This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/062e9317-b5ab-4d01-a462-4dc8d164e17c.roa File: 062e9317-b5ab-4d01-a462-4dc8d164e17c.roa (raw, json) Hash identifier: LExDyxPutr6QO+3Ghwo7c5479gQT9vAw0FXrcCDES10= Subject key identifier: 9E:5A:BA:03:A6:35:EB:9B:7F:FB:F9:FA:E9:BB:81:E8:7A:68:86:49 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2D1DE90CEDE148C25F2D0615A4372AA0A259AA Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/062e9317-b5ab-4d01-a462-4dc8d164e17c.roa Signing time: Sat 29 Nov 2025 03:10:09 +0000 ROA not before: Sat 29 Nov 2025 03:10:09 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:1d:e9:0c:ed:e1:48:c2:5f:2d:06:15:a4:37:2a:a0:a2:59:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:10:09 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=35a2541b1669d7d5f80c61f70f65344b025922c37bc7cf6e6351523d160a4a93, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c5:fe:ee:27:b7:64:fd:f5:76:81:b1:e9:4f: 26:f9:81:b4:a0:97:8d:ce:d2:e9:93:88:6d:03:66: 4b:a5:a1:71:00:da:cb:1b:b5:31:9c:62:49:bd:3f: dd:1e:4c:43:39:bb:5d:01:55:78:bf:0a:73:52:de: 5b:ec:c7:c3:3b:b2:c9:59:c9:49:7f:ba:2c:77:46: c0:0b:ee:32:bf:91:72:67:db:82:6a:95:05:7e:e7: d6:81:dc:ab:23:53:7a:27:d0:9f:a5:79:d0:51:f0: 22:70:a9:7d:c0:ea:4e:67:49:fa:cc:f6:b3:ba:b3: c9:7d:be:9d:31:c7:3e:15:31:78:e0:f7:94:69:a6: 65:19:b0:3d:f0:f2:45:1c:dc:ac:41:3f:c2:56:e6: 59:f0:94:bc:92:3c:7a:f6:1e:63:29:77:d3:53:9d: c0:0e:cb:d6:33:ec:55:78:e4:02:31:17:14:73:02: f7:b1:73:41:27:66:bc:db:80:f1:a0:b9:f8:da:a5: a4:0a:44:8d:9a:fd:bb:75:a4:b6:d4:80:81:78:1c: 3f:64:22:d9:8e:4b:b7:84:6e:e2:52:3f:d2:0c:35: db:d5:f1:bc:fd:99:07:c6:93:ca:79:7e:d2:b2:35: b7:c5:38:fd:1e:e5:c1:eb:5c:22:bd:24:b7:b8:2f: 10:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:5A:BA:03:A6:35:EB:9B:7F:FB:F9:FA:E9:BB:81:E8:7A:68:86:49 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/062e9317-b5ab-4d01-a462-4dc8d164e17c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.172.0/22 Signature Algorithm: sha256WithRSAEncryption 34:1e:f5:ea:53:6e:e5:80:6b:3b:d0:d8:7a:c1:43:49:ed:26: 1c:6a:e2:b6:d0:40:6a:fc:21:6d:13:ba:96:11:69:f6:04:98: dd:4e:7b:a8:9c:8e:a5:13:4a:55:e5:5b:47:d0:4a:d4:e6:14: 12:7c:3b:22:83:ce:ed:fa:da:7e:1c:2b:e5:7c:16:9d:6f:ad: 87:06:73:07:53:9d:9f:23:61:93:7f:bd:59:b5:e2:07:0e:e9: 9d:8d:9b:30:82:86:80:f2:1a:2c:fe:ed:b3:74:a7:1f:77:11: 7a:a3:37:74:90:33:fc:92:e6:56:10:c2:68:a1:06:85:d1:5a: 36:1c:8b:37:41:a5:1e:3d:79:3b:00:26:25:78:e5:dd:72:25: b5:77:c5:12:5d:3c:c6:2a:ab:06:49:b5:7b:1d:1f:e6:54:49: 29:6e:0c:12:82:63:ac:24:e0:cd:fa:70:5f:ef:84:f3:30:fd: a0:3b:4f:71:b0:8a:42:62:f2:fa:b6:4c:81:53:39:01:bb:2c: 64:c4:19:19:68:4a:b8:7a:1e:02:74:f9:32:3f:ab:b8:25:80: b9:6a:c3:30:b5:f2:1d:26:fd:27:e6:4f:b7:46:ca:7a:b7:ee: 96:64:3f:c8:92:ae:aa:91:4f:e1:b1:ee:ed:91:31:6f:57:50: f6:57:34:91 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgITLR3pDO3hSMJfLQYVpDcqoKJZqjANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg4YjYyNjNkYmU5Nzk5ZGQ2NzkzZTBlODgyYWQyMWNiNDg0 OTk3MGJjMB4XDTI1MTEyOTAzMTAwOVoXDTI2MDIyNzIzNTk1OVowejFJMEcGA1UE BRNAMzVhMjU0MWIxNjY5ZDdkNWY4MGM2MWY3MGY2NTM0NGIwMjU5MjJjMzdiYzdj ZjZlNjM1MTUyM2QxNjBhNGE5MzEtMCsGA1UEAxMkNjYxNWEzOGItM2FkNy00N2I3 LThmYjItNjg1YzM4ZDAwOTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkcX+7ie3ZP31doGx6U8m+YG0oJeNztLpk4htA2ZLpaFxANrLG7UxnGJJvT/d HkxDObtdAVV4vwpzUt5b7MfDO7LJWclJf7osd0bAC+4yv5FyZ9uCapUFfufWgdyr I1N6J9CfpXnQUfAicKl9wOpOZ0n6zPazurPJfb6dMcc+FTF44PeUaaZlGbA98PJF HNysQT/CVuZZ8JS8kjx69h5jKXfTU53ADsvWM+xVeOQCMRcUcwL3sXNBJ2a824Dx oLn42qWkCkSNmv27daS21ICBeBw/ZCLZjku3hG7iUj/SDDXb1fG8/ZkHxpPKeX7S sjW3xTj9HuXB61wivSS3uC8QLwIDAQABo4ICITCCAh0wHQYDVR0OBBYEFJ5augOm Neubf/v5+um7geh6aIZJMB8GA1UdIwQYMBaAFItiY9vpeZ3WeT4OiCrSHLSEmXC8 MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvaTJKajItbDVu ZFo1UGc2SUt0SWN0SVNaY0x3LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsG AQUFBzALhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFtYXpvbmF3cy5j b20vdm9sdW1lL2RiYThmMDFjLTk2NjktNDRhMy1hYzZlLWRiMmVkYjA5OWI4NC8w NjJlOTMxNy1iNWFiLTRkMDEtYTQ2Mi00ZGM4ZDE2NGUxN2Mucm9hMIGIBgNVHR8E gYAwfjB8oHqgeIZ2cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25h d3MuY29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTli ODQvdU9EYXRkdFljMUhyaHRVUVZReXJESzA4R2VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLomsMA0G CSqGSIb3DQEBCwUAA4IBAQA0HvXqU27lgGs70Nh6wUNJ7SYcauK20EBq/CFtE7qW EWn2BJjdTnuonI6lE0pV5VtH0ErU5hQSfDsig87t+tp+HCvlfBadb62HBnMHU52f I2GTf71ZteIHDumdjZswgoaA8hos/u2zdKcfdxF6ozd0kDP8kuZWEMJooQaF0Vo2 HIs3QaUePXk7ACYleOXdciW1d8USXTzGKqsGSbV7HR/mVEkpbgwSgmOsJODN+nBf 74TzMP2gO09xsIpCYvL6tkyBUzkBuyxkxBkZaEq4eh4CdPkyP6u4JYC5asMwtfId Jv0n5k+3Rsp6t+6WZD/Ikq6qkU/hse7tkTFvV1D2VzSR -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:37 2025 by rpki-client