This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9ee0a48b-ba88-465e-9e42-d0732351f46e.roa File: 9ee0a48b-ba88-465e-9e42-d0732351f46e.roa (raw, json) Hash identifier: PSB19ggEAThhgsLowi7iAN4Zx18l2C5RDo1dIyFKvWY= Subject key identifier: 04:6C:C1:AE:F3:EB:2A:56:1A:D8:43:09:CF:FA:87:0C:1B:84:13:24 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 506D4E2C7DB7AA1D01EE08DD41D4CFF5F5DA045B Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9ee0a48b-ba88-465e-9e42-d0732351f46e.roa Signing time: Sun 16 Nov 2025 00:00:05 +0000 ROA not before: Sun 16 Nov 2025 00:00:05 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:6d:4e:2c:7d:b7:aa:1d:01:ee:08:dd:41:d4:cf:f5:f5:da:04:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 16 00:00:05 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=e17de4763ef632953de58d31c1c21fe6b22f9f8395d04d01758adc8fb95b2054, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e2:21:6b:20:bd:78:ad:5e:60:89:99:a8:65: a8:02:4f:49:c2:ae:5b:36:65:cc:11:d4:6b:83:f0: cd:d8:9d:3a:c8:e4:cc:11:24:05:77:27:be:c4:b9: 4a:e6:fa:aa:6a:10:2c:6a:fd:b1:21:4a:ae:8c:80: 15:83:32:db:b2:b6:b0:8b:69:37:3e:6f:db:d5:05: 0a:11:ff:a9:b1:60:12:6d:bc:1a:00:91:74:a3:47: 84:1f:ae:60:57:ea:9b:f3:91:04:55:d0:59:1a:a9: d6:61:ea:9e:9c:15:72:a3:f3:d0:19:8d:52:c6:2f: 78:41:85:37:5c:ec:0c:9b:6f:ba:03:0c:01:83:e7: 6e:18:6a:62:ff:b9:d6:6a:cc:31:2b:80:3d:b4:35: 44:c1:21:dc:5e:64:08:9c:f0:af:c6:fb:28:f8:d0: 41:9a:a7:71:cb:ba:9b:85:64:01:a4:8d:93:65:f7: bf:64:c9:4c:d6:d5:a0:88:79:e8:81:48:27:63:70: bb:be:a4:44:61:b3:a4:88:f2:db:6d:fe:ae:68:ba: 56:66:4b:9a:be:2e:09:0e:24:6c:01:53:e6:78:23: d8:ba:8a:5a:83:38:f8:7d:f8:c5:4a:64:4d:29:ba: ad:bf:fd:97:95:3d:72:db:8d:de:32:4c:f2:09:f8: 2f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:6C:C1:AE:F3:EB:2A:56:1A:D8:43:09:CF:FA:87:0C:1B:84:13:24 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9ee0a48b-ba88-465e-9e42-d0732351f46e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.112.0/20 Signature Algorithm: sha256WithRSAEncryption 9a:90:9c:08:0b:47:13:b8:60:e0:ba:10:bd:7a:67:5b:c0:13: 4a:41:7c:a5:a1:ba:6d:5e:04:2e:bc:9c:91:f6:03:4b:ab:3a: 06:db:6d:03:2a:08:49:99:13:9c:de:69:2d:fd:a3:c1:20:01: c3:4d:3f:20:7b:84:88:79:16:8b:1f:56:af:a9:9b:5f:36:1f: a4:3d:b0:d2:c6:80:97:71:66:ed:dd:01:78:f1:ea:26:f0:ca: 9c:8e:cd:4e:b4:01:34:09:88:75:e4:32:7c:c3:70:94:22:c1: d2:e5:c4:7c:6d:0b:41:2e:b4:6b:40:84:e9:f2:3f:cd:77:b5: 0e:6f:e5:3c:23:18:f9:81:fe:d3:ca:5a:a6:1d:ba:a1:44:cd: 6e:75:99:de:61:19:00:e5:70:4b:b8:f2:6a:65:b3:77:7f:82: e0:12:6c:32:7b:aa:27:b6:58:20:81:0a:cc:0a:20:8c:e2:f6: d4:e1:6f:f9:7e:ae:a9:f4:c8:5a:c1:4a:eb:80:4c:76:c5:8c: cf:58:6e:cc:e5:7e:5b:c2:d6:4d:3b:14:2a:66:27:84:37:f3: 07:c6:e1:40:d9:3a:70:07:d5:16:83:4a:0f:72:f1:17:94:c6: 88:68:92:de:d6:1d:75:cb:80:29:4a:74:1f:de:c4:0e:e6:02: 51:14:95:c7 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUUG1OLH23qh0B7gjdQdTP9fXaBFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTYwMDAwMDVaFw0yNTEyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQGUxN2RlNDc2M2VmNjMyOTUzZGU1OGQzMWMxYzIxZmU2YjIyZjlmODM5NWQw NGQwMTc1OGFkYzhmYjk1YjIwNTQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKHiIWsgvXitXmCJmahlqAJPScKuWzZlzBHUa4PwzdidOsjkzBEkBXcnvsS5 Sub6qmoQLGr9sSFKroyAFYMy27K2sItpNz5v29UFChH/qbFgEm28GgCRdKNHhB+u YFfqm/ORBFXQWRqp1mHqnpwVcqPz0BmNUsYveEGFN1zsDJtvugMMAYPnbhhqYv+5 1mrMMSuAPbQ1RMEh3F5kCJzwr8b7KPjQQZqnccu6m4VkAaSNk2X3v2TJTNbVoIh5 6IFIJ2Nwu76kRGGzpIjy223+rmi6VmZLmr4uCQ4kbAFT5ngj2LqKWoM4+H34xUpk TSm6rb/9l5U9ctuN3jJM8gn4L0sCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQEbMGu 8+sqVhrYQwnP+ocMG4QTJDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OWVlMGE0OGItYmE4OC00NjVlLTllNDItZDA3MzIzNTFmNDZlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBE99cDAN BgkqhkiG9w0BAQsFAAOCAQEAmpCcCAtHE7hg4LoQvXpnW8ATSkF8paG6bV4ELryc kfYDS6s6BtttAyoISZkTnN5pLf2jwSABw00/IHuEiHkWix9Wr6mbXzYfpD2w0saA l3Fm7d0BePHqJvDKnI7NTrQBNAmIdeQyfMNwlCLB0uXEfG0LQS60a0CE6fI/zXe1 Dm/lPCMY+YH+08paph26oUTNbnWZ3mEZAOVwS7jyamWzd3+C4BJsMnuqJ7ZYIIEK zAogjOL21OFv+X6uqfTIWsFK64BMdsWMz1huzOV+W8LWTTsUKmYnhDfzB8bhQNk6 cAfVFoNKD3LxF5TGiGiS3tYddcuAKUp0H97EDuYCURSVxw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:35 2025 by rpki-client