This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/e8ce0f48-7eb9-4575-90e4-f66ac33569e5.roa File: e8ce0f48-7eb9-4575-90e4-f66ac33569e5.roa (raw, json) Hash identifier: yBDFpArOQ+FstV2IlBToFzHrBVnDvsXpWdk4lHb2ohg= Subject key identifier: 5B:3A:F7:AF:24:9E:AA:D9:B8:13:01:68:6B:72:E7:7D:7C:7C:08:1F Certificate issuer: /CN=df759b5af3da6c9df033b0de998970a4e79655d0 Certificate serial: 7825EC39AFBB98F5D6D557DB1661887E994CCFC7 Authority key identifier: DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/e8ce0f48-7eb9-4575-90e4-f66ac33569e5.roa Signing time: Wed 19 Nov 2025 22:36:48 +0000 ROA not before: Wed 19 Nov 2025 22:36:48 +0000 ROA not after: Tue 17 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.74.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.mft rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:25:ec:39:af:bb:98:f5:d6:d5:57:db:16:61:88:7e:99:4c:cf:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df759b5af3da6c9df033b0de998970a4e79655d0 Validity Not Before: Nov 19 22:36:48 2025 GMT Not After : Feb 17 23:59:59 2026 GMT Subject: serialNumber=6ae86bcfe848c2199587f2d447439c992bdf01a9619f3e68d86e3d3160033ec7, CN=98d67deb-bb75-4e77-b1a0-36016b2d6350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:03:1d:4a:5a:b4:a9:7c:cb:fd:38:96:95:cd: b8:ab:85:b9:7b:6a:17:3a:32:8d:78:32:fc:e4:0e: 5c:e7:39:f5:fb:8d:c2:4f:04:be:7b:55:a8:fb:6a: 6b:ae:2e:fb:8c:06:ab:db:78:ce:c7:97:d0:b1:0a: d3:dd:3a:79:4e:a8:4f:4d:66:f3:95:0e:d2:b6:87: 9e:7f:b8:b2:e4:c8:4e:68:86:fc:ac:d4:db:08:54: e6:97:68:c2:13:d7:c3:35:a8:f0:74:99:92:5f:81: 09:62:fc:4a:d3:a3:cf:4f:e3:d3:92:8c:2d:46:93: 54:95:c0:95:8c:64:bd:56:e9:3c:b9:a9:0a:dc:6d: ec:8b:c6:4d:99:4d:cb:b0:ae:0b:94:d4:47:67:87: 83:98:c3:3e:32:f8:34:fb:20:7f:23:12:c8:2b:ad: 1f:2f:59:b1:be:7d:aa:22:81:14:55:81:9f:83:6a: 2b:93:76:a8:16:6b:ea:da:aa:7b:fb:a7:32:16:79: fe:1c:05:59:cf:ad:f5:f8:cc:f4:82:06:87:0d:5d: 4d:15:d1:4f:50:7e:e6:15:17:04:62:fe:4e:d2:8e: 5c:26:66:07:55:9a:ee:b0:5c:05:64:6e:79:b0:0d: cd:78:fb:0a:6c:d2:28:ff:e2:db:30:ef:bc:49:5e: 01:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3A:F7:AF:24:9E:AA:D9:B8:13:01:68:6B:72:E7:7D:7C:7C:08:1F X509v3 Authority Key Identifier: keyid:DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/e8ce0f48-7eb9-4575-90e4-f66ac33569e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.74.0.0/16 Signature Algorithm: sha256WithRSAEncryption c4:50:c4:d6:37:8c:7b:5d:4a:90:99:95:61:7e:90:69:36:2a: e0:c7:16:ad:c8:9c:0a:87:0e:7d:c6:c5:57:cf:ca:75:ba:c4: dc:af:d6:fc:34:00:2c:36:a3:62:e8:43:60:16:d8:14:f9:2a: 09:53:cd:41:5b:7c:98:94:b2:82:2e:32:d8:d0:72:91:ab:4f: eb:5e:eb:97:6f:95:18:f8:4f:72:ff:93:44:01:0a:d3:7f:77: 21:c1:ae:05:70:d5:76:ad:4f:14:86:ff:1d:ff:a1:a3:85:98: 69:c5:22:65:a3:6e:17:e6:1e:cb:9d:5d:38:17:d7:81:dc:a6: 0e:bc:82:21:6a:29:c3:6d:7d:2a:df:40:ac:ec:85:cd:77:74: ef:f3:17:5d:46:15:e4:fd:54:b9:d1:c3:9f:39:9e:4e:35:64: 79:38:76:77:ae:6f:f3:bb:46:32:e4:b0:0c:17:53:c3:81:86: 1f:6e:f7:76:44:82:1c:c7:69:cc:f6:25:ff:b0:04:3d:e0:e6: f8:b6:ec:f2:6e:29:d4:2e:37:84:66:23:2f:58:53:60:a0:02: 3b:ea:84:af:3d:64:f0:eb:52:f5:ac:3c:21:2a:2d:5a:15:be: e3:18:f3:95:cb:f4:1c:cd:00:b4:4c:96:fa:7f:73:55:44:52: 5f:ab:dc:fb -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUeCXsOa+7mPXW1VfbFmGIfplMz8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZGY3NTliNWFmM2RhNmM5ZGYwMzNiMGRlOTk4OTcwYTRl Nzk2NTVkMDAeFw0yNTExMTkyMjM2NDhaFw0yNjAyMTcyMzU5NTlaMHoxSTBHBgNV BAUTQDZhZTg2YmNmZTg0OGMyMTk5NTg3ZjJkNDQ3NDM5Yzk5MmJkZjAxYTk2MTlm M2U2OGQ4NmUzZDMxNjAwMzNlYzcxLTArBgNVBAMTJDk4ZDY3ZGViLWJiNzUtNGU3 Ny1iMWEwLTM2MDE2YjJkNjM1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANcDHUpatKl8y/04lpXNuKuFuXtqFzoyjXgy/OQOXOc59fuNwk8EvntVqPtq a64u+4wGq9t4zseX0LEK0906eU6oT01m85UO0raHnn+4suTITmiG/KzU2whU5pdo whPXwzWo8HSZkl+BCWL8StOjz0/j05KMLUaTVJXAlYxkvVbpPLmpCtxt7IvGTZlN y7CuC5TUR2eHg5jDPjL4NPsgfyMSyCutHy9Zsb59qiKBFFWBn4NqK5N2qBZr6tqq e/unMhZ5/hwFWc+t9fjM9IIGhw1dTRXRT1B+5hUXBGL+TtKOXCZmB1Wa7rBcBWRu ebANzXj7CmzSKP/i2zDvvEleAXUCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBRbOvev JJ6q2bgTAWhrcud9fHwIHzAfBgNVHSMEGDAWgBTfdZta89psnfAzsN6ZiXCk55ZV 0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMzV2JXdlBh Ykozd003RGVtWWx3cE9lV1ZkQS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9mZTM3MzdmYi0wOTVkLTQ0NGMtOTJmNC0zZjcyMjFmYjU0NGMv ZThjZTBmNDgtN2ViOS00NTc1LTkwZTQtZjY2YWMzMzU2OWU1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZmUzNzM3ZmItMDk1ZC00NDRjLTkyZjQtM2Y3MjIxZmI1 NDRjLzBYRTV0WlZ5dUdlYUFfaDctMXFCcDdhWTRTby5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADNKMA0G CSqGSIb3DQEBCwUAA4IBAQDEUMTWN4x7XUqQmZVhfpBpNirgxxatyJwKhw59xsVX z8p1usTcr9b8NAAsNqNi6ENgFtgU+SoJU81BW3yYlLKCLjLY0HKRq0/rXuuXb5UY +E9y/5NEAQrTf3chwa4FcNV2rU8Uhv8d/6GjhZhpxSJlo24X5h7LnV04F9eB3KYO vIIhainDbX0q30Cs7IXNd3Tv8xddRhXk/VS50cOfOZ5ONWR5OHZ3rm/zu0Yy5LAM F1PDgYYfbvd2RIIcx2nM9iX/sAQ94Ob4tuzybinULjeEZiMvWFNgoAI76oSvPWTw 61L1rDwhKi1aFb7jGPOVy/QczQC0TJb6f3NVRFJfq9z7 -----END CERTIFICATE-----Generated at Sat Dec 6 09:46:53 2025 by rpki-client