This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e91b62a9-2885-4504-84a4-ba2cc2f2ac80.roa File: e91b62a9-2885-4504-84a4-ba2cc2f2ac80.roa (raw, json) Hash identifier: AnUXNQ/TMGAAayT3LLOp56DZs651di+cl4CdU6qbscs= Subject key identifier: 7A:B5:DD:1D:2B:50:F1:EF:40:5D:00:E8:24:44:19:35:15:FC:24:DD Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 772D6CF80A63D64272A7292FD39EC8EEF29047A1 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e91b62a9-2885-4504-84a4-ba2cc2f2ac80.roa Signing time: Sat 29 Nov 2025 03:00:06 +0000 ROA not before: Sat 29 Nov 2025 03:00:06 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.137.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:2d:6c:f8:0a:63:d6:42:72:a7:29:2f:d3:9e:c8:ee:f2:90:47:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 29 03:00:06 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=9982d9a4e3727000681dfc1c80896308e7117b60f4b555b4bfeadc6e51e7744d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:89:ef:85:16:83:34:74:07:8d:a0:52:04: 4d:24:0e:74:cd:6c:cf:6e:ea:df:2b:14:34:a0:eb: 24:15:26:57:1f:c4:56:51:ad:4c:ce:8e:39:5b:e2: b6:a4:47:e2:60:c4:73:a6:da:36:08:e4:9f:e3:5f: 30:6c:57:f5:ff:e4:45:32:bf:33:e5:ad:75:5f:11: 74:34:ec:c6:7a:21:98:2e:ac:3d:02:1a:60:a7:a2: 7a:94:09:1b:61:94:b8:f4:6d:c2:6b:31:c7:94:c6: d7:b9:62:e3:1d:af:74:9b:f3:de:16:92:db:78:d3: dd:cd:c2:5f:7a:b4:5c:05:08:91:55:b5:73:f6:13: 01:99:ee:10:e4:ca:80:09:36:d9:98:72:48:d8:6d: f0:7e:a5:d1:87:65:25:49:17:52:05:29:e6:e9:ae: 39:3b:e0:ff:93:0a:e2:0e:ac:54:0c:f5:0b:e6:fd: 94:05:73:e4:8d:9b:e9:e8:1a:0d:ab:fc:d4:5f:c1: 0a:17:b1:27:43:ae:8b:18:7e:d3:90:b0:4a:20:3e: f2:e5:66:4f:00:45:71:95:8e:e5:6f:3b:5c:13:89: cd:e4:ce:61:4c:81:a0:63:ef:cf:ef:d2:ba:28:50: 53:24:cb:ad:4e:26:a1:39:47:19:ad:99:f3:85:7f: 84:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B5:DD:1D:2B:50:F1:EF:40:5D:00:E8:24:44:19:35:15:FC:24:DD X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e91b62a9-2885-4504-84a4-ba2cc2f2ac80.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.137.160.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:6c:85:f0:21:7b:fe:7f:14:8c:01:1f:45:e1:10:f1:bd:60: 92:a3:49:7d:5c:0f:ea:ce:63:e3:9b:9c:4f:c0:76:31:1f:65: ac:d5:42:86:b0:14:45:7f:0b:19:64:df:bf:f2:58:77:1e:4e: f1:13:ae:a8:7b:4e:aa:bf:99:1c:c2:49:02:38:80:70:39:b7: 20:05:46:73:e1:43:34:ca:db:8d:d9:60:27:0d:53:3e:0e:ba: 7c:ab:ae:3a:4b:0d:7f:9b:45:5c:b7:14:69:2b:dc:3a:2e:10: fb:e0:6b:1e:0c:b2:5a:05:cf:5a:a6:03:67:6c:f1:01:68:59: 3f:dc:b4:d5:63:c1:01:ba:e0:43:90:01:31:86:ee:d4:0d:e7: 3a:74:a6:b0:fb:80:f5:98:1b:18:7a:36:13:b4:f5:9c:a4:4b: 02:3b:1d:df:47:88:a5:12:33:df:75:03:73:5d:30:77:fa:0b: ae:bb:56:df:21:ec:9c:24:0c:ba:47:c6:02:08:58:54:9c:ff: 2a:5f:18:03:4b:86:5b:5b:d2:e8:bf:71:66:9c:21:75:ee:06: af:19:a8:2e:b0:b6:19:3f:7f:ce:da:40:fd:eb:ce:9e:b5:b9: c8:d8:95:07:2f:00:03:d4:9e:ea:53:b0:2f:98:34:0a:c1:30: 3a:b6:d3:f5 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUdy1s+Apj1kJypykv057I7vKQR6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMjkwMzAwMDZaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDk5ODJkOWE0ZTM3MjcwMDA2ODFkZmMxYzgwODk2MzA4ZTcxMTdiNjBmNGI1 NTViNGJmZWFkYzZlNTFlNzc0NGQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0jie+FFoM0dAeNoFIETSQOdM1sz27q3ysUNKDrJBUmVx/EVlGtTM6OOVvi tqRH4mDEc6baNgjkn+NfMGxX9f/kRTK/M+WtdV8RdDTsxnohmC6sPQIaYKeiepQJ G2GUuPRtwmsxx5TG17li4x2vdJvz3haS23jT3c3CX3q0XAUIkVW1c/YTAZnuEOTK gAk22ZhySNht8H6l0YdlJUkXUgUp5umuOTvg/5MK4g6sVAz1C+b9lAVz5I2b6ega Dav81F/BChexJ0Ouixh+05CwSiA+8uVmTwBFcZWO5W87XBOJzeTOYUyBoGPvz+/S uihQUyTLrU4moTlHGa2Z84V/hA0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBR6td0d K1Dx70BdAOgkRBk1Ffwk3TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTkxYjYyYTktMjg4NS00NTA0LTg0YTQtYmEyY2MyZjJhYzgwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAy6JoDAN BgkqhkiG9w0BAQsFAAOCAQEAPGyF8CF7/n8UjAEfReEQ8b1gkqNJfVwP6s5j45uc T8B2MR9lrNVChrAURX8LGWTfv/JYdx5O8ROuqHtOqr+ZHMJJAjiAcDm3IAVGc+FD NMrbjdlgJw1TPg66fKuuOksNf5tFXLcUaSvcOi4Q++BrHgyyWgXPWqYDZ2zxAWhZ P9y01WPBAbrgQ5ABMYbu1A3nOnSmsPuA9ZgbGHo2E7T1nKRLAjsd30eIpRIz33UD c10wd/oLrrtW3yHsnCQMukfGAghYVJz/Kl8YA0uGW1vS6L9xZpwhde4GrxmoLrC2 GT9/ztpA/evOnrW5yNiVBy8AA9Se6lOwL5g0CsEwOrbT9Q== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:25 2025 by rpki-client