZGMmSStEKHnJCJvEMiPaJqfiatIzeHypTNMaM3IraVZxkH5lz2tRhKZ6 7ZREVXEHswaY49mMswfesssigFswrw2lBXXK9e/tsxu5NxSo -----END CERTIFICATE-----Generated at Sun Dec 14 01:47:14 2025 by rpki-client