This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5dca02e6-03a4-4251-b6d3-5c96d22af7cb.roa File: 5dca02e6-03a4-4251-b6d3-5c96d22af7cb.roa (raw, json) Hash identifier: DXPL/HdPmniiexfAqJFWW3pGcBO0SnteyanrOerSKwk= Subject key identifier: 0E:97:53:60:0E:F7:C2:3C:3B:61:E2:74:97:32:D5:83:7E:C3:17:1A Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3475A993EFE649CD551A2023A71C351A393CFADB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5dca02e6-03a4-4251-b6d3-5c96d22af7cb.roa Signing time: Wed 10 Dec 2025 05:50:59 +0000 ROA not before: Wed 10 Dec 2025 05:50:59 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:75:a9:93:ef:e6:49:cd:55:1a:20:23:a7:1c:35:1a:39:3c:fa:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:50:59 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=ef4eaa65e7d24d972300be65ef5ddc36ebcbab23e890b8728cbf69de6a60bfde, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:42:83:43:e8:de:b7:3f:28:df:af:b8:b7:11: 53:6f:0e:ad:08:dc:b3:86:16:e3:dc:df:11:f1:e7: 07:8d:97:c6:8c:29:8e:cf:fe:d7:fc:71:6e:cf:7f: 93:0a:ee:65:87:23:93:53:a8:84:36:a7:35:8a:59: 47:e1:3f:5e:c7:f5:f5:f3:8d:fc:93:fc:94:d3:06: 9d:e2:17:b2:74:bb:50:4a:e0:3b:28:cd:b9:d4:e2: 20:5d:f8:01:76:73:82:61:77:ff:44:b5:bf:bb:80: 04:48:2e:ad:02:70:90:bb:0f:44:ce:c5:31:8c:95: 00:f3:ea:47:95:40:4a:75:cb:8b:80:2b:63:dd:af: b6:59:75:3d:ef:69:28:28:a8:7d:e9:fe:78:f9:b1: 87:bc:c0:f7:fe:32:7c:c5:55:a3:7f:75:e1:d5:a1: d8:cb:40:91:8b:7c:97:37:02:7a:ad:f9:f9:1b:4b: 15:3e:e1:c2:16:67:8f:68:ff:a7:b8:72:6a:7c:55: 2d:a6:2a:76:fc:dd:9d:b7:d3:3a:c5:36:fd:26:ab: 5e:c9:a0:f9:37:0d:00:9a:0c:34:58:b5:02:15:c3: 5d:6d:a5:92:08:ab:84:c3:9c:f6:0a:0d:cf:04:bc: d2:39:d7:52:df:6b:8f:51:bb:29:cd:a2:11:56:f2: a2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:97:53:60:0E:F7:C2:3C:3B:61:E2:74:97:32:D5:83:7E:C3:17:1A X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5dca02e6-03a4-4251-b6d3-5c96d22af7cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.24.0/22 Signature Algorithm: sha256WithRSAEncryption 60:79:0b:09:c3:27:9a:55:fb:35:92:f4:88:12:63:e0:da:22: 68:98:3c:18:82:f7:6e:ef:34:9e:20:14:ab:8f:a6:ec:a4:79: 38:0a:b2:3a:91:c0:3d:ff:5f:42:bc:97:d8:9c:96:bf:4f:3e: ac:67:5a:46:ad:ce:1f:c5:7a:d8:18:10:5a:f6:12:28:1c:b1: 7e:ee:21:9f:2b:7c:2e:0e:45:3c:00:48:72:03:d9:4c:a1:ba: 30:af:75:ee:74:4d:c6:2c:50:c1:b9:84:e9:59:0d:3c:8d:0a: 0a:25:e6:9e:3c:c6:d0:f2:24:dd:5c:0f:6a:ab:2d:e0:3d:12: d8:4c:08:4b:87:1e:4a:8d:0b:66:59:fb:e8:e2:ec:f2:40:62: 78:f0:ca:7a:1b:53:6b:ca:93:bd:f1:24:51:aa:b6:43:bc:1f: d6:f1:90:6c:12:b7:ee:b8:e9:55:25:4a:31:ec:36:bc:f1:49: 58:74:55:83:6d:bc:61:00:eb:c5:9d:ef:d0:63:c2:be:2c:37: e7:df:89:66:6a:f5:78:6c:ed:2b:93:82:3d:14:8e:7e:5a:5a: 45:b8:7d:d6:72:19:1f:0f:dd:10:65:e7:be:6b:99:d5:cc:e4: 74:ea:cc:9f:a0:01:6f:77:06:eb:25:c1:b1:a8:ca:4e:4b:84: f9:ab:bc:cb -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUNHWpk+/mSc1VGiAjpxw1Gjk8+tswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUwNTlaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGVmNGVhYTY1ZTdkMjRkOTcyMzAwYmU2NWVmNWRkYzM2ZWJjYmFiMjNlODkw Yjg3MjhjYmY2OWRlNmE2MGJmZGUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALtCg0Po3rc/KN+vuLcRU28OrQjcs4YW49zfEfHnB42Xxowpjs/+1/xxbs9/ kwruZYcjk1OohDanNYpZR+E/Xsf19fON/JP8lNMGneIXsnS7UErgOyjNudTiIF34 AXZzgmF3/0S1v7uABEgurQJwkLsPRM7FMYyVAPPqR5VASnXLi4ArY92vtll1Pe9p KCiofen+ePmxh7zA9/4yfMVVo3914dWh2MtAkYt8lzcCeq35+RtLFT7hwhZnj2j/ p7hyanxVLaYqdvzdnbfTOsU2/SarXsmg+TcNAJoMNFi1AhXDXW2lkgirhMOc9goN zwS80jnXUt9rj1G7Kc2iEVbyor0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQOl1Ng DvfCPDth4nSXMtWDfsMXGjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NWRjYTAyZTYtMDNhNC00MjUxLWI2ZDMtNWM5NmQyMmFmN2NiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAk99GDAN BgkqhkiG9w0BAQsFAAOCAQEAYHkLCcMnmlX7NZL0iBJj4NoiaJg8GIL3bu80niAU q4+m7KR5OAqyOpHAPf9fQryX2JyWv08+rGdaRq3OH8V62BgQWvYSKByxfu4hnyt8 Lg5FPABIcgPZTKG6MK917nRNxixQwbmE6VkNPI0KCiXmnjzG0PIk3VwPaqst4D0S 2EwIS4ceSo0LZln76OLs8kBiePDKehtTa8qTvfEkUaq2Q7wf1vGQbBK37rjpVSVK Mew2vPFJWHRVg228YQDrxZ3v0GPCviw359+JZmr1eGztK5OCPRSOflpaRbh91nIZ Hw/dEGXnvmuZ1czkdOrMn6ABb3cG6yXBsajKTkuE+au8yw== -----END CERTIFICATE-----Generated at Mon Dec 15 15:34:34 2025 by rpki-client