This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c2cd4ddf-9a38-425a-8021-c45ed96c50ea.roa File: c2cd4ddf-9a38-425a-8021-c45ed96c50ea.roa (raw, json) Hash identifier: db9iQbJdzuCc98Yn7zJAXN7mkICvIes1qXO72GDQ8g4= Subject key identifier: 4B:F5:27:27:BA:FA:D8:E8:89:5D:6D:0A:16:B7:7C:D6:53:85:94:36 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 574B6421F0C28E6861EF5D8F916EB6DBCAE581E3 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c2cd4ddf-9a38-425a-8021-c45ed96c50ea.roa Signing time: Tue 02 Dec 2025 01:50:46 +0000 ROA not before: Tue 02 Dec 2025 01:50:46 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.34.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:4b:64:21:f0:c2:8e:68:61:ef:5d:8f:91:6e:b6:db:ca:e5:81:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:50:46 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=adfd375e2429128d42a14d9e61db2e81edb4a79f23dcc14c06a9cb3538c2d77c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a8:28:82:aa:87:ed:b9:65:b2:e5:87:02:84: 93:43:5e:07:bf:60:ac:d3:bf:18:62:45:e9:74:dd: 5e:67:79:d7:99:36:ab:e3:97:f5:4b:0f:f7:82:97: 9f:27:90:d4:07:3f:28:8d:fd:d7:6c:ec:f8:1d:8b: de:65:92:3b:d9:5c:8c:a6:45:c7:d7:b5:a5:25:2f: 46:a5:bd:1b:dc:66:34:ec:48:54:2b:1b:c2:32:12: e8:62:87:45:28:2e:78:7d:c0:2f:35:eb:c6:e8:05: 17:e1:48:43:a5:ff:8d:83:0d:8e:27:f3:44:53:3b: 3b:ff:68:38:ec:02:2e:cc:15:46:af:08:6d:63:0d: e6:52:a3:b7:01:44:a0:1d:2e:92:a4:f5:be:e4:d0: 2d:cc:64:55:7e:93:67:6f:b1:cf:4b:87:ef:ec:d4: f4:26:2c:e9:a6:50:59:45:81:ac:96:a4:6c:37:d0: b1:db:6b:4c:81:65:15:e3:bc:21:94:b8:fd:73:93: c6:b9:51:fb:72:c6:e9:2d:94:72:9f:f9:29:64:60: bd:04:a4:b9:81:3e:82:66:75:7a:22:1a:f9:d1:b8: 38:ff:fd:29:d6:1c:8e:18:9d:12:0c:02:46:78:07: c8:70:06:0e:d5:ce:16:0e:59:f3:15:f8:51:43:01: 16:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:F5:27:27:BA:FA:D8:E8:89:5D:6D:0A:16:B7:7C:D6:53:85:94:36 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c2cd4ddf-9a38-425a-8021-c45ed96c50ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.34.128.0/20 Signature Algorithm: sha256WithRSAEncryption 61:42:95:20:2f:e6:7e:d4:13:90:61:5e:42:69:3d:d3:8e:ca: a8:5c:85:ea:65:62:b1:65:ec:f9:de:2e:2a:11:cf:c0:cd:39: ac:7c:ed:09:3e:3d:d1:16:53:c4:54:a6:8f:4d:cb:30:13:1f: ba:9c:0a:92:b7:80:f7:3b:e6:56:3d:f1:fd:b9:6c:3d:7f:09: f8:d1:5d:bf:a2:26:28:20:ec:14:ac:ab:d8:83:58:c1:cb:b8: b4:61:5d:a5:df:4e:47:f2:3c:67:b1:9b:01:83:19:e4:0d:3b: 29:f5:c1:82:c1:29:ff:c7:9c:09:bd:b4:94:13:f2:e9:0a:19: 62:d9:2f:49:78:0a:fa:d4:b8:fb:c6:9f:d9:23:ac:20:f0:93: 2a:51:7f:a5:6a:f4:12:17:0d:4e:fa:7b:7e:a3:b2:24:1a:06: 98:00:12:1f:9c:3a:fc:ef:aa:09:8b:4d:c1:4b:56:5c:1a:21: 35:9f:db:6f:49:ce:1a:ef:3f:e6:44:13:9f:51:4d:7f:97:13: b1:52:de:ff:18:5d:04:42:45:aa:d5:dd:9d:fe:30:08:2d:8c: 79:21:31:9f:cc:38:50:b2:22:b5:6a:33:82:94:79:33:a6:78: f7:48:dd:1f:42:7e:48:95:3f:9d:00:a8:1e:9c:2d:28:6f:03: 1a:ea:ec:41 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUV0tkIfDCjmhh712PkW6228rlgeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUwNDZaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQGFkZmQzNzVlMjQyOTEyOGQ0MmExNGQ5ZTYxZGIyZTgxZWRiNGE3OWYyM2Rj YzE0YzA2YTljYjM1MzhjMmQ3N2MxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKeoKIKqh+25ZbLlhwKEk0NeB79grNO/GGJF6XTdXmd515k2q+OX9UsP94KX nyeQ1Ac/KI3912zs+B2L3mWSO9lcjKZFx9e1pSUvRqW9G9xmNOxIVCsbwjIS6GKH RSgueH3ALzXrxugFF+FIQ6X/jYMNjifzRFM7O/9oOOwCLswVRq8IbWMN5lKjtwFE oB0ukqT1vuTQLcxkVX6TZ2+xz0uH7+zU9CYs6aZQWUWBrJakbDfQsdtrTIFlFeO8 IZS4/XOTxrlR+3LG6S2Ucp/5KWRgvQSkuYE+gmZ1eiIa+dG4OP/9KdYcjhidEgwC RngHyHAGDtXOFg5Z8xX4UUMBFk0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRL9Scn uvrY6IldbQoWt3zWU4WUNjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YzJjZDRkZGYtOWEzOC00MjVhLTgwMjEtYzQ1ZWQ5NmM1MGVhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBLAigDAN BgkqhkiG9w0BAQsFAAOCAQEAYUKVIC/mftQTkGFeQmk9047KqFyF6mVisWXs+d4u KhHPwM05rHztCT490RZTxFSmj03LMBMfupwKkreA9zvmVj3x/blsPX8J+NFdv6Im KCDsFKyr2INYwcu4tGFdpd9OR/I8Z7GbAYMZ5A07KfXBgsEp/8ecCb20lBPy6QoZ YtkvSXgK+tS4+8af2SOsIPCTKlF/pWr0EhcNTvp7fqOyJBoGmAASH5w6/O+qCYtN wUtWXBohNZ/bb0nOGu8/5kQTn1FNf5cTsVLe/xhdBEJFqtXdnf4wCC2MeSExn8w4 ULIitWozgpR5M6Z490jdH0J+SJU/nQCoHpwtKG8DGursQQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:35 2025 by rpki-client