This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/65fd1736-b3cd-4b5b-abca-9d430a70e064.roa File: 65fd1736-b3cd-4b5b-abca-9d430a70e064.roa (raw, json) Hash identifier: PemhRAcn4fmoewP9S/YixzYvnA3aqAnjsKNcvCT0WgM= Subject key identifier: 25:10:22:1F:13:FE:EA:81:AF:B8:5A:E6:57:90:FD:6F:AF:05:68:83 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2BE787F40B8444FE2851996BCE27E42CC07849AE Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/65fd1736-b3cd-4b5b-abca-9d430a70e064.roa Signing time: Tue 02 Dec 2025 02:00:05 +0000 ROA not before: Tue 02 Dec 2025 02:00:05 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.34.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:e7:87:f4:0b:84:44:fe:28:51:99:6b:ce:27:e4:2c:c0:78:49:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 02:00:05 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=8823cc36d3a50a022fa648f802aceae18ea62984f996e3ba332558d97b5f6e0a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:be:1c:bd:b3:bb:9b:c8:9d:83:59:6a:97:50: fb:39:08:16:e5:d8:e2:3b:53:85:88:3d:ba:32:40: 30:39:52:17:0f:49:0d:2b:10:d7:64:66:01:66:78: 19:7d:1a:15:6d:1d:6d:e2:6f:40:1b:ce:eb:55:15: 89:e2:97:0a:97:d0:25:c7:91:70:d0:fd:b1:cb:2d: 56:e7:c4:2c:09:16:76:2a:f4:eb:0c:2c:33:4d:17: 93:87:a8:88:6a:df:7c:d3:4a:17:71:24:f9:00:43: 88:98:cf:0f:5c:68:fb:36:13:0a:db:07:e8:00:41: c9:82:d9:bf:e7:14:bb:3b:e8:95:cc:c4:18:86:50: af:68:82:24:d9:6f:a7:cd:74:f3:7b:47:1b:d1:2d: e6:10:27:89:44:03:62:dc:0b:38:f1:af:eb:23:4b: af:46:3c:c4:bf:17:2f:2a:2e:29:bb:d5:a8:05:96: 30:eb:c9:17:b0:1b:ae:1e:34:e7:a2:25:63:4c:75: b8:41:7d:2e:6e:13:ca:9b:70:df:cc:35:92:82:66: 55:e6:87:4d:f5:2f:c7:8a:e2:65:11:66:53:87:e0: 85:a8:e0:77:ae:c4:3b:1c:46:57:11:9f:6a:8f:48: cb:f8:21:0b:19:4b:a7:bf:9a:c4:0f:8f:10:e0:4b: bb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:10:22:1F:13:FE:EA:81:AF:B8:5A:E6:57:90:FD:6F:AF:05:68:83 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/65fd1736-b3cd-4b5b-abca-9d430a70e064.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.34.192.0/18 Signature Algorithm: sha256WithRSAEncryption 21:1e:63:4f:84:67:e5:dd:cd:d9:05:ca:a3:ed:b0:b8:3f:bf: 15:16:b2:3e:fd:68:fb:d6:b7:69:35:b1:66:e4:a2:4d:41:2a: 91:b6:76:3f:26:1b:4b:de:db:72:a0:ee:14:af:a7:46:5b:20: 27:1f:11:cf:40:55:0d:f0:9a:d6:c7:74:be:6b:b6:04:b9:2c: 21:0e:1f:52:cd:1d:73:97:74:58:2e:e5:db:4a:4b:9d:8b:3a: d4:13:3c:fd:23:b1:28:b1:b4:11:66:80:f2:41:eb:19:17:1e: b9:63:ce:bb:68:58:7f:9f:68:be:78:69:12:78:2e:26:b0:14: 3a:2f:45:7f:6a:ad:45:d5:54:e3:eb:71:fb:f4:0b:81:50:07: a3:3a:44:ab:e8:51:a4:e7:c7:6f:94:f8:19:15:75:01:80:46: 88:f8:6f:65:7a:ff:24:ef:38:96:bd:4b:e9:bf:fd:3d:24:f5: b3:6d:e1:00:65:91:3a:40:c6:c2:53:17:1e:6e:cb:77:97:96: 11:13:07:9a:54:9c:87:29:17:d6:36:e0:66:8d:c3:8a:48:9a: 7a:a9:d2:e3:a3:96:f1:a7:c0:f9:41:bd:5e:1c:b0:8f:42:d6: 69:6a:dc:bf:6c:f2:27:db:00:49:24:da:0e:a9:ac:0a:b2:7b: c6:c8:54:21 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUK+eH9AuERP4oUZlrzifkLMB4Sa4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMjAwMDVaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDg4MjNjYzM2ZDNhNTBhMDIyZmE2NDhmODAyYWNlYWUxOGVhNjI5ODRmOTk2 ZTNiYTMzMjU1OGQ5N2I1ZjZlMGExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOC+HL2zu5vInYNZapdQ+zkIFuXY4jtThYg9ujJAMDlSFw9JDSsQ12RmAWZ4 GX0aFW0dbeJvQBvO61UVieKXCpfQJceRcND9scstVufELAkWdir06wwsM00Xk4eo iGrffNNKF3Ek+QBDiJjPD1xo+zYTCtsH6ABByYLZv+cUuzvolczEGIZQr2iCJNlv p81083tHG9Et5hAniUQDYtwLOPGv6yNLr0Y8xL8XLyouKbvVqAWWMOvJF7Abrh40 56IlY0x1uEF9Lm4Typtw38w1koJmVeaHTfUvx4riZRFmU4fghajgd67EOxxGVxGf ao9Iy/ghCxlLp7+axA+PEOBLu/ECAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQlECIf E/7qga+4WuZXkP1vrwVogzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NjVmZDE3MzYtYjNjZC00YjViLWFiY2EtOWQ0MzBhNzBlMDY0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBrAiwDAN BgkqhkiG9w0BAQsFAAOCAQEAIR5jT4Rn5d3N2QXKo+2wuD+/FRayPv1o+9a3aTWx ZuSiTUEqkbZ2PyYbS97bcqDuFK+nRlsgJx8Rz0BVDfCa1sd0vmu2BLksIQ4fUs0d c5d0WC7l20pLnYs61BM8/SOxKLG0EWaA8kHrGRceuWPOu2hYf59ovnhpEnguJrAU Oi9Ff2qtRdVU4+tx+/QLgVAHozpEq+hRpOfHb5T4GRV1AYBGiPhvZXr/JO84lr1L 6b/9PST1s23hAGWROkDGwlMXHm7Ld5eWERMHmlSchykX1jbgZo3DikiaeqnS46OW 8afA+UG9Xhywj0LWaWrcv2zyJ9sASSTaDqmsCrJ7xshUIQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:32:56 2025 by rpki-client