This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9b6ea2c3-c25b-492c-9547-7c5ddb75d15f.roa File: 9b6ea2c3-c25b-492c-9547-7c5ddb75d15f.roa (raw, json) Hash identifier: QP3nPVSHlmxgJkARJCFhlAzJtdoFr8B5Tg1pljE8AGo= Subject key identifier: 71:2F:44:7D:08:98:93:D7:EF:13:14:27:B0:FF:25:94:82:C8:2D:4B Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 1DC8936198B51378D3C63F1CB77D1310C5D1F203 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9b6ea2c3-c25b-492c-9547-7c5ddb75d15f.roa Signing time: Sat 29 Nov 2025 03:00:27 +0000 ROA not before: Sat 29 Nov 2025 03:00:27 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:c8:93:61:98:b5:13:78:d3:c6:3f:1c:b7:7d:13:10:c5:d1:f2:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:27 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=081a2e9a4f48f6f612e0aa909e2a4a40517f08c9d366a5dfcbb4dd5f062ddf11, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1a:f1:15:90:71:fd:ff:97:f4:70:66:c9:fd: c6:d6:64:64:6c:c3:3a:aa:d2:07:d9:eb:40:53:b3: 78:62:a2:fb:ca:65:61:6f:fd:7c:47:a9:93:13:0e: a2:07:4b:4b:9c:7e:7b:93:6d:5b:3f:68:53:f2:fb: c1:5f:eb:42:be:5b:a2:e7:ec:76:e2:cf:4d:68:ef: ce:f9:22:66:47:79:c0:60:06:a8:e2:26:19:66:93: e0:b2:12:e4:14:da:44:ce:07:00:82:9f:6e:48:8a: a6:ee:8d:cf:26:25:5d:b8:45:4a:9e:5f:4e:fb:cc: 47:50:af:0d:30:ca:74:87:c3:b0:de:d8:44:41:49: 2b:1c:83:97:69:6d:3b:19:5b:fc:b8:3d:32:9e:1c: ff:70:0e:07:af:a2:43:c4:8f:2d:8b:d8:e1:93:1c: 52:fb:d9:b7:41:05:28:a6:eb:d4:c8:10:da:fd:79: d4:2d:de:9e:98:5a:a7:a6:51:19:0e:36:c3:ab:aa: c8:23:19:50:3e:2f:73:4a:34:e1:0c:0a:75:11:c6: c6:fd:c2:e2:dc:d3:2d:c5:09:d3:c5:7b:03:07:3b: ff:6a:88:35:21:36:7b:2c:f9:04:53:ee:97:00:73: 74:45:ff:ce:52:3b:2a:dc:d7:b2:a3:11:f7:1e:fe: 39:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:2F:44:7D:08:98:93:D7:EF:13:14:27:B0:FF:25:94:82:C8:2D:4B X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9b6ea2c3-c25b-492c-9547-7c5ddb75d15f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.216.0/22 Signature Algorithm: sha256WithRSAEncryption 03:84:42:ca:8a:a0:ba:59:c4:85:24:38:c9:b7:be:20:9b:25: 29:2c:cb:59:88:b2:d2:16:60:de:75:45:c4:56:34:cc:4e:8d: 61:c3:ff:33:1a:04:a3:75:89:c1:a3:ba:00:18:5e:8f:ed:b8: bb:be:22:a4:86:e9:ad:aa:66:01:41:57:d7:57:51:4f:6b:18: 2a:9a:c5:1d:bd:ef:40:2a:c8:54:bc:d6:7c:79:17:c8:25:eb: 68:47:b7:43:c8:f8:31:5b:e6:75:a9:78:db:86:a9:f4:9a:61: 1a:16:76:73:b0:be:eb:9c:83:e5:d8:f2:f1:70:ab:cc:6d:66: db:1f:1e:7c:14:c4:f9:ae:f0:6e:95:a1:f8:47:f3:40:73:c4: 12:7f:90:54:bd:cd:1d:a6:93:54:d3:96:1f:b1:d0:88:53:1c: 32:e5:68:9b:0a:24:c3:13:2e:a5:64:d4:ab:c9:77:ea:a9:ce: 46:2e:6b:6a:d2:0c:66:36:f2:f9:27:60:bc:d7:0c:0c:0a:56: d4:e1:a4:e6:41:67:bb:49:b6:c5:33:cb:1f:bc:de:52:3a:83: e1:bf:b9:5e:be:07:19:dd:71:2c:89:85:c2:1e:7b:b7:a3:1a: 42:29:ba:cb:f0:76:25:3e:42:ba:85:01:1e:03:11:25:2b:d8: 86:8e:33:c0 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUHciTYZi1E3jTxj8ct30TEMXR8gMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwMjdaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDA4MWEyZTlhNGY0OGY2ZjYxMmUwYWE5MDllMmE0YTQwNTE3ZjA4YzlkMzY2 YTVkZmNiYjRkZDVmMDYyZGRmMTExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJQa8RWQcf3/l/RwZsn9xtZkZGzDOqrSB9nrQFOzeGKi+8plYW/9fEepkxMO ogdLS5x+e5NtWz9oU/L7wV/rQr5boufsduLPTWjvzvkiZkd5wGAGqOImGWaT4LIS 5BTaRM4HAIKfbkiKpu6NzyYlXbhFSp5fTvvMR1CvDTDKdIfDsN7YREFJKxyDl2lt Oxlb/Lg9Mp4c/3AOB6+iQ8SPLYvY4ZMcUvvZt0EFKKbr1MgQ2v151C3enphap6ZR GQ42w6uqyCMZUD4vc0o04QwKdRHGxv3C4tzTLcUJ08V7Awc7/2qINSE2eyz5BFPu lwBzdEX/zlI7KtzXsqMR9x7+OekCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRxL0R9 CJiT1+8TFCew/yWUgsgtSzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OWI2ZWEyYzMtYzI1Yi00OTJjLTk1NDctN2M1ZGRiNzVkMTVmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi6J2DAN BgkqhkiG9w0BAQsFAAOCAQEAA4RCyoqgulnEhSQ4ybe+IJslKSzLWYiy0hZg3nVF xFY0zE6NYcP/MxoEo3WJwaO6ABhej+24u74ipIbprapmAUFX11dRT2sYKprFHb3v QCrIVLzWfHkXyCXraEe3Q8j4MVvmdal424ap9JphGhZ2c7C+65yD5djy8XCrzG1m 2x8efBTE+a7wbpWh+EfzQHPEEn+QVL3NHaaTVNOWH7HQiFMcMuVomwokwxMupWTU q8l36qnORi5ratIMZjby+SdgvNcMDApW1OGk5kFnu0m2xTPLH7zeUjqD4b+5Xr4H Gd1xLImFwh57t6MaQim6y/B2JT5CuoUBHgMRJSvYho4zwA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:47 2025 by rpki-client