This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5dca02e6-03a4-4251-b6d3-5c96d22af7cb.roa File: 5dca02e6-03a4-4251-b6d3-5c96d22af7cb.roa (raw, json) Hash identifier: esphSHwvKNnSralqKn/ZqUXB5seZk8IRGsBUC+usqsI= Subject key identifier: 0C:47:82:79:A9:BC:16:AA:22:22:BA:64:33:46:4C:4F:5D:C3:3E:1F Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2C60B4F7271B86A37BB074859068B405C099A148 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5dca02e6-03a4-4251-b6d3-5c96d22af7cb.roa Signing time: Sat 15 Nov 2025 06:00:34 +0000 ROA not before: Sat 15 Nov 2025 06:00:34 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:60:b4:f7:27:1b:86:a3:7b:b0:74:85:90:68:b4:05:c0:99:a1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 06:00:34 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=325d72816e15b0a80c707f6f01ceb7e29a686478cf02ebd130f8f6d76eebe326, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:db:eb:e7:3c:1d:40:9a:a1:d0:02:93:fc:81: 2a:74:35:28:e9:9b:57:1d:b7:f5:1e:be:1f:c1:7c: 5d:e9:9c:1d:3f:4e:7f:b8:34:f6:85:70:5a:39:32: be:22:31:d6:6f:e9:5d:5b:ac:8e:18:51:9d:8b:a5: 65:a6:cd:93:a2:66:d2:eb:34:cc:78:5c:7a:25:ae: 38:61:41:e7:5f:50:b1:2d:40:06:d9:42:16:c8:b5: a6:95:6b:10:b0:84:2e:a2:42:c3:5f:98:8b:1b:79: f3:d3:74:77:dc:42:6f:73:48:4f:26:f4:49:ad:6f: a6:bb:fe:c9:72:d0:26:31:33:2f:bf:9d:6a:44:ca: 8b:88:2b:e9:3d:c1:e0:58:4c:cd:20:b1:72:c4:9c: 4f:c7:2f:b6:87:b6:da:34:9d:d3:89:a6:16:18:2c: d6:a8:6f:1d:36:9a:96:18:00:d9:25:95:b0:4b:34: 70:73:c2:d4:7c:79:7b:cc:ec:fb:b1:03:2f:e7:fe: 41:f7:3d:97:04:18:76:d3:66:e1:1f:95:f8:22:65: c6:3d:e1:88:b8:a7:04:4d:2e:c4:bf:db:7f:b4:20: db:1a:be:d2:f5:3a:d5:b3:05:f7:b9:ed:95:11:9b: 16:a8:8c:f9:c1:f3:33:37:24:5e:f6:8e:5d:ec:5e: b9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:47:82:79:A9:BC:16:AA:22:22:BA:64:33:46:4C:4F:5D:C3:3E:1F X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5dca02e6-03a4-4251-b6d3-5c96d22af7cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.24.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:27:72:07:a7:66:82:8d:34:33:29:0f:84:ee:41:90:dc:59: 95:80:36:29:af:4c:6f:82:41:4f:09:78:a3:56:ad:b8:86:62: 23:86:5c:ad:d8:99:48:32:84:6d:84:49:32:c9:61:38:8f:17: 2b:5b:d1:10:3c:ea:d5:2e:46:56:6b:bb:1f:52:3f:23:fd:bb: b0:39:4a:0e:e7:bb:9f:c4:4f:55:e1:cf:01:68:f8:0e:6a:e8: c4:1e:9f:3f:43:4d:57:5b:54:53:d5:7b:6f:9e:a4:eb:3b:b0: cc:c0:1c:6c:d6:cd:79:16:2b:34:e7:d7:55:a2:61:c8:24:46: 1a:fa:65:d1:74:e6:c9:20:e2:87:54:03:00:3d:12:0d:66:d3: 00:8b:37:f5:1b:52:ce:28:ec:7a:61:ab:bd:cc:b6:42:60:e9: ee:06:53:e1:b9:9b:1e:e8:a5:b0:85:28:9e:9e:45:c1:cc:a8: d2:34:70:34:d6:62:68:12:a5:eb:b4:b0:09:41:b5:9d:ab:e3: a4:8f:5b:11:7e:74:8f:13:7b:7c:23:69:0e:65:67:ac:f8:a4: 32:a3:ff:32:a9:03:ac:1d:3d:4a:ac:b6:85:ab:60:99:8b:b6: db:2f:5a:f6:a1:68:3d:a6:51:6a:bf:b3:31:19:bd:c4:41:31: 6b:b6:7d:91 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIULGC09ycbhqN7sHSFkGi0BcCZoUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNjAwMzRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDMyNWQ3MjgxNmUxNWIwYTgwYzcwN2Y2ZjAxY2ViN2UyOWE2ODY0NzhjZjAy ZWJkMTMwZjhmNmQ3NmVlYmUzMjYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOHb6+c8HUCaodACk/yBKnQ1KOmbVx239R6+H8F8XemcHT9Of7g09oVwWjky viIx1m/pXVusjhhRnYulZabNk6Jm0us0zHhceiWuOGFB519QsS1ABtlCFsi1ppVr ELCELqJCw1+Yixt589N0d9xCb3NITyb0Sa1vprv+yXLQJjEzL7+dakTKi4gr6T3B 4FhMzSCxcsScT8cvtoe22jSd04mmFhgs1qhvHTaalhgA2SWVsEs0cHPC1Hx5e8zs +7EDL+f+Qfc9lwQYdtNm4R+V+CJlxj3hiLinBE0uxL/bf7Qg2xq+0vU61bMF97nt lRGbFqiM+cHzMzckXvaOXexeubUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQMR4J5 qbwWqiIiumQzRkxPXcM+HzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NWRjYTAyZTYtMDNhNC00MjUxLWI2ZDMtNWM5NmQyMmFmN2NiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAk99GDAN BgkqhkiG9w0BAQsFAAOCAQEADidyB6dmgo00MykPhO5BkNxZlYA2Ka9Mb4JBTwl4 o1atuIZiI4ZcrdiZSDKEbYRJMslhOI8XK1vREDzq1S5GVmu7H1I/I/27sDlKDue7 n8RPVeHPAWj4DmroxB6fP0NNV1tUU9V7b56k6zuwzMAcbNbNeRYrNOfXVaJhyCRG Gvpl0XTmySDih1QDAD0SDWbTAIs39RtSzijsemGrvcy2QmDp7gZT4bmbHuilsIUo np5Fwcyo0jRwNNZiaBKl67SwCUG1navjpI9bEX50jxN7fCNpDmVnrPikMqP/MqkD rB09Sqy2hatgmYu22y9a9qFoPaZRar+zMRm9xEExa7Z9kQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:47 2025 by rpki-client