This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6f8d79c6-b773-4073-9ff4-2210e6a111b7.roa File: 6f8d79c6-b773-4073-9ff4-2210e6a111b7.roa (raw, json) Hash identifier: GsiXTuuoUvovET1XsrwzHMDga9LqHEeR4zECql2vhUI= Subject key identifier: D1:E3:7D:C4:C0:A4:7A:84:67:15:57:7A:71:2E:79:43:A7:4E:46:58 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 71C756DBB121F44FF58DEF190004E01C73827243 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6f8d79c6-b773-4073-9ff4-2210e6a111b7.roa Signing time: Sat 15 Nov 2025 05:41:28 +0000 ROA not before: Sat 15 Nov 2025 05:41:28 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07e:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 21 Nov 2025 15:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:c7:56:db:b1:21:f4:4f:f5:8d:ef:19:00:04:e0:1c:73:82:72:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:41:28 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=94eefb3d14182eb547a1e95c599aa182b2de794c17390d26374aa41180a4d46a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:92:62:c4:92:13:2a:03:54:a7:ba:6e:56:c5: d2:f6:76:28:74:d6:cd:96:35:a5:51:85:48:fd:44: 60:c3:78:51:f9:34:37:12:15:51:23:51:6b:96:88: 13:87:6a:73:13:d4:6c:ee:9a:e4:ac:05:90:5d:f2: 88:87:2b:8c:97:8c:a1:c6:57:d2:0e:0e:d8:73:29: 48:4a:8f:e9:16:f5:1a:20:45:a2:7f:52:8f:8d:93: f7:80:1f:b8:af:0f:00:b1:a6:a5:19:a1:4f:e5:24: c4:a5:bf:54:d9:4c:da:a1:bc:06:28:56:3c:50:79: 25:fa:df:40:03:4d:a2:a5:8c:4e:a8:7a:3f:32:b9: 69:6f:53:2a:9f:c9:9d:58:93:0a:b0:72:1a:e4:11: 0b:e0:1a:5e:d1:2e:a1:ed:9f:bb:bc:f0:6e:f8:e9: f1:53:02:e9:33:af:7e:67:55:ce:a3:73:67:77:2d: d5:63:54:19:f0:63:3b:2a:e8:2e:5d:3a:99:5d:6b: 98:3d:d7:6a:25:c4:cc:41:14:0f:66:1f:ee:b1:95: 7c:4b:b6:fb:24:58:84:ef:65:11:49:d7:94:08:04: be:03:bd:11:94:52:64:0f:7f:9c:75:b4:a6:5c:de: 49:88:a4:2b:2f:f3:21:08:d1:7b:11:62:e5:52:91: 67:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E3:7D:C4:C0:A4:7A:84:67:15:57:7A:71:2E:79:43:A7:4E:46:58 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6f8d79c6-b773-4073-9ff4-2210e6a111b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07e:1000::/40 Signature Algorithm: sha256WithRSAEncryption 3e:34:a4:f8:65:23:d7:9f:ff:03:a6:4f:7e:93:7b:af:02:45: d9:3a:7a:a0:68:2a:bd:02:4b:36:5c:28:a2:57:3e:0a:8b:87: a6:45:93:35:d6:88:22:f0:94:42:53:48:44:6e:42:19:a2:bd: cc:08:1e:1f:59:97:70:6c:cc:3f:a5:e4:a4:47:85:5d:79:43: 2d:80:85:fb:1f:59:65:c2:86:f0:58:79:6e:bb:d0:c1:42:87: 1e:59:30:be:b0:6c:91:fa:48:ee:51:8f:14:66:2d:67:b9:e0: bd:5f:e6:c1:a8:c2:f2:3d:64:22:b1:44:9a:3a:4c:e0:e2:ac: 1f:10:eb:fe:8e:6c:86:1a:db:05:5c:be:5c:f6:ac:fb:04:97: 5a:10:69:47:6f:c7:6f:99:7f:97:e3:ec:d8:6f:c3:fe:8d:e6: 3c:09:1c:0f:ac:6a:6e:4a:29:45:34:79:99:d0:8c:b8:66:30: b2:64:fd:21:6f:a2:72:32:84:a6:83:c1:b0:7a:63:a8:17:94: c7:05:02:b1:3e:a6:e1:31:5f:ea:05:32:32:f5:78:03:bf:bc: 5f:0f:d4:c5:1c:3c:e7:4e:d0:71:49:eb:1c:6b:6b:2a:d1:96: 16:3b:4c:80:0c:91:8b:47:b6:0b:9e:41:49:b3:47:85:59:f0: f9:a8:15:7a -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUccdW27Eh9E/1je8ZAATgHHOCckMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQxMjhaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDk0ZWVmYjNkMTQxODJlYjU0N2ExZTk1YzU5OWFhMTgyYjJkZTc5NGMxNzM5 MGQyNjM3NGFhNDExODBhNGQ0NmExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSSYsSSEyoDVKe6blbF0vZ2KHTWzZY1pVGFSP1EYMN4Ufk0NxIVUSNRa5aI E4dqcxPUbO6a5KwFkF3yiIcrjJeMocZX0g4O2HMpSEqP6Rb1GiBFon9Sj42T94Af uK8PALGmpRmhT+UkxKW/VNlM2qG8BihWPFB5JfrfQANNoqWMTqh6PzK5aW9TKp/J nViTCrByGuQRC+AaXtEuoe2fu7zwbvjp8VMC6TOvfmdVzqNzZ3ct1WNUGfBjOyro Ll06mV1rmD3XaiXEzEEUD2Yf7rGVfEu2+yRYhO9lEUnXlAgEvgO9EZRSZA9/nHW0 plzeSYikKy/zIQjRexFi5VKRZ0ECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTR433E wKR6hGcVV3pxLnlDp05GWDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmY4ZDc5YzYtYjc3My00MDczLTlmZjQtMjIxMGU2YTExMWI3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0H4Q MA0GCSqGSIb3DQEBCwUAA4IBAQA+NKT4ZSPXn/8Dpk9+k3uvAkXZOnqgaCq9Aks2 XCiiVz4Ki4emRZM11ogi8JRCU0hEbkIZor3MCB4fWZdwbMw/peSkR4VdeUMtgIX7 H1llwobwWHluu9DBQoceWTC+sGyR+kjuUY8UZi1nueC9X+bBqMLyPWQisUSaOkzg 4qwfEOv+jmyGGtsFXL5c9qz7BJdaEGlHb8dvmX+X4+zYb8P+jeY8CRwPrGpuSilF NHmZ0Iy4ZjCyZP0hb6JyMoSmg8GwemOoF5THBQKxPqbhMV/qBTIy9XgDv7xfD9TF HDznTtBxSesca2sq0ZYWO0yADJGLR7YLnkFJs0eFWfD5qBV6 -----END CERTIFICATE-----Generated at Thu Nov 20 21:52:20 2025 by rpki-client