This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9ff392e-09c0-4b7c-bdd5-5fb1316e398e.roa File: b9ff392e-09c0-4b7c-bdd5-5fb1316e398e.roa (raw, json) Hash identifier: MfwyJtzxSbowvBWD2ZsfSO1qZl1MSsnDjIeAPoQCuxY= Subject key identifier: 19:ED:26:E0:B1:C7:4B:94:75:9B:07:DC:82:E8:EF:6A:FB:EC:5A:8D Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 24727C60F6E0697E7BC5FB91272C95B00AA7701C Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9ff392e-09c0-4b7c-bdd5-5fb1316e398e.roa Signing time: Tue 02 Dec 2025 01:50:45 +0000 ROA not before: Tue 02 Dec 2025 01:50:45 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.32.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:72:7c:60:f6:e0:69:7e:7b:c5:fb:91:27:2c:95:b0:0a:a7:70:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:50:45 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=bc364ab6350fd32c8e7979738016eeca96a94e8b22b0b317cefc1789e743e4e1, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a9:cf:bf:22:6a:56:93:4e:7d:b3:69:21:9d: e7:83:43:bf:09:b6:f2:31:15:26:3f:15:2a:50:00: e9:d4:30:bb:eb:c4:77:2b:04:66:a8:1f:69:b8:21: 5f:6a:a3:0c:94:76:67:65:f8:f6:7f:df:e1:6c:0f: 5e:ea:d3:ba:05:16:eb:da:22:c8:ae:8f:09:33:ef: 48:e4:93:c1:a3:67:d1:0b:e6:ab:64:a9:e1:5f:64: 8b:a6:72:37:15:80:e1:c8:85:cb:46:8d:09:73:74: d3:cf:e9:88:5f:b3:8c:48:ea:81:31:4b:b6:17:d7: 94:d5:ff:12:59:8f:fc:6e:95:4b:63:89:0c:d3:5e: d2:92:ff:1e:91:69:a6:67:b0:00:ef:cf:d8:0f:50: 8a:69:33:03:54:e8:3e:2a:e4:b0:6b:9e:4c:c9:b2: cc:7a:22:a3:08:28:ab:75:d1:5a:2c:22:b0:ec:39: 2f:9a:5c:c8:10:ea:ff:01:4a:1e:13:ae:79:63:f6: 4d:30:56:01:ac:46:2b:f2:b9:36:44:a0:cc:97:f4: 52:13:49:d7:99:ff:ba:b7:a8:5f:5f:f4:67:e7:9c: 76:1a:3f:0e:4c:ee:d4:a6:bb:f3:3b:ac:70:32:66: a1:54:31:b0:d9:c0:64:cd:0d:74:db:37:56:e4:00: e3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:ED:26:E0:B1:C7:4B:94:75:9B:07:DC:82:E8:EF:6A:FB:EC:5A:8D X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9ff392e-09c0-4b7c-bdd5-5fb1316e398e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.32.64.0/19 Signature Algorithm: sha256WithRSAEncryption a2:93:2c:21:4b:76:f5:d6:32:ad:26:0c:34:0f:ae:0e:11:87: af:fb:19:74:fb:31:cc:ba:aa:4f:c7:d4:6d:e9:5e:61:37:2f: 40:b7:b1:1b:0c:87:aa:e1:82:33:3d:ee:e4:e4:f9:db:37:0b: e5:5e:92:9a:22:93:d0:ba:4b:af:98:cc:9e:75:3e:3f:44:20: 96:a2:ca:f5:d3:53:bd:84:af:3d:38:d2:34:d4:64:86:4d:8c: 13:9d:41:c7:99:32:99:04:f5:4d:28:bb:23:60:9d:ab:ca:ff: 0e:31:1c:27:dc:7c:d3:24:1a:bb:71:5e:22:ad:99:fa:9a:2d: 64:d4:75:6c:e9:7a:3b:7d:1e:e0:f8:80:01:62:7b:67:fe:b7: 74:08:d2:4f:c9:ce:0f:c1:21:0a:2a:3c:60:7e:a1:bd:93:7b: e1:dd:bb:91:a8:58:46:4d:a1:55:59:29:6b:10:b1:ae:5e:4a: 43:6f:b0:d1:93:e4:93:70:a8:f0:ae:b3:83:fa:bd:cd:aa:5f: fc:e1:48:20:5f:dc:67:f6:a6:09:89:84:18:19:7b:0c:4e:f5: c6:32:35:51:91:c8:ab:66:06:c0:54:ec:87:86:eb:fe:e8:61: fb:4c:4b:cb:72:d7:b5:64:74:b9:3a:e1:4f:2b:67:73:df:15: 7b:5f:68:4b -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUJHJ8YPbgaX57xfuRJyyVsAqncBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUwNDVaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQGJjMzY0YWI2MzUwZmQzMmM4ZTc5Nzk3MzgwMTZlZWNhOTZhOTRlOGIyMmIw YjMxN2NlZmMxNzg5ZTc0M2U0ZTExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKepz78ialaTTn2zaSGd54NDvwm28jEVJj8VKlAA6dQwu+vEdysEZqgfabgh X2qjDJR2Z2X49n/f4WwPXurTugUW69oiyK6PCTPvSOSTwaNn0Qvmq2Sp4V9ki6Zy NxWA4ciFy0aNCXN008/piF+zjEjqgTFLthfXlNX/ElmP/G6VS2OJDNNe0pL/HpFp pmewAO/P2A9QimkzA1ToPirksGueTMmyzHoiowgoq3XRWiwisOw5L5pcyBDq/wFK HhOueWP2TTBWAaxGK/K5NkSgzJf0UhNJ15n/ureoX1/0Z+ecdho/Dkzu1Ka78zus cDJmoVQxsNnAZM0NdNs3VuQA47cCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQZ7Sbg scdLlHWbB9yC6O9q++xajTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjlmZjM5MmUtMDljMC00YjdjLWJkZDUtNWZiMTMxNmUzOThlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbAgQDAN BgkqhkiG9w0BAQsFAAOCAQEAopMsIUt29dYyrSYMNA+uDhGHr/sZdPsxzLqqT8fU beleYTcvQLexGwyHquGCMz3u5OT52zcL5V6SmiKT0LpLr5jMnnU+P0QglqLK9dNT vYSvPTjSNNRkhk2ME51Bx5kymQT1TSi7I2Cdq8r/DjEcJ9x80yQau3FeIq2Z+pot ZNR1bOl6O30e4PiAAWJ7Z/63dAjST8nOD8EhCio8YH6hvZN74d27kahYRk2hVVkp axCxrl5KQ2+w0ZPkk3Co8K6zg/q9zapf/OFIIF/cZ/amCYmEGBl7DE71xjI1UZHI q2YGwFTsh4br/uhh+0xLy3LXtWR0uTrhTytnc98Ve19oSw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:56 2025 by rpki-client