This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e1e6e69-6595-40ff-9430-d53f22670630.roa File: 6e1e6e69-6595-40ff-9430-d53f22670630.roa (raw, json) Hash identifier: hZtsgZU6fJr+eFfupeemSg7zmfYfWNipHui0rAEoG2Y= Subject key identifier: E9:50:7B:53:64:5A:22:04:50:2F:66:CC:A0:04:7E:4E:DC:EC:1C:32 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 2797AAC8E2EFB2B7AED2CED766A7B0F7902E7C20 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e1e6e69-6595-40ff-9430-d53f22670630.roa Signing time: Sat 29 Nov 2025 03:10:47 +0000 ROA not before: Sat 29 Nov 2025 03:10:47 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:97:aa:c8:e2:ef:b2:b7:ae:d2:ce:d7:66:a7:b0:f7:90:2e:7c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:10:47 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=8d06d50da375d0bd9cb4560f8415ff54a144de56e6ee56fef6bd98a3a06ca429, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b5:8b:f8:3c:3a:2a:5f:2c:50:41:a6:01:5a: 53:ec:16:cd:82:39:56:3f:81:ff:dc:9d:a5:a4:c2: 90:9c:87:80:48:71:4f:a9:8b:a6:b7:47:45:3a:f7: 38:d6:86:7d:b1:3a:5a:0d:b7:5e:4f:59:69:e4:ab: d7:77:bd:7c:14:30:11:46:94:53:ca:dc:20:b3:e8: 1d:99:9d:a1:b4:1b:5c:76:fe:fb:ff:71:a2:3d:6c: 5d:e8:08:98:e7:2f:3a:87:79:be:49:f3:f9:cb:ce: 1c:8d:b8:4b:6d:fa:c7:07:0d:63:63:8c:cf:47:5b: da:07:b3:59:df:99:23:64:51:ad:7f:3e:5e:8c:70: 2a:33:ae:cc:bf:58:22:7d:fc:79:6e:17:6f:03:37: b8:a3:4a:bd:15:0b:f7:4a:2e:4e:42:a4:0c:19:5f: 58:10:06:d9:2e:54:b5:22:5f:76:0d:e9:c1:65:44: 49:7f:e9:8e:0d:9b:dd:e1:f9:c9:e4:9e:31:c6:25: a7:f1:0a:b5:00:3d:dc:b0:9f:64:71:b0:79:eb:db: d6:56:71:1f:1a:e0:37:1d:b0:dc:d0:cd:db:56:3b: 97:bf:c7:50:bb:bb:7a:35:6f:ac:be:15:61:44:ca: 33:cb:0e:d5:f4:d9:f3:0a:f9:b8:ae:49:fe:e0:d7: bb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:50:7B:53:64:5A:22:04:50:2F:66:CC:A0:04:7E:4E:DC:EC:1C:32 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e1e6e69-6595-40ff-9430-d53f22670630.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.72.0/21 Signature Algorithm: sha256WithRSAEncryption 68:79:9d:f6:39:3c:ac:d9:a5:93:7e:aa:bb:e3:27:c9:dd:06: fc:73:6f:93:8e:f4:1e:69:cb:60:ab:0e:e5:3e:51:73:af:95: 44:1a:01:8c:57:b6:37:cd:2a:6b:dc:2e:9e:4d:13:43:5a:2a: 13:1a:75:c9:10:77:fc:a8:1e:93:f0:08:a4:02:77:b1:62:b0: 59:97:30:db:dd:c9:91:c9:2c:be:41:bf:86:d0:83:3f:32:1a: ac:21:79:38:89:62:7a:1c:d5:3c:5d:24:79:3d:8c:2d:d7:81: d3:27:ad:b8:fb:e2:e1:30:a8:0a:c5:7c:91:b7:d9:d6:72:76: 85:1d:3b:9c:cd:5e:2d:87:c0:ba:01:2e:48:3f:75:1c:88:b7: 42:01:5f:a2:a1:23:ca:c6:08:03:da:8a:12:42:79:6a:91:47: b6:58:49:7a:1f:bd:43:d3:6b:0c:a7:af:ae:79:31:36:07:2e: 32:ff:45:91:c2:b7:b5:03:c3:29:e1:19:ef:bd:06:98:ab:2a: 04:da:ac:60:d0:83:5f:10:9f:6e:09:9c:c6:aa:3d:da:4b:7e: 47:95:ee:5e:d4:d0:cb:1a:3f:82:bb:ea:33:ce:d1:07:dd:76: de:92:98:65:90:19:61:21:c8:cc:cb:ae:ad:8f:a1:fb:57:fb: 11:cd:7b:18 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUJ5eqyOLvsreu0s7XZqew95AufCAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzEwNDdaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDhkMDZkNTBkYTM3NWQwYmQ5Y2I0NTYwZjg0MTVmZjU0YTE0NGRlNTZlNmVl NTZmZWY2YmQ5OGEzYTA2Y2E0MjkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKq1i/g8OipfLFBBpgFaU+wWzYI5Vj+B/9ydpaTCkJyHgEhxT6mLprdHRTr3 ONaGfbE6Wg23Xk9ZaeSr13e9fBQwEUaUU8rcILPoHZmdobQbXHb++/9xoj1sXegI mOcvOod5vknz+cvOHI24S236xwcNY2OMz0db2gezWd+ZI2RRrX8+XoxwKjOuzL9Y In38eW4XbwM3uKNKvRUL90ouTkKkDBlfWBAG2S5UtSJfdg3pwWVESX/pjg2b3eH5 yeSeMcYlp/EKtQA93LCfZHGweevb1lZxHxrgNx2w3NDN21Y7l7/HULu7ejVvrL4V YUTKM8sO1fTZ8wr5uK5J/uDXu/sCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTpUHtT ZFoiBFAvZsygBH5O3OwcMjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NmUxZTZlNjktNjU5NS00MGZmLTk0MzAtZDUzZjIyNjcwNjMwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAy6JSDAN BgkqhkiG9w0BAQsFAAOCAQEAaHmd9jk8rNmlk36qu+Mnyd0G/HNvk470HmnLYKsO 5T5Rc6+VRBoBjFe2N80qa9wunk0TQ1oqExp1yRB3/Kgek/AIpAJ3sWKwWZcw293J kcksvkG/htCDPzIarCF5OIliehzVPF0keT2MLdeB0yetuPvi4TCoCsV8kbfZ1nJ2 hR07nM1eLYfAugEuSD91HIi3QgFfoqEjysYIA9qKEkJ5apFHtlhJeh+9Q9NrDKev rnkxNgcuMv9FkcK3tQPDKeEZ770GmKsqBNqsYNCDXxCfbgmcxqo92kt+R5XuXtTQ yxo/grvqM87RB9123pKYZZAZYSHIzMuurY+h+1f7Ec17GA== -----END CERTIFICATE-----Generated at Sat Dec 6 17:32:13 2025 by rpki-client