This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/40318891-5508-4eb6-bace-e245fbeb145a.roa File: 40318891-5508-4eb6-bace-e245fbeb145a.roa (raw, json) Hash identifier: 25EFRjpbTKV63fMxxnUNjNclhZ/I/9rMbF4b3f0UIlA= Subject key identifier: 4E:B9:4A:86:2A:02:28:30:56:ED:DB:AD:D6:D8:83:1E:A6:FC:9D:51 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5674D3ED9882411CE138C63F6BFDF1A8BC41EC77 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/40318891-5508-4eb6-bace-e245fbeb145a.roa Signing time: Tue 02 Dec 2025 01:51:11 +0000 ROA not before: Tue 02 Dec 2025 01:51:11 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.34.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:74:d3:ed:98:82:41:1c:e1:38:c6:3f:6b:fd:f1:a8:bc:41:ec:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:51:11 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=173dfa1b4f9750a0914d7291b46f50c46eac7cf3bf41af0b3282b6b61b706c31, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:be:07:8b:6c:46:db:cd:21:94:47:24:e5:c1: 9c:c9:6d:eb:10:e6:ea:8d:d6:dd:83:98:7d:c2:0a: 9b:2f:cc:8d:88:58:c3:f5:7c:29:b6:80:3b:1b:7f: 19:1c:82:9d:4e:ae:1b:61:3e:e8:ca:e0:21:ca:26: e5:61:d7:e6:c4:c6:40:ec:e4:40:84:91:26:7b:eb: 26:6e:40:99:4f:47:5c:7c:c3:8a:7f:ce:7a:cc:1a: 99:c5:94:71:6d:50:b8:51:41:b1:ee:04:f3:0e:a4: a3:db:77:af:00:b3:b1:64:e2:4a:db:2b:b0:04:f0: 30:ef:22:dc:44:74:31:c9:37:c0:3a:27:74:51:f8: e4:ed:59:7a:3f:73:63:b6:eb:b5:ec:78:f1:52:b1: b2:a2:d7:df:24:cc:31:b6:5b:f6:76:09:40:aa:de: d5:58:9b:f0:67:70:9f:a5:83:57:2d:ac:47:df:d6: 7a:9b:30:bc:f9:41:18:61:64:76:49:60:f6:fe:4d: 0b:9b:52:b8:83:25:3d:4c:0b:09:a6:59:a5:7a:d0: 60:80:7f:fd:90:fa:7b:fd:ac:b5:24:68:21:ea:f4: b6:eb:39:4c:62:c7:6f:32:15:78:02:32:f7:e6:b7: a7:4d:8c:46:c2:ff:c7:1d:41:37:ff:5b:22:cc:56: b0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B9:4A:86:2A:02:28:30:56:ED:DB:AD:D6:D8:83:1E:A6:FC:9D:51 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/40318891-5508-4eb6-bace-e245fbeb145a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.34.160.0/19 Signature Algorithm: sha256WithRSAEncryption 56:6e:13:02:71:b3:96:75:2f:78:f8:ed:b6:6d:05:0e:d1:fc: d5:12:55:28:bd:44:e0:b1:5f:46:5d:70:0e:fc:0f:e0:9a:11: 96:bf:d1:4f:e0:4c:cf:33:d3:ed:41:e4:9a:5b:b2:6e:5b:29: c6:bb:88:b2:3c:70:30:dd:db:4e:6e:b6:88:3b:9b:88:f3:81: a7:fc:d6:00:9b:9f:c3:63:d2:b6:5c:a4:b1:60:e6:08:de:e7: 43:c0:1f:b8:b4:13:c4:73:43:24:4d:fc:69:a0:e5:d3:fc:71: 45:c5:4f:fa:68:14:dd:50:db:bd:b1:e3:3e:2a:3c:d2:b3:89: c0:55:ee:c8:b7:fd:79:9a:14:65:d4:03:5b:34:ab:ec:2f:50: 0e:06:88:2a:7e:74:4b:56:bb:9b:40:c2:02:0e:ae:8d:0b:63: c3:a4:11:05:3c:ff:c0:4e:b7:7b:99:b5:fe:99:74:59:08:47: f0:36:d8:43:2b:c1:1b:64:73:36:31:ac:91:39:d7:ad:03:74: 49:f5:6d:dd:c4:5a:0f:0e:39:b5:15:07:06:28:f1:3f:a2:79: 37:ce:7b:fa:f9:ce:26:9d:08:b4:01:91:b9:92:25:81:fe:29: 03:c0:ea:af:5e:34:ac:b7:4d:1b:7a:27:35:0e:b3:09:66:03: 5f:79:c3:7f -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUVnTT7ZiCQRzhOMY/a/3xqLxB7HcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUxMTFaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDE3M2RmYTFiNGY5NzUwYTA5MTRkNzI5MWI0NmY1MGM0NmVhYzdjZjNiZjQx YWYwYjMyODJiNmI2MWI3MDZjMzExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMi+B4tsRtvNIZRHJOXBnMlt6xDm6o3W3YOYfcIKmy/MjYhYw/V8KbaAOxt/ GRyCnU6uG2E+6MrgIcom5WHX5sTGQOzkQISRJnvrJm5AmU9HXHzDin/OeswamcWU cW1QuFFBse4E8w6ko9t3rwCzsWTiStsrsATwMO8i3ER0Mck3wDondFH45O1Zej9z Y7brtex48VKxsqLX3yTMMbZb9nYJQKre1Vib8Gdwn6WDVy2sR9/WepswvPlBGGFk dklg9v5NC5tSuIMlPUwLCaZZpXrQYIB//ZD6e/2stSRoIer0tus5TGLHbzIVeAIy 9+a3p02MRsL/xx1BN/9bIsxWsBcCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBROuUqG KgIoMFbt263W2IMepvydUTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NDAzMTg4OTEtNTUwOC00ZWI2LWJhY2UtZTI0NWZiZWIxNDVhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbAioDAN BgkqhkiG9w0BAQsFAAOCAQEAVm4TAnGzlnUvePjttm0FDtH81RJVKL1E4LFfRl1w DvwP4JoRlr/RT+BMzzPT7UHkmluyblspxruIsjxwMN3bTm62iDubiPOBp/zWAJuf w2PStlyksWDmCN7nQ8AfuLQTxHNDJE38aaDl0/xxRcVP+mgU3VDbvbHjPio80rOJ wFXuyLf9eZoUZdQDWzSr7C9QDgaIKn50S1a7m0DCAg6ujQtjw6QRBTz/wE63e5m1 /pl0WQhH8DbYQyvBG2RzNjGskTnXrQN0SfVt3cRaDw45tRUHBijxP6J5N857+vnO Jp0ItAGRuZIlgf4pA8Dqr140rLdNG3onNQ6zCWYDX3nDfw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:53:27 2025 by rpki-client