This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ec7e5637-f312-4c51-b644-29324b74734e.roa File: ec7e5637-f312-4c51-b644-29324b74734e.roa (raw, json) Hash identifier: LAc7rQYktRR0hQYEDNfkbZCvQ/+GqoNi7PjJIY7mVxg= Subject key identifier: DE:E8:80:88:8E:EA:A2:00:76:BE:36:52:FD:BA:1A:EF:93:A0:D2:8F Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 503A50A8CDF8B77E7C460C9B0142EFF83F7069C1 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ec7e5637-f312-4c51-b644-29324b74734e.roa Signing time: Tue 02 Dec 2025 01:51:26 +0000 ROA not before: Tue 02 Dec 2025 01:51:26 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.34.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3a:50:a8:cd:f8:b7:7e:7c:46:0c:9b:01:42:ef:f8:3f:70:69:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 2 01:51:26 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=457c88b1e39940c5f5e0e1e8e551f42a9729127996ef76baeb78d876ff9c48de, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ae:ff:7d:22:97:f6:07:18:1a:20:e5:e2:f2: 95:49:3a:33:30:f9:14:b6:d4:d8:70:ff:90:b5:f8: a3:b3:d5:26:64:1c:76:c0:89:3c:ce:2c:90:53:e5: 5f:31:14:8d:12:1f:e6:2c:6c:6e:34:36:4d:dc:5c: b7:7b:6a:f1:d4:5e:62:1c:d4:50:b0:ca:41:ad:db: 45:d8:c6:44:93:82:86:c1:ed:03:3c:f9:64:4f:41: e0:2b:c8:97:e7:be:b1:1f:06:ce:7c:e3:f3:aa:c1: 0f:88:1a:b9:d2:75:2b:94:94:49:be:45:bf:22:f6: 06:4b:4e:46:79:a6:26:c1:59:b2:69:51:57:12:59: d7:7f:a3:3e:cb:0c:92:6a:e3:97:d5:81:5d:19:38: 7b:da:1b:0e:4d:6d:3c:75:58:3b:eb:46:a6:77:1f: ce:cd:3a:76:3e:5e:63:bc:79:b3:fb:14:7a:e6:3f: c6:19:29:ee:65:75:96:e9:cf:93:6f:a7:a6:ea:04: 15:f0:a3:21:64:75:d4:aa:39:ae:1c:72:6f:f6:c5: ce:00:e1:81:1a:2f:21:30:61:98:d9:87:8f:f9:67: 2b:8b:c8:ab:91:1b:7a:0f:92:fc:8e:f9:09:79:b3: 33:45:35:66:5c:b8:e1:52:5f:0a:14:3d:86:3a:a9: 70:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E8:80:88:8E:EA:A2:00:76:BE:36:52:FD:BA:1A:EF:93:A0:D2:8F X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ec7e5637-f312-4c51-b644-29324b74734e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.34.224.0/19 Signature Algorithm: sha256WithRSAEncryption 57:18:e1:5e:a5:99:0e:4c:5d:f1:61:e0:54:09:df:60:14:03: 30:d6:98:69:d2:fb:69:5a:74:a4:4d:de:42:19:dc:f7:2e:b4: d5:56:b6:5e:7e:7d:a3:04:80:10:9a:2b:01:b6:e5:fc:56:2b: f1:31:fc:21:99:36:25:98:f4:06:36:a8:58:9a:00:f9:f2:f8: 17:5b:86:47:2e:b9:e2:4f:27:7d:bc:ab:04:b6:69:3b:68:50: a6:cf:23:62:ff:f3:f9:47:93:86:3c:0a:7e:7b:72:b0:a2:37: a3:8e:ea:1c:29:76:a9:2e:34:18:06:e2:31:6d:6d:a5:d5:17: 3e:99:4e:86:c2:4b:52:23:ec:b2:9f:80:e4:19:24:85:7b:99: c9:3b:74:d2:e6:35:86:2a:c6:7f:5e:91:04:5b:d2:b2:d4:53: 06:4d:0d:bf:6e:c4:7e:23:b4:d6:84:04:a4:4e:00:bb:c9:07: 2b:c4:59:0e:d3:0a:34:c1:c0:1a:d2:af:78:24:18:1a:71:dd: 61:f3:bf:93:dc:5a:44:1d:d6:72:1e:2b:b7:fd:7a:b2:89:49: 13:49:86:c0:4e:d9:6e:0d:6f:64:34:20:ae:0b:df:d8:cf:d3: af:0e:b6:3b:5e:fb:dc:74:44:cd:3d:66:8c:38:08:a3:56:1b: a2:ee:50:29 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUUDpQqM34t358RgybAULv+D9wacEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMDIwMTUxMjZaFw0yNjAzMDIyMzU5NTlaMHoxSTBHBgNV BAUTQDQ1N2M4OGIxZTM5OTQwYzVmNWUwZTFlOGU1NTFmNDJhOTcyOTEyNzk5NmVm NzZiYWViNzhkODc2ZmY5YzQ4ZGUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuu/30il/YHGBog5eLylUk6MzD5FLbU2HD/kLX4o7PVJmQcdsCJPM4skFPl XzEUjRIf5ixsbjQ2Tdxct3tq8dReYhzUULDKQa3bRdjGRJOChsHtAzz5ZE9B4CvI l+e+sR8Gznzj86rBD4gaudJ1K5SUSb5FvyL2BktORnmmJsFZsmlRVxJZ13+jPssM kmrjl9WBXRk4e9obDk1tPHVYO+tGpncfzs06dj5eY7x5s/sUeuY/xhkp7mV1lunP k2+npuoEFfCjIWR11Ko5rhxyb/bFzgDhgRovITBhmNmHj/lnK4vIq5Ebeg+S/I75 CXmzM0U1Zly44VJfChQ9hjqpcGkCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTe6ICI juqiAHa+NlL9uhrvk6DSjzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZWM3ZTU2MzctZjMxMi00YzUxLWI2NDQtMjkzMjRiNzQ3MzRlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbAi4DAN BgkqhkiG9w0BAQsFAAOCAQEAVxjhXqWZDkxd8WHgVAnfYBQDMNaYadL7aVp0pE3e Qhnc9y601Va2Xn59owSAEJorAbbl/FYr8TH8IZk2JZj0BjaoWJoA+fL4F1uGRy65 4k8nfbyrBLZpO2hQps8jYv/z+UeThjwKfntysKI3o47qHCl2qS40GAbiMW1tpdUX PplOhsJLUiPssp+A5BkkhXuZyTt00uY1hirGf16RBFvSstRTBk0Nv27EfiO01oQE pE4Au8kHK8RZDtMKNMHAGtKveCQYGnHdYfO/k9xaRB3Wch4rt/16solJE0mGwE7Z bg1vZDQgrgvf2M/Trw62O1773HREzT1mjDgIo1Ybou5QKQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:50 2025 by rpki-client