This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c4fedc04-24e0-41dc-a1f8-3bacae3d6615.roa File: c4fedc04-24e0-41dc-a1f8-3bacae3d6615.roa (raw, json) Hash identifier: QhYDkmbjqa0rtLqZIaCloRzN9qFB42z3k88/Tp9/QaQ= Subject key identifier: 80:F7:EA:A2:A1:55:1A:3B:CE:63:B9:06:FE:10:85:DF:4E:3D:27:03 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 491656E1C300A1AB31408F6D7F753E113C010183 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c4fedc04-24e0-41dc-a1f8-3bacae3d6615.roa Signing time: Sun 16 Nov 2025 00:00:05 +0000 ROA not before: Sun 16 Nov 2025 00:00:05 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:16:56:e1:c3:00:a1:ab:31:40:8f:6d:7f:75:3e:11:3c:01:01:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 16 00:00:05 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=6b46be1b341acd1dc593cc4656da3319bbead304ad0df512ab439a5133076c34, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:21:d1:15:33:df:b5:0d:83:ec:51:91:df:fb: b9:b3:e1:9f:9a:d9:d1:ed:61:95:62:a0:f8:a8:0d: b6:fe:0d:f4:d7:4f:b8:46:88:b7:a1:09:4d:d3:23: 4a:ed:1b:db:2f:f8:38:8a:d0:e6:bd:d1:ed:6b:58: 38:bc:c0:f1:b2:74:8c:52:3a:14:cb:f5:d2:8a:ac: 42:ef:0c:49:4e:1c:d4:7f:b7:78:53:bb:e5:0d:3f: 97:9d:b8:1d:b2:e5:e1:99:63:64:c6:33:2e:20:96: df:a0:ce:93:06:6f:df:ab:64:5a:76:c0:35:c6:b6: c6:aa:12:c1:2c:f7:59:09:8f:34:5d:66:fb:18:a4: b7:f2:05:eb:c1:1d:ac:b3:95:10:de:05:b7:2a:bf: af:21:67:39:46:82:40:86:64:be:0a:21:59:cd:23: 22:55:4f:0e:5e:b0:89:71:11:fa:ab:eb:de:3b:5c: 5d:bf:dc:2a:37:51:2f:1d:0f:e3:90:b0:4f:70:6c: 5c:79:5a:92:d0:ce:ab:80:1a:11:bb:60:1c:bc:05: 64:66:77:9a:9e:29:d4:dd:1a:5e:64:4f:16:29:f4: 1d:6f:25:bb:b8:6e:99:6a:e9:c8:a4:28:41:a3:e8: bd:e5:6b:53:de:39:ef:5a:23:67:9a:32:8a:79:9c: 3f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F7:EA:A2:A1:55:1A:3B:CE:63:B9:06:FE:10:85:DF:4E:3D:27:03 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c4fedc04-24e0-41dc-a1f8-3bacae3d6615.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.32.0/19 Signature Algorithm: sha256WithRSAEncryption 96:23:f9:53:28:05:d5:3d:e1:4f:fe:da:6a:1c:3f:7f:b4:38: 5d:6d:50:4c:93:75:aa:d0:81:a2:a9:27:34:9a:ea:6b:2b:f6: df:f4:f8:9f:67:1b:2b:4e:9a:55:f4:25:3e:5b:34:9b:d7:b7: 81:8d:d1:7a:2f:9a:b5:4a:4f:91:ae:43:39:ad:60:9e:75:b7: 2b:f5:94:04:56:a5:c1:b7:89:69:3a:b1:8d:b5:73:b8:d6:20: 94:8e:2e:a4:bd:6f:d9:b9:00:4c:ec:2c:5b:e7:7e:35:71:4c: 58:92:19:3f:f3:9c:22:84:83:be:23:e1:74:7c:b4:1d:93:98: de:6f:95:28:03:a4:c9:aa:72:80:3e:38:7e:aa:69:0a:4e:ae: a8:6f:e9:f3:65:a9:3c:7b:7d:1b:71:9c:00:a6:9b:1c:f9:00: fc:40:46:58:76:ea:e6:ca:22:66:46:51:15:cf:a0:a1:a8:44: 05:82:f2:5a:aa:bc:59:e3:f0:12:2e:e1:e8:40:0a:9a:89:b9: 93:21:d2:08:0e:1c:85:1c:38:07:e2:ed:47:9b:93:54:3f:bf: 5f:03:fc:9d:d7:42:fb:c5:c7:d2:50:2b:2d:90:6a:7f:0d:9b: 6f:d7:67:1c:c0:f5:44:68:0b:34:9c:fa:43:89:ff:f4:60:b6: b8:8f:00:65 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUSRZW4cMAoasxQI9tf3U+ETwBAYMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTYwMDAwMDVaFw0yNTEyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQDZiNDZiZTFiMzQxYWNkMWRjNTkzY2M0NjU2ZGEzMzE5YmJlYWQzMDRhZDBk ZjUxMmFiNDM5YTUxMzMwNzZjMzQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALch0RUz37UNg+xRkd/7ubPhn5rZ0e1hlWKg+KgNtv4N9NdPuEaIt6EJTdMj Su0b2y/4OIrQ5r3R7WtYOLzA8bJ0jFI6FMv10oqsQu8MSU4c1H+3eFO75Q0/l524 HbLl4ZljZMYzLiCW36DOkwZv36tkWnbANca2xqoSwSz3WQmPNF1m+xikt/IF68Ed rLOVEN4Ftyq/ryFnOUaCQIZkvgohWc0jIlVPDl6wiXER+qvr3jtcXb/cKjdRLx0P 45CwT3BsXHlaktDOq4AaEbtgHLwFZGZ3mp4p1N0aXmRPFin0HW8lu7humWrpyKQo QaPoveVrU94571ojZ5oyinmcPxMCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSA9+qi oVUaO85juQb+EIXfTj0nAzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YzRmZWRjMDQtMjRlMC00MWRjLWExZjgtM2JhY2FlM2Q2NjE1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBU99IDAN BgkqhkiG9w0BAQsFAAOCAQEAliP5UygF1T3hT/7aahw/f7Q4XW1QTJN1qtCBoqkn NJrqayv23/T4n2cbK06aVfQlPls0m9e3gY3Rei+atUpPka5DOa1gnnW3K/WUBFal wbeJaTqxjbVzuNYglI4upL1v2bkATOwsW+d+NXFMWJIZP/OcIoSDviPhdHy0HZOY 3m+VKAOkyapygD44fqppCk6uqG/p82WpPHt9G3GcAKabHPkA/EBGWHbq5soiZkZR Fc+goahEBYLyWqq8WePwEi7h6EAKmom5kyHSCA4chRw4B+LtR5uTVD+/XwP8nddC +8XH0lArLZBqfw2bb9dnHMD1RGgLNJz6Q4n/9GC2uI8AZQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:06 2025 by rpki-client