This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9c3be55c-de0f-4901-938e-229a296fa31f.roa File: 9c3be55c-de0f-4901-938e-229a296fa31f.roa (raw, json) Hash identifier: 3wCLqIABTLDHaXecj54TkqGY4xgOdSPBQq7s12KhJMg= Subject key identifier: 0C:E1:29:0C:8B:52:F7:61:7E:42:51:41:F8:FE:72:16:E8:6D:FD:51 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 799CC78D7CEFE0F4642D642B10335C76B044CB21 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9c3be55c-de0f-4901-938e-229a296fa31f.roa Signing time: Sat 29 Nov 2025 03:00:44 +0000 ROA not before: Sat 29 Nov 2025 03:00:44 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:9c:c7:8d:7c:ef:e0:f4:64:2d:64:2b:10:33:5c:76:b0:44:cb:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:44 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=9a5f525e6497937e73defcc14b9ce8824d88dc3937470b9b6f182df51fac194c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:41:78:ee:2f:d4:5a:24:e4:35:f9:43:93:1d: 72:60:36:26:9e:14:f2:e6:02:da:32:d0:e3:d0:53: ca:ad:cf:bd:44:bd:cd:46:ad:8e:d6:ad:48:db:a5: 90:2a:9e:b0:a8:14:57:f1:fb:28:4e:f6:a7:b5:3b: 67:ab:c4:6f:94:f6:2d:9f:09:5b:0b:04:dd:26:cd: a1:ab:0b:b9:cd:4e:83:ff:c2:43:9f:5f:0b:df:9c: 83:bf:a2:01:75:49:04:24:d9:ee:bb:07:cc:09:1b: 6e:07:26:c2:2f:3a:2d:82:07:3c:6e:49:b5:28:1f: df:fc:d9:2e:61:f0:e1:be:43:47:c0:c3:9c:71:c9: c9:c5:a0:0c:79:ec:5b:ec:76:5d:7e:bf:89:c8:2e: dd:15:9e:9d:37:aa:e3:ff:b4:f1:5b:ae:e9:99:81: e0:36:cd:64:1b:2c:68:6c:1b:8b:c7:ea:5b:a2:4a: 74:60:47:5f:b7:d4:4a:73:46:73:a5:e1:69:c2:a8: 86:3c:d9:84:1c:73:af:75:a8:f5:77:ef:da:d1:82: fb:9e:1a:b5:ef:12:a0:93:9b:c2:f8:f2:12:02:a9: cb:cc:46:aa:92:a0:b0:7f:22:80:04:67:9e:25:ae: 49:c2:ca:7f:d9:4f:e1:98:a0:84:65:42:98:46:27: b5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E1:29:0C:8B:52:F7:61:7E:42:51:41:F8:FE:72:16:E8:6D:FD:51 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9c3be55c-de0f-4901-938e-229a296fa31f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.168.0/23 Signature Algorithm: sha256WithRSAEncryption b5:57:1c:ca:ad:2e:95:56:e8:17:2a:11:1b:3f:2f:7b:0c:d3: 7c:e7:d0:bc:27:22:88:3b:62:98:9d:81:8b:a0:01:78:fd:f9: 15:bc:c1:35:67:78:91:aa:91:10:3d:bb:1f:70:1c:2e:fe:44: d9:cc:4d:89:8e:b2:42:36:a5:0a:3f:c4:ba:06:b7:45:9f:4c: 5c:1f:66:46:5f:09:ef:d1:4c:9f:f2:63:55:31:0d:94:1f:25: e2:6c:67:75:e6:29:7c:98:87:aa:3e:a3:ac:87:c6:86:f7:97: 8f:73:59:b3:1e:38:8e:41:7c:3b:7a:51:ca:df:c1:1c:18:33: 50:b4:8f:1e:e6:b5:0a:9b:55:e9:99:9b:3d:1c:8c:a1:c6:d7: 32:08:ab:dc:d9:9b:a6:b6:79:cd:0d:00:c2:f2:4c:68:c4:16: 01:d5:c0:a9:8c:75:00:57:91:9b:fc:79:94:17:99:40:d7:66: 97:a9:73:31:be:7e:05:67:b8:66:ad:44:0e:3c:3b:88:3c:bb: 8d:6f:4f:f1:33:b7:ab:73:28:e9:8e:fa:0a:2b:80:dc:85:b5: 6f:9a:d4:f1:41:31:3f:24:47:90:0c:1c:d2:9c:21:8a:38:82: 0f:1c:95:b4:e2:c2:13:a1:cf:ae:d0:b8:41:ee:f4:fb:41:4b: 84:ca:f3:cb -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUeZzHjXzv4PRkLWQrEDNcdrBEyyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwNDRaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDlhNWY1MjVlNjQ5NzkzN2U3M2RlZmNjMTRiOWNlODgyNGQ4OGRjMzkzNzQ3 MGI5YjZmMTgyZGY1MWZhYzE5NGMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRBeO4v1Fok5DX5Q5MdcmA2Jp4U8uYC2jLQ49BTyq3PvUS9zUatjtatSNul kCqesKgUV/H7KE72p7U7Z6vEb5T2LZ8JWwsE3SbNoasLuc1Og//CQ59fC9+cg7+i AXVJBCTZ7rsHzAkbbgcmwi86LYIHPG5JtSgf3/zZLmHw4b5DR8DDnHHJycWgDHns W+x2XX6/icgu3RWenTeq4/+08Vuu6ZmB4DbNZBssaGwbi8fqW6JKdGBHX7fUSnNG c6XhacKohjzZhBxzr3Wo9Xfv2tGC+54ate8SoJObwvjyEgKpy8xGqpKgsH8igARn niWuScLKf9lP4ZighGVCmEYntQUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQM4SkM i1L3YX5CUUH4/nIW6G39UTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OWMzYmU1NWMtZGUwZi00OTAxLTkzOGUtMjI5YTI5NmZhMzFmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS6JqDAN BgkqhkiG9w0BAQsFAAOCAQEAtVccyq0ulVboFyoRGz8vewzTfOfQvCciiDtimJ2B i6ABeP35FbzBNWd4kaqRED27H3AcLv5E2cxNiY6yQjalCj/Euga3RZ9MXB9mRl8J 79FMn/JjVTENlB8l4mxndeYpfJiHqj6jrIfGhveXj3NZsx44jkF8O3pRyt/BHBgz ULSPHua1CptV6ZmbPRyMocbXMgir3NmbprZ5zQ0AwvJMaMQWAdXAqYx1AFeRm/x5 lBeZQNdml6lzMb5+BWe4Zq1EDjw7iDy7jW9P8TO3q3Mo6Y76CiuA3IW1b5rU8UEx PyRHkAwc0pwhijiCDxyVtOLCE6HPrtC4Qe70+0FLhMrzyw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:06 2025 by rpki-client