This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c6a5acff-b5d8-4c80-9ecc-9415406576f2.roa File: c6a5acff-b5d8-4c80-9ecc-9415406576f2.roa (raw, json) Hash identifier: MXUgQMhhB+GvJ6DsiH4fwY0ukWh7UGAZW3EDGzRu+Dc= Subject key identifier: C3:A7:94:FB:07:82:87:AE:33:59:05:30:D4:6F:FC:B3:29:1C:FD:3C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 79707EF108EA05020739310EC053DFCC6D03E23A Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c6a5acff-b5d8-4c80-9ecc-9415406576f2.roa Signing time: Wed 10 Dec 2025 06:10:08 +0000 ROA not before: Wed 10 Dec 2025 06:10:08 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d075:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:70:7e:f1:08:ea:05:02:07:39:31:0e:c0:53:df:cc:6d:03:e2:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:10:08 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=6d7f885e85f8f3ce84a230f9e94a38670a4127cceab7dba4c3239eda79b9f6e0, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a0:7f:0f:70:c6:1d:e2:b1:b9:0d:ef:b2:11: 17:4f:e5:fa:5f:fb:0a:44:e3:07:30:6e:e6:a9:94: fe:59:22:2f:3d:43:89:47:ef:c9:2f:31:87:d6:a0: 72:f1:03:78:12:7e:0a:9d:12:3e:00:21:1d:ae:6f: 18:8f:a2:02:7c:2d:72:ab:45:50:4e:e6:3d:24:a8: d2:ef:46:60:0d:0f:10:31:19:9c:f0:54:e2:1b:5e: 0c:78:84:83:d6:57:e9:5b:9b:43:67:60:5f:a1:0f: fa:13:d4:bd:fa:c1:38:82:90:a4:85:22:0d:d0:b6: 20:6f:68:ff:d5:7f:48:da:81:4a:58:87:fd:d8:ae: 74:5e:32:3d:4e:0d:56:4d:da:f3:c2:0f:55:1c:ac: 93:6a:b1:d3:a0:04:51:a2:87:ad:12:12:36:2e:b4: 02:8b:6d:78:28:c0:88:15:1c:f2:a3:ac:5a:71:56: 90:12:df:70:d3:99:f5:f8:43:d2:91:b3:46:3e:93: e2:68:a1:26:70:d1:28:a1:71:8f:d3:dc:46:25:45: 36:61:88:cc:ef:4b:18:be:be:24:7a:58:72:cb:20: cb:7e:ea:ee:f2:79:a2:3c:94:57:43:03:2a:2e:8a: 4c:b4:38:39:59:01:5b:94:03:c7:89:b3:87:67:ed: d1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A7:94:FB:07:82:87:AE:33:59:05:30:D4:6F:FC:B3:29:1C:FD:3C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c6a5acff-b5d8-4c80-9ecc-9415406576f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d075:2000::/40 Signature Algorithm: sha256WithRSAEncryption 24:ed:33:cc:e4:f7:e9:db:ee:07:97:36:91:26:dd:b4:46:9b: b9:c7:4a:82:57:57:c8:c6:76:d2:a4:0c:26:23:2d:f4:9a:5a: 54:64:cc:ef:38:f3:60:4e:42:9a:d1:56:cf:26:47:7e:80:55: 41:bc:ef:3b:fe:59:a1:a4:f2:3b:c8:2b:f3:bb:55:d9:6e:9f: d6:b8:67:c3:f0:37:ba:0d:91:3e:9f:b6:e5:02:67:d9:52:0e: 36:b2:7d:69:81:ff:fc:ee:61:1a:43:97:6d:af:39:62:34:ce: 99:5a:38:5f:ae:7d:1d:80:32:63:56:87:e6:4c:c5:6f:2f:ea: 22:9c:9b:54:48:45:6b:cc:88:e4:c6:05:48:60:a1:c4:63:41: 95:4d:77:e5:b6:e8:6e:5b:bd:91:d8:4b:7b:3a:6e:af:54:88: d8:f1:4d:27:5d:c1:25:2c:25:1d:1f:f2:6a:4b:f4:80:96:04: fb:a7:67:c5:95:b2:7c:d7:15:90:f3:09:1a:ac:c8:82:4b:20: 7c:ca:35:0e:92:71:bb:ea:8a:9c:32:d0:0a:88:a1:e3:d4:7a: 31:55:6c:fb:24:b4:6e:08:bd:65:ee:14:aa:04:21:42:ca:67: 50:97:28:ab:cd:d0:22:22:88:a1:01:9b:55:31:04:17:56:81: 45:be:93:77 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUeXB+8QjqBQIHOTEOwFPfzG0D4jowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjEwMDhaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDZkN2Y4ODVlODVmOGYzY2U4NGEyMzBmOWU5NGEzODY3MGE0MTI3Y2NlYWI3 ZGJhNGMzMjM5ZWRhNzliOWY2ZTAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJWgfw9wxh3isbkN77IRF0/l+l/7CkTjBzBu5qmU/lkiLz1DiUfvyS8xh9ag cvEDeBJ+Cp0SPgAhHa5vGI+iAnwtcqtFUE7mPSSo0u9GYA0PEDEZnPBU4hteDHiE g9ZX6VubQ2dgX6EP+hPUvfrBOIKQpIUiDdC2IG9o/9V/SNqBSliH/diudF4yPU4N Vk3a88IPVRysk2qx06AEUaKHrRISNi60AotteCjAiBUc8qOsWnFWkBLfcNOZ9fhD 0pGzRj6T4mihJnDRKKFxj9PcRiVFNmGIzO9LGL6+JHpYcssgy37q7vJ5ojyUV0MD Ki6KTLQ4OVkBW5QDx4mzh2ft0cMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTDp5T7 B4KHrjNZBTDUb/yzKRz9PDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YzZhNWFjZmYtYjVkOC00YzgwLTllY2MtOTQxNTQwNjU3NmYyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HUg MA0GCSqGSIb3DQEBCwUAA4IBAQAk7TPM5Pfp2+4HlzaRJt20Rpu5x0qCV1fIxnbS pAwmIy30mlpUZMzvOPNgTkKa0VbPJkd+gFVBvO87/lmhpPI7yCvzu1XZbp/WuGfD 8De6DZE+n7blAmfZUg42sn1pgf/87mEaQ5dtrzliNM6ZWjhfrn0dgDJjVofmTMVv L+oinJtUSEVrzIjkxgVIYKHEY0GVTXfltuhuW72R2Et7Om6vVIjY8U0nXcElLCUd H/JqS/SAlgT7p2fFlbJ81xWQ8wkarMiCSyB8yjUOknG76oqcMtAKiKHj1HoxVWz7 JLRuCL1l7hSqBCFCymdQlyirzdAiIoihAZtVMQQXVoFFvpN3 -----END CERTIFICATE-----Generated at Fri Jan 2 11:04:26 2026 by rpki-client