This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/54957543-b22c-43fb-b523-8f40c64fe15d.roa File: 54957543-b22c-43fb-b523-8f40c64fe15d.roa (raw, json) Hash identifier: 3iba/VSEOzwG4reti+E4N5dmepYgh/cj68JxfS8ni/Q= Subject key identifier: 8B:AA:10:CA:C1:87:14:CA:14:0B:77:6A:6E:BB:C6:22:B5:A0:D2:B8 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3EA9AADDCEEEDBD06702342EE13784A97745E839 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/54957543-b22c-43fb-b523-8f40c64fe15d.roa Signing time: Fri 05 Dec 2025 01:00:09 +0000 ROA not before: Fri 05 Dec 2025 01:00:09 +0000 ROA not after: Thu 05 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.34.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:a9:aa:dd:ce:ee:db:d0:67:02:34:2e:e1:37:84:a9:77:45:e8:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 5 01:00:09 2025 GMT Not After : Mar 5 23:59:59 2026 GMT Subject: serialNumber=de19f5bca60c6db4c602da32ff7d7e64f9476835603ddbe3119c26823e9f0b73, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a9:2f:7e:2e:cc:d5:8e:48:6f:e5:6b:a4:06: 19:2d:18:30:de:9d:ed:36:0a:8f:c0:d1:52:00:a9: 46:ea:59:60:bd:21:8d:eb:8a:34:94:d4:78:17:45: 1d:bf:9f:38:2b:59:af:80:fe:83:19:ec:0f:52:ba: b6:c7:f1:e8:c3:85:e0:59:7c:24:15:e9:c9:d9:35: d0:18:8d:d6:05:d0:7b:e8:c8:f8:9e:d8:46:42:2f: d6:06:1d:b2:3a:41:14:ef:70:d4:b8:81:ce:a6:06: 72:8b:e8:04:fd:da:c3:50:9d:0a:d5:bb:e4:8a:d7: 3c:97:d8:1e:76:06:50:a0:db:be:e3:8d:36:b8:83: 6b:f0:92:6a:fa:0d:e8:33:d0:99:66:47:50:f7:43: b5:cf:31:2b:3c:cb:9c:de:6f:97:0c:24:47:56:a5: 99:f2:4d:ae:de:b4:30:96:0a:dd:19:18:c8:be:7e: 86:75:e6:45:5c:90:0d:e1:fe:b4:bf:70:18:d4:f7: 48:61:8f:2c:f5:37:d0:9e:c3:2e:27:62:89:2a:6c: 9d:ca:67:64:4e:65:b2:55:b7:fc:60:53:ee:7c:27: 4f:30:68:59:7f:67:46:35:f1:fa:d8:39:40:0b:84: 33:02:29:56:a7:37:c3:4c:cd:64:78:05:c0:2d:00: 1a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:AA:10:CA:C1:87:14:CA:14:0B:77:6A:6E:BB:C6:22:B5:A0:D2:B8 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/54957543-b22c-43fb-b523-8f40c64fe15d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.34.192.0/19 Signature Algorithm: sha256WithRSAEncryption b5:30:c2:30:30:a7:d6:4c:56:88:22:fe:4b:df:7f:75:cc:80: f7:93:28:8b:82:a8:9f:89:af:8e:0b:98:51:bb:44:b9:c8:d9: 69:78:3b:26:eb:e9:04:f3:6a:81:b5:0d:70:d4:05:34:aa:39: d3:d2:12:12:80:0e:88:36:77:85:9c:cd:3e:00:b9:35:1e:c3: 5d:eb:44:8c:ec:81:5f:fe:e4:e6:a7:d3:ae:ed:c8:73:79:57: 91:7f:0a:67:74:87:05:e6:2c:40:ee:e1:17:39:4a:0b:db:42: 7c:b9:54:c0:96:ed:2a:a7:9a:79:ed:8c:8a:92:7b:5a:aa:2d: 6f:66:3e:8e:10:bf:26:5d:4c:74:5f:fd:f2:3f:47:03:0b:ac: 9f:c4:90:c7:b7:c7:32:48:71:ba:fa:f6:14:ee:24:1e:c0:24: 9c:d3:eb:42:0c:8a:7b:cd:4b:ce:57:89:2e:8c:e4:ca:35:4c: 0d:d3:e4:87:5d:12:b1:35:7d:49:a0:22:cb:7e:91:78:fd:b5: d0:ad:6e:c6:d6:f2:30:50:b1:90:76:46:fb:37:20:76:60:d0: 5a:9f:ff:c8:10:b7:1a:2f:e4:2a:24:a1:b5:2d:34:c0:e1:f8: d5:e4:0f:5f:63:22:13:6c:db:04:53:15:ef:d8:36:86:ce:61: 83:ee:db:ab -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUPqmq3c7u29BnAjQu4TeEqXdF6DkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDUwMTAwMDlaFw0yNjAzMDUyMzU5NTlaMHoxSTBHBgNV BAUTQGRlMTlmNWJjYTYwYzZkYjRjNjAyZGEzMmZmN2Q3ZTY0Zjk0NzY4MzU2MDNk ZGJlMzExOWMyNjgyM2U5ZjBiNzMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALapL34uzNWOSG/la6QGGS0YMN6d7TYKj8DRUgCpRupZYL0hjeuKNJTUeBdF Hb+fOCtZr4D+gxnsD1K6tsfx6MOF4Fl8JBXpydk10BiN1gXQe+jI+J7YRkIv1gYd sjpBFO9w1LiBzqYGcovoBP3aw1CdCtW75IrXPJfYHnYGUKDbvuONNriDa/CSavoN 6DPQmWZHUPdDtc8xKzzLnN5vlwwkR1almfJNrt60MJYK3RkYyL5+hnXmRVyQDeH+ tL9wGNT3SGGPLPU30J7DLidiiSpsncpnZE5lslW3/GBT7nwnTzBoWX9nRjXx+tg5 QAuEMwIpVqc3w0zNZHgFwC0AGqkCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSLqhDK wYcUyhQLd2puu8YitaDSuDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTQ5NTc1NDMtYjIyYy00M2ZiLWI1MjMtOGY0MGM2NGZlMTVkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbAiwDAN BgkqhkiG9w0BAQsFAAOCAQEAtTDCMDCn1kxWiCL+S99/dcyA95Moi4Kon4mvjguY UbtEucjZaXg7JuvpBPNqgbUNcNQFNKo509ISEoAOiDZ3hZzNPgC5NR7DXetEjOyB X/7k5qfTru3Ic3lXkX8KZ3SHBeYsQO7hFzlKC9tCfLlUwJbtKqeaee2MipJ7Wqot b2Y+jhC/Jl1MdF/98j9HAwusn8SQx7fHMkhxuvr2FO4kHsAknNPrQgyKe81LzleJ LozkyjVMDdPkh10SsTV9SaAiy36ReP210K1uxtbyMFCxkHZG+zcgdmDQWp//yBC3 Gi/kKiShtS00wOH41eQPX2MiE2zbBFMV79g2hs5hg+7bqw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:58 2025 by rpki-client