This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e69b1519-f345-43aa-8c6b-cd786ee13404.roa File: e69b1519-f345-43aa-8c6b-cd786ee13404.roa (raw, json) Hash identifier: 5EIE2TD7UHQZAyqo9dvcKbRJF4/w1Lx6XEWW077yGnw= Subject key identifier: A4:72:D4:1B:CC:CF:22:3D:96:E8:44:30:1E:DD:FC:C8:B9:22:76:E2 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 52892957F667D7ADC2F2BA41C722D2EAB1105802 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e69b1519-f345-43aa-8c6b-cd786ee13404.roa Signing time: Sat 15 Nov 2025 06:10:29 +0000 ROA not before: Sat 15 Nov 2025 06:10:29 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d07e:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 21 Nov 2025 09:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:89:29:57:f6:67:d7:ad:c2:f2:ba:41:c7:22:d2:ea:b1:10:58:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:10:29 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=94c6672aa575a576c6ed3ea4b539be0aa5737fd8b3056b9b2c88c93621269fd0, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f8:cd:e5:35:1d:86:34:a8:fd:39:11:c5:2b: a5:62:73:1e:0b:84:6c:bb:88:09:e7:82:c2:f0:d3: f4:a5:12:d8:bb:9c:f3:b1:f0:fc:1d:b5:09:79:2d: 2e:f6:5b:7c:58:aa:3e:c2:8a:fd:5b:b8:e4:16:54: 89:ba:e2:32:ec:09:d9:2c:72:ca:7f:a6:cb:8c:04: a6:4a:e3:1c:f0:00:03:3e:73:a5:a5:31:94:46:cd: 01:8a:4b:f6:f6:23:36:30:73:b7:b3:a7:ea:ba:6e: 1e:6f:14:9d:88:78:5a:e9:57:f4:f1:44:25:08:02: 66:13:35:8c:41:d3:63:70:8f:5d:a9:26:8d:25:b7: 74:9a:22:0a:30:0a:a7:4e:aa:49:41:12:03:58:1c: 7d:c5:0a:12:6e:48:3a:3b:4b:84:89:83:cb:09:62: 50:c3:18:38:bd:dd:72:f2:f6:62:13:18:10:2b:f0: 34:f0:d1:57:ac:19:fb:19:25:b3:9c:7e:0f:e8:87: e5:e7:37:45:ac:3e:a0:d7:94:5b:bd:5f:2e:59:b5: bd:53:be:e3:da:60:78:32:50:1f:29:70:ff:6b:8c: 0f:99:cb:17:ae:4f:fc:7b:13:d4:ae:b6:b6:78:92: ef:02:47:d7:33:1b:01:c6:27:9d:99:70:44:f1:c9: ec:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:72:D4:1B:CC:CF:22:3D:96:E8:44:30:1E:DD:FC:C8:B9:22:76:E2 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e69b1519-f345-43aa-8c6b-cd786ee13404.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d07e:5000::/40 Signature Algorithm: sha256WithRSAEncryption b9:ff:6b:0d:99:15:c6:bb:8f:e5:6f:36:e6:ed:c9:e0:1e:cd: 79:f2:fd:8e:1e:31:a3:70:2f:cf:21:e2:73:42:f3:2e:0d:c5: e5:69:fc:6e:dd:24:d6:fc:2a:59:82:d5:cd:ab:99:47:30:9a: 64:ff:c6:f9:8a:3c:89:79:3a:35:cb:55:64:f8:26:69:f9:0a: cb:a0:2e:98:47:ea:25:55:7e:d5:f0:e8:98:e9:b4:ae:1f:01: a5:b6:55:56:ca:e2:29:63:04:24:17:e9:2a:af:f1:ad:6d:8c: e0:59:ba:eb:8f:31:e6:05:4b:ed:9e:83:1b:b7:4b:73:db:b7: 70:a2:5a:45:15:20:59:b9:d3:48:09:9f:8f:0e:91:27:ca:e3: a1:52:b0:14:6e:29:0c:03:96:43:42:4b:10:4f:84:30:34:9d: 0d:33:6b:c9:54:cd:18:62:6d:8b:c0:6c:bb:f7:d4:4d:2a:99: a6:64:0c:0a:0c:a1:5b:0c:aa:cc:d2:5c:66:9c:e7:f1:fe:d4: 69:d6:eb:28:fd:31:16:f1:10:73:e9:ca:a1:93:c5:35:29:f8: c7:99:46:a0:da:4a:79:fc:57:06:a9:3e:c3:d2:f6:e2:c2:06: 1a:b3:42:9d:6a:aa:44:90:dd:4d:62:ed:dc:98:28:d3:b4:e6: f7:7b:dc:dd -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUUokpV/Zn163C8rpBxyLS6rEQWAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjEwMjlaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDk0YzY2NzJhYTU3NWE1NzZjNmVkM2VhNGI1MzliZTBhYTU3MzdmZDhiMzA1 NmI5YjJjODhjOTM2MjEyNjlmZDAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKT4zeU1HYY0qP05EcUrpWJzHguEbLuICeeCwvDT9KUS2Luc87Hw/B21CXkt LvZbfFiqPsKK/Vu45BZUibriMuwJ2Sxyyn+my4wEpkrjHPAAAz5zpaUxlEbNAYpL 9vYjNjBzt7On6rpuHm8UnYh4WulX9PFEJQgCZhM1jEHTY3CPXakmjSW3dJoiCjAK p06qSUESA1gcfcUKEm5IOjtLhImDywliUMMYOL3dcvL2YhMYECvwNPDRV6wZ+xkl s5x+D+iH5ec3Raw+oNeUW71fLlm1vVO+49pgeDJQHylw/2uMD5nLF65P/HsT1K62 tniS7wJH1zMbAcYnnZlwRPHJ7OUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSkctQb zM8iPZboRDAe3fzIuSJ24jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTY5YjE1MTktZjM0NS00M2FhLThjNmItY2Q3ODZlZTEzNDA0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0H5Q MA0GCSqGSIb3DQEBCwUAA4IBAQC5/2sNmRXGu4/lbzbm7cngHs158v2OHjGjcC/P IeJzQvMuDcXlafxu3STW/CpZgtXNq5lHMJpk/8b5ijyJeTo1y1Vk+CZp+QrLoC6Y R+olVX7V8OiY6bSuHwGltlVWyuIpYwQkF+kqr/GtbYzgWbrrjzHmBUvtnoMbt0tz 27dwolpFFSBZudNICZ+PDpEnyuOhUrAUbikMA5ZDQksQT4QwNJ0NM2vJVM0YYm2L wGy799RNKpmmZAwKDKFbDKrM0lxmnOfx/tRp1uso/TEW8RBz6cqhk8U1KfjHmUag 2kp5/FcGqT7D0vbiwgYas0KdaqpEkN1NYu3cmCjTtOb3e9zd -----END CERTIFICATE-----Generated at Thu Nov 20 13:21:34 2025 by rpki-client