This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ec82a459-cf20-418a-8b9d-03c08dc90b73.roa File: ec82a459-cf20-418a-8b9d-03c08dc90b73.roa (raw, json) Hash identifier: l+fjUYNPP02gfJq9nAH5qf6QEjov6OMb3CQiK0sjonU= Subject key identifier: 10:F0:3D:29:EC:75:E6:B7:D6:BF:E9:3C:D7:4A:04:EA:DE:89:71:CD Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 732ED3651D9D02E562D7AC831B17168AF1B042CD Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ec82a459-cf20-418a-8b9d-03c08dc90b73.roa Signing time: Sat 15 Nov 2025 05:40:47 +0000 ROA not before: Sat 15 Nov 2025 05:40:47 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2e:d3:65:1d:9d:02:e5:62:d7:ac:83:1b:17:16:8a:f1:b0:42:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Nov 15 05:40:47 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=d682a4494d55af649db45634347e2701fb5ad248aac82c92170d2aece2dec796, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:99:58:8d:14:42:e9:95:dd:68:d7:5d:61: 03:d1:6c:19:33:81:45:d9:a3:a2:98:30:ca:5c:cd: aa:ed:17:3d:7c:fa:e4:18:a6:56:1a:d2:79:c7:8a: b1:90:17:6b:c4:74:96:66:51:19:f3:4d:d1:a7:d4: 0b:b0:b8:ec:a5:52:87:fc:ba:5a:e4:95:b8:78:8e: cb:3c:85:06:98:32:b9:bc:eb:ba:eb:96:94:64:2a: cb:03:8f:6c:ab:10:9b:77:ab:b8:02:e8:99:30:fb: 68:59:bd:ce:06:08:d4:e4:c0:43:74:6a:9f:41:ee: 57:d7:30:7d:8d:c1:b1:c5:94:89:3c:25:43:2c:aa: 87:71:93:9f:24:8b:01:b4:f4:b8:61:c1:ab:22:61: 2c:99:71:50:ff:ed:e3:d4:e1:ab:c7:b0:fa:e9:ca: d7:33:f2:85:51:81:83:89:1d:9f:6a:29:22:d6:0b: 14:4f:43:4a:a7:bd:01:62:39:2d:b0:82:04:b3:90: 56:ff:57:17:26:2a:c2:a2:a2:ba:1c:8a:c3:34:e5: 61:3f:e8:21:f8:a5:76:2c:b2:c7:25:51:42:d8:15: 1b:62:31:88:ee:a1:c1:22:5c:ca:66:8a:2d:b4:db: a2:e5:2f:0f:db:e7:b6:f2:39:bf:fc:d1:10:0a:ce: 3b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F0:3D:29:EC:75:E6:B7:D6:BF:E9:3C:D7:4A:04:EA:DE:89:71:CD X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ec82a459-cf20-418a-8b9d-03c08dc90b73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.3.0/24 Signature Algorithm: sha256WithRSAEncryption 69:4d:d3:c1:10:16:87:03:12:7a:d6:9a:bf:b8:6a:ef:06:67: 57:05:32:88:d0:01:10:7d:18:76:71:25:4f:b4:f8:83:c2:86: 2a:44:fe:0e:21:07:24:3d:fe:48:80:4b:3b:c7:60:06:46:b6: b8:db:f1:9f:54:15:cc:1a:57:53:6f:2e:03:9c:bb:25:b7:21: 21:d1:b0:2e:7f:ef:70:79:04:d1:ca:6e:f2:78:77:57:f2:0b: 61:2a:99:b4:e0:35:49:51:29:5a:ce:c2:de:0e:92:0c:55:72: c2:91:81:48:50:cb:73:5d:3c:bd:b9:0b:c0:db:47:8c:c5:d6: bd:70:bc:43:2f:44:29:d8:15:44:7b:34:4c:ee:01:38:2b:39: 1b:e4:fe:7a:13:dc:d2:6b:6c:44:4e:e0:ff:db:5f:b0:08:e2: f5:6f:6f:71:27:07:9d:07:f7:69:1c:c6:a2:34:66:70:d5:34: ff:95:6a:d1:1f:64:e7:5d:aa:56:4d:77:73:f4:07:38:42:3b: 81:6b:53:1c:7b:6d:76:3f:82:93:e3:75:cc:da:c8:58:89:29: 45:bc:3d:44:18:e8:6f:d1:4e:2e:6d:76:34:57:7d:2f:a7:2c: 63:3f:64:12:29:80:4a:cc:7c:a7:c1:16:ea:cb:25:49:10:0c: b0:6d:74:5e -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUcy7TZR2dAuVi16yDGxcWivGwQs0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTExMTUwNTQwNDdaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGQ2ODJhNDQ5NGQ1NWFmNjQ5ZGI0NTYzNDM0N2UyNzAxZmI1YWQyNDhhYWM4 MmM5MjE3MGQyYWVjZTJkZWM3OTYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALOBmViNFELpld1o111hA9FsGTOBRdmjopgwylzNqu0XPXz65BimVhrSeceK sZAXa8R0lmZRGfNN0afUC7C47KVSh/y6WuSVuHiOyzyFBpgyubzruuuWlGQqywOP bKsQm3eruALomTD7aFm9zgYI1OTAQ3Rqn0HuV9cwfY3BscWUiTwlQyyqh3GTnySL AbT0uGHBqyJhLJlxUP/t49Thq8ew+unK1zPyhVGBg4kdn2opItYLFE9DSqe9AWI5 LbCCBLOQVv9XFyYqwqKiuhyKwzTlYT/oIfildiyyxyVRQtgVG2IxiO6hwSJcymaK LbTbouUvD9vntvI5v/zREArOO+ECAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQQ8D0p 7HXmt9a/6TzXSgTq3olxzTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZWM4MmE0NTktY2YyMC00MThhLThiOWQtMDNjMDhkYzkwYjczLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE99AzAN BgkqhkiG9w0BAQsFAAOCAQEAaU3TwRAWhwMSetaav7hq7wZnVwUyiNABEH0YdnEl T7T4g8KGKkT+DiEHJD3+SIBLO8dgBka2uNvxn1QVzBpXU28uA5y7JbchIdGwLn/v cHkE0cpu8nh3V/ILYSqZtOA1SVEpWs7C3g6SDFVywpGBSFDLc108vbkLwNtHjMXW vXC8Qy9EKdgVRHs0TO4BOCs5G+T+ehPc0mtsRE7g/9tfsAji9W9vcScHnQf3aRzG ojRmcNU0/5Vq0R9k512qVk13c/QHOEI7gWtTHHttdj+Ck+N1zNrIWIkpRbw9RBjo b9FOLm12NFd9L6csYz9kEimASsx8p8EW6sslSRAMsG10Xg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:32 2025 by rpki-client