This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cda4310a-ca55-4999-9a56-f3175f246324.roa File: cda4310a-ca55-4999-9a56-f3175f246324.roa (raw, json) Hash identifier: 3cBK00tbQtfU4FvU2KAouk25NYQwn2wX1qLMSZeWPU8= Subject key identifier: 92:A9:C3:91:94:BE:4C:2C:A1:52:7B:FE:45:30:2E:1E:18:3A:3A:DF Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0E085EA076FF795E5ECABE84174EBEF18533D8EB Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cda4310a-ca55-4999-9a56-f3175f246324.roa Signing time: Sat 29 Nov 2025 03:00:05 +0000 ROA not before: Sat 29 Nov 2025 03:00:05 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:08:5e:a0:76:ff:79:5e:5e:ca:be:84:17:4e:be:f1:85:33:d8:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:05 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=2dfd93c4e5443ba119861db6c3c02c9f1c3f180488d680bf1d42f265848a6a2e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c6:68:0a:63:46:28:ba:ff:2a:a4:78:e1:8e: d6:57:ab:14:44:fc:45:5b:40:f0:47:2a:9a:f0:cb: b7:a2:51:80:06:76:c1:f5:7b:39:4a:53:ef:4b:1a: 98:7f:73:5b:c3:be:5d:cb:5c:ef:a2:17:6e:7e:28: 3f:c0:1f:f3:8c:5a:c5:bd:78:4e:65:9a:fd:ec:09: 16:2a:13:c2:c6:0d:6a:d2:df:78:6f:2c:a3:2c:62: bf:d2:7b:0d:26:f8:5d:1d:ae:27:ea:fd:dd:9e:39: 60:b0:86:ec:04:b4:28:9f:0e:2c:4c:36:27:50:bd: 03:b4:42:00:b3:1d:fc:ba:f3:e3:c2:7b:31:92:28: 21:3b:a9:ce:6c:23:fa:fc:73:d2:91:a2:eb:f9:84: 77:e4:0d:04:23:ac:b6:c4:05:f6:f5:e2:47:c5:a9: 15:5b:b1:e6:a0:3d:e0:ac:11:ca:55:00:bd:ee:30: 40:63:70:f7:68:30:3e:6f:24:73:9f:a8:f5:e3:da: 57:df:15:1e:74:62:7f:cf:82:55:0b:a0:2c:69:96: 92:be:70:ad:da:f5:57:d1:c5:73:dc:75:0f:b7:57: 0e:46:3e:2c:4a:35:f9:93:c6:75:27:9e:e7:b7:09: 39:ad:07:d5:78:25:a1:2e:97:65:c0:2e:de:b2:a2: 9d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A9:C3:91:94:BE:4C:2C:A1:52:7B:FE:45:30:2E:1E:18:3A:3A:DF X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cda4310a-ca55-4999-9a56-f3175f246324.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.152.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:15:ac:91:e2:fa:6f:57:19:71:0d:49:11:b7:57:2b:66:a8: 69:8f:5a:01:51:f6:97:c5:0c:f5:26:08:5f:92:5e:4e:f9:3f: c6:0d:06:a9:29:fc:d1:5f:31:70:d3:cd:2a:2f:cb:4b:c2:64: 23:ac:5e:90:4c:f8:ac:db:94:85:4f:22:cf:4e:1f:59:f1:19: 00:81:56:3c:d1:18:dd:4b:3c:4d:9b:a2:a2:a7:15:3a:92:9b: 15:77:71:e0:dc:36:c4:50:2f:49:0d:1d:5f:5d:cf:73:20:92: 0d:d8:f6:c8:3b:0c:72:a4:d5:10:41:15:a6:f6:15:1f:42:62: 28:f2:85:d4:89:4b:bc:05:d1:0a:b4:fa:ac:99:06:8b:56:e1: 54:ea:f1:e8:68:bf:1b:e4:08:2b:7b:48:ac:e3:1d:4f:d0:03: 84:42:17:6d:f3:0e:f5:b0:da:4c:b3:f9:94:f1:71:9f:34:8e: e9:4e:55:e3:c7:5f:17:01:cb:12:df:fe:19:fa:fa:f0:65:75: a2:a9:56:43:1a:fe:da:2d:ae:c4:02:ec:83:2c:c6:b4:87:15: b2:bf:b3:19:c7:8e:f2:4d:d3:e8:58:c3:aa:6a:d8:55:9d:73: f7:47:69:f9:1e:1d:30:a4:a1:22:c1:37:25:0d:4d:ac:1d:e0: b9:e3:5c:6e -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUDgheoHb/eV5eyr6EF06+8YUz2OswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwMDVaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDJkZmQ5M2M0ZTU0NDNiYTExOTg2MWRiNmMzYzAyYzlmMWMzZjE4MDQ4OGQ2 ODBiZjFkNDJmMjY1ODQ4YTZhMmUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMHGaApjRii6/yqkeOGO1lerFET8RVtA8EcqmvDLt6JRgAZ2wfV7OUpT70sa mH9zW8O+Xctc76IXbn4oP8Af84xaxb14TmWa/ewJFioTwsYNatLfeG8soyxiv9J7 DSb4XR2uJ+r93Z45YLCG7AS0KJ8OLEw2J1C9A7RCALMd/Lrz48J7MZIoITupzmwj +vxz0pGi6/mEd+QNBCOstsQF9vXiR8WpFVux5qA94KwRylUAve4wQGNw92gwPm8k c5+o9ePaV98VHnRif8+CVQugLGmWkr5wrdr1V9HFc9x1D7dXDkY+LEo1+ZPGdSee 57cJOa0H1XgloS6XZcAu3rKinc0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSSqcOR lL5MLKFSe/5FMC4eGDo63zAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv Y2RhNDMxMGEtY2E1NS00OTk5LTlhNTYtZjMxNzVmMjQ2MzI0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi6JmDAN BgkqhkiG9w0BAQsFAAOCAQEAPhWskeL6b1cZcQ1JEbdXK2aoaY9aAVH2l8UM9SYI X5JeTvk/xg0GqSn80V8xcNPNKi/LS8JkI6xekEz4rNuUhU8iz04fWfEZAIFWPNEY 3Us8TZuioqcVOpKbFXdx4Nw2xFAvSQ0dX13PcyCSDdj2yDsMcqTVEEEVpvYVH0Ji KPKF1IlLvAXRCrT6rJkGi1bhVOrx6Gi/G+QIK3tIrOMdT9ADhEIXbfMO9bDaTLP5 lPFxnzSO6U5V48dfFwHLEt/+Gfr68GV1oqlWQxr+2i2uxALsgyzGtIcVsr+zGceO 8k3T6FjDqmrYVZ1z90dp+R4dMKShIsE3JQ1NrB3gueNcbg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:48 2025 by rpki-client