This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa File: 07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa (raw, json) Hash identifier: ltnNGIpR8Zg07n8bsx8TSizrO645cTjEWMLX1HjHAQo= Subject key identifier: 59:B0:34:64:14:A1:CF:88:54:D5:EE:09:F6:D3:11:D6:56:C5:F2:CE Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4D4FD9615B6C151A469F480E702CA3029F561AF4 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa Signing time: Sat 29 Nov 2025 03:00:09 +0000 ROA not before: Sat 29 Nov 2025 03:00:09 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:4f:d9:61:5b:6c:15:1a:46:9f:48:0e:70:2c:a3:02:9f:56:1a:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:09 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=da0219cb9ed0f8c5db58ea7e15fd8e2f3ee5064ae1de5085d827c5966cb1bc20, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:db:37:76:fa:8b:f4:f9:62:c0:16:e3:92:9c: b6:51:c2:04:2d:bb:5b:ff:a0:da:a0:58:a5:92:2a: 7a:b9:f6:0a:59:3d:cc:e9:a8:05:65:9b:4c:0b:8a: 87:16:cd:42:c6:d7:09:60:61:9b:ce:63:a0:35:3b: df:51:2e:59:16:2b:83:43:6b:c2:56:94:1c:d2:e2: 55:68:c9:6e:19:34:9b:fd:00:76:42:64:a4:6e:e5: 92:70:3e:6a:b3:d6:8c:c8:4c:b8:ad:b7:3f:7e:56: 33:5e:d5:14:4a:af:b6:06:e1:53:5d:78:d1:01:ec: ba:05:94:7d:24:a4:4c:e5:c1:a2:b4:bb:d5:96:00: bf:b3:5f:79:03:9d:16:43:3e:f5:dc:f7:92:a8:4f: c6:0e:26:d6:fb:a3:16:66:d2:c4:ae:f9:27:ab:e4: ce:c8:6e:cf:38:b6:16:67:55:50:09:c0:70:49:ef: 33:9c:8c:b1:1d:02:10:38:09:ca:52:be:ad:30:1d: 6d:b1:7f:72:27:ed:bd:07:78:81:1e:47:fb:70:92: d7:de:1a:0f:c7:7e:19:40:db:1f:1b:4b:f1:4a:ac: 31:33:f6:18:82:93:08:34:3b:3d:10:72:4a:c2:18: c9:23:90:74:08:1b:96:28:e4:e8:82:47:ce:38:27: 03:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B0:34:64:14:A1:CF:88:54:D5:EE:09:F6:D3:11:D6:56:C5:F2:CE X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.176.0/20 Signature Algorithm: sha256WithRSAEncryption 9b:52:69:ab:cb:45:70:d4:2a:e3:29:27:b8:c6:02:1f:94:40: a8:de:d6:aa:08:67:8d:35:2f:85:a4:60:3a:51:a1:11:0d:64: 7f:8a:95:8e:ad:a0:e9:9e:98:23:45:a4:eb:7a:ae:bc:30:66: 3c:de:20:d9:fa:7e:2d:db:e9:68:8f:38:fc:c1:57:df:a8:6e: 50:86:1d:43:a4:38:ce:7c:13:10:01:18:82:2f:da:46:d4:80: 88:63:48:95:d0:6b:0c:13:fd:c5:42:c4:61:16:bf:ff:de:59: c3:0a:62:96:00:f4:7f:72:9d:f3:2c:79:6d:01:96:7d:e8:25: 82:51:6a:9c:cb:6b:26:ef:23:8c:74:f7:15:35:98:f3:65:e3: a1:38:e2:a0:92:38:fd:e7:c3:fe:80:b2:3b:70:a4:c0:e9:24: d3:3b:f4:01:25:4c:27:13:af:6e:18:8b:5e:51:75:a1:5b:44: 52:0e:0c:02:95:69:0c:aa:9c:38:74:b3:0f:a8:4a:f8:7c:1d: 05:69:17:87:eb:54:f2:38:a8:6b:2d:cd:b6:44:fd:74:54:2b: cf:67:97:94:01:5b:22:a8:0d:e8:9a:4e:2e:b6:ee:d5:26:e6: e5:d3:68:13:0b:be:7c:2e:e3:c0:65:d8:d4:8d:fa:5a:b0:60: e7:8a:bd:36 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUTU/ZYVtsFRpGn0gOcCyjAp9WGvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwMDlaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQGRhMDIxOWNiOWVkMGY4YzVkYjU4ZWE3ZTE1ZmQ4ZTJmM2VlNTA2NGFlMWRl NTA4NWQ4MjdjNTk2NmNiMWJjMjAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMrbN3b6i/T5YsAW45KctlHCBC27W/+g2qBYpZIqern2Clk9zOmoBWWbTAuK hxbNQsbXCWBhm85joDU731EuWRYrg0NrwlaUHNLiVWjJbhk0m/0AdkJkpG7lknA+ arPWjMhMuK23P35WM17VFEqvtgbhU1140QHsugWUfSSkTOXBorS71ZYAv7NfeQOd FkM+9dz3kqhPxg4m1vujFmbSxK75J6vkzshuzzi2FmdVUAnAcEnvM5yMsR0CEDgJ ylK+rTAdbbF/ciftvQd4gR5H+3CS194aD8d+GUDbHxtL8UqsMTP2GIKTCDQ7PRBy SsIYySOQdAgblijk6IJHzjgnAwkCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRZsDRk FKHPiFTV7gn20xHWVsXyzjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MDcxNDRmMzgtZWQ0Ni00MGJjLWEzZWQtMzA3ODVjMGNjM2UyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBC6JsDAN BgkqhkiG9w0BAQsFAAOCAQEAm1Jpq8tFcNQq4yknuMYCH5RAqN7WqghnjTUvhaRg OlGhEQ1kf4qVjq2g6Z6YI0Wk63quvDBmPN4g2fp+LdvpaI84/MFX36huUIYdQ6Q4 znwTEAEYgi/aRtSAiGNIldBrDBP9xULEYRa//95ZwwpilgD0f3Kd8yx5bQGWfegl glFqnMtrJu8jjHT3FTWY82XjoTjioJI4/efD/oCyO3CkwOkk0zv0ASVMJxOvbhiL XlF1oVtEUg4MApVpDKqcOHSzD6hK+HwdBWkXh+tU8jioay3NtkT9dFQrz2eXlAFb IqgN6JpOLrbu1Sbm5dNoEwu+fC7jwGXY1I36WrBg54q9Ng== -----END CERTIFICATE-----Generated at Sat Dec 6 17:30:53 2025 by rpki-client