This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37b584fa-f648-4a07-9cbd-40bfef4a0b2f.roa File: 37b584fa-f648-4a07-9cbd-40bfef4a0b2f.roa (raw, json) Hash identifier: 0VuofWJmvYkPpSq0kCCybgjjeFZXx8fNBo7+QuO+XiI= Subject key identifier: 34:16:56:FE:58:8C:10:76:EB:A3:B6:F2:6D:7E:DB:13:CA:A5:DC:D7 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 469B9F411FCEA4B436B2AB7882A289A764679397 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37b584fa-f648-4a07-9cbd-40bfef4a0b2f.roa Signing time: Sat 15 Nov 2025 05:50:32 +0000 ROA not before: Sat 15 Nov 2025 05:50:32 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 185.48.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:9b:9f:41:1f:ce:a4:b4:36:b2:ab:78:82:a2:89:a7:64:67:93:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:50:32 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=4dd795c32dddffa695cd288f11e7903f410e1d5163c26cb632442cb6287ef35e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:27:6c:cf:da:52:9e:f3:b1:9b:64:db:e0:c1: 54:df:4e:bd:4c:b2:41:56:56:39:30:c0:44:43:ac: ce:c3:fe:68:a2:bd:18:d7:43:7a:52:bd:2a:cb:75: b6:2f:54:0f:de:3c:72:b8:89:fe:ed:9e:a8:5f:6d: 35:59:41:3d:2d:10:60:db:06:93:a8:8b:f2:9e:09: b4:20:35:8f:1e:52:6b:0b:69:92:29:45:cf:82:f9: 2e:74:3e:ea:57:ec:5f:f3:0c:16:f5:b1:af:51:4a: 8f:74:f9:13:a1:76:d9:e9:f4:27:10:63:7a:63:a6: f8:a9:8a:15:3e:ba:3d:18:42:d5:c7:92:54:aa:2a: 88:a6:c8:ad:74:9b:c7:3a:b4:67:a4:34:90:41:4b: 1c:fb:e2:f0:63:60:e4:c2:b0:3a:64:24:1f:43:e4: e1:a1:80:6f:6b:f0:00:a4:ab:68:b6:6c:29:a8:d2: ac:18:88:25:68:b1:e9:d6:fc:99:01:06:44:26:42: 47:1e:6a:e0:c9:e0:d5:ac:ef:cf:10:1d:ee:bf:3e: 76:43:b3:22:25:70:8a:bb:f0:72:c6:d6:f2:69:35: 1f:c4:4c:57:a6:d5:a8:40:f1:85:8f:88:c2:56:b9: 33:b6:f0:05:ff:a5:6a:d3:d5:ef:6e:e8:f0:d4:ff: 02:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:16:56:FE:58:8C:10:76:EB:A3:B6:F2:6D:7E:DB:13:CA:A5:DC:D7 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37b584fa-f648-4a07-9cbd-40bfef4a0b2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.48.120.0/22 Signature Algorithm: sha256WithRSAEncryption 26:02:80:ec:0b:db:25:7a:f2:1b:3c:25:13:6f:19:e1:70:23: 6b:d3:70:cf:44:4f:b4:bc:f4:e1:fc:6b:ba:6c:4a:8f:6f:8a: 66:3a:0d:82:2a:fc:58:52:6a:a5:fd:d9:21:31:2c:8d:23:04: b0:dd:46:4e:20:49:43:b1:05:b9:7b:3e:7f:90:5a:30:4d:0e: fa:39:b7:03:61:01:99:0c:f1:f6:64:12:af:21:36:1f:9d:f5: cd:40:5e:7a:fb:d8:ef:af:b6:08:a3:07:b5:75:42:0f:dc:6f: 9f:30:00:ba:f0:20:d6:0f:1c:a6:91:9c:c9:0d:1b:7a:61:68: a7:98:ea:71:35:a9:0b:ef:39:82:b8:da:bc:1b:52:7b:b9:b0: 58:1d:6e:1f:72:ec:2f:af:33:56:51:fc:36:ae:ad:2e:73:8b: 94:4b:b2:ca:dd:3a:cc:43:67:3b:dc:17:25:eb:34:92:ad:ef: 14:ee:9c:f9:72:5f:3d:38:ba:e6:21:09:cd:ab:38:71:2b:80: 6e:19:bc:7a:61:ca:cd:bd:56:85:6f:83:23:2c:10:15:9b:cc: aa:f3:4e:7d:b7:12:bc:bf:af:24:a8:9b:c3:dc:25:1d:75:70: e4:70:34:e8:8f:1e:cf:39:13:1c:0c:8d:1e:10:1c:38:71:2c: c8:95:4a:a6 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIURpufQR/OpLQ2sqt4gqKJp2Rnk5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTUwMzJaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDRkZDc5NWMzMmRkZGZmYTY5NWNkMjg4ZjExZTc5MDNmNDEwZTFkNTE2M2My NmNiNjMyNDQyY2I2Mjg3ZWYzNWUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEnbM/aUp7zsZtk2+DBVN9OvUyyQVZWOTDAREOszsP+aKK9GNdDelK9Kst1 ti9UD948criJ/u2eqF9tNVlBPS0QYNsGk6iL8p4JtCA1jx5SawtpkilFz4L5LnQ+ 6lfsX/MMFvWxr1FKj3T5E6F22en0JxBjemOm+KmKFT66PRhC1ceSVKoqiKbIrXSb xzq0Z6Q0kEFLHPvi8GNg5MKwOmQkH0Pk4aGAb2vwAKSraLZsKajSrBiIJWix6db8 mQEGRCZCRx5q4Mng1azvzxAd7r8+dkOzIiVwirvwcsbW8mk1H8RMV6bVqEDxhY+I wla5M7bwBf+latPV727o8NT/Ag0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQ0Flb+ WIwQduujtvJtftsTyqXc1zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MzdiNTg0ZmEtZjY0OC00YTA3LTljYmQtNDBiZmVmNGEwYjJmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkweDAN BgkqhkiG9w0BAQsFAAOCAQEAJgKA7AvbJXryGzwlE28Z4XAja9Nwz0RPtLz04fxr umxKj2+KZjoNgir8WFJqpf3ZITEsjSMEsN1GTiBJQ7EFuXs+f5BaME0O+jm3A2EB mQzx9mQSryE2H531zUBeevvY76+2CKMHtXVCD9xvnzAAuvAg1g8cppGcyQ0bemFo p5jqcTWpC+85grjavBtSe7mwWB1uH3LsL68zVlH8Nq6tLnOLlEuyyt06zENnO9wX Jes0kq3vFO6c+XJfPTi65iEJzas4cSuAbhm8emHKzb1WhW+DIywQFZvMqvNOfbcS vL+vJKibw9wlHXVw5HA06I8ezzkTHAyNHhAcOHEsyJVKpg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:44 2025 by rpki-client