This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/83509a5e-2ad7-421b-90ef-fcdfda3fdfc7.roa File: 83509a5e-2ad7-421b-90ef-fcdfda3fdfc7.roa (raw, json) Hash identifier: qEjW8eZMatfYiJ45adRCTGjXnEQw+gokPyyLkf/+Zjs= Subject key identifier: 42:37:B0:B7:D7:6C:EE:C4:65:C3:F6:2C:2E:60:AD:C1:E5:5C:98:FC Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 07A3EF95C4698995C713074AA3619C1C70A86C20 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/83509a5e-2ad7-421b-90ef-fcdfda3fdfc7.roa Signing time: Thu 11 Dec 2025 00:00:10 +0000 ROA not before: Thu 11 Dec 2025 00:00:10 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a3:ef:95:c4:69:89:95:c7:13:07:4a:a3:61:9c:1c:70:a8:6c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 11 00:00:10 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=126a9d6f7d6e4375ab49b1749ff43413284aa90f7ceb84c921037bd8c9327d7c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2d:32:40:5b:0f:b6:1f:ad:99:fc:0b:1a:c9: 2a:5d:c1:87:8e:e6:8c:1e:37:86:f4:94:f7:47:63: 67:2e:71:1f:8a:0d:67:bf:cf:c1:e7:aa:6e:00:b8: 9b:d6:4d:57:8c:0c:9f:52:b0:e5:50:bd:00:c9:fa: d8:48:80:01:dd:e0:c2:16:cb:c2:39:71:f7:6f:de: 7a:ad:56:50:0c:98:6c:5a:6f:94:2f:6d:78:89:e8: d5:6e:5f:8f:3a:ee:84:73:cc:0c:4c:e9:f2:4a:4a: 99:d8:81:62:39:bf:f1:be:1f:c7:3a:13:8b:8d:fe: b5:f0:c4:29:e9:66:3f:e3:94:90:cf:a0:d2:21:17: cd:2b:69:39:4e:21:70:79:6c:15:78:6c:dc:9a:88: 47:68:29:22:51:cf:d5:ab:39:87:2b:d1:2e:3e:d7: 5b:d0:85:4d:28:cc:8a:eb:cb:9e:ac:23:67:02:43: 8e:1c:c2:61:9a:f9:2f:80:5e:ff:d0:27:bb:c5:a9: 88:33:d7:cd:2a:90:2e:d0:d4:a8:72:69:ac:87:8c: 6d:1f:d8:e6:f6:0b:4d:0f:9b:a1:1f:4a:68:a7:21: 2c:8a:5e:2d:cf:19:1c:a7:70:4e:f6:67:41:2a:f2: fe:70:ca:7a:4c:3c:91:6d:b4:58:94:6a:dd:df:bd: 82:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:37:B0:B7:D7:6C:EE:C4:65:C3:F6:2C:2E:60:AD:C1:E5:5C:98:FC X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/83509a5e-2ad7-421b-90ef-fcdfda3fdfc7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.0.0/18 Signature Algorithm: sha256WithRSAEncryption b5:99:db:1c:4c:0d:17:02:f5:df:ad:f8:3f:1e:a9:9c:9d:43: fe:ff:0b:d4:6d:2c:75:a1:2a:2d:02:f4:05:25:37:15:46:04: 96:21:c1:45:e2:a0:1a:c2:1b:df:85:72:83:4a:94:2f:b3:a1: 00:44:6d:9d:21:cd:48:f9:13:8e:f1:7f:bd:60:73:c4:e9:73: 74:91:e9:d1:6a:34:0b:07:6e:ef:b6:22:da:bb:28:4a:20:f7: 0a:d4:ff:52:7a:0d:98:77:d1:ce:a4:a3:44:2e:e8:85:8b:b7: a2:96:4a:32:85:89:16:ad:51:67:40:fd:05:fb:52:9e:b5:f8: 4c:01:ee:84:de:14:57:7a:f2:32:cf:92:de:da:dc:f9:f8:87: 8b:0c:91:ee:e6:47:56:0a:a8:5e:c4:49:f7:a5:60:e2:0f:b7: 88:d8:cc:75:83:6c:f5:5c:ae:e1:88:eb:ad:f8:d4:2b:36:ae: 11:e9:19:a3:3e:2b:c0:0d:b8:4a:de:99:e8:4d:5e:11:74:81: 8f:6f:37:90:ff:79:0c:88:a6:bf:1f:a0:95:fd:6b:36:12:e4: 05:29:1f:9d:d3:de:32:db:12:a2:d8:d8:f3:0e:5c:9f:f9:c4: d5:ba:e7:48:fe:77:e9:3b:2d:1c:12:af:a3:2b:fe:9c:63:6a: 92:4b:a8:d6 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUB6PvlcRpiZXHEwdKo2GcHHCobCAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTEwMDAwMTBaFw0yNjAzMTEyMzU5NTlaMHoxSTBHBgNV BAUTQDEyNmE5ZDZmN2Q2ZTQzNzVhYjQ5YjE3NDlmZjQzNDEzMjg0YWE5MGY3Y2Vi ODRjOTIxMDM3YmQ4YzkzMjdkN2MxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM0tMkBbD7YfrZn8CxrJKl3Bh47mjB43hvSU90djZy5xH4oNZ7/PweeqbgC4 m9ZNV4wMn1Kw5VC9AMn62EiAAd3gwhbLwjlx92/eeq1WUAyYbFpvlC9teIno1W5f jzruhHPMDEzp8kpKmdiBYjm/8b4fxzoTi43+tfDEKelmP+OUkM+g0iEXzStpOU4h cHlsFXhs3JqIR2gpIlHP1as5hyvRLj7XW9CFTSjMiuvLnqwjZwJDjhzCYZr5L4Be /9Anu8WpiDPXzSqQLtDUqHJprIeMbR/Y5vYLTQ+boR9KaKchLIpeLc8ZHKdwTvZn QSry/nDKekw8kW20WJRq3d+9gsUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRCN7C3 12zuxGXD9iwuYK3B5VyY/DAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ODM1MDlhNWUtMmFkNy00MjFiLTkwZWYtZmNkZmRhM2ZkZmM3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBk99ADAN BgkqhkiG9w0BAQsFAAOCAQEAtZnbHEwNFwL13634Px6pnJ1D/v8L1G0sdaEqLQL0 BSU3FUYEliHBReKgGsIb34Vyg0qUL7OhAERtnSHNSPkTjvF/vWBzxOlzdJHp0Wo0 Cwdu77Yi2rsoSiD3CtT/UnoNmHfRzqSjRC7ohYu3opZKMoWJFq1RZ0D9BftSnrX4 TAHuhN4UV3ryMs+S3trc+fiHiwyR7uZHVgqoXsRJ96Vg4g+3iNjMdYNs9Vyu4Yjr rfjUKzauEekZoz4rwA24St6Z6E1eEXSBj283kP95DIimvx+glf1rNhLkBSkfndPe MtsSotjY8w5cn/nE1brnSP536TstHBKvoyv+nGNqkkuo1g== -----END CERTIFICATE-----Generated at Fri Jan 2 09:28:30 2026 by rpki-client