This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b730eef0-bb94-4d31-bf9a-c0fb9a47b3b1.roa File: b730eef0-bb94-4d31-bf9a-c0fb9a47b3b1.roa (raw, json) Hash identifier: XSnMGZSTomX8SUWpeP41NpHcmyBaIZzeowyLmIIoRGw= Subject key identifier: 01:46:7F:E7:9F:64:37:AE:7F:43:16:40:C9:60:A5:19:7B:DD:98:BB Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 7DBAF5096C44BC8053F470D9AD1A0C309BE6EDCF Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b730eef0-bb94-4d31-bf9a-c0fb9a47b3b1.roa Signing time: Sat 29 Nov 2025 03:10:06 +0000 ROA not before: Sat 29 Nov 2025 03:10:06 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.51.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ba:f5:09:6c:44:bc:80:53:f4:70:d9:ad:1a:0c:30:9b:e6:ed:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:10:06 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=d3b2e73692656bd6ac1a656bb9214d211e776bed5107a67b8f1b32952e14c8e3, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d0:f2:f1:3f:80:24:3b:e0:92:04:03:72:a7: 19:9c:d5:89:89:84:e7:a4:37:b6:19:3a:62:93:41: e1:6f:b5:54:7f:0f:17:19:b7:e6:6c:ce:66:0e:db: 8f:75:cf:fa:bb:23:b1:3d:3c:24:a2:bc:0c:da:e1: d4:59:8f:45:3a:bd:04:91:ea:96:fd:0a:e6:26:25: c3:41:56:b1:20:5e:fa:c6:43:35:45:cb:9b:ea:28: 47:8e:3d:cd:ae:a3:62:51:d1:a0:4c:72:48:03:27: 7d:ff:1e:b0:7f:28:f5:ed:66:17:0e:a2:f9:f5:c7: 53:3a:2c:f1:02:5a:1c:2e:b0:92:f5:6a:dd:2d:01: b0:7c:2f:6a:db:ce:cb:40:47:b0:46:5a:d3:00:19: f4:70:39:22:19:ec:a2:f7:98:e6:d3:ae:b4:26:a4: ca:66:fa:2f:cf:47:81:39:11:54:b3:6e:49:a6:c7: d9:c9:9a:81:75:67:ff:eb:ab:b5:84:80:75:ac:86: a4:8b:3c:f3:bb:ed:89:54:41:aa:eb:16:8a:f5:f9: 4d:93:94:90:4a:ac:c7:87:a5:59:cc:36:fb:ae:58: 9d:e3:55:a9:1b:b6:c9:2e:4b:e3:da:2f:8d:5c:a7: 18:47:69:59:4e:df:4f:13:11:f5:14:be:10:5c:dd: f8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:46:7F:E7:9F:64:37:AE:7F:43:16:40:C9:60:A5:19:7B:DD:98:BB X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b730eef0-bb94-4d31-bf9a-c0fb9a47b3b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.51.160.0/21 Signature Algorithm: sha256WithRSAEncryption be:94:bb:0c:f6:21:3f:33:e9:f6:90:18:0b:4e:8c:69:e5:50: 6a:29:78:43:d4:2a:f2:73:26:11:83:28:36:39:fc:ad:06:50: da:02:67:58:04:47:08:bd:c7:b4:54:f4:4b:79:8a:34:b6:78: 07:bf:6c:c4:a6:f0:df:c3:f5:31:4a:82:72:5b:15:bf:46:ef: 22:df:17:96:ed:25:5d:7a:0b:e3:f1:0b:bb:d1:5a:7d:6a:54: 00:25:a1:c8:2e:8d:0f:bc:e6:10:b9:fb:25:2e:8c:26:a5:78: be:ff:04:e6:1f:9e:eb:db:2a:f7:9e:a9:1e:65:ae:27:01:b9: 44:b1:07:9a:a5:2f:41:50:16:8e:bf:e1:12:88:ec:b1:50:47: d9:6a:2c:97:fe:90:7d:19:10:82:f4:93:c5:f5:27:15:86:e3: 1f:3f:a6:d2:c8:c9:c1:d2:a5:c1:9e:3c:aa:e9:3c:39:71:d5: 1f:b8:a9:33:f8:e1:06:c3:31:d0:13:40:0b:1e:4f:e1:5e:4c: 60:74:b6:53:02:f1:32:39:4c:04:bc:2d:a2:51:df:1a:5e:c9: e4:da:2f:6a:e1:37:1b:b0:36:75:93:a5:88:a6:99:d4:3e:a8: a8:d8:2e:93:cf:af:a5:8e:3b:f4:98:eb:a7:eb:22:f9:77:4c: fc:45:c3:d5 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUfbr1CWxEvIBT9HDZrRoMMJvm7c8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzEwMDZaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQGQzYjJlNzM2OTI2NTZiZDZhYzFhNjU2YmI5MjE0ZDIxMWU3NzZiZWQ1MTA3 YTY3YjhmMWIzMjk1MmUxNGM4ZTMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbQ8vE/gCQ74JIEA3KnGZzViYmE56Q3thk6YpNB4W+1VH8PFxm35mzOZg7b j3XP+rsjsT08JKK8DNrh1FmPRTq9BJHqlv0K5iYlw0FWsSBe+sZDNUXLm+ooR449 za6jYlHRoExySAMnff8esH8o9e1mFw6i+fXHUzos8QJaHC6wkvVq3S0BsHwvatvO y0BHsEZa0wAZ9HA5IhnsoveY5tOutCakymb6L89HgTkRVLNuSabH2cmagXVn/+ur tYSAdayGpIs887vtiVRBqusWivX5TZOUkEqsx4elWcw2+65YneNVqRu2yS5L49ov jVynGEdpWU7fTxMR9RS+EFzd+MECAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQBRn/n n2Q3rn9DFkDJYKUZe92YuzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjczMGVlZjAtYmI5NC00ZDMxLWJmOWEtYzBmYjlhNDdiM2IxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAy4zoDAN BgkqhkiG9w0BAQsFAAOCAQEAvpS7DPYhPzPp9pAYC06MaeVQail4Q9Qq8nMmEYMo Njn8rQZQ2gJnWARHCL3HtFT0S3mKNLZ4B79sxKbw38P1MUqCclsVv0bvIt8Xlu0l XXoL4/ELu9FafWpUACWhyC6ND7zmELn7JS6MJqV4vv8E5h+e69sq956pHmWuJwG5 RLEHmqUvQVAWjr/hEojssVBH2Wosl/6QfRkQgvSTxfUnFYbjHz+m0sjJwdKlwZ48 quk8OXHVH7ipM/jhBsMx0BNACx5P4V5MYHS2UwLxMjlMBLwtolHfGl7J5NovauE3 G7A2dZOliKaZ1D6oqNguk8+vpY479Jjrp+si+XdM/EXD1Q== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:51 2025 by rpki-client