This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2fd8037d-0536-42bc-af5c-4d0ed4f8de78.roa File: 2fd8037d-0536-42bc-af5c-4d0ed4f8de78.roa (raw, json) Hash identifier: FlqqnjmXu+Dk9ooxwv8/Z3zX9qEmzaCv5boM/Gj/BtM= Subject key identifier: AD:AA:45:F5:BC:EA:8E:BC:48:1A:51:32:5A:DC:C4:F8:35:FC:17:38 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 4AD4E60F1A474DCE7B6DA514BB956A2DCD705158 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2fd8037d-0536-42bc-af5c-4d0ed4f8de78.roa Signing time: Tue 02 Dec 2025 01:51:09 +0000 ROA not before: Tue 02 Dec 2025 01:51:09 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.34.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d4:e6:0f:1a:47:4d:ce:7b:6d:a5:14:bb:95:6a:2d:cd:70:51:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:51:09 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=a8e083ed759f3c98be2b57b2d2e453c8b8c40c97be758ee9ac92000a2741029c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ee:bd:d9:6e:c8:90:5f:73:fa:db:74:62:6a: 6b:9e:7a:73:6b:13:a2:b4:35:72:fc:53:a2:84:0a: 57:18:52:ab:78:2d:68:50:4e:ad:0f:62:02:33:33: 34:16:1e:3a:ea:fa:73:5e:12:9e:e8:d2:e2:61:29: af:71:62:90:b1:d5:d3:d6:6e:f0:a8:3f:7f:fd:00: 51:08:fe:8e:e8:33:de:00:30:78:1e:c7:9c:22:9b: 1f:80:de:11:1f:a4:9c:10:ee:8a:98:a4:0e:da:df: 02:9f:59:89:d0:6c:e2:d7:18:4c:19:dd:d1:89:1b: b7:64:83:25:fe:44:83:42:8d:3c:f1:b4:87:80:0f: 11:31:89:93:85:5f:30:c6:62:2a:15:59:21:e6:35: b5:2a:f8:f6:ae:99:b9:b9:fe:8b:a2:f3:9d:b7:fe: 95:0b:06:d0:c5:24:b8:85:2f:35:f1:c1:5d:4f:fc: fd:2d:7c:c6:35:e3:7a:03:b3:0f:06:56:b1:e4:7f: a3:05:51:a9:3a:fe:f2:b3:a3:b7:76:1d:e9:52:a1: ad:18:8c:9d:12:bf:77:21:4d:5f:c0:02:37:21:62: e7:14:13:15:cc:03:d5:2b:62:df:69:7e:0c:ea:f2: 94:d8:c4:60:d0:05:80:50:84:ad:2a:7c:41:8e:de: 13:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:AA:45:F5:BC:EA:8E:BC:48:1A:51:32:5A:DC:C4:F8:35:FC:17:38 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2fd8037d-0536-42bc-af5c-4d0ed4f8de78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.34.96.0/19 Signature Algorithm: sha256WithRSAEncryption 58:01:9e:d2:8b:70:90:53:8e:b1:cc:d3:31:dd:3b:ae:39:3f: 5f:61:25:d8:7b:b2:28:42:22:19:a3:49:8c:3c:22:6e:f2:65: 12:22:f5:c4:ec:19:48:f1:2d:e6:21:60:70:10:b9:91:96:95: 89:fc:3e:2e:66:33:00:37:a1:a9:4e:1b:42:8f:1a:4e:d9:b0: 5e:c6:e5:c5:3f:1b:59:26:92:b3:97:a8:4d:d3:5f:c2:02:e7: 70:1b:71:f3:bc:5c:c7:d1:2a:5d:04:27:b7:7e:02:61:51:90: 35:f5:d7:d2:72:09:8f:aa:ef:70:19:4c:ec:6b:92:d0:6c:98: 70:04:82:99:36:fe:eb:04:de:1e:7a:32:41:9b:97:fc:8e:c0: 39:05:0a:ac:0c:70:51:b2:79:35:ed:b1:ca:6f:65:4c:c8:ba: 29:84:53:b2:f8:73:44:9f:45:e6:8c:e1:81:7f:b2:1b:e2:00: e2:79:98:a6:10:1e:e8:5f:b7:57:8e:f9:0e:6a:a9:e4:c4:f1: d2:af:da:be:5a:4c:d0:20:a5:02:bf:d5:85:0b:48:0a:fa:2a: ee:53:3d:1c:af:73:0e:79:5f:fb:9c:ea:3e:8c:f3:c0:32:7c: 4a:cb:d8:93:75:7b:b5:20:1c:26:c7:a8:ac:de:03:ae:61:4f: 67:cd:55:2c -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUStTmDxpHTc57baUUu5VqLc1wUVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUxMDlaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQGE4ZTA4M2VkNzU5ZjNjOThiZTJiNTdiMmQyZTQ1M2M4YjhjNDBjOTdiZTc1 OGVlOWFjOTIwMDBhMjc0MTAyOWMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANjuvdluyJBfc/rbdGJqa556c2sTorQ1cvxTooQKVxhSq3gtaFBOrQ9iAjMz NBYeOur6c14SnujS4mEpr3FikLHV09Zu8Kg/f/0AUQj+jugz3gAweB7HnCKbH4De ER+knBDuipikDtrfAp9ZidBs4tcYTBnd0Ykbt2SDJf5Eg0KNPPG0h4APETGJk4Vf MMZiKhVZIeY1tSr49q6Zubn+i6Lznbf+lQsG0MUkuIUvNfHBXU/8/S18xjXjegOz DwZWseR/owVRqTr+8rOjt3Yd6VKhrRiMnRK/dyFNX8ACNyFi5xQTFcwD1Sti32l+ DOrylNjEYNAFgFCErSp8QY7eEw0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBStqkX1 vOqOvEgaUTJa3MT4NfwXODAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MmZkODAzN2QtMDUzNi00MmJjLWFmNWMtNGQwZWQ0ZjhkZTc4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbAiYDAN BgkqhkiG9w0BAQsFAAOCAQEAWAGe0otwkFOOsczTMd07rjk/X2El2HuyKEIiGaNJ jDwibvJlEiL1xOwZSPEt5iFgcBC5kZaVifw+LmYzADehqU4bQo8aTtmwXsblxT8b WSaSs5eoTdNfwgLncBtx87xcx9EqXQQnt34CYVGQNfXX0nIJj6rvcBlM7GuS0GyY cASCmTb+6wTeHnoyQZuX/I7AOQUKrAxwUbJ5Ne2xym9lTMi6KYRTsvhzRJ9F5ozh gX+yG+IA4nmYphAe6F+3V475Dmqp5MTx0q/avlpM0CClAr/VhQtICvoq7lM9HK9z Dnlf+5zqPozzwDJ8SsvYk3V7tSAcJseorN4DrmFPZ81VLA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:37:54 2025 by rpki-client