This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/81554ff4-a7f9-41e4-90e9-b3761d63cb58.roa File: 81554ff4-a7f9-41e4-90e9-b3761d63cb58.roa (raw, json) Hash identifier: xrgwR/fZGxxmbJ4EKK6X1n+4o9sF56/URW7gcbezTcA= Subject key identifier: 42:DE:47:D3:4D:AD:60:20:9E:A0:E6:C5:67:60:68:B3:A0:DA:A9:78 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 45C015BA6F78050CBC3CEB91EE935BE7AEB3F3C2 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/81554ff4-a7f9-41e4-90e9-b3761d63cb58.roa Signing time: Wed 10 Dec 2025 06:31:11 +0000 ROA not before: Wed 10 Dec 2025 06:31:11 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d072:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:c0:15:ba:6f:78:05:0c:bc:3c:eb:91:ee:93:5b:e7:ae:b3:f3:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:31:11 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=178ddcc0f427e5f7f757e817adc57639559463f002edad259ef1b57d4e3e1512, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:18:03:aa:53:20:3e:ea:c2:83:cf:29:f7:38: 46:d1:2c:0f:4a:d5:37:6a:2c:9a:ab:10:b4:b8:34: 0e:3b:8d:f2:0f:b5:c4:3e:98:46:25:1e:2e:5d:ff: 66:5b:fe:ef:f7:83:ba:97:d3:eb:31:04:85:00:b4: 4d:d5:ba:86:da:af:71:40:0b:e6:a7:55:35:e2:62: 24:f2:fb:5d:d6:ac:b9:e1:18:fc:ed:c6:11:39:63: f3:e5:4e:9c:45:47:24:c2:49:ea:62:6a:7e:4f:b0: 90:c0:93:f5:ab:f5:24:91:1e:8b:49:18:03:65:1f: 8f:0e:cb:67:44:57:05:d6:cd:41:91:c2:6c:cc:e9: 45:7a:1f:b7:85:f4:ee:c1:bc:90:15:93:47:f0:5e: a9:ce:4b:31:4f:6b:65:0e:17:fa:a3:66:2b:d0:77: e2:0f:a3:a8:24:11:aa:38:5c:49:8d:90:ef:e4:28: 53:42:c2:51:ac:ac:bb:ca:7a:cb:bc:ed:b1:81:42: a2:36:84:ab:89:fe:6b:4b:0d:42:4c:99:ae:29:02: 32:d1:bc:3d:7f:23:0c:08:f1:db:d3:b8:e1:a3:10: c1:06:c4:43:51:b5:17:8c:1d:74:e9:a7:3b:ff:48: b5:4f:b2:be:31:5a:83:23:ea:96:5c:e0:5b:a3:60: f9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DE:47:D3:4D:AD:60:20:9E:A0:E6:C5:67:60:68:B3:A0:DA:A9:78 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/81554ff4-a7f9-41e4-90e9-b3761d63cb58.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d072:e040::/48 Signature Algorithm: sha256WithRSAEncryption 2d:4b:62:5d:a7:c1:5e:d4:24:5e:bd:f6:51:fd:bd:81:4b:72: c9:79:0f:60:28:b7:56:a7:db:b9:33:d0:34:da:f3:08:86:e9: 89:42:84:fa:e4:00:30:c0:4e:95:9c:3d:d9:73:0b:f4:f8:3c: 90:eb:e5:8c:4a:50:ce:cc:8b:5a:fc:df:49:fe:3a:95:fd:4d: 04:26:88:15:75:0a:74:15:9c:02:ac:44:fd:14:aa:5e:51:2e: 8f:75:1e:6f:fc:7a:4f:9b:b4:ef:b2:a2:3c:53:1c:07:62:ae: 67:51:52:86:8f:f3:8c:c1:ee:2f:9f:9c:cb:7a:a1:b3:95:63: ad:0b:e5:e0:fc:a7:60:32:2b:7b:3c:95:17:56:77:81:61:e4: 31:2a:8c:1b:ba:94:3a:03:e7:0a:c8:70:39:9e:1a:05:9f:fe: 19:21:bc:50:2f:33:81:01:1c:d5:64:c6:11:50:9d:f5:94:fe: 0a:b7:f6:77:70:80:0f:ec:dd:22:30:01:c6:9f:8a:8a:a4:0f: 0d:86:39:79:7e:18:a0:51:ec:12:97:ed:ab:c5:63:e7:ff:e4: 95:d7:48:c4:ba:ed:d4:30:43:4b:03:f5:61:11:42:eb:bc:d9: 43:96:ca:d5:7f:31:03:44:89:42:12:0a:6c:66:21:d0:88:77: af:81:13:11 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIURcAVum94BQy8POuR7pNb566z88IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjMxMTFaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDE3OGRkY2MwZjQyN2U1ZjdmNzU3ZTgxN2FkYzU3NjM5NTU5NDYzZjAwMmVk YWQyNTllZjFiNTdkNGUzZTE1MTIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOYYA6pTID7qwoPPKfc4RtEsD0rVN2osmqsQtLg0DjuN8g+1xD6YRiUeLl3/ Zlv+7/eDupfT6zEEhQC0TdW6htqvcUAL5qdVNeJiJPL7XdasueEY/O3GETlj8+VO nEVHJMJJ6mJqfk+wkMCT9av1JJEei0kYA2Ufjw7LZ0RXBdbNQZHCbMzpRXoft4X0 7sG8kBWTR/Beqc5LMU9rZQ4X+qNmK9B34g+jqCQRqjhcSY2Q7+QoU0LCUaysu8p6 y7ztsYFCojaEq4n+a0sNQkyZrikCMtG8PX8jDAjx29O44aMQwQbEQ1G1F4wddOmn O/9ItU+yvjFagyPqllzgW6Ng+b8CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRC3kfT Ta1gIJ6g5sVnYGizoNqpeDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ODE1NTRmZjQtYTdmOS00MWU0LTkwZTktYjM3NjFkNjNjYjU4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HLg QDANBgkqhkiG9w0BAQsFAAOCAQEALUtiXafBXtQkXr32Uf29gUtyyXkPYCi3Vqfb uTPQNNrzCIbpiUKE+uQAMMBOlZw92XML9Pg8kOvljEpQzsyLWvzfSf46lf1NBCaI FXUKdBWcAqxE/RSqXlEuj3Ueb/x6T5u077KiPFMcB2KuZ1FSho/zjMHuL5+cy3qh s5VjrQvl4PynYDIrezyVF1Z3gWHkMSqMG7qUOgPnCshwOZ4aBZ/+GSG8UC8zgQEc 1WTGEVCd9ZT+Crf2d3CAD+zdIjABxp+KiqQPDYY5eX4YoFHsEpftq8Vj5//klddI xLrt1DBDSwP1YRFC67zZQ5bK1X8xA0SJQhIKbGYh0Ih3r4ETEQ== -----END CERTIFICATE-----Generated at Fri Jan 2 11:04:10 2026 by rpki-client