This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a2c4c28c-0df9-40d4-bf4d-926104b691f4.roa File: a2c4c28c-0df9-40d4-bf4d-926104b691f4.roa (raw, json) Hash identifier: ChPHBqmmENH04UbTKJcy/HTWehqm62Ppw9Dp6M1JIbU= Subject key identifier: 45:0D:83:6F:28:A0:F7:24:6E:98:FF:AC:F3:26:AD:17:5F:5B:C9:3F Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 07AE27A5CE7DBDDD4B5E80D2A1F1EB3D59DAA08E Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a2c4c28c-0df9-40d4-bf4d-926104b691f4.roa Signing time: Wed 10 Dec 2025 05:40:07 +0000 ROA not before: Wed 10 Dec 2025 05:40:07 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d03a:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ae:27:a5:ce:7d:bd:dd:4b:5e:80:d2:a1:f1:eb:3d:59:da:a0:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:40:07 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=6d39bd57a0e6910e072127c62bbb8263b55d3d0461a57c365894ebccd1f53554, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:77:05:f9:02:b1:7c:a1:54:a0:6b:4a:66:3d: b3:38:57:17:17:0b:69:03:20:ed:64:b9:26:21:6b: e6:76:6f:8f:5f:ff:ab:ad:90:0b:58:43:06:d5:3c: 7d:51:aa:ff:49:b1:e2:62:ed:04:5d:1c:f5:f8:6e: af:14:99:02:ce:66:f2:96:96:1c:81:10:11:d1:be: c0:b9:ec:07:70:57:af:18:79:ab:85:fd:55:e2:a4: 2e:e6:92:a6:49:81:28:90:c6:17:03:31:bc:ca:f7: 23:ab:54:23:51:10:54:8e:ea:cb:e4:5f:ed:56:52: dc:d7:31:a3:a9:ef:b1:4f:6a:c9:df:5a:7b:7a:e3: 15:24:e3:4b:47:80:a2:88:e2:91:0a:b4:01:22:b9: ca:d1:40:49:b7:e7:23:cb:00:91:04:8b:ec:8b:fc: 2b:7b:5d:bb:8d:8c:f5:e9:e6:f8:f4:a2:a0:fc:0a: 5c:46:f5:a0:5f:f0:58:a1:e7:d8:8a:fa:53:f8:22: ff:4e:87:47:cc:8c:07:dd:9f:24:2d:5c:35:ac:9b: 6d:70:af:29:24:23:a2:00:67:16:d9:d7:88:39:fe: 14:d3:2a:b2:45:0d:58:16:da:59:05:fc:f9:c9:f2: 0f:f5:13:3f:9f:45:9e:ee:eb:6f:e4:41:0a:3f:bd: c2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0D:83:6F:28:A0:F7:24:6E:98:FF:AC:F3:26:AD:17:5F:5B:C9:3F X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a2c4c28c-0df9-40d4-bf4d-926104b691f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d03a:4000::/40 Signature Algorithm: sha256WithRSAEncryption 11:da:5c:99:72:54:40:7e:aa:d7:e4:d0:97:6b:73:6e:89:3e: a8:c9:75:21:e4:26:af:c4:53:3d:e5:9e:2f:30:64:3e:89:90: 51:f1:84:13:91:1c:f5:3f:ec:59:b4:f7:28:81:f7:b6:3a:20: 86:d3:a2:ef:06:b1:3f:47:bd:37:c1:18:f4:06:bd:6e:2d:4b: 98:88:77:4d:76:22:da:ee:3f:a9:4d:2e:d3:ba:06:46:38:87: 31:6d:f1:48:2f:27:df:a0:6e:89:dd:9c:fb:56:8b:18:1c:1a: 50:bf:e9:d1:db:6f:8e:58:fe:ec:ba:34:e0:90:5f:90:75:21: 19:41:ac:b6:a2:33:04:1a:d5:74:0b:e6:77:bb:62:dc:ef:0f: 21:e7:9a:30:d2:13:d7:bd:6f:ff:e5:92:00:94:e9:59:41:77: 5f:c9:d4:82:08:99:6e:92:5a:a3:2a:ac:9f:d6:ee:18:92:4d: f3:d3:57:bf:d9:f7:05:8c:4a:9b:25:a7:d0:f8:33:25:85:5b: 99:66:d7:1c:5a:e2:a5:2c:08:68:2a:d5:f2:8c:20:a5:c9:50: d1:34:4e:77:2c:87:c3:d2:81:19:21:c5:bf:1d:d1:2f:de:d6: 97:ea:48:12:1b:9e:a2:a9:b4:14:3f:74:95:ee:4a:87:cb:36: e0:11:b3:fe -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUB64npc59vd1LXoDSofHrPVnaoI4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTQwMDdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDZkMzliZDU3YTBlNjkxMGUwNzIxMjdjNjJiYmI4MjYzYjU1ZDNkMDQ2MWE1 N2MzNjU4OTRlYmNjZDFmNTM1NTQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMt3BfkCsXyhVKBrSmY9szhXFxcLaQMg7WS5JiFr5nZvj1//q62QC1hDBtU8 fVGq/0mx4mLtBF0c9fhurxSZAs5m8paWHIEQEdG+wLnsB3BXrxh5q4X9VeKkLuaS pkmBKJDGFwMxvMr3I6tUI1EQVI7qy+Rf7VZS3Ncxo6nvsU9qyd9ae3rjFSTjS0eA oojikQq0ASK5ytFASbfnI8sAkQSL7Iv8K3tdu42M9enm+PSioPwKXEb1oF/wWKHn 2Ir6U/gi/06HR8yMB92fJC1cNaybbXCvKSQjogBnFtnXiDn+FNMqskUNWBbaWQX8 +cnyD/UTP59Fnu7rb+RBCj+9wtMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRFDYNv KKD3JG6Y/6zzJq0XX1vJPzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YTJjNGMyOGMtMGRmOS00MGQ0LWJmNGQtOTI2MTA0YjY5MWY0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DpA MA0GCSqGSIb3DQEBCwUAA4IBAQAR2lyZclRAfqrX5NCXa3NuiT6oyXUh5CavxFM9 5Z4vMGQ+iZBR8YQTkRz1P+xZtPcogfe2OiCG06LvBrE/R703wRj0Br1uLUuYiHdN diLa7j+pTS7TugZGOIcxbfFILyffoG6J3Zz7VosYHBpQv+nR22+OWP7sujTgkF+Q dSEZQay2ojMEGtV0C+Z3u2Lc7w8h55ow0hPXvW//5ZIAlOlZQXdfydSCCJluklqj Kqyf1u4Ykk3z01e/2fcFjEqbJafQ+DMlhVuZZtccWuKlLAhoKtXyjCClyVDRNE53 LIfD0oEZIcW/HdEv3taX6kgSG56iqbQUP3SV7kqHyzbgEbP+ -----END CERTIFICATE-----Generated at Fri Jan 2 09:28:52 2026 by rpki-client