This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5326a6e7-9660-4ae8-a80a-996863be862e.roa File: 5326a6e7-9660-4ae8-a80a-996863be862e.roa (raw, json) Hash identifier: zFB2BZGN2amuNorVnyew9RhpuOcsMFr4TVVftEapPs8= Subject key identifier: 45:9F:EC:E3:4C:72:89:F7:9D:22:A7:56:EB:91:03:EE:C8:11:E5:5A Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 098133EFC4EE8659AC9FC2DCB49FE0D87C505F1D Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5326a6e7-9660-4ae8-a80a-996863be862e.roa Signing time: Thu 11 Dec 2025 00:00:10 +0000 ROA not before: Thu 11 Dec 2025 00:00:10 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:81:33:ef:c4:ee:86:59:ac:9f:c2:dc:b4:9f:e0:d8:7c:50:5f:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 11 00:00:10 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=106fa510b7421d2f14bd5c131c75f85cda4b0f1ccef5f012291c3ab7bb2cf042, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a0:ab:c0:33:0d:71:b6:83:0f:80:6f:4f:ad: ad:db:5c:6c:9c:a7:34:41:00:dd:4b:95:a6:e4:79: c2:45:0b:5e:3a:15:43:21:14:5b:95:a9:62:55:8f: ab:0e:6d:c7:b8:ee:9d:f9:d0:03:83:6d:32:da:7d: 8b:7f:8b:03:ec:b9:1e:d5:f5:ef:ee:82:51:c2:46: 96:00:4b:5c:87:43:5e:15:4f:b3:1d:47:2d:b8:d5: 01:7a:4a:cf:bd:ac:d5:2d:5b:a3:8e:92:dc:6d:d9: 58:e2:54:d9:a8:df:42:92:8b:ae:f4:8f:dd:fb:67: a9:7d:13:3e:96:a1:78:49:f5:06:ba:3d:99:28:40: ec:f1:45:2d:87:a6:49:66:f9:b5:a0:97:40:d2:2e: e0:5f:47:5e:fd:b5:27:7e:11:40:2f:c6:9e:d1:bb: a3:dd:0d:81:02:14:8e:16:bc:87:65:a4:76:09:ee: eb:b9:08:ec:2d:9d:76:7b:b4:04:15:61:4e:b4:21: f0:e3:71:f5:75:6a:d0:1e:c2:61:74:d5:10:82:72: 32:34:e5:c7:18:67:82:bc:b1:0d:a9:f0:23:b8:78: 14:29:4c:ec:61:7f:3e:d5:ae:88:25:2b:09:df:6b: 3b:06:5f:05:b1:b8:77:7a:c6:65:08:c2:f3:6b:4b: 3a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:9F:EC:E3:4C:72:89:F7:9D:22:A7:56:EB:91:03:EE:C8:11:E5:5A X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5326a6e7-9660-4ae8-a80a-996863be862e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.64.0/19 Signature Algorithm: sha256WithRSAEncryption 0d:9e:e1:db:ff:c0:a3:5a:b6:8b:6b:28:70:46:8d:89:35:b3: a1:03:6f:ca:28:dc:fa:99:b2:c1:3e:fd:a2:76:1f:93:0a:9f: 8c:fb:cc:3a:99:2e:b3:57:5f:ee:f4:b4:0e:11:e3:13:52:be: ce:f7:68:13:82:7c:f9:10:93:61:50:b0:07:7b:a0:d1:5d:c1: 4e:14:80:76:9e:f3:bc:b2:0f:bd:fc:2e:49:55:5e:b7:6c:ec: a7:33:df:01:04:b3:f8:27:90:06:1d:3d:88:62:24:7c:66:da: d2:65:6f:4a:4a:80:5d:06:23:da:02:42:e9:a9:16:7c:2d:9e: e2:df:dc:4a:2e:3c:a9:81:fd:55:36:da:90:2d:10:a4:00:ac: 4e:55:d0:e6:ce:46:3f:37:80:b1:c0:9d:12:cf:88:90:bc:37: 72:c3:10:5e:f3:10:cc:6d:20:f6:a8:85:8d:b2:46:b5:70:bb: 77:dc:23:4c:74:ca:ab:6f:ce:49:19:81:2d:20:5c:b7:ee:38: 4b:b1:90:e5:91:a4:dd:03:17:8e:cb:a4:ab:af:bd:e4:c1:74: f9:81:0d:80:6e:b9:62:cc:d0:e9:f4:15:97:0d:c2:d6:8e:d1: 4f:8a:60:ef:b1:83:99:37:3f:fa:5c:07:49:7e:7f:3c:05:69: 91:0a:ee:29 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUCYEz78Tuhlmsn8LctJ/g2HxQXx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTEwMDAwMTBaFw0yNjAzMTEyMzU5NTlaMHoxSTBHBgNV BAUTQDEwNmZhNTEwYjc0MjFkMmYxNGJkNWMxMzFjNzVmODVjZGE0YjBmMWNjZWY1 ZjAxMjI5MWMzYWI3YmIyY2YwNDIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKugq8AzDXG2gw+Ab0+trdtcbJynNEEA3UuVpuR5wkULXjoVQyEUW5WpYlWP qw5tx7junfnQA4NtMtp9i3+LA+y5HtX17+6CUcJGlgBLXIdDXhVPsx1HLbjVAXpK z72s1S1bo46S3G3ZWOJU2ajfQpKLrvSP3ftnqX0TPpaheEn1Bro9mShA7PFFLYem SWb5taCXQNIu4F9HXv21J34RQC/GntG7o90NgQIUjha8h2Wkdgnu67kI7C2ddnu0 BBVhTrQh8ONx9XVq0B7CYXTVEIJyMjTlxxhngryxDanwI7h4FClM7GF/PtWuiCUr Cd9rOwZfBbG4d3rGZQjC82tLOtcCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRFn+zj THKJ950ip1brkQPuyBHlWjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NTMyNmE2ZTctOTY2MC00YWU4LWE4MGEtOTk2ODYzYmU4NjJlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBU99QDAN BgkqhkiG9w0BAQsFAAOCAQEADZ7h2//Ao1q2i2socEaNiTWzoQNvyijc+pmywT79 onYfkwqfjPvMOpkus1df7vS0DhHjE1K+zvdoE4J8+RCTYVCwB3ug0V3BThSAdp7z vLIPvfwuSVVet2zspzPfAQSz+CeQBh09iGIkfGba0mVvSkqAXQYj2gJC6akWfC2e 4t/cSi48qYH9VTbakC0QpACsTlXQ5s5GPzeAscCdEs+IkLw3csMQXvMQzG0g9qiF jbJGtXC7d9wjTHTKq2/OSRmBLSBct+44S7GQ5ZGk3QMXjsukq6+95MF0+YENgG65 YszQ6fQVlw3C1o7RT4pg77GDmTc/+lwHSX5/PAVpkQruKQ== -----END CERTIFICATE-----Generated at Fri Jan 2 09:28:33 2026 by rpki-client