This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6f78d89d-1d32-4176-8f3e-9966f674843e.roa File: 6f78d89d-1d32-4176-8f3e-9966f674843e.roa (raw, json) Hash identifier: taZ9ajLnsSuBw+5xK3fvbOP2+Egehr0+ui6HUbZxu+k= Subject key identifier: 76:9E:6A:7A:DA:C8:36:13:2F:BA:52:90:66:C9:62:92:2A:1A:73:36 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 059F81CF6941EA82AC8494E86F82E63DFB89DB1E Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6f78d89d-1d32-4176-8f3e-9966f674843e.roa Signing time: Wed 10 Dec 2025 05:51:12 +0000 ROA not before: Wed 10 Dec 2025 05:51:12 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d071::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:9f:81:cf:69:41:ea:82:ac:84:94:e8:6f:82:e6:3d:fb:89:db:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:51:12 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=177352f2d2c80708ea3aefe776c364c337975587c2752a573cd196677c7171bb, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:63:47:f9:c3:34:4e:ec:be:af:96:78:6c:00: 33:9c:7c:e6:4c:93:22:61:6f:dd:6d:e4:2a:4f:17: 0d:08:c0:5d:50:36:f7:94:7d:a7:03:5f:f3:d5:62: e1:aa:a1:8b:8c:e9:d0:45:69:ea:f1:6f:50:48:f3: 30:1d:db:07:9d:19:5f:c2:08:55:a4:39:df:8a:4d: 77:b7:29:7e:7a:ec:2b:6b:d0:f3:b8:5b:cb:4a:90: 9d:1e:15:fc:53:a0:6c:95:54:88:1d:82:b1:ae:62: c0:87:51:f9:63:e5:b0:12:7f:f1:a2:30:4e:73:bf: a0:4e:3f:1d:7e:02:65:31:a9:d2:05:c4:e4:9f:1b: ab:cc:f9:71:d5:d0:5f:3b:1b:af:cc:83:79:95:cd: af:b1:f2:b4:e7:89:f6:ab:d2:47:4b:51:ea:4e:52: 6d:7e:22:2a:94:30:fd:49:3e:c5:72:15:36:8e:15: b5:79:82:3b:c8:24:1f:67:e5:9a:e9:bb:8a:82:2a: 01:fa:4b:dd:42:c1:db:6d:e3:b3:6a:6d:00:e7:e9: c3:2d:18:3b:30:8d:4f:85:c5:16:82:38:dc:5a:17: 70:b0:30:8f:20:2c:c3:d6:24:37:54:c2:60:c8:32: 4c:a7:13:bf:ef:13:51:40:59:b9:00:38:2d:c2:8e: 7e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9E:6A:7A:DA:C8:36:13:2F:BA:52:90:66:C9:62:92:2A:1A:73:36 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6f78d89d-1d32-4176-8f3e-9966f674843e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d071::/32 Signature Algorithm: sha256WithRSAEncryption 76:8a:8e:52:fa:27:69:72:0c:37:9a:87:2d:c6:e5:42:18:81: c8:a9:7a:a0:8b:6c:94:b2:03:e9:ba:fb:a7:47:d8:30:75:76: 92:16:da:4a:c2:31:4b:40:7d:02:10:6f:fe:27:4b:d5:4d:cc: 3c:b3:43:bb:eb:e0:f6:ab:96:fe:b5:cf:8d:40:07:d3:59:43: 7c:c0:3c:6d:13:ae:ec:c8:89:ca:e7:04:c9:5e:85:51:8c:50: fd:05:d9:b8:68:ac:b4:23:cb:87:d8:c5:bf:0b:43:61:9d:dd: 93:d3:55:35:65:3b:3a:03:66:95:b4:c6:0d:aa:66:4c:e0:0c: 31:c9:52:1b:dd:a5:7b:26:d4:85:ba:c4:67:82:36:1c:d1:54: d9:8d:88:b9:a7:d8:68:a4:54:cd:06:d5:62:9d:68:f5:b5:61: ad:ad:7e:54:d8:5b:34:59:37:ba:c6:22:1a:0e:29:cc:58:d0: 2d:54:a6:ae:f9:c2:f1:4e:e9:4b:90:1b:3d:14:8a:7c:15:c3: 4a:73:14:2f:6f:f9:84:06:a4:d7:f3:c2:2c:18:04:98:9d:68: 4f:45:9c:75:43:fa:b3:bd:cb:ea:7f:6d:b2:c0:ad:26:7f:d0: 46:fd:63:d3:00:8e:39:3b:08:d9:7e:9c:4a:88:67:b8:ef:04: ba:c8:3f:93 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUBZ+Bz2lB6oKshJTob4LmPfuJ2x4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUxMTJaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDE3NzM1MmYyZDJjODA3MDhlYTNhZWZlNzc2YzM2NGMzMzc5NzU1ODdjMjc1 MmE1NzNjZDE5NjY3N2M3MTcxYmIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALhjR/nDNE7svq+WeGwAM5x85kyTImFv3W3kKk8XDQjAXVA295R9pwNf89Vi 4aqhi4zp0EVp6vFvUEjzMB3bB50ZX8IIVaQ534pNd7cpfnrsK2vQ87hby0qQnR4V /FOgbJVUiB2Csa5iwIdR+WPlsBJ/8aIwTnO/oE4/HX4CZTGp0gXE5J8bq8z5cdXQ Xzsbr8yDeZXNr7HytOeJ9qvSR0tR6k5SbX4iKpQw/Uk+xXIVNo4VtXmCO8gkH2fl mum7ioIqAfpL3ULB223js2ptAOfpwy0YOzCNT4XFFoI43FoXcLAwjyAsw9YkN1TC YMgyTKcTv+8TUUBZuQA4LcKOfq0CAwEAAaOCAiIwggIeMB0GA1UdDgQWBBR2nmp6 2sg2Ey+6UpBmyWKSKhpzNjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmY3OGQ4OWQtMWQzMi00MTc2LThmM2UtOTk2NmY2NzQ4NDNlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoF0HEw DQYJKoZIhvcNAQELBQADggEBAHaKjlL6J2lyDDeahy3G5UIYgcipeqCLbJSyA+m6 +6dH2DB1dpIW2krCMUtAfQIQb/4nS9VNzDyzQ7vr4Parlv61z41AB9NZQ3zAPG0T ruzIicrnBMlehVGMUP0F2bhorLQjy4fYxb8LQ2Gd3ZPTVTVlOzoDZpW0xg2qZkzg DDHJUhvdpXsm1IW6xGeCNhzRVNmNiLmn2GikVM0G1WKdaPW1Ya2tflTYWzRZN7rG IhoOKcxY0C1Upq75wvFO6UuQGz0UinwVw0pzFC9v+YQGpNfzwiwYBJidaE9FnHVD +rO9y+p/bbLArSZ/0Eb9Y9MAjjk7CNl+nEqIZ7jvBLrIP5M= -----END CERTIFICATE-----Generated at Fri Jan 2 09:28:30 2026 by rpki-client