This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37b584fa-f648-4a07-9cbd-40bfef4a0b2f.roa File: 37b584fa-f648-4a07-9cbd-40bfef4a0b2f.roa (raw, json) Hash identifier: VZG75+ciRCcygjZcwadABuxbIhOKshjWUV2Z4mvboCc= Subject key identifier: B5:21:31:99:48:D4:F3:95:93:C4:D8:00:D1:73:A1:43:AE:06:6A:A9 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 5F85780D4BDDAB9BCB6C3BB021EF4EB4103A1B13 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37b584fa-f648-4a07-9cbd-40bfef4a0b2f.roa Signing time: Wed 10 Dec 2025 05:41:17 +0000 ROA not before: Wed 10 Dec 2025 05:41:17 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 185.48.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:85:78:0d:4b:dd:ab:9b:cb:6c:3b:b0:21:ef:4e:b4:10:3a:1b:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:41:17 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=d75168540b5db9900d21550e37eaae1d0248f6f3689996cfc9c29309dce48812, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:80:35:4f:6a:99:e7:f9:48:a7:2a:91:79:1c: 55:32:56:7b:22:c9:09:c6:2c:c0:a3:64:41:9d:aa: 78:58:8d:80:e0:6b:bd:81:4f:2f:c0:d9:ac:11:30: 58:74:91:12:d0:63:43:43:20:a8:cf:cd:26:53:13: 9b:54:9b:fa:df:f2:d7:87:ef:fb:4d:25:df:61:30: a9:e1:9d:37:69:96:9f:d7:f8:5f:e7:c9:58:eb:a5: 3c:b1:d2:ff:2c:fa:ae:87:9e:7f:08:32:f6:8c:e3: d6:49:96:e4:89:0e:49:34:8a:b3:97:d8:21:c7:d3: 26:b9:f4:39:85:7c:0e:8f:71:0c:12:00:0a:e9:8d: 6b:ea:36:eb:64:03:32:c5:73:ba:56:23:78:d4:82: 3e:0c:30:fb:68:19:cf:85:30:9b:f7:d1:96:1b:64: fa:2b:1b:97:a9:25:12:15:c0:a2:ef:1b:42:f4:56: f7:97:8a:c3:8f:2f:7f:18:f9:ee:9b:e4:1d:43:ae: eb:8f:fe:dd:70:5c:e7:8a:43:8d:2d:63:f4:b3:32: 83:53:ea:73:af:a5:34:f8:ed:4c:8d:2a:78:05:8f: 7f:4b:99:e8:ba:f2:bf:99:4c:ec:3a:cb:d0:3b:65: 13:8a:4e:ee:48:2c:a8:ea:ea:9e:74:90:87:89:b9: b4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:21:31:99:48:D4:F3:95:93:C4:D8:00:D1:73:A1:43:AE:06:6A:A9 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/37b584fa-f648-4a07-9cbd-40bfef4a0b2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.48.120.0/22 Signature Algorithm: sha256WithRSAEncryption a7:17:e7:d1:d1:31:39:29:91:d4:be:91:2e:80:fa:08:e7:99: 1a:16:47:4e:34:8d:a9:f2:bf:87:9f:68:f1:fa:08:29:92:4a: 8e:d7:19:3e:76:7b:3b:a6:09:28:5c:db:45:18:e3:fd:26:fb: 73:bc:69:6b:37:99:34:de:f5:db:5c:fd:a8:74:0d:e2:99:86: a9:1d:25:37:22:7c:3d:80:a7:3e:21:fb:e5:12:16:6c:2b:7a: 9f:5b:8d:49:55:4e:09:36:8f:48:87:c3:74:86:78:ca:69:f7: 64:3b:69:09:d3:b9:fc:38:f3:73:02:b7:ed:e3:98:50:5c:6b: 3f:27:da:98:a9:c5:4e:1e:b0:08:65:59:c6:20:62:24:11:71: 33:80:4f:97:65:58:56:ea:1f:cd:0c:41:4c:e3:b1:7b:57:6f: 31:5c:5b:32:f1:9d:14:67:75:b2:65:e6:29:e9:d2:ab:22:91: e3:44:fe:0c:15:50:07:ff:12:ee:3a:01:69:87:74:4b:3e:bd: 7a:0a:78:6d:be:65:b7:ee:98:6e:df:94:34:da:6e:44:8a:d2: 96:e4:65:ee:64:d8:a3:53:0b:69:89:a9:c2:42:b9:cf:61:c7: 86:4d:45:43:11:84:83:8b:9a:31:34:3a:e6:99:8a:a8:81:88: 1e:dd:ff:35 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUX4V4DUvdq5vLbDuwIe9OtBA6GxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTQxMTdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGQ3NTE2ODU0MGI1ZGI5OTAwZDIxNTUwZTM3ZWFhZTFkMDI0OGY2ZjM2ODk5 OTZjZmM5YzI5MzA5ZGNlNDg4MTIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKiANU9qmef5SKcqkXkcVTJWeyLJCcYswKNkQZ2qeFiNgOBrvYFPL8DZrBEw WHSREtBjQ0MgqM/NJlMTm1Sb+t/y14fv+00l32EwqeGdN2mWn9f4X+fJWOulPLHS /yz6roeefwgy9ozj1kmW5IkOSTSKs5fYIcfTJrn0OYV8Do9xDBIACumNa+o262QD MsVzulYjeNSCPgww+2gZz4Uwm/fRlhtk+isbl6klEhXAou8bQvRW95eKw48vfxj5 7pvkHUOu64/+3XBc54pDjS1j9LMyg1Pqc6+lNPjtTI0qeAWPf0uZ6Lryv5lM7DrL 0DtlE4pO7kgsqOrqnnSQh4m5tJECAwEAAaOCAiEwggIdMB0GA1UdDgQWBBS1ITGZ SNTzlZPE2ADRc6FDrgZqqTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv MzdiNTg0ZmEtZjY0OC00YTA3LTljYmQtNDBiZmVmNGEwYjJmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkweDAN BgkqhkiG9w0BAQsFAAOCAQEApxfn0dExOSmR1L6RLoD6COeZGhZHTjSNqfK/h59o 8foIKZJKjtcZPnZ7O6YJKFzbRRjj/Sb7c7xpazeZNN7121z9qHQN4pmGqR0lNyJ8 PYCnPiH75RIWbCt6n1uNSVVOCTaPSIfDdIZ4ymn3ZDtpCdO5/DjzcwK37eOYUFxr PyfamKnFTh6wCGVZxiBiJBFxM4BPl2VYVuofzQxBTOOxe1dvMVxbMvGdFGd1smXm KenSqyKR40T+DBVQB/8S7joBaYd0Sz69egp4bb5lt+6Ybt+UNNpuRIrSluRl7mTY o1MLaYmpwkK5z2HHhk1FQxGEg4uaMTQ65pmKqIGIHt3/NQ== -----END CERTIFICATE-----Generated at Fri Jan 2 09:28:42 2026 by rpki-client