This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/53380a08-b071-4729-9c41-f9a83d36f4c0.roa File: 53380a08-b071-4729-9c41-f9a83d36f4c0.roa (raw, json) Hash identifier: M/yIg6xv6ZENdAXmOlRh6eST6bwStQvGGxu5m2m1BPc= Subject key identifier: 06:2B:A3:F1:0E:D3:57:25:79:84:C2:46:C6:94:ED:B3:DE:DF:BA:0A Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 10D012F49D1BCDD2DFBBBA0C007555BF2886B59E Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/53380a08-b071-4729-9c41-f9a83d36f4c0.roa Signing time: Tue 02 Dec 2025 01:51:28 +0000 ROA not before: Tue 02 Dec 2025 01:51:28 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.32.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:d0:12:f4:9d:1b:cd:d2:df:bb:ba:0c:00:75:55:bf:28:86:b5:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:51:28 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=80b688cb8628a0bc51857cc4a41e092c3ab8821061d0d0fe999f3cf830233baa, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:74:94:c4:db:20:4e:66:2b:fd:6f:b5:ac:1d: 68:78:b1:6f:c8:a4:37:d2:34:90:e7:bb:84:a8:42: 98:07:9d:cb:7b:70:7e:5b:37:3b:fd:ef:27:76:4c: 1e:5a:ae:aa:d3:f6:1a:a8:59:f1:68:b2:33:63:62: e2:16:f9:e2:3a:18:21:77:fc:e4:7d:d7:1e:d8:bf: 6a:20:90:fb:ae:46:da:b1:d7:73:25:68:9d:a4:a7: 19:e4:2b:3c:18:03:bd:15:93:35:36:90:92:54:56: 3d:73:04:a5:87:1c:a0:f2:37:cd:a7:9e:f7:b4:af: 9d:29:aa:d5:28:3c:3e:b4:e8:b8:79:2e:3c:bf:ba: cd:04:d6:4f:75:81:b6:b1:2b:74:ca:90:9a:dd:fc: 7c:51:7f:e8:f5:2a:ea:98:a0:0a:26:6a:5e:27:84: 03:5c:ba:3c:80:27:fd:c4:f4:fe:ef:e9:30:73:36: 8b:23:63:fb:ce:a3:fb:ca:b4:b4:e5:ea:dc:60:41: 6f:f9:27:d7:9b:cd:cd:a4:39:d6:35:14:3c:51:58: cd:fd:7e:85:42:74:1f:e1:82:4a:6a:49:07:83:f5: c7:a2:ac:75:52:50:b9:7f:eb:bc:88:fa:ef:0c:6f: 55:f8:0e:87:c2:12:d8:d5:9f:17:9d:df:2e:b5:f8: 6a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:2B:A3:F1:0E:D3:57:25:79:84:C2:46:C6:94:ED:B3:DE:DF:BA:0A X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/53380a08-b071-4729-9c41-f9a83d36f4c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.32.80.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:54:73:79:22:06:f9:86:5a:b2:28:66:02:f3:54:57:d4:87: fa:62:d5:dc:25:74:9c:69:b6:0d:ac:ff:a5:f8:7a:7d:8c:e8: 8c:26:31:20:70:8b:da:0e:c1:4d:72:f9:6c:3b:33:93:ff:80: f8:a3:04:d4:36:2d:8e:1a:fb:ea:50:fd:46:7f:89:ac:1c:96: 0a:73:e8:62:ff:3b:11:e8:82:3b:da:fb:54:54:22:9a:e1:b6: b9:f0:b2:37:e1:44:9e:02:4c:1b:ee:f9:22:fa:f4:7a:ad:63: fe:e2:d8:d6:68:e2:55:02:9e:ad:d0:e4:e5:27:4d:ee:af:56: c1:98:1b:18:25:2f:c8:96:91:ff:8e:80:17:0b:b9:cf:5c:f1: 5e:dd:62:5d:5c:47:20:ad:de:3b:cf:c0:93:6d:82:e2:cf:d0: 83:3f:79:0c:ca:f3:9b:96:bb:ea:3a:c9:81:4f:81:90:9b:a7: 04:b4:c5:4d:13:4d:45:e3:fc:68:e9:00:f0:66:dd:0b:49:f9: 22:4d:30:be:bf:d6:cc:e8:2b:25:a8:14:0d:41:f1:c9:46:ad: b5:da:ee:a3:59:83:6e:d5:af:00:96:48:a4:99:dc:19:16:1c: 54:12:ec:61:de:76:a4:61:88:9c:c1:8c:17:32:f5:f0:c5:53: bb:e5:f5:68 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUENAS9J0bzdLfu7oMAHVVvyiGtZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUxMjhaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDgwYjY4OGNiODYyOGEwYmM1MTg1N2NjNGE0MWUwOTJjM2FiODgyMTA2MWQw ZDBmZTk5OWYzY2Y4MzAyMzNiYWExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMh0lMTbIE5mK/1vtawdaHixb8ikN9I0kOe7hKhCmAedy3twfls3O/3vJ3ZM HlquqtP2GqhZ8WiyM2Ni4hb54joYIXf85H3XHti/aiCQ+65G2rHXcyVonaSnGeQr PBgDvRWTNTaQklRWPXMEpYccoPI3zaee97SvnSmq1Sg8PrTouHkuPL+6zQTWT3WB trErdMqQmt38fFF/6PUq6pigCiZqXieEA1y6PIAn/cT0/u/pMHM2iyNj+86j+8q0 tOXq3GBBb/kn15vNzaQ51jUUPFFYzf1+hUJ0H+GCSmpJB4P1x6KsdVJQuX/rvIj6 7wxvVfgOh8IS2NWfF53fLrX4au8CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQGK6Px DtNXJXmEwkbGlO2z3t+6CjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTMzODBhMDgtYjA3MS00NzI5LTljNDEtZjlhODNkMzZmNGMwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArAgUDAN BgkqhkiG9w0BAQsFAAOCAQEAHlRzeSIG+YZasihmAvNUV9SH+mLV3CV0nGm2Daz/ pfh6fYzojCYxIHCL2g7BTXL5bDszk/+A+KME1DYtjhr76lD9Rn+JrByWCnPoYv87 EeiCO9r7VFQimuG2ufCyN+FEngJMG+75Ivr0eq1j/uLY1mjiVQKerdDk5SdN7q9W wZgbGCUvyJaR/46AFwu5z1zxXt1iXVxHIK3eO8/Ak22C4s/Qgz95DMrzm5a76jrJ gU+BkJunBLTFTRNNReP8aOkA8GbdC0n5Ik0wvr/WzOgrJagUDUHxyUattdruo1mD btWvAJZIpJncGRYcVBLsYd52pGGInMGMFzL18MVTu+X1aA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:39 2025 by rpki-client