This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/042e82d3-e08f-4fca-9e40-387fde51dfd5.roa File: 042e82d3-e08f-4fca-9e40-387fde51dfd5.roa (raw, json) Hash identifier: GPsYdn6dQKwvEA32s8tS7gIkxECpayMejodmlDCPqIE= Subject key identifier: 73:C3:46:0C:61:AF:E5:EA:B0:CA:2E:62:ED:04:D1:CA:36:C8:00:50 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0F2E392141B653502F4B62D10D46228F872D7EDB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/042e82d3-e08f-4fca-9e40-387fde51dfd5.roa Signing time: Sat 15 Nov 2025 06:10:23 +0000 ROA not before: Sat 15 Nov 2025 06:10:23 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:2e:39:21:41:b6:53:50:2f:4b:62:d1:0d:46:22:8f:87:2d:7e:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:10:23 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=a36903c6e3945398a3e9a89ae3be286a1b3f6edf2b156f883e1071b31f5253ac, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:67:e6:f9:f0:4c:ae:0c:a2:ae:a7:6f:f3:b2: 95:35:fd:99:c3:4e:41:0c:31:ef:62:01:05:c2:78: 02:36:c9:7b:1d:61:77:fb:8d:67:de:48:e9:be:1a: 68:28:0f:a9:77:d5:50:bf:c0:a3:4a:b5:9b:0d:94: f8:cf:94:cb:c8:b3:5a:ad:d8:ba:f0:d7:86:16:99: 82:1e:db:e8:f3:d5:a8:ff:4c:9f:46:16:12:81:dc: bd:da:eb:a3:6e:2e:86:18:a7:6e:86:85:94:b7:9b: ca:24:2f:b3:77:0b:22:fc:69:dc:ed:c8:3f:b6:da: 99:be:60:0f:17:a6:84:81:63:ee:33:72:ef:0f:93: 0c:de:ee:f9:2a:10:a3:7b:74:f6:eb:ea:4d:a7:e5: 54:e0:2e:61:00:a6:9a:2e:34:48:31:ef:30:07:7c: 18:6e:16:21:6b:87:fc:8c:59:9e:bf:93:a0:26:bb: 32:17:5a:02:7c:d8:46:72:90:e0:55:d7:4b:b6:f9: a5:91:42:f3:27:5d:63:ae:d9:a5:5e:2a:2f:ca:80: 5b:bd:d1:08:93:63:1c:1c:8c:c0:b6:fa:40:51:5a: 65:56:61:5b:3e:fb:ca:40:16:c4:d6:52:e2:96:56: a2:ab:66:ce:c6:03:48:c6:5c:e2:52:59:ba:6e:33: 3f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C3:46:0C:61:AF:E5:EA:B0:CA:2E:62:ED:04:D1:CA:36:C8:00:50 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/042e82d3-e08f-4fca-9e40-387fde51dfd5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.104.0/21 Signature Algorithm: sha256WithRSAEncryption 16:f1:6a:7b:d5:16:98:fb:a7:63:0a:fe:b5:5f:eb:6a:50:39: e6:30:f7:cb:e1:47:30:e4:82:e3:c7:37:b8:83:f2:20:8e:eb: 23:42:0c:87:13:97:46:6f:38:fd:7a:21:11:3a:ba:2d:c9:5c: ca:5e:c3:68:7b:d5:35:63:d1:82:01:06:bc:79:cd:07:76:bf: 50:9a:de:39:37:34:de:a0:87:d9:16:37:6f:51:fa:e8:10:af: d5:44:3e:b7:d9:9b:ff:3f:fb:8a:dc:9e:37:46:e5:ee:07:8c: a2:20:62:38:7b:46:2e:48:38:d8:1c:54:7a:75:7e:3a:e1:9f: e2:36:6e:cc:b5:de:6e:87:cf:55:bb:e1:27:57:e4:66:52:1a: 65:fd:ba:f8:ae:95:4c:28:aa:79:8c:f7:e7:13:7d:f2:5c:38: 67:76:d5:93:b5:16:53:da:db:d3:25:2c:6f:2b:b1:f8:cb:34: dd:36:31:f6:49:5a:6f:18:34:fe:c2:15:7f:88:a0:93:8a:0f: 86:3e:65:1f:68:be:15:ad:23:d7:14:79:fe:e3:7c:14:fc:9d: c8:e1:2b:93:bf:9e:be:34:5b:bf:31:77:f5:66:19:b1:7a:75: ab:90:7f:44:2e:99:97:7e:e7:50:99:a5:44:dd:d9:a3:90:a9: 3b:89:78:c6 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUDy45IUG2U1AvS2LRDUYij4ctftswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjEwMjNaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGEzNjkwM2M2ZTM5NDUzOThhM2U5YTg5YWUzYmUyODZhMWIzZjZlZGYyYjE1 NmY4ODNlMTA3MWIzMWY1MjUzYWMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxn5vnwTK4Moq6nb/OylTX9mcNOQQwx72IBBcJ4AjbJex1hd/uNZ95I6b4a aCgPqXfVUL/Ao0q1mw2U+M+Uy8izWq3YuvDXhhaZgh7b6PPVqP9Mn0YWEoHcvdrr o24uhhinboaFlLebyiQvs3cLIvxp3O3IP7bamb5gDxemhIFj7jNy7w+TDN7u+SoQ o3t09uvqTaflVOAuYQCmmi40SDHvMAd8GG4WIWuH/IxZnr+ToCa7MhdaAnzYRnKQ 4FXXS7b5pZFC8yddY67ZpV4qL8qAW73RCJNjHByMwLb6QFFaZVZhWz77ykAWxNZS 4pZWoqtmzsYDSMZc4lJZum4zP5MCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRzw0YM Ya/l6rDKLmLtBNHKNsgAUDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MDQyZTgyZDMtZTA4Zi00ZmNhLTllNDAtMzg3ZmRlNTFkZmQ1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA099aDAN BgkqhkiG9w0BAQsFAAOCAQEAFvFqe9UWmPunYwr+tV/ralA55jD3y+FHMOSC48c3 uIPyII7rI0IMhxOXRm84/XohETq6Lclcyl7DaHvVNWPRggEGvHnNB3a/UJreOTc0 3qCH2RY3b1H66BCv1UQ+t9mb/z/7ityeN0bl7geMoiBiOHtGLkg42BxUenV+OuGf 4jZuzLXebofPVbvhJ1fkZlIaZf26+K6VTCiqeYz35xN98lw4Z3bVk7UWU9rb0yUs byux+Ms03TYx9klabxg0/sIVf4igk4oPhj5lH2i+Fa0j1xR5/uN8FPydyOErk7+e vjRbvzF39WYZsXp1q5B/RC6Zl37nUJmlRN3Zo5CpO4l4xg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:39 2025 by rpki-client