This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/68677111-f27d-417a-8b43-a65f84482997.roa File: 68677111-f27d-417a-8b43-a65f84482997.roa (raw, json) Hash identifier: HRBTy8sprFvOhmI8zbg8NBK6BB8uAcUn8nt7nu1VYmA= Subject key identifier: 91:08:7B:D9:B5:AD:84:E0:12:65:3C:98:00:38:AE:7F:6B:E6:E6:FC Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 208A68B92B6FED0C07900C3456994E617FD60103 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/68677111-f27d-417a-8b43-a65f84482997.roa Signing time: Sat 29 Nov 2025 03:10:42 +0000 ROA not before: Sat 29 Nov 2025 03:10:42 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:8a:68:b9:2b:6f:ed:0c:07:90:0c:34:56:99:4e:61:7f:d6:01:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:10:42 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=0c423101a2506b528a053d6239b275669156fae907a40995763c338aa0cbe527, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d4:92:be:25:c3:c3:0f:61:28:26:f5:f8:44: 6a:7f:f7:a1:3c:69:78:77:2d:7f:c3:12:e4:74:db: f7:ee:39:aa:c1:5e:e4:c4:26:ab:3f:08:2a:f1:a0: d9:29:21:64:ce:fd:fb:30:c9:3c:a6:3a:b2:d5:db: e7:1d:82:16:ee:52:39:c8:21:e8:2d:db:01:1a:48: 83:04:00:b6:b6:09:a5:0d:c8:ba:68:d6:9a:3a:80: 42:81:6d:c5:2e:20:50:01:9b:0c:4e:da:18:62:a4: 4b:7e:58:dd:32:3d:e7:4e:a0:60:c7:4e:89:37:1a: ad:4b:7e:a1:97:1e:54:e8:f7:94:fc:b6:ad:2c:77: 26:de:e6:a4:1b:91:a3:bd:9c:b1:1a:02:07:ed:68: 1d:a9:11:36:9a:36:46:48:21:32:58:d6:b0:57:c4: dc:d2:64:43:19:db:95:d1:22:91:8d:b5:8d:f8:a2: d7:d3:09:2d:85:11:8a:22:31:68:08:4e:cb:1f:b6: 17:a9:7d:f6:77:6a:11:72:6b:dd:81:7d:40:b6:84: 6e:ff:9c:be:35:9e:ba:57:c5:4c:c2:3f:b9:d3:87: 8c:a6:1d:74:a9:a2:19:2a:65:7e:87:df:3f:cb:36: b4:e9:f2:8c:64:5e:7f:82:b9:bd:ed:7d:4d:3a:11: 6b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:08:7B:D9:B5:AD:84:E0:12:65:3C:98:00:38:AE:7F:6B:E6:E6:FC X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/68677111-f27d-417a-8b43-a65f84482997.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.192.0/19 Signature Algorithm: sha256WithRSAEncryption 76:6b:ca:9b:45:8b:3b:0e:ba:ae:8d:cc:e3:de:c1:db:94:30: d9:81:e9:98:21:c5:50:7f:68:7e:8c:e4:23:d2:4e:f9:a1:4f: 7a:cb:75:a1:cc:9d:25:8a:d2:97:45:54:53:c7:dc:6f:db:85: 6e:c6:fa:fb:a4:ac:5a:74:9a:cc:4f:81:82:ff:8a:a1:5a:14: a0:f6:a3:7f:a4:09:a2:b5:dc:03:ad:b8:94:da:42:6e:37:2a: 12:f5:21:af:ae:51:f8:d6:0e:ce:06:18:a2:96:b5:83:ab:c6: 64:bc:9d:d7:c3:3b:e2:75:59:55:7c:6b:13:f1:44:72:97:49: 25:46:ff:65:d3:5d:93:5f:45:9f:ce:25:51:0c:c7:50:75:bd: 13:2d:d3:f8:34:0a:a2:78:bd:76:b1:a3:cf:b2:0c:00:f5:7c: 69:f9:6a:a9:24:e8:bc:ba:d2:ff:8a:d5:f7:f1:f1:55:fa:cd: 72:b8:19:11:8b:d2:c5:27:7e:1f:78:ea:0f:00:44:a3:2f:98: 23:19:e5:ec:ed:76:6a:20:f5:98:9e:2e:8c:dc:10:ab:26:37: 56:16:86:02:2e:96:98:12:5d:9d:82:6d:aa:1f:8a:54:ac:9b: 9a:ec:8e:2e:3e:c8:95:a7:c9:8e:9e:a1:a9:7d:15:a2:9f:4b: a4:91:b5:03 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUIIpouStv7QwHkAw0VplOYX/WAQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzEwNDJaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDBjNDIzMTAxYTI1MDZiNTI4YTA1M2Q2MjM5YjI3NTY2OTE1NmZhZTkwN2E0 MDk5NTc2M2MzMzhhYTBjYmU1MjcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKPUkr4lw8MPYSgm9fhEan/3oTxpeHctf8MS5HTb9+45qsFe5MQmqz8IKvGg 2SkhZM79+zDJPKY6stXb5x2CFu5SOcgh6C3bARpIgwQAtrYJpQ3IumjWmjqAQoFt xS4gUAGbDE7aGGKkS35Y3TI9506gYMdOiTcarUt+oZceVOj3lPy2rSx3Jt7mpBuR o72csRoCB+1oHakRNpo2RkghMljWsFfE3NJkQxnbldEikY21jfii19MJLYURiiIx aAhOyx+2F6l99ndqEXJr3YF9QLaEbv+cvjWeulfFTMI/udOHjKYddKmiGSplfoff P8s2tOnyjGRef4K5ve19TToRa8ECAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSRCHvZ ta2E4BJlPJgAOK5/a+bm/DAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv Njg2NzcxMTEtZjI3ZC00MTdhLThiNDMtYTY1Zjg0NDgyOTk3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBS6JwDAN BgkqhkiG9w0BAQsFAAOCAQEAdmvKm0WLOw66ro3M497B25Qw2YHpmCHFUH9ofozk I9JO+aFPest1ocydJYrSl0VUU8fcb9uFbsb6+6SsWnSazE+Bgv+KoVoUoPajf6QJ orXcA624lNpCbjcqEvUhr65R+NYOzgYYopa1g6vGZLyd18M74nVZVXxrE/FEcpdJ JUb/ZdNdk19Fn84lUQzHUHW9Ey3T+DQKoni9drGjz7IMAPV8aflqqSTovLrS/4rV 9/HxVfrNcrgZEYvSxSd+H3jqDwBEoy+YIxnl7O12aiD1mJ4ujNwQqyY3VhaGAi6W mBJdnYJtqh+KVKybmuyOLj7IlafJjp6hqX0Vop9LpJG1Aw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:55 2025 by rpki-client