This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/042e82d3-e08f-4fca-9e40-387fde51dfd5.roa File: 042e82d3-e08f-4fca-9e40-387fde51dfd5.roa (raw, json) Hash identifier: Fog3KCA0dr7x37e5XGy+Kp89bS8TFjAZQ1I7DDduwOM= Subject key identifier: 8B:07:AD:46:B5:B6:DB:9A:E3:FB:4A:15:1F:DD:92:2D:8E:8A:D1:CB Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 24609860E43C26098D670BF039286EFCEB38E512 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/042e82d3-e08f-4fca-9e40-387fde51dfd5.roa Signing time: Wed 10 Dec 2025 06:01:19 +0000 ROA not before: Wed 10 Dec 2025 06:01:19 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:60:98:60:e4:3c:26:09:8d:67:0b:f0:39:28:6e:fc:eb:38:e5:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 06:01:19 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=01dcbac38d4a1fa0652b18b21fa6b0948629d6a2a21c72172cb1dca0bb97745b, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bd:59:33:ab:8c:ed:8f:b6:24:17:cd:71:5a: e4:b8:8f:6a:ab:51:60:25:15:fb:92:4e:2c:ec:3d: e6:6c:a4:36:e4:80:19:d1:55:39:1a:39:26:01:11: 32:68:c5:04:e3:7d:86:4e:97:1c:91:39:a0:54:6a: a2:60:40:26:aa:0f:18:5b:9c:1f:4b:fa:45:b3:fa: d1:cc:d9:55:4a:7a:ef:04:21:11:1b:e2:5f:6a:21: 84:79:12:66:cd:f3:b0:02:12:d4:b4:64:b5:e8:ba: 95:ec:d9:3e:81:f8:9f:20:df:5f:ac:b5:37:1e:c0: 04:cf:10:69:3c:de:e9:45:1d:0d:4d:57:35:5b:a5: 17:1c:71:57:8b:92:ae:39:70:11:47:06:3b:45:d1: d6:a1:73:4f:73:4a:c8:13:90:6d:e2:4b:eb:61:87: 03:f4:2b:99:74:6e:a2:6d:fa:af:5b:ff:57:bf:0d: d2:bd:65:46:6c:23:75:71:76:d2:8f:cd:e3:69:f4: c9:3b:f2:8a:d0:09:15:00:ab:a9:3e:09:99:1e:9f: 8e:86:df:65:3c:d6:4a:cb:da:55:3d:bc:59:37:92: 64:24:65:08:69:b9:0c:ab:30:a3:c7:2a:3d:e8:44: c2:18:02:67:89:ed:49:9d:ea:ff:6f:eb:3b:b7:b9: 3c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:07:AD:46:B5:B6:DB:9A:E3:FB:4A:15:1F:DD:92:2D:8E:8A:D1:CB X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/042e82d3-e08f-4fca-9e40-387fde51dfd5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.104.0/21 Signature Algorithm: sha256WithRSAEncryption be:99:13:ae:a4:f3:43:8a:14:64:8e:cd:47:8d:0f:44:d4:2e: 68:df:83:aa:84:7d:a4:f3:e8:3b:2a:2f:2b:68:22:04:0e:48: 6f:97:56:b5:31:97:08:a6:fc:f4:f6:0e:46:13:73:17:46:ec: b2:bd:12:89:0b:3e:9e:9c:7d:95:33:a7:7e:e8:55:6c:86:3a: 60:ea:4f:5a:90:4e:06:28:48:2d:6b:87:01:00:4f:df:4a:1d: 6b:74:a1:fc:b0:6e:14:65:4b:09:3c:cf:e9:b0:fe:79:5c:2a: fc:5c:46:4b:1c:d1:c4:58:4a:f3:4c:0a:af:44:bb:56:fb:f1: b3:42:2e:8c:a0:71:e0:c3:5c:2c:75:d4:16:28:44:d8:3e:ea: a5:16:c7:a3:65:98:f0:9a:5a:fd:09:79:79:71:79:f5:c8:a6: aa:dd:43:f8:4c:9b:a2:04:ba:76:1e:40:a5:19:c4:65:77:e3: 9b:4e:32:6c:bd:99:16:59:42:e8:fc:fd:cf:8c:65:42:1c:8f: 30:ab:72:cd:56:ef:33:d1:13:25:3d:28:a6:69:27:02:11:31: bd:39:c2:1a:d8:ad:87:3d:aa:3a:eb:cb:8f:76:97:1e:ca:ef: 1c:da:80:fd:4c:89:99:2d:d8:80:6f:44:81:2a:42:18:e8:61: 9f:28:f9:a2 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUJGCYYOQ8JgmNZwvwOShu/Os45RIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNjAxMTlaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDAxZGNiYWMzOGQ0YTFmYTA2NTJiMThiMjFmYTZiMDk0ODYyOWQ2YTJhMjFj NzIxNzJjYjFkY2EwYmI5Nzc0NWIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMO9WTOrjO2PtiQXzXFa5LiPaqtRYCUV+5JOLOw95mykNuSAGdFVORo5JgER MmjFBON9hk6XHJE5oFRqomBAJqoPGFucH0v6RbP60czZVUp67wQhERviX2ohhHkS Zs3zsAIS1LRktei6lezZPoH4nyDfX6y1Nx7ABM8QaTze6UUdDU1XNVulFxxxV4uS rjlwEUcGO0XR1qFzT3NKyBOQbeJL62GHA/QrmXRuom36r1v/V78N0r1lRmwjdXF2 0o/N42n0yTvyitAJFQCrqT4JmR6fjobfZTzWSsvaVT28WTeSZCRlCGm5DKswo8cq PehEwhgCZ4ntSZ3q/2/rO7e5PNcCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSLB61G tbbbmuP7ShUf3ZItjorRyzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MDQyZTgyZDMtZTA4Zi00ZmNhLTllNDAtMzg3ZmRlNTFkZmQ1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA099aDAN BgkqhkiG9w0BAQsFAAOCAQEAvpkTrqTzQ4oUZI7NR40PRNQuaN+DqoR9pPPoOyov K2giBA5Ib5dWtTGXCKb89PYORhNzF0bssr0SiQs+npx9lTOnfuhVbIY6YOpPWpBO BihILWuHAQBP30oda3Sh/LBuFGVLCTzP6bD+eVwq/FxGSxzRxFhK80wKr0S7Vvvx s0IujKBx4MNcLHXUFihE2D7qpRbHo2WY8Jpa/Ql5eXF59cimqt1D+EybogS6dh5A pRnEZXfjm04ybL2ZFllC6Pz9z4xlQhyPMKtyzVbvM9ETJT0opmknAhExvTnCGtit hz2qOuvLj3aXHsrvHNqA/UyJmS3YgG9EgSpCGOhhnyj5og== -----END CERTIFICATE-----Generated at Mon Dec 15 15:32:53 2025 by rpki-client