This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e52e9dad-cbf3-4ac0-a52e-da2bf03e90b3.roa File: e52e9dad-cbf3-4ac0-a52e-da2bf03e90b3.roa (raw, json) Hash identifier: yRupf5rDcGP02YYZjMBxwhs0b9GQGfj2s9xkohkKNuY= Subject key identifier: 8A:FE:2D:AC:81:C6:70:F8:49:52:F4:90:0F:6D:49:49:13:9E:31:F5 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 69B8832C77C0FF116F0C6C1A0E8D7BFF9D863BB5 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e52e9dad-cbf3-4ac0-a52e-da2bf03e90b3.roa Signing time: Tue 02 Dec 2025 01:51:27 +0000 ROA not before: Tue 02 Dec 2025 01:51:27 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.34.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:b8:83:2c:77:c0:ff:11:6f:0c:6c:1a:0e:8d:7b:ff:9d:86:3b:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:51:27 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=ad9e47fd419eeee9b3894ea6d196f2c65dd96b60986079693c9dc0c0471b85e2, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6b:36:c3:3b:0c:91:97:4c:b9:48:46:1e:45: 4a:d1:e1:31:e8:a0:70:1e:f3:10:7d:b4:1b:86:39: 22:d1:87:14:83:c8:2a:eb:e8:49:48:85:9c:8b:ec: be:11:8d:bb:b7:b6:0d:46:99:4d:c7:ec:d5:18:7e: 59:ae:cd:2f:d7:dd:94:8e:f4:63:40:7b:69:60:c4: 12:15:02:09:3e:14:6e:14:9f:1d:d7:ab:70:55:4c: bc:d7:1a:87:b5:58:d8:a0:f4:81:3b:b9:48:c5:f7: 76:77:95:51:b2:e1:58:67:6a:9c:c2:9c:2a:66:56: 1d:97:e8:fe:90:31:45:77:f1:6d:5d:68:3a:d2:cb: 77:6f:71:90:09:12:c3:ec:7f:c4:aa:b9:b7:2c:54: b4:c3:0a:e9:31:ce:f5:ff:06:7b:fa:a3:21:97:ba: f5:0f:5e:b3:f5:fc:91:b6:e6:5a:3a:97:6a:1d:3f: 21:7e:fa:bd:8d:c2:68:eb:63:ba:f1:f7:ea:f4:d3: ea:d2:85:75:ce:5e:b6:dd:c9:30:bc:82:9f:62:f5: 13:3a:84:76:93:c4:ec:f2:b2:66:fd:1f:ae:24:5a: 5d:e6:6e:a6:af:70:ff:6a:d7:b5:03:15:5c:8a:87: 29:4b:3e:cc:13:2f:36:da:b0:b2:d9:70:7e:65:36: e0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:FE:2D:AC:81:C6:70:F8:49:52:F4:90:0F:6D:49:49:13:9E:31:F5 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e52e9dad-cbf3-4ac0-a52e-da2bf03e90b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.34.40.0/22 Signature Algorithm: sha256WithRSAEncryption 11:d9:de:3b:ff:d2:7d:e8:68:17:fe:0f:f2:b9:7b:64:83:76: 74:3b:39:9c:d8:ce:ea:c6:4c:40:67:2d:38:d4:a1:7f:9a:e8: 05:9d:57:75:43:64:b9:f9:1b:16:45:2e:41:0e:b2:7a:0e:33: 3d:b9:cb:92:5d:f2:af:e8:b2:5e:07:9b:5c:89:f1:d5:fc:fd: a1:f7:c3:89:77:9c:c6:56:6b:f4:5b:60:08:d3:02:2c:d0:ec: 0e:c7:64:ed:e7:9f:39:75:b4:31:d0:9d:5f:ed:f6:cc:f2:17: 8c:48:5c:5f:1a:3c:db:84:3f:8e:fe:4a:ba:e1:23:f2:95:6b: 6e:8f:f7:95:0b:0d:c6:0e:14:db:f9:4f:2c:c2:f2:3f:fb:bf: df:7e:62:84:bb:15:79:4e:47:ec:44:3c:13:be:93:3b:e9:2c: 35:c5:cf:d5:a9:22:40:de:3e:6e:f0:6f:21:c8:81:12:26:7b: be:13:78:f1:ca:04:fb:3c:0c:e0:30:dc:ae:06:cf:42:e0:55: 49:ca:cc:6d:68:17:2b:59:db:93:4a:a7:ab:73:b7:9b:88:be: 97:5a:6c:4c:b6:f9:e7:76:fc:09:ed:a1:1f:5d:66:af:d4:c2: 64:23:cb:50:5d:3e:16:77:78:c4:19:1c:37:08:43:ca:fe:72: 7d:1d:5d:90 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUabiDLHfA/xFvDGwaDo17/52GO7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUxMjdaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQGFkOWU0N2ZkNDE5ZWVlZTliMzg5NGVhNmQxOTZmMmM2NWRkOTZiNjA5ODYw Nzk2OTNjOWRjMGMwNDcxYjg1ZTIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMprNsM7DJGXTLlIRh5FStHhMeigcB7zEH20G4Y5ItGHFIPIKuvoSUiFnIvs vhGNu7e2DUaZTcfs1Rh+Wa7NL9fdlI70Y0B7aWDEEhUCCT4UbhSfHdercFVMvNca h7VY2KD0gTu5SMX3dneVUbLhWGdqnMKcKmZWHZfo/pAxRXfxbV1oOtLLd29xkAkS w+x/xKq5tyxUtMMK6THO9f8Ge/qjIZe69Q9es/X8kbbmWjqXah0/IX76vY3CaOtj uvH36vTT6tKFdc5ett3JMLyCn2L1EzqEdpPE7PKyZv0friRaXeZupq9w/2rXtQMV XIqHKUs+zBMvNtqwstlwfmU24LcCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSK/i2s gcZw+ElS9JAPbUlJE54x9TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTUyZTlkYWQtY2JmMy00YWMwLWE1MmUtZGEyYmYwM2U5MGIzLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArAiKDAN BgkqhkiG9w0BAQsFAAOCAQEAEdneO//SfehoF/4P8rl7ZIN2dDs5nNjO6sZMQGct ONShf5roBZ1XdUNkufkbFkUuQQ6yeg4zPbnLkl3yr+iyXgebXInx1fz9offDiXec xlZr9FtgCNMCLNDsDsdk7eefOXW0MdCdX+32zPIXjEhcXxo824Q/jv5KuuEj8pVr bo/3lQsNxg4U2/lPLMLyP/u/335ihLsVeU5H7EQ8E76TO+ksNcXP1akiQN4+bvBv IciBEiZ7vhN48coE+zwM4DDcrgbPQuBVScrMbWgXK1nbk0qnq3O3m4i+l1psTLb5 53b8Ce2hH11mr9TCZCPLUF0+Fnd4xBkcNwhDyv5yfR1dkA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:48 2025 by rpki-client