This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/758ab83f-3a25-48db-a214-04c27915b62e.roa File: 758ab83f-3a25-48db-a214-04c27915b62e.roa (raw, json) Hash identifier: 0EYXj1rNlV8kK90Vk9BBmvtj2GA/sS8UQ6mE72AjATs= Subject key identifier: 03:1B:8D:1D:4F:8C:EC:6D:09:59:3B:46:A9:7B:34:E0:E2:35:4F:FF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 52789377F6020D2BBC008D493E03955F9E4FEFDE Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/758ab83f-3a25-48db-a214-04c27915b62e.roa Signing time: Wed 10 Dec 2025 06:20:43 +0000 ROA not before: Wed 10 Dec 2025 06:20:43 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d06d:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:78:93:77:f6:02:0d:2b:bc:00:8d:49:3e:03:95:5f:9e:4f:ef:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:20:43 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=84130e1c6f88a5812bd7b88dc689f435249d254b324fe38fd6cb83c030275351, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:98:af:5c:fc:76:81:dc:11:5f:25:9c:cb:93: d6:d3:c0:a5:9f:e2:1a:90:40:70:66:c2:39:8d:21: c7:41:c5:54:5f:e1:0a:19:80:9a:ff:ba:44:ad:b2: 33:cb:05:96:d6:12:40:46:36:3f:49:ee:30:6f:de: b5:d9:4a:69:47:5e:30:43:95:e1:f7:e0:42:97:d4: 1d:2c:f9:37:77:fc:93:f2:56:be:08:51:50:cd:cc: 95:68:0b:93:e2:4f:c2:e2:ef:89:86:a8:ad:51:9a: da:69:94:cb:ea:87:f3:5a:6a:88:9d:45:bf:4a:3a: 45:15:20:06:1b:0a:46:5c:ad:4c:62:13:06:50:a0: 4a:22:73:bd:86:7f:fc:c2:03:1f:f2:e5:4e:43:a6: d3:fb:b0:ce:60:cf:3e:a6:6a:33:55:d3:18:29:68: 2b:73:4f:43:af:ff:82:57:a8:f2:20:0a:4b:61:12: 18:6d:ef:c8:33:8e:97:57:c2:4e:4d:43:9d:19:72: 67:10:a7:0f:e9:d3:23:83:5f:1a:3c:bb:ad:29:03: 77:8f:7e:d1:0f:c9:1b:02:a1:d8:14:ab:23:6f:11: c7:1d:5a:04:95:0e:90:8d:b9:9c:dc:59:67:49:9e: c6:3f:b9:c9:41:aa:34:24:72:0b:eb:35:ba:d1:d8: e7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:1B:8D:1D:4F:8C:EC:6D:09:59:3B:46:A9:7B:34:E0:E2:35:4F:FF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/758ab83f-3a25-48db-a214-04c27915b62e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d06d:a000::/40 Signature Algorithm: sha256WithRSAEncryption 40:ac:0f:ee:3b:e3:2e:51:cc:6d:14:bf:75:26:d0:77:3b:ee: d2:29:c6:a9:20:76:4c:7d:16:d6:c6:83:f9:b0:d9:64:db:3c: e1:5e:3a:6c:47:8f:2c:f1:16:3e:6f:c4:5c:61:61:2e:1c:64: 49:40:9d:93:76:2f:6c:83:e7:d4:ae:0a:22:f3:c6:c9:1c:58: e8:c0:de:65:a9:5e:fa:4a:a2:95:80:fe:6b:5f:be:49:59:48: 17:67:37:be:28:c3:ea:55:1c:2e:c4:7f:3b:7a:b4:4e:36:fa: 6b:fb:6a:5b:d0:52:0e:80:13:a8:23:44:e5:b4:1d:27:51:f5: 54:7b:63:ca:47:5e:5f:2c:4e:04:48:9d:bd:ad:4a:c4:06:0c: d4:db:be:c2:28:10:9f:27:ae:f3:ae:01:ab:6e:19:95:5b:11: 58:56:71:36:14:aa:7e:e8:ce:b1:5d:80:69:7d:13:45:e1:aa: fc:8f:2d:9c:8a:5b:cd:f7:3a:cf:7e:c4:08:0d:6a:b6:7b:5e: ad:63:96:61:bc:ab:60:ca:0e:8b:c2:c5:c4:de:43:f6:a3:49: cb:53:30:7f:b5:ed:42:fd:d2:5c:2f:53:a9:9e:00:3f:41:2c: 5d:d6:01:a8:27:63:18:f0:8e:b4:05:c2:cd:34:f2:8a:1e:01: 05:6c:cc:99 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUUniTd/YCDSu8AI1JPgOVX55P794wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjIwNDNaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDg0MTMwZTFjNmY4OGE1ODEyYmQ3Yjg4ZGM2ODlmNDM1MjQ5ZDI1NGIzMjRm ZTM4ZmQ2Y2I4M2MwMzAyNzUzNTExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMyYr1z8doHcEV8lnMuT1tPApZ/iGpBAcGbCOY0hx0HFVF/hChmAmv+6RK2y M8sFltYSQEY2P0nuMG/etdlKaUdeMEOV4ffgQpfUHSz5N3f8k/JWvghRUM3MlWgL k+JPwuLviYaorVGa2mmUy+qH81pqiJ1Fv0o6RRUgBhsKRlytTGITBlCgSiJzvYZ/ /MIDH/LlTkOm0/uwzmDPPqZqM1XTGCloK3NPQ6//gleo8iAKS2ESGG3vyDOOl1fC Tk1DnRlyZxCnD+nTI4NfGjy7rSkDd49+0Q/JGwKh2BSrI28Rxx1aBJUOkI25nNxZ Z0mexj+5yUGqNCRyC+s1utHY5x8CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQDG40d T4zsbQlZO0apezTg4jVP/zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NzU4YWI4M2YtM2EyNS00OGRiLWEyMTQtMDRjMjc5MTViNjJlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0G2g MA0GCSqGSIb3DQEBCwUAA4IBAQBArA/uO+MuUcxtFL91JtB3O+7SKcapIHZMfRbW xoP5sNlk2zzhXjpsR48s8RY+b8RcYWEuHGRJQJ2Tdi9sg+fUrgoi88bJHFjowN5l qV76SqKVgP5rX75JWUgXZze+KMPqVRwuxH87erRONvpr+2pb0FIOgBOoI0TltB0n UfVUe2PKR15fLE4ESJ29rUrEBgzU277CKBCfJ67zrgGrbhmVWxFYVnE2FKp+6M6x XYBpfRNF4ar8jy2cilvN9zrPfsQIDWq2e16tY5ZhvKtgyg6LwsXE3kP2o0nLUzB/ te1C/dJcL1OpngA/QSxd1gGoJ2MY8I60BcLNNPKKHgEFbMyZ -----END CERTIFICATE-----Generated at Fri Jan 2 10:57:23 2026 by rpki-client