This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e3a0b200-3f16-4eb7-aa0a-fccc46a9092b.roa File: e3a0b200-3f16-4eb7-aa0a-fccc46a9092b.roa (raw, json) Hash identifier: pkXydEtooRMeBQzyu+eTsHBc7pHKchQ9orbeybHg+5c= Subject key identifier: 35:DC:3A:E1:95:E3:20:76:15:D1:E5:63:7B:CA:56:36:6E:C8:49:1C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3B1F5AA2D8A5DD11CF0BC4E9D54E15AFA671DF55 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e3a0b200-3f16-4eb7-aa0a-fccc46a9092b.roa Signing time: Sun 16 Nov 2025 00:00:08 +0000 ROA not before: Sun 16 Nov 2025 00:00:08 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:1f:5a:a2:d8:a5:dd:11:cf:0b:c4:e9:d5:4e:15:af:a6:71:df:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 16 00:00:08 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=6453d1514d0e59268bf58365328673fb5e1b925718ed238e53ea76f72b89042b, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:75:86:cb:6f:02:cc:0d:18:98:4a:d6:cd:c8: a4:53:8d:4b:57:1c:87:00:b5:26:cb:db:e1:65:de: af:1e:07:2f:58:3a:81:80:56:cd:30:18:fa:35:40: c4:af:96:94:61:68:df:d5:ef:b0:2e:6a:31:41:89: ae:ca:a5:9f:07:3f:94:74:5f:be:af:69:38:68:61: d2:12:fe:89:3b:de:0e:3d:2e:1c:16:19:79:a0:9e: 99:36:6d:03:43:c5:52:c3:f0:83:89:07:bd:81:7f: f6:0d:be:84:ee:7c:ba:d7:be:e6:35:c6:c3:0c:e6: 9c:43:ea:80:ba:a8:2d:ee:87:52:03:cb:fa:a9:9b: f0:44:79:0d:e2:33:04:c3:2f:c5:8c:35:e5:1a:05: c2:63:68:05:6e:79:da:11:83:d5:44:4a:39:32:ba: a1:bf:ff:dd:2b:95:0a:ca:99:7d:46:bd:9d:e8:27: 76:53:07:3a:f5:23:7d:82:df:47:65:1a:5a:37:df: 25:77:f2:2c:e0:62:99:b2:b2:14:89:16:0e:e6:c6: 6a:14:4d:bb:b7:bf:b9:80:12:5e:85:16:d4:85:e7: 72:f8:7f:e3:b3:4e:69:15:e5:9c:95:0c:da:02:4f: 0f:6c:23:02:01:e2:ca:b5:a7:f5:24:fe:fc:10:c5: 63:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DC:3A:E1:95:E3:20:76:15:D1:E5:63:7B:CA:56:36:6E:C8:49:1C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e3a0b200-3f16-4eb7-aa0a-fccc46a9092b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.0.0/17 Signature Algorithm: sha256WithRSAEncryption b8:c5:87:ae:2f:09:2b:0d:e1:5e:03:34:09:32:9a:43:0f:37: 0d:3d:ff:e7:77:59:6e:3d:8f:9f:db:55:f5:a8:8e:7f:0f:2a: 24:9c:bc:1a:5b:f3:77:8c:94:11:20:8e:a5:81:39:ce:fc:c5: d5:78:31:d2:2f:22:ef:fc:57:71:cd:05:0f:27:78:c6:9c:12: f7:06:2d:52:b1:eb:12:c6:6f:45:b5:d6:a0:98:bd:a1:25:7d: 44:bb:b3:65:97:cf:bd:a3:f4:a6:1d:80:ca:c1:a7:a7:b7:01: f6:6c:c6:ca:8c:75:37:7b:3a:6a:87:2f:bf:44:32:93:78:ee: f2:81:47:20:57:88:f6:65:29:de:a1:41:3c:5c:57:10:ee:4e: b1:25:19:c3:74:51:8d:a3:c0:ff:34:d4:17:1a:8d:b4:28:a5: 84:49:64:dc:32:72:35:a4:90:cd:81:66:52:c1:2f:6f:df:1d: 5c:67:70:8d:29:dd:3a:5f:dc:95:a8:aa:4b:4a:36:7a:66:7c: 06:6d:99:0d:10:db:a8:c9:10:90:7d:60:ae:0f:80:4d:4b:d6: 1c:a7:54:c7:9a:67:f7:16:3e:45:b2:fe:87:5d:57:ed:39:43: 89:54:db:1e:97:de:0d:f5:5e:33:86:72:19:65:b2:f0:b0:6e: 0f:68:6c:d4 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUOx9aotil3RHPC8Tp1U4Vr6Zx31UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTYwMDAwMDhaFw0yNTEyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQDY0NTNkMTUxNGQwZTU5MjY4YmY1ODM2NTMyODY3M2ZiNWUxYjkyNTcxOGVk MjM4ZTUzZWE3NmY3MmI4OTA0MmIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMN1hstvAswNGJhK1s3IpFONS1cchwC1Jsvb4WXerx4HL1g6gYBWzTAY+jVA xK+WlGFo39XvsC5qMUGJrsqlnwc/lHRfvq9pOGhh0hL+iTveDj0uHBYZeaCemTZt A0PFUsPwg4kHvYF/9g2+hO58ute+5jXGwwzmnEPqgLqoLe6HUgPL+qmb8ER5DeIz BMMvxYw15RoFwmNoBW552hGD1URKOTK6ob//3SuVCsqZfUa9negndlMHOvUjfYLf R2UaWjffJXfyLOBimbKyFIkWDubGahRNu7e/uYASXoUW1IXncvh/47NOaRXlnJUM 2gJPD2wjAgHiyrWn9ST+/BDFY3sCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQ13Drh leMgdhXR5WN7ylY2bshJHDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTNhMGIyMDAtM2YxNi00ZWI3LWFhMGEtZmNjYzQ2YTkwOTJiLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB099ADAN BgkqhkiG9w0BAQsFAAOCAQEAuMWHri8JKw3hXgM0CTKaQw83DT3/53dZbj2Pn9tV 9aiOfw8qJJy8Glvzd4yUESCOpYE5zvzF1Xgx0i8i7/xXcc0FDyd4xpwS9wYtUrHr EsZvRbXWoJi9oSV9RLuzZZfPvaP0ph2AysGnp7cB9mzGyox1N3s6aocvv0Qyk3ju 8oFHIFeI9mUp3qFBPFxXEO5OsSUZw3RRjaPA/zTUFxqNtCilhElk3DJyNaSQzYFm UsEvb98dXGdwjSndOl/claiqS0o2emZ8Bm2ZDRDbqMkQkH1grg+ATUvWHKdUx5pn 9xY+RbL+h11X7TlDiVTbHpfeDfVeM4ZyGWWy8LBuD2hs1A== -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:00 2025 by rpki-client