This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa File: eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa (raw, json) Hash identifier: lW7lnqZj91HNq+itaPNqSpdfm8NwYNztTu6t4uFEbYw= Subject key identifier: 25:85:DE:93:E5:81:76:8F:38:09:06:A7:C7:EF:7A:2F:BE:C5:D0:90 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 3B1E38EC6AF3D6F68FD84744B0C64843DD888C10 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa Signing time: Tue 02 Dec 2025 01:50:09 +0000 ROA not before: Tue 02 Dec 2025 01:50:09 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.34.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:1e:38:ec:6a:f3:d6:f6:8f:d8:47:44:b0:c6:48:43:dd:88:8c:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:50:09 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=2e17d80db8a0b0f7f8117938aec4cb923cc1d44ad78487280c134a11bb2a3904, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:84:c8:68:d0:9a:80:d4:f3:40:db:8b:ea:6b: c7:a3:8c:32:06:32:a6:ee:0d:e5:09:a2:03:94:fd: 06:77:90:50:0c:cf:91:ec:53:21:ab:1c:41:e7:7a: 3c:a0:3a:f4:77:fd:09:6b:67:d6:13:6a:31:d4:a0: 04:24:9c:c3:d0:0d:e7:62:a7:b7:4d:bb:fd:64:d8: 17:3b:cb:5f:73:11:07:fe:ed:a1:b3:27:7f:ad:9f: 67:9d:18:35:7e:cf:f3:9d:37:ca:b2:01:37:c9:ea: e3:a3:cd:62:79:f3:e3:8e:ac:cc:f5:32:16:32:bf: ee:d3:f4:9e:e9:40:fa:ab:6a:28:9d:b4:90:e4:ff: b4:81:62:d9:42:cd:c7:74:f6:c8:f6:e8:a3:ee:a5: e5:7c:42:29:b5:89:8b:0f:16:42:f2:57:33:9c:44: 48:85:86:c5:58:01:50:8f:29:06:b9:3d:31:4f:15: f8:92:51:59:f7:8b:9c:b0:db:05:38:95:25:da:26: c1:a2:26:2a:6b:65:3b:24:99:4e:81:5d:0c:e8:ec: ed:81:9e:15:a1:2c:49:71:b2:ad:8a:14:85:17:47: b1:f7:4f:01:84:55:2c:fc:10:f0:81:64:91:f4:94: 55:04:70:7c:5c:12:68:a5:72:7a:80:ed:f5:1e:d8: e3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:85:DE:93:E5:81:76:8F:38:09:06:A7:C7:EF:7A:2F:BE:C5:D0:90 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.34.0.0/19 Signature Algorithm: sha256WithRSAEncryption 0d:cb:8c:72:17:c6:8e:ab:ce:f1:05:14:bb:20:34:26:e4:19: f1:24:71:90:34:ce:8f:e6:cf:b6:16:9b:18:29:79:0d:89:4a: 01:c8:74:69:cf:04:3b:4d:e5:e6:52:47:77:70:b0:d5:2a:c0: 34:e3:29:a9:41:ed:e9:1e:f5:36:15:32:d1:fc:34:e1:6a:da: 98:d9:50:ba:f3:34:d8:1e:87:65:c7:2c:67:6b:39:5a:e1:67: 55:f2:a6:ba:0c:2f:dc:5a:40:65:ca:ec:e4:ab:31:99:cb:19: d0:63:9d:6a:d9:29:b4:ae:a2:94:18:30:b0:a8:63:d9:8f:8a: 46:a6:60:0f:77:b6:01:57:c8:e4:4a:3a:21:26:9a:33:62:aa: ec:e2:61:1f:b5:d4:ce:4e:89:01:15:46:9f:7d:d1:a0:9d:de: f8:d1:6d:a1:75:4c:e4:92:0b:c7:ec:66:30:98:6e:46:38:91: 1c:e5:a0:78:d5:2d:2d:3d:cd:b7:66:d8:98:9d:71:47:25:39: 9b:d3:75:b8:43:73:c9:a5:35:9f:1a:43:4d:50:66:ec:5f:61: ef:f2:5c:85:d3:22:c9:fc:21:5d:d7:84:a5:3d:fe:ac:5c:26: 63:ff:4b:b1:a1:03:55:3f:a7:7c:ec:6b:ad:93:5f:b0:cd:23: 4b:ef:8e:1d -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUOx447Grz1vaP2EdEsMZIQ92IjBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUwMDlaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDJlMTdkODBkYjhhMGIwZjdmODExNzkzOGFlYzRjYjkyM2NjMWQ0NGFkNzg0 ODcyODBjMTM0YTExYmIyYTM5MDQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMSEyGjQmoDU80Dbi+prx6OMMgYypu4N5QmiA5T9BneQUAzPkexTIascQed6 PKA69Hf9CWtn1hNqMdSgBCScw9AN52Knt027/WTYFzvLX3MRB/7tobMnf62fZ50Y NX7P8503yrIBN8nq46PNYnnz446szPUyFjK/7tP0nulA+qtqKJ20kOT/tIFi2ULN x3T2yPboo+6l5XxCKbWJiw8WQvJXM5xESIWGxVgBUI8pBrk9MU8V+JJRWfeLnLDb BTiVJdomwaImKmtlOySZToFdDOjs7YGeFaEsSXGyrYoUhRdHsfdPAYRVLPwQ8IFk kfSUVQRwfFwSaKVyeoDt9R7Y40kCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQlhd6T 5YF2jzgJBqfH73ovvsXQkDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZWFiOGJhNjItNTkzNC00YzliLTliZDktMTBmZGQyNDk0NjYyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbAiADAN BgkqhkiG9w0BAQsFAAOCAQEADcuMchfGjqvO8QUUuyA0JuQZ8SRxkDTOj+bPthab GCl5DYlKAch0ac8EO03l5lJHd3Cw1SrANOMpqUHt6R71NhUy0fw04WramNlQuvM0 2B6HZccsZ2s5WuFnVfKmugwv3FpAZcrs5KsxmcsZ0GOdatkptK6ilBgwsKhj2Y+K RqZgD3e2AVfI5Eo6ISaaM2Kq7OJhH7XUzk6JARVGn33RoJ3e+NFtoXVM5JILx+xm MJhuRjiRHOWgeNUtLT3Nt2bYmJ1xRyU5m9N1uENzyaU1nxpDTVBm7F9h7/JchdMi yfwhXdeEpT3+rFwmY/9LsaEDVT+nfOxrrZNfsM0jS++OHQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:41:40 2025 by rpki-client