This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e4d9890-b4f4-4b9e-a734-b63f515360e2.roa File: 6e4d9890-b4f4-4b9e-a734-b63f515360e2.roa (raw, json) Hash identifier: xGo55q6r3FVMR1CMsQmOIAeZwR3rjTebzCCfiPWHvgY= Subject key identifier: 1B:20:AE:1F:0A:F2:1D:F6:1D:3E:97:3D:0F:72:F9:C7:31:61:26:E6 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 19E7CAA49E16BC53CF01A1B129B981A15963BA30 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e4d9890-b4f4-4b9e-a734-b63f515360e2.roa Signing time: Wed 10 Dec 2025 05:41:21 +0000 ROA not before: Wed 10 Dec 2025 05:41:21 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:4040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:e7:ca:a4:9e:16:bc:53:cf:01:a1:b1:29:b9:81:a1:59:63:ba:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:41:21 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=9f14d659355e1e5e4d38b8ce7f0f5447f3ae144f3456f3f78803247ec29654e7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4c:dd:30:7c:6b:21:fe:85:b9:d8:36:58:70: dd:3c:35:de:f1:ab:6e:fc:1e:7a:fa:23:0f:2f:03: 05:0d:b0:2e:1b:71:6c:15:1f:d0:e2:3e:43:36:32: 2c:f3:d8:6d:a4:fc:86:a7:26:51:52:32:34:d6:5f: 94:fd:17:86:47:9a:b2:aa:29:1b:0b:7c:d1:6f:18: b0:61:04:8e:ba:e3:db:dd:eb:83:7c:83:b7:3d:5d: 8a:d6:65:65:1f:a2:34:2e:02:cc:2d:da:b7:32:ff: 59:b2:2d:37:5f:6a:f1:e8:b0:43:57:44:4c:85:a6: c7:c0:1f:6e:61:7f:d3:a2:7a:01:94:9f:39:95:23: e9:69:df:6f:69:c2:c9:2b:da:e2:39:23:0c:c1:1a: bd:78:17:62:12:7a:b9:f2:40:19:9e:e8:ff:da:b2: a9:33:2a:05:ea:87:29:38:25:03:89:cd:fd:07:35: a0:7b:a5:fa:dd:ed:3f:19:b5:09:e9:cb:6c:8e:5d: 79:91:4b:7f:f6:44:21:5f:05:ad:53:c4:f8:cf:0b: a9:e6:95:0f:c8:6c:47:46:6c:74:ac:a9:e0:d4:66: 28:d3:61:3e:de:49:eb:6d:10:03:7c:4d:7b:0c:87: e1:d5:41:72:26:9e:de:c3:19:ea:51:54:14:1e:44: 05:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:20:AE:1F:0A:F2:1D:F6:1D:3E:97:3D:0F:72:F9:C7:31:61:26:E6 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e4d9890-b4f4-4b9e-a734-b63f515360e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:4040::/48 Signature Algorithm: sha256WithRSAEncryption 24:19:ec:cd:81:25:63:2f:3c:32:2c:21:91:ca:c0:88:30:a3: 85:65:23:5f:cb:c5:7e:64:30:2e:cf:e6:fc:e0:f0:fa:30:7e: 8c:09:19:69:c6:06:95:c8:90:28:32:af:ca:4b:75:d2:bc:ea: d4:e3:d0:27:44:7d:40:2a:78:49:f4:ca:0d:7e:64:b3:d9:0a: 25:a2:ef:20:83:47:16:74:f1:47:5b:03:63:24:d2:fa:9b:02: 52:10:cf:e8:47:ca:cd:35:4a:e1:7e:1a:29:da:3e:80:5e:41: d8:e8:fb:f7:37:80:31:fe:4c:0b:f0:4a:20:50:0e:3a:bf:a9: 2b:bf:7e:1d:c2:ee:7e:ad:5f:9a:89:c6:f1:c8:f7:97:2d:7f: 2e:ee:5b:f2:a5:8c:89:4f:f1:7c:9e:69:37:4b:24:83:99:49: 75:45:40:f6:3b:96:9a:16:eb:ea:28:55:a8:eb:70:7b:2f:8f: 64:2a:f0:ba:8e:c6:33:a4:fd:21:8d:10:c1:96:13:7d:bc:4e: e0:04:28:89:c3:08:7e:85:5c:eb:c8:b9:6a:50:93:3c:f9:56: 8f:6a:eb:d5:af:08:d7:72:c3:96:e3:65:2f:57:94:e7:f8:73: 6c:d0:40:5b:04:ed:65:dd:e9:95:bc:be:de:3b:c5:1b:f7:b6: a6:7b:54:48 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUGefKpJ4WvFPPAaGxKbmBoVljujAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTQxMjFaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDlmMTRkNjU5MzU1ZTFlNWU0ZDM4YjhjZTdmMGY1NDQ3ZjNhZTE0NGYzNDU2 ZjNmNzg4MDMyNDdlYzI5NjU0ZTcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1M3TB8ayH+hbnYNlhw3Tw13vGrbvweevojDy8DBQ2wLhtxbBUf0OI+QzYy LPPYbaT8hqcmUVIyNNZflP0XhkeasqopGwt80W8YsGEEjrrj293rg3yDtz1ditZl ZR+iNC4CzC3atzL/WbItN19q8eiwQ1dETIWmx8AfbmF/06J6AZSfOZUj6Wnfb2nC ySva4jkjDMEavXgXYhJ6ufJAGZ7o/9qyqTMqBeqHKTglA4nN/Qc1oHul+t3tPxm1 CenLbI5deZFLf/ZEIV8FrVPE+M8LqeaVD8hsR0ZsdKyp4NRmKNNhPt5J620QA3xN ewyH4dVBciae3sMZ6lFUFB5EBUsCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQbIK4f CvId9h0+lz0PcvnHMWEm5jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmU0ZDk4OTAtYjRmNC00YjllLWE3MzQtYjYzZjUxNTM2MGUyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HJA QDANBgkqhkiG9w0BAQsFAAOCAQEAJBnszYElYy88MiwhkcrAiDCjhWUjX8vFfmQw Ls/m/ODw+jB+jAkZacYGlciQKDKvykt10rzq1OPQJ0R9QCp4SfTKDX5ks9kKJaLv IINHFnTxR1sDYyTS+psCUhDP6EfKzTVK4X4aKdo+gF5B2Oj79zeAMf5MC/BKIFAO Or+pK79+HcLufq1fmonG8cj3ly1/Lu5b8qWMiU/xfJ5pN0skg5lJdUVA9juWmhbr 6ihVqOtwey+PZCrwuo7GM6T9IY0QwZYTfbxO4AQoicMIfoVc68i5alCTPPlWj2rr 1a8I13LDluNlL1eU5/hzbNBAWwTtZd3plby+3jvFG/e2pntUSA== -----END CERTIFICATE-----Generated at Fri Jan 2 11:04:21 2026 by rpki-client