This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1a8a7076-0c78-4aa6-9c1e-dfeb947189f4.roa File: 1a8a7076-0c78-4aa6-9c1e-dfeb947189f4.roa (raw, json) Hash identifier: BLQaZipHaEwpWgvyiVRDUvqsHKdimaC3un5tQOpzZos= Subject key identifier: 59:15:04:82:6B:A1:C2:6F:97:8F:0D:1F:1C:25:3B:14:4A:8F:C8:48 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4456A42C39034F8069BC1D80FA48D905F6CFDAFB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1a8a7076-0c78-4aa6-9c1e-dfeb947189f4.roa Signing time: Tue 02 Dec 2025 01:50:14 +0000 ROA not before: Tue 02 Dec 2025 01:50:14 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.32.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:56:a4:2c:39:03:4f:80:69:bc:1d:80:fa:48:d9:05:f6:cf:da:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:50:14 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=a8b458a4798c4acd1f3c57b0b89c5f5de84c2d8ac64632d3d873306e76d3059a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c9:06:99:e0:16:04:d1:ec:b5:8b:f3:b4:58: e7:a4:4f:34:c5:09:bf:8e:3b:2e:89:b5:38:24:eb: 17:87:74:bd:1a:49:ec:cd:bd:21:4f:5a:53:50:a6: c1:19:b5:1e:75:ec:cb:c0:7e:fa:7c:ea:66:5e:5d: c9:d7:c1:f1:92:a2:2f:98:35:ee:21:08:a1:f8:0f: 21:1f:1a:cb:1b:bf:28:93:d0:15:70:82:f6:a5:90: bd:87:93:86:d6:47:aa:68:f3:34:c9:f7:5b:68:ed: 95:8c:dc:22:41:a3:4d:20:a2:6f:36:1a:11:14:ff: 30:44:92:31:28:43:3f:4b:3a:3b:15:7b:ee:4c:17: cc:f2:13:ff:92:ef:74:c1:fe:c8:9f:3f:96:35:f0: 5f:05:01:0b:97:c5:58:cb:98:38:be:39:94:78:fc: c4:82:a2:38:96:96:cc:3c:d3:04:c5:90:d5:d1:6b: e3:ae:7a:e3:f7:3c:0b:92:1c:5d:b9:0c:a1:5b:89: e4:ff:49:8c:8b:0e:34:8a:a9:c0:16:ea:1a:0b:91: c1:0f:ab:a9:9a:69:b9:e9:7c:4d:98:11:0f:39:5b: bd:a0:3d:92:fd:49:09:89:03:71:c3:ca:9b:0e:8c: b8:8f:4d:cb:43:07:3e:d6:b6:49:16:32:ec:b2:6c: 51:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:15:04:82:6B:A1:C2:6F:97:8F:0D:1F:1C:25:3B:14:4A:8F:C8:48 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1a8a7076-0c78-4aa6-9c1e-dfeb947189f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.32.124.0/23 Signature Algorithm: sha256WithRSAEncryption 19:5f:ce:9d:95:06:78:6e:15:f8:81:5e:ec:4d:44:f4:28:01: b7:09:bf:ca:fc:ef:6e:65:00:0f:72:54:89:c8:e7:ff:84:44: 79:49:80:11:a5:c7:8f:89:86:7a:40:1c:f4:a5:37:78:7e:0f: a2:a0:3a:0a:9c:09:75:a1:d3:5f:af:3c:fa:71:40:37:27:9d: 83:48:9f:9c:14:90:45:a7:6f:10:1b:5c:c1:04:6e:ed:dc:8e: 1d:99:85:4f:11:a0:37:a4:ad:c6:82:5f:56:08:7b:f8:e1:d2: 17:26:0e:17:7c:00:a8:2c:a3:4a:4a:74:74:31:c2:f7:54:02: 03:cc:26:a8:2f:3e:db:78:57:05:f0:40:8b:8a:1e:b4:98:38: 77:88:5c:02:2a:84:f6:2d:8e:f0:17:1c:8a:ad:9d:6e:10:03: a7:4d:fd:72:1e:06:a5:46:8c:16:74:b2:a3:5c:23:78:7f:b7: 6d:ff:15:10:86:21:4b:e0:d2:15:3f:74:5b:cc:a9:5c:e2:ea: 94:65:87:44:21:d7:56:e0:66:02:dc:f6:e6:4f:67:4b:a4:fc: 86:13:e9:3e:56:4b:18:1d:0a:86:42:91:15:60:fb:b6:47:d5: 89:e6:9d:25:d8:1c:26:ae:23:ee:ce:13:7b:09:61:c3:93:84: 84:0b:81:fb -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIURFakLDkDT4BpvB2A+kjZBfbP2vswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUwMTRaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQGE4YjQ1OGE0Nzk4YzRhY2QxZjNjNTdiMGI4OWM1ZjVkZTg0YzJkOGFjNjQ2 MzJkM2Q4NzMzMDZlNzZkMzA1OWExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJLJBpngFgTR7LWL87RY56RPNMUJv447Lom1OCTrF4d0vRpJ7M29IU9aU1Cm wRm1HnXsy8B++nzqZl5dydfB8ZKiL5g17iEIofgPIR8ayxu/KJPQFXCC9qWQvYeT htZHqmjzNMn3W2jtlYzcIkGjTSCibzYaERT/MESSMShDP0s6OxV77kwXzPIT/5Lv dMH+yJ8/ljXwXwUBC5fFWMuYOL45lHj8xIKiOJaWzDzTBMWQ1dFr46564/c8C5Ic XbkMoVuJ5P9JjIsONIqpwBbqGguRwQ+rqZppuel8TZgRDzlbvaA9kv1JCYkDccPK mw6MuI9Ny0MHPta2SRYy7LJsUVUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRZFQSC a6HCb5ePDR8cJTsUSo/ISDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MWE4YTcwNzYtMGM3OC00YWE2LTljMWUtZGZlYjk0NzE4OWY0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbAgfDAN BgkqhkiG9w0BAQsFAAOCAQEAGV/OnZUGeG4V+IFe7E1E9CgBtwm/yvzvbmUAD3JU icjn/4REeUmAEaXHj4mGekAc9KU3eH4PoqA6CpwJdaHTX688+nFANyedg0ifnBSQ RadvEBtcwQRu7dyOHZmFTxGgN6StxoJfVgh7+OHSFyYOF3wAqCyjSkp0dDHC91QC A8wmqC8+23hXBfBAi4oetJg4d4hcAiqE9i2O8Bcciq2dbhADp039ch4GpUaMFnSy o1wjeH+3bf8VEIYhS+DSFT90W8ypXOLqlGWHRCHXVuBmAtz25k9nS6T8hhPpPlZL GB0KhkKRFWD7tkfVieadJdgcJq4j7s4Tewlhw5OEhAuB+w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:06 2025 by rpki-client