This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/513c0075-edb1-461e-a07d-4eb5874bd9ce.roa File: 513c0075-edb1-461e-a07d-4eb5874bd9ce.roa (raw, json) Hash identifier: qoudb06m+XFpGmwuMZsKMQhyACbzy5BgRDik9TTrKnw= Subject key identifier: C6:26:CC:D3:2C:09:71:FD:4B:67:C2:EC:5D:1A:96:D9:93:C0:54:5E Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3CDED325899B8C9BF489B04E4F89AD7E970B19FA Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/513c0075-edb1-461e-a07d-4eb5874bd9ce.roa Signing time: Tue 02 Dec 2025 01:50:10 +0000 ROA not before: Tue 02 Dec 2025 01:50:10 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.34.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:de:d3:25:89:9b:8c:9b:f4:89:b0:4e:4f:89:ad:7e:97:0b:19:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:50:10 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=c0300fb2ccc5730b600b10f0ebbe87814dab674155bc37db4a35c755872dd3e7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3e:ef:3c:93:7a:4a:7f:d2:65:1b:6b:8a:26: a7:7a:e6:c8:29:91:1c:91:82:24:f6:03:85:28:65: 6c:3e:89:97:ad:c4:c0:33:6f:44:2e:ac:32:3c:ae: 63:b1:8d:2f:e6:64:2a:0e:d2:20:fe:cb:f9:e5:96: 70:ba:a6:b1:1a:4a:10:f9:d1:a3:47:38:33:fe:03: ee:0c:74:93:89:8f:45:cb:a9:8c:bc:57:35:76:2b: 75:d6:47:c0:22:86:fc:aa:2a:9a:de:4d:88:23:37: cb:e1:6e:ce:55:02:27:c8:14:89:0f:47:81:aa:4d: 20:f7:6a:03:75:ff:2c:5e:e3:ff:7c:72:b5:8f:73: 70:fd:c8:74:70:3b:bd:54:ba:af:82:29:e7:ca:e2: b4:59:5c:04:dc:6b:3d:4f:e8:fc:ab:27:2e:8f:e6: 8b:76:6d:c8:a7:05:58:17:c3:5c:6c:90:db:5e:10: 68:f2:4e:ad:5e:e9:35:2d:7e:d8:2c:92:b7:ea:f0: b3:86:ff:3e:51:29:5b:2e:8f:01:ea:27:4b:cc:fc: c9:eb:49:c0:02:38:a0:43:42:55:7d:fd:9f:43:71: 51:3a:2c:97:ae:03:b5:a2:ed:f6:6d:3d:ba:36:ee: ae:62:27:cc:29:75:d4:63:c1:dd:85:c7:ab:2e:d8: fd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:26:CC:D3:2C:09:71:FD:4B:67:C2:EC:5D:1A:96:D9:93:C0:54:5E X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/513c0075-edb1-461e-a07d-4eb5874bd9ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.34.160.0/20 Signature Algorithm: sha256WithRSAEncryption 8a:ec:7c:b0:38:8f:64:ee:52:fe:f6:93:9a:f7:b2:89:c7:c1: f0:fa:fd:0d:22:2a:41:39:93:9f:21:6b:e2:2f:02:12:59:09: 9d:8e:c7:47:b9:00:7c:b3:0b:c4:57:40:22:95:86:2a:1d:93: 1c:20:42:a0:7a:bf:45:39:21:29:1f:89:a3:7f:f1:40:bc:62: 6a:18:25:1c:44:3d:76:88:51:b4:a7:7c:79:ee:dd:ee:c6:ae: 6b:dc:76:7e:38:06:f6:dc:2a:04:0b:5f:64:d5:04:88:a2:4e: ed:a3:1e:e8:d3:82:c5:47:54:4c:bb:85:73:ba:83:c6:63:d2: 82:35:47:a1:14:b1:c5:c3:d3:ac:18:89:0e:c6:b6:da:2e:30: c9:61:b3:3f:dd:35:fd:c7:d4:16:ae:19:36:ca:a6:e1:c0:9b: 99:4d:bd:35:0d:ee:37:0a:60:1d:62:4b:b9:79:b4:a7:1a:81: f3:77:be:3c:fd:c9:67:0b:52:81:e5:99:be:b8:2c:2e:03:14: 03:54:56:82:7e:4a:a0:ef:19:ca:41:91:62:8f:79:23:50:14: 22:56:52:65:c4:4f:8e:4b:c2:ae:76:83:b9:89:62:0a:dc:9b: e6:d0:fb:48:3e:70:6f:86:f3:b6:8c:58:13:c5:43:51:3b:07: 55:f4:82:c2 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUPN7TJYmbjJv0ibBOT4mtfpcLGfowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUwMTBaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQGMwMzAwZmIyY2NjNTczMGI2MDBiMTBmMGViYmU4NzgxNGRhYjY3NDE1NWJj MzdkYjRhMzVjNzU1ODcyZGQzZTcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0+7zyTekp/0mUba4omp3rmyCmRHJGCJPYDhShlbD6Jl63EwDNvRC6sMjyu Y7GNL+ZkKg7SIP7L+eWWcLqmsRpKEPnRo0c4M/4D7gx0k4mPRcupjLxXNXYrddZH wCKG/Koqmt5NiCM3y+FuzlUCJ8gUiQ9HgapNIPdqA3X/LF7j/3xytY9zcP3IdHA7 vVS6r4Ip58ritFlcBNxrPU/o/KsnLo/mi3ZtyKcFWBfDXGyQ214QaPJOrV7pNS1+ 2CySt+rws4b/PlEpWy6PAeonS8z8yetJwAI4oENCVX39n0NxUTosl64DtaLt9m09 ujburmInzCl11GPB3YXHqy7Y/cECAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTGJszT LAlx/UtnwuxdGpbZk8BUXjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTEzYzAwNzUtZWRiMS00NjFlLWEwN2QtNGViNTg3NGJkOWNlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBLAioDAN BgkqhkiG9w0BAQsFAAOCAQEAiux8sDiPZO5S/vaTmveyicfB8Pr9DSIqQTmTnyFr 4i8CElkJnY7HR7kAfLMLxFdAIpWGKh2THCBCoHq/RTkhKR+Jo3/xQLxiahglHEQ9 dohRtKd8ee7d7saua9x2fjgG9twqBAtfZNUEiKJO7aMe6NOCxUdUTLuFc7qDxmPS gjVHoRSxxcPTrBiJDsa22i4wyWGzP901/cfUFq4ZNsqm4cCbmU29NQ3uNwpgHWJL uXm0pxqB83e+PP3JZwtSgeWZvrgsLgMUA1RWgn5KoO8ZykGRYo95I1AUIlZSZcRP jkvCrnaDuYliCtyb5tD7SD5wb4bztoxYE8VDUTsHVfSCwg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:24 2025 by rpki-client