This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9397285f-ddbe-4525-ac62-a96d2fbb5cd9.roa File: 9397285f-ddbe-4525-ac62-a96d2fbb5cd9.roa (raw, json) Hash identifier: hcFFH813pfP6IEEZV8dkMC2nv9sF7iPJezidvcDsc0A= Subject key identifier: A4:41:DF:EF:7F:CB:A7:53:BF:94:09:50:AD:B7:C4:8A:59:0F:0C:03 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 58AEB25C020622655FDF536939CB09B6F45BEBE0 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9397285f-ddbe-4525-ac62-a96d2fbb5cd9.roa Signing time: Fri 05 Dec 2025 01:00:08 +0000 ROA not before: Fri 05 Dec 2025 01:00:08 +0000 ROA not after: Thu 05 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.32.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:ae:b2:5c:02:06:22:65:5f:df:53:69:39:cb:09:b6:f4:5b:eb:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 5 01:00:08 2025 GMT Not After : Mar 5 23:59:59 2026 GMT Subject: serialNumber=1f4b4c11500ae26cf4c8c582e1bd43fb4a099b67f61042f8daa590f9b27ad4cf, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a7:52:7d:ed:3a:14:57:20:d5:51:e6:f1:f2: 53:6f:23:30:df:15:1f:3e:24:d5:e2:37:88:66:19: 58:e8:e6:a6:c9:b2:c1:55:8a:d8:59:50:61:76:6b: 7b:15:9b:e4:cf:f4:cf:0f:8e:c5:6f:2a:fa:26:ca: 2a:75:0d:3a:d7:70:2a:73:a2:46:98:64:8a:85:4c: 46:db:c2:2b:b8:54:3f:16:5d:c8:7b:06:8d:f3:f4: 37:89:6a:14:2b:4e:df:b7:82:3b:53:52:e1:32:fb: 55:c0:1b:77:38:7d:1f:d6:7c:de:f2:e1:ad:df:bb: 6d:03:55:9c:c4:84:47:6f:75:a9:1d:3f:fd:55:4b: 45:47:dd:45:9a:d6:e9:04:24:92:45:2e:6d:29:52: 15:2e:31:93:0d:14:15:96:89:cd:ed:6c:f5:0b:53: 5e:3d:95:c8:1c:db:a7:c4:ed:73:c6:d3:1b:ad:1a: 77:34:d2:b8:16:81:78:2c:9c:69:2e:95:18:19:ba: 6f:b3:70:2b:5f:15:99:56:67:e3:06:3f:26:9d:60: bc:9a:e2:b1:d9:84:8b:ed:7e:03:bf:52:0e:dc:29: 53:b4:c5:9c:d6:58:0c:75:2d:16:f7:70:6f:58:d4: 70:81:8f:bf:e8:a6:57:a9:b8:4b:69:a0:d5:90:82: 6f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:41:DF:EF:7F:CB:A7:53:BF:94:09:50:AD:B7:C4:8A:59:0F:0C:03 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9397285f-ddbe-4525-ac62-a96d2fbb5cd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.32.64.0/20 Signature Algorithm: sha256WithRSAEncryption 8f:7d:d2:c4:a8:91:73:b8:7a:40:c6:93:8e:67:24:1d:94:b9: 70:f4:c2:7b:1b:59:e9:c8:9b:ba:00:35:12:91:e8:65:41:a9: cc:59:57:b0:08:bc:e1:07:5b:de:74:25:b9:b2:ce:53:8f:ca: c1:60:ba:c8:a5:eb:b8:41:1b:e7:43:bc:06:37:7a:3f:21:dd: bf:9c:c4:52:bd:c9:d9:a4:ef:af:59:0d:bc:a7:67:77:a0:c8: eb:78:38:ed:1f:df:48:08:a2:4c:a0:04:5f:bd:93:06:14:2f: 6f:a6:0c:12:c0:9c:6a:d3:42:e6:b9:4c:38:fd:6c:de:00:09: ac:17:52:6d:16:05:7a:46:86:75:4f:91:1c:76:bc:b5:12:f1: 09:b7:6b:1c:cb:2f:5c:96:e9:0b:27:cd:13:20:69:22:c4:d2: 3f:07:43:c6:08:70:1f:7f:29:13:0d:41:8d:18:30:6a:c6:22: 1c:40:42:dc:87:91:1d:c7:d5:8c:1b:46:8a:79:cd:a5:02:35: b4:be:a2:bf:73:87:07:31:2f:8c:4c:3a:a1:08:73:67:83:0a: 23:b1:38:c8:9d:54:8b:f6:27:a4:e9:07:70:0d:7d:b5:3d:6f: a4:cf:02:46:a5:09:fb:49:8f:81:5f:4d:85:ad:5b:1a:de:dd: 00:e4:55:04 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUWK6yXAIGImVf31NpOcsJtvRb6+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDUwMTAwMDhaFw0yNjAzMDUyMzU5NTlaMHoxSTBHBgNV BAUTQDFmNGI0YzExNTAwYWUyNmNmNGM4YzU4MmUxYmQ0M2ZiNGEwOTliNjdmNjEw NDJmOGRhYTU5MGY5YjI3YWQ0Y2YxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALGnUn3tOhRXINVR5vHyU28jMN8VHz4k1eI3iGYZWOjmpsmywVWK2FlQYXZr exWb5M/0zw+OxW8q+ibKKnUNOtdwKnOiRphkioVMRtvCK7hUPxZdyHsGjfP0N4lq FCtO37eCO1NS4TL7VcAbdzh9H9Z83vLhrd+7bQNVnMSER291qR0//VVLRUfdRZrW 6QQkkkUubSlSFS4xkw0UFZaJze1s9QtTXj2VyBzbp8Ttc8bTG60adzTSuBaBeCyc aS6VGBm6b7NwK18VmVZn4wY/Jp1gvJrisdmEi+1+A79SDtwpU7TFnNZYDHUtFvdw b1jUcIGPv+imV6m4S2mg1ZCCb0kCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSkQd/v f8unU7+UCVCtt8SKWQ8MAzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OTM5NzI4NWYtZGRiZS00NTI1LWFjNjItYTk2ZDJmYmI1Y2Q5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBLAgQDAN BgkqhkiG9w0BAQsFAAOCAQEAj33SxKiRc7h6QMaTjmckHZS5cPTCextZ6cibugA1 EpHoZUGpzFlXsAi84Qdb3nQlubLOU4/KwWC6yKXruEEb50O8Bjd6PyHdv5zEUr3J 2aTvr1kNvKdnd6DI63g47R/fSAiiTKAEX72TBhQvb6YMEsCcatNC5rlMOP1s3gAJ rBdSbRYFekaGdU+RHHa8tRLxCbdrHMsvXJbpCyfNEyBpIsTSPwdDxghwH38pEw1B jRgwasYiHEBC3IeRHcfVjBtGinnNpQI1tL6iv3OHBzEvjEw6oQhzZ4MKI7E4yJ1U i/YnpOkHcA19tT1vpM8CRqUJ+0mPgV9Nha1bGt7dAORVBA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:47 2025 by rpki-client