This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9e85174-2ffd-4b93-8357-1e2ba85449d2.roa File: b9e85174-2ffd-4b93-8357-1e2ba85449d2.roa (raw, json) Hash identifier: 1zqQY06IqOJPdLC6qXP8XceVfhAtKfEmPQOUdN1ULIE= Subject key identifier: F2:32:C3:29:76:11:05:8F:AA:B2:F5:C5:79:34:A8:DE:1F:20:7C:B6 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0260952900502B2BA5256DCEB9135BDADE63647E Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9e85174-2ffd-4b93-8357-1e2ba85449d2.roa Signing time: Sat 29 Nov 2025 03:10:43 +0000 ROA not before: Sat 29 Nov 2025 03:10:43 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:60:95:29:00:50:2b:2b:a5:25:6d:ce:b9:13:5b:da:de:63:64:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:10:43 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=8da4100f4f10e7760a381b2fe75a82c0e12941cb6844480ad0f8fe6cbb1f12a6, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:10:0d:aa:f5:82:ef:55:31:fa:a3:0d:48:1b: 6d:3c:86:18:b0:78:7e:fe:a7:bf:7e:36:2e:a8:0c: ec:95:77:5a:52:00:3c:11:66:90:cf:4b:18:4f:17: e3:29:70:bb:fa:e2:dd:ce:b7:ca:7c:c1:4f:d8:9a: 4e:ce:a4:9e:87:d1:d8:fc:d4:f5:70:01:b5:13:44: 88:c1:fa:dc:a8:30:42:66:5d:9d:bc:64:c2:68:cf: 83:d6:3f:0b:23:e9:26:7a:94:31:99:dd:ae:ea:6e: e0:18:85:6e:61:da:1f:2d:f5:f8:06:34:d1:d0:ed: d1:f8:7d:96:6c:b2:35:56:b6:44:48:af:8d:68:86: ba:62:51:cf:97:a7:83:4b:7d:85:c6:13:f3:68:43: f4:93:c1:a2:07:32:74:03:81:bc:35:c3:49:4a:23: 4a:d8:c7:89:1f:2e:f9:88:88:cd:c9:91:77:ff:4a: 07:68:30:2d:1c:da:e9:0f:af:9d:27:1d:b4:14:f0: 69:1f:c3:0b:5d:51:7d:ee:41:f6:b5:d5:db:b1:a6: 16:b7:6f:67:d5:b0:9f:8f:63:22:f7:d1:9d:c0:d1: b3:e2:1f:b1:36:42:10:3c:79:6d:be:91:38:5a:9f: 36:ca:af:d7:4f:2d:9c:86:e6:c5:15:1d:ed:a0:fb: 3f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:32:C3:29:76:11:05:8F:AA:B2:F5:C5:79:34:A8:DE:1F:20:7C:B6 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9e85174-2ffd-4b93-8357-1e2ba85449d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.156.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:f4:60:c6:a8:7b:36:b4:d2:ee:18:31:a5:b9:04:b0:7d:ac: c0:82:b0:15:83:fe:08:79:26:33:f9:5e:71:63:64:55:a9:42: bd:c3:8f:54:9d:c5:11:fe:e7:92:73:f6:9f:7e:c4:b2:45:35: 3e:cf:60:79:59:8e:11:25:68:b0:37:00:e1:ba:a4:53:5d:47: 24:ef:77:88:70:70:ec:db:df:d9:19:e4:4e:ce:9c:e8:cf:50: c3:f1:3b:90:f4:67:c1:27:b0:80:ab:1c:44:11:ad:e8:c5:8a: 00:5d:72:3e:59:af:7a:7b:79:9c:73:e2:b9:f0:fb:98:ae:43: 05:b0:90:5e:a0:fd:0b:54:4d:ae:16:5e:b2:57:22:78:18:a5: e3:4e:4b:f3:3a:46:10:35:90:a6:d5:74:57:eb:69:dc:4a:d5: bd:37:ed:d7:dd:da:2c:c1:02:e0:4b:a4:13:92:14:50:d5:93: 52:fc:f0:5e:03:63:3b:eb:8d:b9:d0:c6:26:30:fc:20:95:c1: ec:11:b5:27:aa:90:1d:6c:07:9a:93:97:7d:34:27:2f:49:8d: 9d:fd:4a:78:88:6f:58:1f:1a:4e:d1:64:32:ef:4f:9f:fe:3f: b5:60:fb:a0:52:24:82:d8:c6:9f:9b:78:89:93:83:97:dd:a8: 66:d9:fa:a6 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUAmCVKQBQKyulJW3OuRNb2t5jZH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzEwNDNaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDhkYTQxMDBmNGYxMGU3NzYwYTM4MWIyZmU3NWE4MmMwZTEyOTQxY2I2ODQ0 NDgwYWQwZjhmZTZjYmIxZjEyYTYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIQDar1gu9VMfqjDUgbbTyGGLB4fv6nv342LqgM7JV3WlIAPBFmkM9LGE8X 4ylwu/ri3c63ynzBT9iaTs6knofR2PzU9XABtRNEiMH63KgwQmZdnbxkwmjPg9Y/ CyPpJnqUMZndrupu4BiFbmHaHy31+AY00dDt0fh9lmyyNVa2REivjWiGumJRz5en g0t9hcYT82hD9JPBogcydAOBvDXDSUojStjHiR8u+YiIzcmRd/9KB2gwLRza6Q+v nScdtBTwaR/DC11Rfe5B9rXV27GmFrdvZ9Wwn49jIvfRncDRs+IfsTZCEDx5bb6R OFqfNsqv108tnIbmxRUd7aD7P+MCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTyMsMp dhEFj6qy9cV5NKjeHyB8tjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjllODUxNzQtMmZmZC00YjkzLTgzNTctMWUyYmE4NTQ0OWQyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi6JnDAN BgkqhkiG9w0BAQsFAAOCAQEAbvRgxqh7NrTS7hgxpbkEsH2swIKwFYP+CHkmM/le cWNkValCvcOPVJ3FEf7nknP2n37EskU1Ps9geVmOESVosDcA4bqkU11HJO93iHBw 7Nvf2RnkTs6c6M9Qw/E7kPRnwSewgKscRBGt6MWKAF1yPlmvent5nHPiufD7mK5D BbCQXqD9C1RNrhZeslcieBil405L8zpGEDWQptV0V+tp3ErVvTft193aLMEC4Euk E5IUUNWTUvzwXgNjO+uNudDGJjD8IJXB7BG1J6qQHWwHmpOXfTQnL0mNnf1KeIhv WB8aTtFkMu9Pn/4/tWD7oFIkgtjGn5t4iZODl92oZtn6pg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:34:27 2025 by rpki-client