This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bddd5d52-f097-4aa0-9a71-aa7b6752dcaa.roa File: bddd5d52-f097-4aa0-9a71-aa7b6752dcaa.roa (raw, json) Hash identifier: EZh6fgTkaU9Sm8pkNUQw3180EhFmBIYXHZC17TxXRu8= Subject key identifier: 85:C8:99:C4:45:BD:FF:9E:AB:D6:F2:7B:E5:B6:18:B7:40:87:AF:35 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 57EC3295772D79C4037450EA82907D3060BDA12E Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bddd5d52-f097-4aa0-9a71-aa7b6752dcaa.roa Signing time: Sat 29 Nov 2025 03:10:40 +0000 ROA not before: Sat 29 Nov 2025 03:10:40 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ec:32:95:77:2d:79:c4:03:74:50:ea:82:90:7d:30:60:bd:a1:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:10:40 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=c77066e8c6bdc7de0d8c36c393a29626162d83485492f7ccf063a1e80b9783bb, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:dc:1b:b7:28:13:76:7c:e9:6e:12:ce:71:f2: d9:ee:f8:13:1c:c7:24:a8:b1:49:d1:23:30:43:92: a0:e7:2b:ce:21:26:37:17:47:3b:db:8a:9a:f4:68: a4:43:b6:f3:d2:ba:e0:2b:88:ef:9a:9e:9f:12:2e: 25:be:8f:22:d5:29:72:87:11:b4:6d:02:cc:ad:2e: 0b:37:16:8a:56:7c:22:07:54:3f:d2:eb:f7:09:b9: dd:cc:46:89:20:e8:99:6b:b8:04:ca:bc:85:77:70: b5:e6:b2:11:6f:26:06:4d:02:b3:3e:a9:54:99:1e: 51:6e:0f:36:7d:97:21:6e:21:b0:82:f9:5a:71:c8: 08:ca:fc:c2:9d:0e:cb:32:ed:66:93:a9:1c:21:6e: 1c:ef:92:1b:b8:48:f6:da:25:52:43:37:85:65:0e: f7:89:04:ec:08:88:76:fa:c1:d3:26:ea:e7:30:44: ed:1f:c9:40:83:ac:15:67:1a:5b:6d:58:f0:78:ca: d9:0d:21:7c:10:27:39:b1:1a:a7:a2:d5:e7:61:93: 69:f8:c1:a7:d2:c2:5c:10:d1:e9:1d:ba:fc:7a:0d: c4:44:d9:2a:ed:99:66:f5:11:cd:39:07:bb:09:49: 7e:0a:cc:e5:98:6e:73:b8:b2:f4:1d:2f:1a:1c:47: 3c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C8:99:C4:45:BD:FF:9E:AB:D6:F2:7B:E5:B6:18:B7:40:87:AF:35 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bddd5d52-f097-4aa0-9a71-aa7b6752dcaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.0.0/16 Signature Algorithm: sha256WithRSAEncryption 54:dc:76:d4:9e:79:7f:f5:ab:de:77:a5:a6:b1:e5:a9:5f:a3: 40:11:5c:ca:5b:ce:bf:ce:1a:f1:91:54:7b:8b:3e:95:6e:46: ba:42:d7:e8:e0:3f:8d:5d:88:11:98:52:2e:9f:22:f9:f5:e8: 42:00:51:5e:40:f8:d0:0e:c4:75:f2:fd:cf:81:18:e7:77:c2: 6b:0a:31:e8:53:29:12:be:65:f6:22:0b:f5:16:0f:4e:be:21: 56:f1:2d:0f:7d:e7:e7:13:7c:51:aa:02:30:88:8e:b7:f7:83: c8:b5:f3:fa:85:65:65:97:fe:cf:53:70:b3:65:20:a1:72:9f: 6a:38:81:db:1e:6a:80:24:7c:f5:a7:ae:c2:db:5b:28:14:03: 20:b3:bb:43:26:aa:26:a4:a6:ba:34:d1:67:46:5b:a4:06:f3: 1f:3a:30:c3:8d:cb:5e:88:ca:4e:ed:13:db:2f:c3:aa:22:fc: 76:c1:94:5a:ea:3d:c6:b7:04:88:53:32:96:20:6e:4c:a0:e5: 83:54:a6:7a:ff:5f:e8:2f:de:50:51:ad:56:a9:09:c9:d0:4a: ce:e4:dc:eb:13:52:04:4b:6e:f4:0e:49:dd:26:3a:dd:d1:73: 3c:68:05:ca:59:94:e8:83:42:10:d6:21:e5:70:e7:93:4c:8f: f6:1a:af:f1 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUV+wylXctecQDdFDqgpB9MGC9oS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzEwNDBaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQGM3NzA2NmU4YzZiZGM3ZGUwZDhjMzZjMzkzYTI5NjI2MTYyZDgzNDg1NDky ZjdjY2YwNjNhMWU4MGI5NzgzYmIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKPcG7coE3Z86W4SznHy2e74ExzHJKixSdEjMEOSoOcrziEmNxdHO9uKmvRo pEO289K64CuI75qenxIuJb6PItUpcocRtG0CzK0uCzcWilZ8IgdUP9Lr9wm53cxG iSDomWu4BMq8hXdwteayEW8mBk0Csz6pVJkeUW4PNn2XIW4hsIL5WnHICMr8wp0O yzLtZpOpHCFuHO+SG7hI9tolUkM3hWUO94kE7AiIdvrB0ybq5zBE7R/JQIOsFWca W21Y8HjK2Q0hfBAnObEap6LV52GTafjBp9LCXBDR6R26/HoNxETZKu2ZZvURzTkH uwlJfgrM5Zhuc7iy9B0vGhxHPJkCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBSFyJnE Rb3/nqvW8nvlthi3QIevNTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YmRkZDVkNTItZjA5Ny00YWEwLTlhNzEtYWE3YjY3NTJkY2FhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAC6JMA0G CSqGSIb3DQEBCwUAA4IBAQBU3HbUnnl/9aved6WmseWpX6NAEVzKW86/zhrxkVR7 iz6Vbka6Qtfo4D+NXYgRmFIunyL59ehCAFFeQPjQDsR18v3PgRjnd8JrCjHoUykS vmX2Igv1Fg9OviFW8S0PfefnE3xRqgIwiI6394PItfP6hWVll/7PU3CzZSChcp9q OIHbHmqAJHz1p67C21soFAMgs7tDJqompKa6NNFnRlukBvMfOjDDjcteiMpO7RPb L8OqIvx2wZRa6j3GtwSIUzKWIG5MoOWDVKZ6/1/oL95QUa1WqQnJ0ErO5NzrE1IE S270DkndJjrd0XM8aAXKWZTog0IQ1iHlcOeTTI/2Gq/x -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:49 2025 by rpki-client