This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9eecfa6d-eb1b-4f11-9ed3-450a21abdc1d.roa File: 9eecfa6d-eb1b-4f11-9ed3-450a21abdc1d.roa (raw, json) Hash identifier: bf+POA/q5TShS76cEirmqrbH/i6BDVw+9fL7q8cGMU8= Subject key identifier: 82:BA:96:77:78:18:A8:60:8A:17:B3:A3:6A:0A:C5:27:2F:4F:CB:DC Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 29B8016993B4F17E29A20DF28D15CD1F6D5B8F7E Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9eecfa6d-eb1b-4f11-9ed3-450a21abdc1d.roa Signing time: Wed 10 Dec 2025 05:50:38 +0000 ROA not before: Wed 10 Dec 2025 05:50:38 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.32.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:b8:01:69:93:b4:f1:7e:29:a2:0d:f2:8d:15:cd:1f:6d:5b:8f:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:50:38 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=b8ff59f2b267eccd235458676c6ba0d77554641825f5bbae4f19a174925b4ba2, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:4f:4b:b3:01:5d:49:d9:2c:41:0b:47:b2:54: be:a8:e2:f1:93:5a:5a:aa:12:74:03:77:a3:4a:bf: ea:40:c1:63:57:f2:47:59:0a:b7:54:36:6d:f5:bb: b1:53:4c:30:c2:4f:dd:79:89:d1:1d:39:75:e3:d4: dc:69:63:ec:64:da:2e:f5:54:0b:54:c0:77:9d:38: ee:13:05:7f:dc:dc:b1:cf:02:f4:00:44:ea:3c:35: a4:44:9e:5d:05:8b:b9:e5:8e:14:30:24:37:be:e1: 59:11:12:88:9a:d4:f2:59:27:0b:d9:d5:a3:54:df: 26:82:6d:db:97:ca:99:bb:cd:71:e3:35:11:43:05: 01:fd:8b:bb:35:28:e7:63:6d:63:a0:ca:c7:92:f1: e1:58:d3:65:ed:3b:2b:01:8b:39:a4:72:0f:33:43: b3:5b:a9:13:84:6b:5b:6e:e3:56:3a:8f:5e:af:24: 0d:ee:6e:4d:ef:12:f3:af:a1:81:fb:20:d0:fa:c8: 90:15:31:6c:5b:d9:ce:7f:17:81:04:6f:a2:8f:2e: 32:cb:e2:3a:d6:b8:5b:50:2b:99:5f:32:26:37:d5: 90:83:5b:74:8f:44:37:8d:b9:2e:2b:ce:5b:5e:7d: 0d:f4:d5:5b:27:cc:72:fb:1d:b3:4f:bb:77:b6:0c: ba:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:BA:96:77:78:18:A8:60:8A:17:B3:A3:6A:0A:C5:27:2F:4F:CB:DC X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9eecfa6d-eb1b-4f11-9ed3-450a21abdc1d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.32.104.0/21 Signature Algorithm: sha256WithRSAEncryption 62:85:3c:e6:a0:4e:28:f9:31:94:2d:7b:46:a3:d8:93:fc:f6: 09:3b:e0:b2:d3:41:28:ec:31:72:2e:53:db:4b:e2:e4:5b:5e: 89:45:8c:4e:f3:3d:d2:88:7f:73:f9:9c:41:df:79:b8:3c:15: ba:3d:0a:43:2f:a3:3a:6f:2a:25:2f:4e:9e:aa:62:e4:fb:61: 1f:a1:cd:db:be:e1:b8:ef:73:b7:0d:e8:b6:40:33:01:0d:70: 90:87:93:f3:b4:05:87:62:e7:31:c1:f5:fc:a4:43:03:30:aa: c9:6e:5d:55:7f:df:a0:95:49:b5:d6:51:9b:0f:b8:4f:49:4e: 38:33:7d:6f:79:e6:c9:c6:16:d7:41:d8:9b:f5:bb:60:db:ae: 36:74:63:33:b0:42:9a:68:2f:3d:f9:97:47:9d:25:0f:b5:db: 93:bc:13:bd:63:f2:0f:46:31:19:94:03:4b:97:2d:87:91:3e: e4:76:46:85:5d:a9:2f:5e:80:ab:7a:1b:eb:3e:f2:5c:1c:7b: cd:ff:dd:2c:b8:12:5b:ba:be:34:8d:e8:15:33:a2:de:9c:87: db:47:f2:76:43:7c:b4:6b:95:61:0e:e8:b6:3f:e6:21:97:b7: 46:c3:3e:94:66:1b:33:51:47:e0:04:c0:df:ce:6e:ad:21:eb: 58:2e:eb:0f -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUKbgBaZO08X4pog3yjRXNH21bj34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUwMzhaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGI4ZmY1OWYyYjI2N2VjY2QyMzU0NTg2NzZjNmJhMGQ3NzU1NDY0MTgyNWY1 YmJhZTRmMTlhMTc0OTI1YjRiYTIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOlPS7MBXUnZLEELR7JUvqji8ZNaWqoSdAN3o0q/6kDBY1fyR1kKt1Q2bfW7 sVNMMMJP3XmJ0R05dePU3Glj7GTaLvVUC1TAd5047hMFf9zcsc8C9ABE6jw1pESe XQWLueWOFDAkN77hWRESiJrU8lknC9nVo1TfJoJt25fKmbvNceM1EUMFAf2LuzUo 52NtY6DKx5Lx4VjTZe07KwGLOaRyDzNDs1upE4RrW27jVjqPXq8kDe5uTe8S86+h gfsg0PrIkBUxbFvZzn8XgQRvoo8uMsviOta4W1ArmV8yJjfVkINbdI9EN425LivO W159DfTVWyfMcvsds0+7d7YMuu8CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSCupZ3 eBioYIoXs6NqCsUnL0/L3DAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv OWVlY2ZhNmQtZWIxYi00ZjExLTllZDMtNDUwYTIxYWJkYzFkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA7AgaDAN BgkqhkiG9w0BAQsFAAOCAQEAYoU85qBOKPkxlC17RqPYk/z2CTvgstNBKOwxci5T 20vi5FteiUWMTvM90oh/c/mcQd95uDwVuj0KQy+jOm8qJS9Onqpi5PthH6HN277h uO9ztw3otkAzAQ1wkIeT87QFh2LnMcH1/KRDAzCqyW5dVX/foJVJtdZRmw+4T0lO ODN9b3nmycYW10HYm/W7YNuuNnRjM7BCmmgvPfmXR50lD7Xbk7wTvWPyD0YxGZQD S5cth5E+5HZGhV2pL16Aq3ob6z7yXBx7zf/dLLgSW7q+NI3oFTOi3pyH20fydkN8 tGuVYQ7otj/mIZe3RsM+lGYbM1FH4ATA385urSHrWC7rDw== -----END CERTIFICATE-----Generated at Thu Dec 18 01:56:00 2025 by rpki-client