This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/739d8b08-f82b-4a2a-841c-2faf7a331ffa.roa File: 739d8b08-f82b-4a2a-841c-2faf7a331ffa.roa (raw, json) Hash identifier: 7ZMbNrmZL07eqgrzoVLK52TF5BphyblQGHplejVgoS0= Subject key identifier: 65:36:1A:4F:FB:D8:F3:19:96:21:ED:CE:5A:1E:CD:1F:21:22:BD:56 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5067C997C0EE15DF92C2DFA896D3FA045E40E90B Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/739d8b08-f82b-4a2a-841c-2faf7a331ffa.roa Signing time: Sat 15 Nov 2025 06:40:07 +0000 ROA not before: Sat 15 Nov 2025 06:40:07 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07e:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 22 Nov 2025 09:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:67:c9:97:c0:ee:15:df:92:c2:df:a8:96:d3:fa:04:5e:40:e9:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:40:07 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=b74db084519d2ad23832559eae6a2d4d3b64b1ad396153c885e4551c673162ee, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:74:11:14:7a:3e:4a:a3:ec:a3:75:fb:79:2c: 32:48:c1:5b:eb:cd:35:cf:59:a0:17:0d:c6:01:9b: 20:14:7c:20:2c:b3:29:0f:c1:ad:25:78:7b:5c:67: 28:dd:ca:20:71:c0:a0:60:47:d2:f3:5c:0d:db:ab: f2:74:fa:3a:c6:45:6a:d1:94:9f:fb:e3:5a:57:60: e0:63:7d:30:c7:95:6d:0e:e3:4d:65:89:7a:06:b2: 0b:5a:e6:39:f0:13:20:53:44:58:ce:b4:2d:c4:b2: 3f:a0:05:8d:d0:74:b0:eb:18:83:ff:09:91:74:c6: 4b:f8:dc:f4:67:e8:5e:9b:1e:8d:35:79:07:72:0c: b8:a5:f2:cb:93:d7:87:06:e6:5f:73:79:fc:2d:c9: 56:3c:72:50:68:4f:6e:1e:73:73:d4:7e:88:ad:b3: 3d:b4:f2:cd:65:07:d1:0f:4b:f5:17:93:04:82:44: 05:ee:45:59:89:cb:6b:a0:da:2a:f4:cb:16:b6:7c: 95:3d:03:60:b5:0c:76:8a:68:d1:85:12:f4:b3:a1: 0c:c2:c6:2e:5b:a5:80:02:25:7d:0d:62:79:a5:83: 9a:14:59:65:88:e2:e4:bf:95:d3:1c:1e:34:ad:30: 9b:50:da:b1:a3:ab:16:b3:95:2f:91:b6:40:28:db: 5a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:36:1A:4F:FB:D8:F3:19:96:21:ED:CE:5A:1E:CD:1F:21:22:BD:56 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/739d8b08-f82b-4a2a-841c-2faf7a331ffa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07e:9000::/40 Signature Algorithm: sha256WithRSAEncryption 42:04:a2:a0:a9:17:37:bb:d7:43:66:01:37:05:b7:d0:dc:9e: 17:43:67:f0:1d:5f:b3:b1:0e:8e:96:62:2b:60:3b:c9:90:36: f9:65:01:d5:70:73:f5:f3:03:75:20:c5:b4:a0:8b:d3:d5:d3: e6:08:96:83:ff:21:ec:d4:8f:64:e5:11:18:ce:f2:8d:af:fa: 1e:b8:eb:2e:aa:19:93:eb:d1:28:98:b9:4f:92:92:b6:cd:b0: 48:99:6d:e5:95:ec:37:1e:4f:3a:22:e4:47:4c:8a:e2:f5:02: 60:27:b2:5d:1c:a3:64:b6:1d:bd:ec:47:3c:75:83:ba:5c:05: 0c:2e:08:fd:d0:71:76:c8:63:aa:94:34:7a:dc:f2:3f:12:b6: 5e:04:ce:a0:44:b4:dd:80:c4:51:f8:ba:54:e8:55:7a:e3:a0: 64:a3:33:f2:b3:51:6b:74:2c:e9:c4:2d:7e:69:73:f5:f4:ad: 37:40:1b:0c:79:53:7f:47:3e:59:66:92:2e:b0:10:7c:19:a1: 28:c3:3d:f7:af:19:d3:d1:81:d0:96:56:d3:d3:0b:13:18:65: 6d:29:fd:98:f2:7d:c2:68:0f:bb:cd:c4:fc:92:87:3e:74:f2: bf:85:14:14:43:69:5c:1f:0d:73:03:cb:d3:7f:b9:d9:28:6e: a8:ce:8c:d3 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUUGfJl8DuFd+Swt+oltP6BF5A6QswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjQwMDdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGI3NGRiMDg0NTE5ZDJhZDIzODMyNTU5ZWFlNmEyZDRkM2I2NGIxYWQzOTYx NTNjODg1ZTQ1NTFjNjczMTYyZWUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM50ERR6Pkqj7KN1+3ksMkjBW+vNNc9ZoBcNxgGbIBR8ICyzKQ/BrSV4e1xn KN3KIHHAoGBH0vNcDdur8nT6OsZFatGUn/vjWldg4GN9MMeVbQ7jTWWJegayC1rm OfATIFNEWM60LcSyP6AFjdB0sOsYg/8JkXTGS/jc9GfoXpsejTV5B3IMuKXyy5PX hwbmX3N5/C3JVjxyUGhPbh5zc9R+iK2zPbTyzWUH0Q9L9ReTBIJEBe5FWYnLa6Da KvTLFrZ8lT0DYLUMdopo0YUS9LOhDMLGLlulgAIlfQ1ieaWDmhRZZYji5L+V0xwe NK0wm1DasaOrFrOVL5G2QCjbWu0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRlNhpP +9jzGZYh7c5aHs0fISK9VjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzM5ZDhiMDgtZjgyYi00YTJhLTg0MWMtMmZhZjdhMzMxZmZhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0H6Q MA0GCSqGSIb3DQEBCwUAA4IBAQBCBKKgqRc3u9dDZgE3BbfQ3J4XQ2fwHV+zsQ6O lmIrYDvJkDb5ZQHVcHP18wN1IMW0oIvT1dPmCJaD/yHs1I9k5REYzvKNr/oeuOsu qhmT69EomLlPkpK2zbBImW3llew3Hk86IuRHTIri9QJgJ7JdHKNkth297Ec8dYO6 XAUMLgj90HF2yGOqlDR63PI/ErZeBM6gRLTdgMRR+LpU6FV646BkozPys1FrdCzp xC1+aXP19K03QBsMeVN/Rz5ZZpIusBB8GaEowz33rxnT0YHQllbT0wsTGGVtKf2Y 8n3CaA+7zcT8koc+dPK/hRQUQ2lcHw1zA8vTf7nZKG6ozozT -----END CERTIFICATE-----Generated at Fri Nov 21 18:44:02 2025 by rpki-client