This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/01bbf67c-f7ae-457c-80b3-728a951b236a.roa File: 01bbf67c-f7ae-457c-80b3-728a951b236a.roa (raw, json) Hash identifier: yJm6sCqswX7L6FUETK26qvCoWKxsTR3nN65b881maJ8= Subject key identifier: 8A:1E:AC:E9:2E:2E:17:41:45:9A:21:ED:82:4E:55:4F:9E:28:BC:F7 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 503C4928365C189CD9D5F8724CEAC01C299F03FF Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/01bbf67c-f7ae-457c-80b3-728a951b236a.roa Signing time: Sat 29 Nov 2025 03:00:26 +0000 ROA not before: Sat 29 Nov 2025 03:00:26 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3c:49:28:36:5c:18:9c:d9:d5:f8:72:4c:ea:c0:1c:29:9f:03:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:26 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=dbedac6b4f9f21fa1fdcd7ebae4fa62d8fbe9368cfb8e4308374167783b94a43, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:34:df:f9:57:a8:b1:43:b6:7e:1a:4a:3d:9b: d7:b7:6c:5f:fe:eb:36:e6:3d:9f:90:cd:39:75:95: 16:a6:c8:da:a5:fd:be:aa:e2:2a:39:41:b6:90:4d: e4:44:44:53:38:7f:92:94:b0:49:cb:14:7c:ed:85: 8c:b2:5c:0d:3b:d6:57:8c:46:ac:1e:74:f2:82:65: df:0e:96:e3:ba:67:68:cb:f7:96:39:77:cd:b3:86: 82:96:0f:84:5a:fc:08:a8:72:e4:3b:5e:52:cb:a3: 6c:65:0c:4c:38:d9:2d:30:16:d1:0d:07:aa:2d:89: 23:48:8a:7d:b7:e8:8a:4f:ed:1e:be:39:39:3a:8c: d3:c9:fa:5c:64:ac:9c:1a:ca:30:3a:cf:a4:87:b6: 74:6e:b4:f6:9c:e2:1f:db:e5:2e:c4:81:4a:4a:f2: 12:ac:6c:22:b0:7e:f5:56:ec:c4:7f:cc:e8:33:06: 3b:06:a6:d4:5b:f1:6e:8b:2a:e7:8f:9f:53:63:d9: 30:de:2d:0a:2c:24:bc:0e:b5:3b:9e:42:aa:79:e6: 19:07:4d:09:ff:aa:48:e5:dc:9a:d0:61:e3:50:99: 5b:f5:b6:2d:dd:eb:7f:51:6c:63:a9:bd:d6:a7:e4: d1:80:90:3a:e5:a3:1b:82:3a:43:61:c1:cb:d3:f0: 0e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1E:AC:E9:2E:2E:17:41:45:9A:21:ED:82:4E:55:4F:9E:28:BC:F7 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/01bbf67c-f7ae-457c-80b3-728a951b236a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.128.0/18 Signature Algorithm: sha256WithRSAEncryption 11:5b:a4:bb:db:57:50:ea:55:72:99:ba:43:48:7a:5b:e5:f2: 8c:4d:4f:c2:94:29:64:ad:10:2f:b2:bb:f1:fe:a6:a0:0b:e4: 38:ae:4a:fd:43:37:e7:b0:ff:0f:ce:69:9a:8b:11:77:09:48: 3d:d2:81:e0:4e:6c:58:ea:6b:ec:3c:25:27:d8:c9:d1:da:66: a6:97:bd:a7:f6:a3:78:21:4d:95:e9:1b:a8:a6:67:42:cf:6c: a3:59:87:7d:95:1a:17:70:d1:1c:c2:a1:72:c9:08:cd:f4:fa: a5:03:d8:b9:45:a0:d1:f0:a0:40:48:76:8d:c4:05:f3:04:90: 8e:dc:4c:94:b0:33:e1:4a:4b:2d:4b:41:d1:bd:41:3a:18:c8: 70:e5:7d:55:8c:b1:30:9f:01:93:a1:e8:73:c8:fb:80:47:f8: 49:b1:04:8e:8d:25:ec:0c:19:25:1f:b3:c1:b0:9b:af:e7:0e: 87:9f:f4:c5:6e:f8:27:f6:93:a0:be:a6:95:f9:ec:89:94:33: 39:b9:8c:90:d0:a0:74:c5:13:80:1a:56:30:28:a2:8f:e8:fe: 44:f9:82:93:62:1c:43:72:f4:de:41:f8:a1:2a:64:3a:46:88: a9:52:e6:4e:b0:35:e2:04:9d:48:5f:f5:47:78:e1:42:8f:fa: 3a:27:04:c4 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUUDxJKDZcGJzZ1fhyTOrAHCmfA/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwMjZaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQGRiZWRhYzZiNGY5ZjIxZmExZmRjZDdlYmFlNGZhNjJkOGZiZTkzNjhjZmI4 ZTQzMDgzNzQxNjc3ODNiOTRhNDMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANI03/lXqLFDtn4aSj2b17dsX/7rNuY9n5DNOXWVFqbI2qX9vqriKjlBtpBN 5EREUzh/kpSwScsUfO2FjLJcDTvWV4xGrB508oJl3w6W47pnaMv3ljl3zbOGgpYP hFr8CKhy5DteUsujbGUMTDjZLTAW0Q0Hqi2JI0iKfbfoik/tHr45OTqM08n6XGSs nBrKMDrPpIe2dG609pziH9vlLsSBSkryEqxsIrB+9VbsxH/M6DMGOwam1Fvxbosq 54+fU2PZMN4tCiwkvA61O55CqnnmGQdNCf+qSOXcmtBh41CZW/W2Ld3rf1FsY6m9 1qfk0YCQOuWjG4I6Q2HBy9PwDrsCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSKHqzp Li4XQUWaIe2CTlVPnii89zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MDFiYmY2N2MtZjdhZS00NTdjLTgwYjMtNzI4YTk1MWIyMzZhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBi6JgDAN BgkqhkiG9w0BAQsFAAOCAQEAEVuku9tXUOpVcpm6Q0h6W+XyjE1PwpQpZK0QL7K7 8f6moAvkOK5K/UM357D/D85pmosRdwlIPdKB4E5sWOpr7DwlJ9jJ0dpmppe9p/aj eCFNlekbqKZnQs9so1mHfZUaF3DRHMKhcskIzfT6pQPYuUWg0fCgQEh2jcQF8wSQ jtxMlLAz4UpLLUtB0b1BOhjIcOV9VYyxMJ8Bk6Hoc8j7gEf4SbEEjo0l7AwZJR+z wbCbr+cOh5/0xW74J/aToL6mlfnsiZQzObmMkNCgdMUTgBpWMCiij+j+RPmCk2Ic Q3L03kH4oSpkOkaIqVLmTrA14gSdSF/1R3jhQo/6OicExA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:57 2025 by rpki-client