This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0b022346-638e-4570-8b19-5cf9b4c378c8.roa File: 0b022346-638e-4570-8b19-5cf9b4c378c8.roa (raw, json) Hash identifier: ww7UhucM3we3qrL3fh2nFldDHWe2JiSvIVNJePyY1T8= Subject key identifier: 90:43:DE:97:7C:FB:D9:C6:0B:0B:AC:63:A3:5F:41:FB:44:50:94:4F Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 74F6CED5B246004725704E3CB378283A952B3DC8 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0b022346-638e-4570-8b19-5cf9b4c378c8.roa Signing time: Sat 15 Nov 2025 06:20:35 +0000 ROA not before: Sat 15 Nov 2025 06:20:35 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:f6:ce:d5:b2:46:00:47:25:70:4e:3c:b3:78:28:3a:95:2b:3d:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:20:35 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=ab68a00c307f3d5529fa34be16fbc48ff31799b53b71d2dd1841ecd95064ae7d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ef:0d:6c:ee:17:d1:34:4f:cf:05:37:ee:3e: 81:48:a3:c2:3e:a9:b4:4a:0a:a6:61:a7:c1:52:22: aa:5e:0c:36:d8:eb:ee:99:ad:1e:49:72:78:6a:af: 94:d4:75:18:ab:fb:1c:2f:66:e4:5a:c5:01:e1:52: cd:3c:30:04:75:0d:04:e8:95:10:1c:2a:13:7c:3e: e2:f6:70:d0:13:ed:5f:e9:20:d5:21:0e:0f:36:c2: d0:35:46:ba:a1:50:b7:16:66:13:dd:73:c6:a9:38: d3:29:bd:e6:7a:20:7d:bb:96:9f:67:23:f7:91:a7: 2a:f9:c4:6f:b9:9e:43:66:70:94:19:be:6d:87:66: b2:67:0f:9c:4a:44:2d:06:56:5e:5c:fd:0b:cb:8e: 20:3e:6c:dc:5d:55:0d:45:1f:6a:b5:e3:37:1a:5b: 77:88:81:94:53:32:5a:06:4c:39:84:fe:f3:8f:3a: f7:40:c5:f7:20:66:79:49:81:56:9c:ed:e1:3e:a7: 8f:4c:02:6f:3b:ad:2c:71:94:9d:5a:b6:28:76:97: 21:55:3b:d9:7c:3d:d9:c8:f6:56:01:56:a6:dd:6a: 3a:1e:9b:b0:b2:22:46:5c:ad:ea:12:26:af:db:1b: 12:e5:1e:d2:c3:41:77:37:80:02:67:dc:8a:a4:c4: 35:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:43:DE:97:7C:FB:D9:C6:0B:0B:AC:63:A3:5F:41:FB:44:50:94:4F X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0b022346-638e-4570-8b19-5cf9b4c378c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.96.0/21 Signature Algorithm: sha256WithRSAEncryption 57:40:a9:02:6b:82:35:7b:fd:7f:be:5d:4c:9b:e0:20:36:86: af:02:8b:ed:1c:d9:3f:5b:96:a2:38:7f:c2:37:ac:df:8f:50: 37:a5:59:55:dc:6c:f6:e2:80:5e:1a:13:2e:17:75:39:69:e9: 2b:da:df:42:05:c7:44:44:97:2d:b2:87:72:f5:60:3a:ba:36: 8d:4e:57:4c:a8:f4:52:6c:3a:8f:77:b5:ee:a2:f0:19:18:79: db:2d:75:a7:f7:65:1f:9d:f0:69:84:7d:e7:40:27:c2:0f:00: 59:bf:7c:9b:29:98:61:93:f2:d1:1a:3d:c5:e5:fc:15:a4:a2: 63:b0:e5:b8:e6:53:8c:0c:64:36:74:4d:f7:fe:3b:f8:44:9c: 9d:16:28:e1:76:70:90:5d:7d:a3:1d:ef:2b:bc:a8:02:98:3a: 40:12:b3:47:67:ad:9b:04:91:d1:be:53:ea:60:01:e5:cd:e4: db:d1:c3:04:ab:33:29:38:24:f8:ae:f8:56:57:94:e4:b0:74: 10:f7:e5:23:62:88:71:df:16:0e:bb:2f:f9:80:f0:aa:7d:76: 6c:e4:a1:31:ee:7d:1c:57:06:5b:6e:e9:60:3a:84:6b:74:cd: 70:de:e8:87:d9:6f:c1:d3:5b:eb:9d:d2:7c:85:28:1e:07:48: e9:6e:ed:0a -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUdPbO1bJGAEclcE48s3goOpUrPcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjIwMzVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGFiNjhhMDBjMzA3ZjNkNTUyOWZhMzRiZTE2ZmJjNDhmZjMxNzk5YjUzYjcx ZDJkZDE4NDFlY2Q5NTA2NGFlN2QxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLvDWzuF9E0T88FN+4+gUijwj6ptEoKpmGnwVIiql4MNtjr7pmtHklyeGqv lNR1GKv7HC9m5FrFAeFSzTwwBHUNBOiVEBwqE3w+4vZw0BPtX+kg1SEODzbC0DVG uqFQtxZmE91zxqk40ym95nogfbuWn2cj95GnKvnEb7meQ2ZwlBm+bYdmsmcPnEpE LQZWXlz9C8uOID5s3F1VDUUfarXjNxpbd4iBlFMyWgZMOYT+848690DF9yBmeUmB Vpzt4T6nj0wCbzutLHGUnVq2KHaXIVU72Xw92cj2VgFWpt1qOh6bsLIiRlyt6hIm r9sbEuUe0sNBdzeAAmfciqTENUMCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSQQ96X fPvZxgsLrGOjX0H7RFCUTzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MGIwMjIzNDYtNjM4ZS00NTcwLThiMTktNWNmOWI0YzM3OGM4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA099YDAN BgkqhkiG9w0BAQsFAAOCAQEAV0CpAmuCNXv9f75dTJvgIDaGrwKL7RzZP1uWojh/ wjes349QN6VZVdxs9uKAXhoTLhd1OWnpK9rfQgXHRESXLbKHcvVgOro2jU5XTKj0 Umw6j3e17qLwGRh52y11p/dlH53waYR950Anwg8AWb98mymYYZPy0Ro9xeX8FaSi Y7DluOZTjAxkNnRN9/47+EScnRYo4XZwkF19ox3vK7yoApg6QBKzR2etmwSR0b5T 6mAB5c3k29HDBKszKTgk+K74VleU5LB0EPflI2KIcd8WDrsv+YDwqn12bOShMe59 HFcGW27pYDqEa3TNcN7oh9lvwdNb653SfIUoHgdI6W7tCg== -----END CERTIFICATE-----Generated at Sat Dec 6 15:42:19 2025 by rpki-client