This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2eab4c42-5a06-4b45-b0cf-92f23ba278f9.roa File: 2eab4c42-5a06-4b45-b0cf-92f23ba278f9.roa (raw, json) Hash identifier: XuPWl2kFvocwyQBHr1Iy8/D++iV7dTzyEtcgy7bFv8o= Subject key identifier: D7:A8:9C:08:4B:EA:73:E9:64:A7:2C:18:39:43:45:3D:21:D4:17:09 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1A55E8835D3E448224629A65EC2A8A794543ABBF Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2eab4c42-5a06-4b45-b0cf-92f23ba278f9.roa Signing time: Sat 29 Nov 2025 03:00:10 +0000 ROA not before: Sat 29 Nov 2025 03:00:10 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.51.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:55:e8:83:5d:3e:44:82:24:62:9a:65:ec:2a:8a:79:45:43:ab:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:10 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=59b861dd4eda8c975a9c4aea47e717716a441697bec24afedc2446dcc352139d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f9:56:b3:7c:5b:db:13:71:8a:a7:81:e7:52: 12:c7:cd:26:ec:a5:88:4b:fd:d7:7a:f7:36:2c:1b: c9:74:4c:fe:90:9a:b8:d0:c0:65:30:f2:7e:76:7c: dc:59:36:cd:0c:60:b6:b7:8f:02:41:c3:0a:68:22: 76:ab:4f:f4:6f:58:4c:7a:14:62:b0:d5:fc:df:a4: 87:2b:e9:1b:24:0d:ed:93:56:8d:cf:2d:c6:a7:6a: 9f:10:fb:05:5a:bd:b9:7c:f4:10:61:c4:e8:6e:9d: fa:bb:56:bf:bd:1c:c7:cf:b1:e1:63:95:21:c6:72: c9:80:2d:0f:2b:06:bd:38:36:6f:7c:f8:04:0e:12: 12:80:da:19:b6:a2:4d:4f:86:7c:a5:47:1f:bb:52: f0:20:f1:ab:21:33:3c:dc:59:b1:9a:02:dd:1c:02: ba:b1:10:29:02:e7:a9:f1:9c:76:b6:5c:b8:a8:a0: e8:71:d9:12:e2:83:15:ed:f7:99:38:6f:ff:b0:27: ee:ce:7c:23:d1:3b:1e:2e:8a:4c:b2:37:25:53:0a: a1:6d:16:d5:66:94:33:42:25:dd:e0:33:39:de:20: 9b:c2:5e:cb:6a:a2:34:f3:7a:c9:07:c7:04:62:de: 8b:1d:9d:c1:b1:6e:85:9f:df:cf:f3:e9:15:a0:65: b2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:A8:9C:08:4B:EA:73:E9:64:A7:2C:18:39:43:45:3D:21:D4:17:09 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2eab4c42-5a06-4b45-b0cf-92f23ba278f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.51.224.0/20 Signature Algorithm: sha256WithRSAEncryption 44:58:4f:27:2b:bf:87:a9:b0:62:ff:57:b0:8e:76:18:69:d8: 59:4b:3d:c3:e4:f2:39:5f:2d:f1:3c:87:cb:1f:b4:c6:3a:c2: 08:48:eb:84:0d:95:35:4a:bd:86:9d:09:aa:19:5b:c6:dd:19: ca:1c:5d:b2:50:e1:e7:37:90:b0:b8:c6:02:d5:b3:cc:14:54: 0a:da:14:b7:4d:ea:b0:3d:75:c2:fc:85:43:a4:b5:8d:e0:21: 12:8f:9e:4f:f1:a5:67:8a:0c:70:6e:d9:f9:42:2e:5a:ca:34: 7e:0e:65:fc:72:1f:29:d3:99:df:d4:bc:8c:e8:85:1c:cc:95: 2d:13:c3:fa:71:61:7b:a3:8f:6f:87:eb:90:c5:3e:b4:13:57: 3d:a5:10:eb:e8:75:30:0a:37:37:6b:2b:31:6c:af:b8:0a:80: e8:cb:88:dd:75:18:31:0f:b2:66:ce:39:5c:07:ae:eb:63:6e: ac:5f:c7:1b:ed:f2:37:01:c0:6d:7b:98:ba:18:ec:58:41:bb: 92:60:b7:84:57:95:55:34:42:19:dc:27:8c:51:d8:07:f8:e1: ea:85:69:9f:73:2e:d4:1c:7c:70:f2:cd:80:af:7a:b7:19:aa: 4d:cd:0c:2a:83:4d:a7:c6:52:fe:87:57:b8:f8:6f:61:43:ed: 15:f5:15:fb -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUGlXog10+RIIkYppl7CqKeUVDq78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwMTBaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDU5Yjg2MWRkNGVkYThjOTc1YTljNGFlYTQ3ZTcxNzcxNmE0NDE2OTdiZWMy NGFmZWRjMjQ0NmRjYzM1MjEzOWQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALb5VrN8W9sTcYqngedSEsfNJuyliEv913r3NiwbyXRM/pCauNDAZTDyfnZ8 3Fk2zQxgtrePAkHDCmgidqtP9G9YTHoUYrDV/N+khyvpGyQN7ZNWjc8txqdqnxD7 BVq9uXz0EGHE6G6d+rtWv70cx8+x4WOVIcZyyYAtDysGvTg2b3z4BA4SEoDaGbai TU+GfKVHH7tS8CDxqyEzPNxZsZoC3RwCurEQKQLnqfGcdrZcuKig6HHZEuKDFe33 mThv/7An7s58I9E7Hi6KTLI3JVMKoW0W1WaUM0Il3eAzOd4gm8Jey2qiNPN6yQfH BGLeix2dwbFuhZ/fz/PpFaBlsuUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTXqJwI S+pz6WSnLBg5Q0U9IdQXCTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MmVhYjRjNDItNWEwNi00YjQ1LWIwY2YtOTJmMjNiYTI3OGY5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBC4z4DAN BgkqhkiG9w0BAQsFAAOCAQEARFhPJyu/h6mwYv9XsI52GGnYWUs9w+TyOV8t8TyH yx+0xjrCCEjrhA2VNUq9hp0Jqhlbxt0ZyhxdslDh5zeQsLjGAtWzzBRUCtoUt03q sD11wvyFQ6S1jeAhEo+eT/GlZ4oMcG7Z+UIuWso0fg5l/HIfKdOZ39S8jOiFHMyV LRPD+nFhe6OPb4frkMU+tBNXPaUQ6+h1MAo3N2srMWyvuAqA6MuI3XUYMQ+yZs45 XAeu62NurF/HG+3yNwHAbXuYuhjsWEG7kmC3hFeVVTRCGdwnjFHYB/jh6oVpn3Mu 1Bx8cPLNgK96txmqTc0MKoNNp8ZS/odXuPhvYUPtFfUV+w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:56 2025 by rpki-client