This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/79440387-66a3-4852-a94b-8a3250f20726.roa File: 79440387-66a3-4852-a94b-8a3250f20726.roa (raw, json) Hash identifier: xr8KigVLbuEgli5FsqjzeLaF/QRZelwXDfrLQNmv3kQ= Subject key identifier: 4A:FE:21:A8:C6:92:6E:12:9E:09:DC:A4:E9:92:F0:25:A3:A2:34:68 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1D5C0E765597D8CA04B4D512578A0B2264B366A4 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/79440387-66a3-4852-a94b-8a3250f20726.roa Signing time: Wed 10 Dec 2025 05:10:09 +0000 ROA not before: Wed 10 Dec 2025 05:10:09 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07f:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:5c:0e:76:55:97:d8:ca:04:b4:d5:12:57:8a:0b:22:64:b3:66:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:10:09 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=7beb86c2ab9a066653c2ea6d7b223f09224dabfc7906af4691347f51c824db31, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:81:e0:6d:34:bb:2f:52:ad:fd:24:43:9a:6f: b9:50:ab:66:28:37:c5:b6:21:30:20:b3:42:cb:fd: f4:27:b5:d0:4a:8f:b1:82:52:55:64:63:61:2e:d4: 3a:b6:56:f1:78:33:b5:49:e5:4a:90:80:f6:b9:f4: ad:aa:ed:2f:6a:c2:b6:3e:cb:f0:50:a5:a6:47:b3: 33:67:cc:fc:f6:15:6e:ac:97:43:45:32:19:a3:9c: 42:47:d6:a2:a2:ef:6c:d9:de:23:88:81:cc:0f:84: c3:f3:49:fc:29:7d:22:0f:d9:59:80:1c:09:40:c4: fa:3f:29:57:c8:f8:4d:d5:15:54:67:de:1c:48:e1: 74:92:d5:5e:1e:cc:bd:10:ab:be:ad:cb:18:27:09: af:96:44:36:09:bc:43:36:c8:37:af:b6:ee:2c:32: 72:45:10:82:bc:83:46:c8:6f:07:a7:11:26:69:3d: 33:18:08:d8:9a:6f:92:f0:47:ce:72:2a:d8:7d:33: 0b:be:79:7c:b6:96:19:96:b5:fb:8d:be:c2:de:e2: b5:80:72:a3:8a:50:8b:04:d8:4d:bd:98:e2:95:5c: 3a:50:a1:f9:03:75:ac:b9:f7:87:54:8d:e2:5c:69: 35:66:3b:3a:c2:ef:38:59:fb:01:19:ff:8a:34:11: fe:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FE:21:A8:C6:92:6E:12:9E:09:DC:A4:E9:92:F0:25:A3:A2:34:68 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/79440387-66a3-4852-a94b-8a3250f20726.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07f:a040::/48 Signature Algorithm: sha256WithRSAEncryption 65:c2:a8:7c:fd:b9:e9:2e:26:52:8d:b9:9d:b0:84:ab:cb:f4: fd:1c:56:ca:fd:f9:1d:88:1b:ea:fc:f8:62:35:1e:a4:f4:c0: 00:c1:07:42:91:6e:2f:6f:b0:93:1c:26:34:b8:8a:09:bb:78: d9:78:53:9c:1b:97:4a:bb:a3:14:6b:f6:07:64:a0:00:40:cb: 97:c2:0d:57:98:81:f0:72:bd:33:8c:89:39:b4:cb:53:04:62: 8f:69:09:50:16:eb:1c:6c:67:98:ae:94:e0:27:39:57:68:ac: 26:ea:f3:95:56:27:0a:6d:03:58:1c:ee:fd:9f:e1:c9:ef:ae: ac:ea:f4:88:ca:06:e6:2c:f1:4f:83:3e:db:d4:ad:ef:87:1b: 7b:90:ee:44:d9:65:4e:8a:7b:7b:2f:3e:e2:cf:1c:1f:c0:a6: 52:a0:a0:3a:d5:3e:6e:d0:c6:1d:d3:81:80:5e:21:59:ce:df: 11:c0:dc:71:39:ab:af:d2:c0:bf:b6:75:81:60:9a:66:6d:2e: d7:3d:7e:6d:e7:c7:6f:c7:84:d4:04:8b:a1:b0:bb:b7:be:69: b9:3e:81:52:31:db:39:99:15:76:38:69:b5:e3:12:a0:53:c7: 6f:5e:5a:9d:59:6b:44:a0:ad:f8:94:29:a1:71:c1:60:ae:08: 1a:e9:79:b5 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUHVwOdlWX2MoEtNUSV4oLImSzZqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTEwMDlaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDdiZWI4NmMyYWI5YTA2NjY1M2MyZWE2ZDdiMjIzZjA5MjI0ZGFiZmM3OTA2 YWY0NjkxMzQ3ZjUxYzgyNGRiMzExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqB4G00uy9Srf0kQ5pvuVCrZig3xbYhMCCzQsv99Ce10EqPsYJSVWRjYS7U OrZW8XgztUnlSpCA9rn0rartL2rCtj7L8FClpkezM2fM/PYVbqyXQ0UyGaOcQkfW oqLvbNneI4iBzA+Ew/NJ/Cl9Ig/ZWYAcCUDE+j8pV8j4TdUVVGfeHEjhdJLVXh7M vRCrvq3LGCcJr5ZENgm8QzbIN6+27iwyckUQgryDRshvB6cRJmk9MxgI2JpvkvBH znIq2H0zC755fLaWGZa1+42+wt7itYByo4pQiwTYTb2Y4pVcOlCh+QN1rLn3h1SN 4lxpNWY7OsLvOFn7ARn/ijQR/sECAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRK/iGo xpJuEp4J3KTpkvAlo6I0aDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv Nzk0NDAzODctNjZhMy00ODUyLWE5NGItOGEzMjUwZjIwNzI2LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0H+g QDANBgkqhkiG9w0BAQsFAAOCAQEAZcKofP256S4mUo25nbCEq8v0/RxWyv35HYgb 6vz4YjUepPTAAMEHQpFuL2+wkxwmNLiKCbt42XhTnBuXSrujFGv2B2SgAEDLl8IN V5iB8HK9M4yJObTLUwRij2kJUBbrHGxnmK6U4Cc5V2isJurzlVYnCm0DWBzu/Z/h ye+urOr0iMoG5izxT4M+29St74cbe5DuRNllTop7ey8+4s8cH8CmUqCgOtU+btDG HdOBgF4hWc7fEcDccTmrr9LAv7Z1gWCaZm0u1z1+befHb8eE1ASLobC7t75puT6B UjHbOZkVdjhpteMSoFPHb15anVlrRKCt+JQpoXHBYK4IGul5tQ== -----END CERTIFICATE-----Generated at Fri Jan 2 09:29:13 2026 by rpki-client