This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b44363b9-ba48-4913-b8a4-9cd0dc32ba02.roa File: b44363b9-ba48-4913-b8a4-9cd0dc32ba02.roa (raw, json) Hash identifier: AFCgP0ijMYdGWKhecV/WGTWOKVOZ4E04NU+eqa5ZGpc= Subject key identifier: F3:CD:AA:A8:E0:3F:81:9E:04:C3:3A:AF:DE:71:82:79:C4:CA:61:5A Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 471C3AA08B01155E0E713F9E26372CE17786EB98 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b44363b9-ba48-4913-b8a4-9cd0dc32ba02.roa Signing time: Sat 29 Nov 2025 03:00:43 +0000 ROA not before: Sat 29 Nov 2025 03:00:43 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.51.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:1c:3a:a0:8b:01:15:5e:0e:71:3f:9e:26:37:2c:e1:77:86:eb:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:43 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=f58fc1217ff700845f920ab63ef7181614ad8da357638b18f1187cd06a4019ff, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9c:07:ae:ba:1b:eb:c0:21:7a:87:41:93:bd: 52:50:5d:d0:4e:12:8a:2a:59:00:b9:a6:c4:37:e8: d4:10:4e:09:6c:c4:6c:21:92:ca:0e:4b:40:9a:05: 4e:00:ca:96:30:3d:6e:5e:fe:f6:4a:64:35:54:29: 0b:0e:c1:e5:18:52:eb:33:b3:31:f5:64:c5:82:48: ad:9b:9d:7a:0d:7a:46:ae:14:97:02:dd:78:00:6f: 57:c6:fe:3e:24:e0:4d:64:71:e8:91:79:66:6e:4f: 33:ae:e4:18:61:e8:01:d6:f4:17:4f:62:0e:c7:7a: 55:46:f1:d8:9c:6b:2b:be:c0:42:14:70:5e:72:b0: f9:58:54:56:4d:b0:a8:77:d7:22:46:42:09:44:74: 3c:e7:29:63:af:1f:3c:ca:bd:62:75:fd:3f:d7:2c: 96:e6:e5:f9:b2:cb:9a:e7:e0:26:dc:d3:03:95:0f: 3b:91:8e:7b:68:12:10:e3:cd:b0:6d:48:bc:32:17: 4a:66:69:ff:da:e5:fd:d1:4a:a2:10:6a:11:c8:33: 82:33:55:b8:c2:4b:e6:3a:10:7b:33:a3:b4:95:af: 08:89:9a:82:b6:0b:d3:e5:08:fd:f3:ba:c9:82:08: 87:82:90:d0:84:b6:26:76:66:cf:e8:04:e3:c8:49: 42:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CD:AA:A8:E0:3F:81:9E:04:C3:3A:AF:DE:71:82:79:C4:CA:61:5A X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b44363b9-ba48-4913-b8a4-9cd0dc32ba02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.51.240.0/20 Signature Algorithm: sha256WithRSAEncryption a0:ed:a1:2f:aa:7a:6c:3d:6f:69:3a:2b:af:11:0a:39:7f:b9: 60:f7:0b:2f:04:c1:eb:8e:51:ae:c9:85:2f:c2:92:41:c7:bc: 50:3c:a9:26:80:18:f5:46:a6:40:41:1e:c6:3b:ed:85:6a:da: 32:a4:d2:8f:b2:58:3d:0d:ef:4c:b5:f7:d8:c9:b8:c9:dc:f6: 1f:cd:c3:87:ed:14:fb:85:90:c8:2d:47:c7:df:44:81:fe:0c: 58:86:e1:f9:f1:ac:bc:c0:2f:6b:c5:0b:60:89:63:83:45:3b: 8a:b0:19:08:64:65:b6:51:80:52:ce:cd:0f:35:e5:c4:19:78: 5c:6c:52:4c:17:7b:6f:7f:ad:a3:7a:f4:a4:70:32:8f:ca:8c: 5c:d7:93:e9:82:94:99:ec:69:2a:b9:76:0c:35:9f:f7:7a:c4: 47:20:3e:ec:e8:64:0f:4d:67:88:2d:4c:6a:00:f1:c9:95:9c: 48:30:3f:68:33:c0:30:4e:9d:3e:5b:7a:9d:1f:f2:e2:33:55: 09:ed:64:60:77:1a:b3:9d:97:33:d1:43:1e:4b:31:bc:ea:1a: 57:c2:21:e5:21:c0:2b:9d:a9:48:b7:9f:7f:ec:3c:9d:23:bd: 8f:67:58:45:6b:f8:dc:7e:15:17:14:3b:5a:72:de:04:92:53: b1:74:9f:1f -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIURxw6oIsBFV4OcT+eJjcs4XeG65gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwNDNaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQGY1OGZjMTIxN2ZmNzAwODQ1ZjkyMGFiNjNlZjcxODE2MTRhZDhkYTM1NzYz OGIxOGYxMTg3Y2QwNmE0MDE5ZmYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALycB666G+vAIXqHQZO9UlBd0E4SiipZALmmxDfo1BBOCWzEbCGSyg5LQJoF TgDKljA9bl7+9kpkNVQpCw7B5RhS6zOzMfVkxYJIrZudeg16Rq4UlwLdeABvV8b+ PiTgTWRx6JF5Zm5PM67kGGHoAdb0F09iDsd6VUbx2JxrK77AQhRwXnKw+VhUVk2w qHfXIkZCCUR0POcpY68fPMq9YnX9P9cslubl+bLLmufgJtzTA5UPO5GOe2gSEOPN sG1IvDIXSmZp/9rl/dFKohBqEcgzgjNVuMJL5joQezOjtJWvCImagrYL0+UI/fO6 yYIIh4KQ0IS2JnZmz+gE48hJQkcCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTzzaqo 4D+BngTDOq/ecYJ5xMphWjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjQ0MzYzYjktYmE0OC00OTEzLWI4YTQtOWNkMGRjMzJiYTAyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBC4z8DAN BgkqhkiG9w0BAQsFAAOCAQEAoO2hL6p6bD1vaTorrxEKOX+5YPcLLwTB645RrsmF L8KSQce8UDypJoAY9UamQEEexjvthWraMqTSj7JYPQ3vTLX32Mm4ydz2H83Dh+0U +4WQyC1Hx99Egf4MWIbh+fGsvMAva8ULYIljg0U7irAZCGRltlGAUs7NDzXlxBl4 XGxSTBd7b3+to3r0pHAyj8qMXNeT6YKUmexpKrl2DDWf93rERyA+7OhkD01niC1M agDxyZWcSDA/aDPAME6dPlt6nR/y4jNVCe1kYHcas52XM9FDHksxvOoaV8Ih5SHA K52pSLeff+w8nSO9j2dYRWv43H4VFxQ7WnLeBJJTsXSfHw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:38 2025 by rpki-client