This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2780ebe2-8258-4510-a848-89116418e1c7.roa File: 2780ebe2-8258-4510-a848-89116418e1c7.roa (raw, json) Hash identifier: 2FPyMFG5J/zhedS9GlKubPnuxo8qFAFh7kyHhuiDL0g= Subject key identifier: 46:4B:B5:3A:A5:F9:DC:9E:3A:DE:13:CA:CE:DB:47:7D:6D:14:42:8E Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 18AB65D61C42BE3AFF3B21B3B9E4EF4990C8E210 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2780ebe2-8258-4510-a848-89116418e1c7.roa Signing time: Tue 02 Dec 2025 01:50:08 +0000 ROA not before: Tue 02 Dec 2025 01:50:08 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.34.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:ab:65:d6:1c:42:be:3a:ff:3b:21:b3:b9:e4:ef:49:90:c8:e2:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:50:08 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=c86546048cd229567eec4337db3fa58f07fa77581aad80c605d333ac8f1fddba, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:cc:f8:ed:53:f2:5c:86:b5:7c:31:aa:1b:e0: 6a:f9:e4:fd:a0:af:75:9b:9d:05:7a:5a:32:0b:fc: 29:c2:56:a9:db:50:ac:bf:73:72:6e:75:df:0e:fd: b9:fb:62:1d:f0:72:0a:bb:28:d0:e3:77:f1:c7:55: b6:d8:85:67:5c:f1:45:50:f0:92:cb:8e:2e:40:18: 03:2b:d7:3a:25:86:1c:6a:32:2f:b3:6f:40:fe:1a: 97:02:d4:d5:75:e9:4d:b1:d4:16:b3:3d:ed:64:31: 03:24:f9:c3:a8:0e:10:58:db:4a:b9:f7:f3:1c:91: be:24:d7:56:2a:84:82:6e:b5:90:b6:6d:7b:87:4e: f8:9e:96:83:fe:48:0b:65:2b:33:fc:cd:a5:f9:25: cb:35:c9:94:65:1f:38:15:45:d4:0b:be:dc:10:85: 20:d9:14:e4:54:5f:5c:53:a4:7a:6e:2e:9c:6e:a3: fb:f8:a3:6f:fc:83:2d:d2:78:af:31:c4:59:bc:5e: 43:60:95:4c:45:16:76:38:12:7b:3b:ac:86:d5:58: 8c:89:b3:8e:95:aa:5c:2f:3e:82:d6:eb:9a:56:31: ab:b1:07:ca:fd:e5:31:24:92:f0:04:4a:3d:d7:1b: cd:85:9b:a6:c7:26:8c:92:e2:ae:35:35:f8:62:34: 9d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:4B:B5:3A:A5:F9:DC:9E:3A:DE:13:CA:CE:DB:47:7D:6D:14:42:8E X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2780ebe2-8258-4510-a848-89116418e1c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.34.64.0/19 Signature Algorithm: sha256WithRSAEncryption 92:24:58:cb:c1:3c:b4:d4:a9:97:6e:80:57:d8:32:58:d9:c7: e2:3b:b7:e0:b4:66:39:25:ab:99:9d:98:08:0f:99:50:e7:e8: f2:1c:8c:42:97:d4:0e:ef:fb:c6:61:ad:0f:86:d5:76:9b:86: 1d:a0:ef:39:fa:00:f0:be:e5:b6:b2:38:78:9f:80:f9:b8:a7: d3:f2:ba:b9:a4:b3:41:fa:4f:ec:bc:2b:05:d8:5b:35:39:a1: 9a:f1:5d:c4:ba:82:11:6e:2d:7f:16:95:12:e5:38:8d:97:34: b5:b0:8a:93:2e:e0:0c:a7:6e:21:3b:68:b0:28:c3:9c:d3:69: 86:d6:e0:f2:54:ba:2a:59:3b:2e:1e:df:db:d5:c1:3f:3e:34: 23:0a:28:83:f3:42:bf:8c:82:76:ea:e6:69:f9:03:a7:94:c8: 98:58:b8:cb:f1:ec:22:2f:89:cc:e6:1b:31:16:2b:ed:25:7e: b3:b6:8b:b5:99:f3:8e:a0:4a:43:96:c3:1b:4f:09:a3:be:6d: 35:52:ba:c7:59:c2:6d:66:ff:ad:fe:00:f9:34:16:f3:dc:fa: 9a:c7:fa:c7:85:22:13:aa:4c:5d:b6:f8:63:66:18:c2:af:14: ea:38:04:40:2c:5d:d2:ea:5a:b8:75:2d:3c:1b:44:08:9e:0c: a3:e7:5e:04 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUGKtl1hxCvjr/OyGzueTvSZDI4hAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUwMDhaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQGM4NjU0NjA0OGNkMjI5NTY3ZWVjNDMzN2RiM2ZhNThmMDdmYTc3NTgxYWFk ODBjNjA1ZDMzM2FjOGYxZmRkYmExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIDM+O1T8lyGtXwxqhvgavnk/aCvdZudBXpaMgv8KcJWqdtQrL9zcm513w79 uftiHfByCrso0ON38cdVttiFZ1zxRVDwksuOLkAYAyvXOiWGHGoyL7NvQP4alwLU 1XXpTbHUFrM97WQxAyT5w6gOEFjbSrn38xyRviTXViqEgm61kLZte4dO+J6Wg/5I C2UrM/zNpfklyzXJlGUfOBVF1Au+3BCFINkU5FRfXFOkem4unG6j+/ijb/yDLdJ4 rzHEWbxeQ2CVTEUWdjgSezushtVYjImzjpWqXC8+gtbrmlYxq7EHyv3lMSSS8ARK PdcbzYWbpscmjJLirjU1+GI0nZsCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRGS7U6 pfncnjreE8rO20d9bRRCjjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv Mjc4MGViZTItODI1OC00NTEwLWE4NDgtODkxMTY0MThlMWM3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbAiQDAN BgkqhkiG9w0BAQsFAAOCAQEAkiRYy8E8tNSpl26AV9gyWNnH4ju34LRmOSWrmZ2Y CA+ZUOfo8hyMQpfUDu/7xmGtD4bVdpuGHaDvOfoA8L7ltrI4eJ+A+bin0/K6uaSz QfpP7LwrBdhbNTmhmvFdxLqCEW4tfxaVEuU4jZc0tbCKky7gDKduITtosCjDnNNp htbg8lS6Klk7Lh7f29XBPz40Iwoog/NCv4yCdurmafkDp5TImFi4y/HsIi+JzOYb MRYr7SV+s7aLtZnzjqBKQ5bDG08Jo75tNVK6x1nCbWb/rf4A+TQW89z6msf6x4Ui E6pMXbb4Y2YYwq8U6jgEQCxd0upauHUtPBtECJ4Mo+deBA== -----END CERTIFICATE-----Generated at Sat Dec 6 17:31:31 2025 by rpki-client