This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b176a187-5863-4413-a001-74ccc0321be5.roa File: b176a187-5863-4413-a001-74ccc0321be5.roa (raw, json) Hash identifier: xHTEpyFNi8wZab5sx0qPaDQVZzUjQ4gSL3a9F7+gVPY= Subject key identifier: 96:26:77:B7:C4:CC:8A:9D:40:42:3F:19:A0:C2:EF:E8:1C:CD:1F:0D Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 43C2C500A3C8BA89CCCDBC1BD49E06133C1CACDA Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b176a187-5863-4413-a001-74ccc0321be5.roa Signing time: Wed 10 Dec 2025 05:10:11 +0000 ROA not before: Wed 10 Dec 2025 05:10:11 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2a05:d02c::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:c2:c5:00:a3:c8:ba:89:cc:cd:bc:1b:d4:9e:06:13:3c:1c:ac:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:10:11 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=1da571fe4bdcc2f99ee4ff08359c88163e296973d5d14da916bd7bf2b45bd339, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:54:bc:9d:d2:b4:11:96:b4:80:70:e9:f9:e2: 05:93:e5:94:c9:48:4d:c4:64:ca:e8:35:de:dc:90: 19:32:de:95:6a:18:a9:ff:40:4b:f4:77:56:e5:b9: 4d:7c:32:03:54:d1:7e:f6:d1:0f:7a:d6:66:5c:64: ec:4f:5d:33:67:6f:b8:7e:5f:61:b1:9f:cf:1d:9c: 71:6d:ca:36:f4:85:57:44:0b:d2:a0:78:41:af:8f: c3:9a:4b:c1:bc:df:3f:4c:1a:de:eb:29:78:2e:16: 9e:6f:af:05:81:15:fb:86:69:17:29:26:05:6b:b0: 1a:a5:aa:f7:78:91:2f:68:63:17:c1:61:35:01:37: 62:40:32:fa:c7:d4:ee:39:2d:09:cf:97:22:9b:9a: c1:ce:d8:44:ae:09:11:8d:19:71:ab:76:e9:f3:36: 16:bf:52:e9:42:39:4d:46:e0:e2:02:ab:3f:d0:02: 52:ee:15:e1:e7:f3:91:2d:01:e8:2d:6f:63:84:11: 87:78:ee:81:d8:24:a6:7b:2f:d7:c7:1f:25:8b:c2: 75:09:4d:d9:f7:69:dc:cf:74:20:db:c0:68:43:39: 23:85:22:34:70:2c:0d:34:b2:f3:c2:57:c7:49:4f: 1f:2d:fb:f5:eb:0c:84:3c:a0:e1:be:00:95:dc:5e: d8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:26:77:B7:C4:CC:8A:9D:40:42:3F:19:A0:C2:EF:E8:1C:CD:1F:0D X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b176a187-5863-4413-a001-74ccc0321be5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:d02c::/36 Signature Algorithm: sha256WithRSAEncryption 01:36:7e:1f:41:87:8b:8d:28:62:0f:02:99:0f:74:96:1f:3b: 0b:a0:49:32:a6:1d:90:17:26:5e:26:21:98:25:db:01:ce:32: cd:76:22:a2:c0:5c:fd:53:b5:ff:72:45:50:f8:fb:2d:af:c0: ef:01:e6:54:f5:b9:f0:ba:94:e0:9d:ca:7b:ca:2d:6b:2d:f3: 45:3b:26:38:9a:b3:e1:21:2c:56:0b:58:87:ef:aa:8d:39:c9: e0:88:fd:95:a0:1d:fa:4b:7c:ab:22:b1:d4:d2:3f:ba:99:7b: 63:14:f2:59:0a:4b:a5:cc:e9:b8:45:31:bd:8d:76:dd:94:77: 5e:3f:5e:90:ce:d2:dd:da:9e:db:e2:06:6b:50:5c:6f:20:3d: a5:15:3d:e5:de:65:3a:2f:ba:42:b3:0e:b5:77:1e:ab:3d:62: ac:d6:a6:15:f0:63:c0:1e:d0:2f:3d:72:8f:96:85:9a:10:1a: 9b:93:56:a8:92:76:d1:b7:8e:33:d9:66:d3:ae:96:e1:cd:a8: 59:aa:2b:b7:4c:2c:48:4b:74:e0:50:71:97:0c:e0:5e:4e:42: b3:e2:da:2f:9d:cc:8c:b7:6e:a6:8a:33:95:d8:d5:cc:55:8e: 62:a8:8d:04:0e:f2:4a:39:54:88:8b:11:40:dd:7d:44:50:d9: f9:4e:84:04 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUQ8LFAKPIuonMzbwb1J4GEzwcrNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTEwMTFaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDFkYTU3MWZlNGJkY2MyZjk5ZWU0ZmYwODM1OWM4ODE2M2UyOTY5NzNkNWQx NGRhOTE2YmQ3YmYyYjQ1YmQzMzkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANxUvJ3StBGWtIBw6fniBZPllMlITcRkyug13tyQGTLelWoYqf9AS/R3VuW5 TXwyA1TRfvbRD3rWZlxk7E9dM2dvuH5fYbGfzx2ccW3KNvSFV0QL0qB4Qa+Pw5pL wbzfP0wa3uspeC4Wnm+vBYEV+4ZpFykmBWuwGqWq93iRL2hjF8FhNQE3YkAy+sfU 7jktCc+XIpuawc7YRK4JEY0Zcat26fM2Fr9S6UI5TUbg4gKrP9ACUu4V4efzkS0B 6C1vY4QRh3jugdgkpnsv18cfJYvCdQlN2fdp3M90INvAaEM5I4UiNHAsDTSy88JX x0lPHy379esMhDyg4b4Aldxe2PMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSWJne3 xMyKnUBCPxmgwu/oHM0fDTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv YjE3NmExODctNTg2My00NDEzLWEwMDEtNzRjY2MwMzIxYmU1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0CwA MA0GCSqGSIb3DQEBCwUAA4IBAQABNn4fQYeLjShiDwKZD3SWHzsLoEkyph2QFyZe JiGYJdsBzjLNdiKiwFz9U7X/ckVQ+Pstr8DvAeZU9bnwupTgncp7yi1rLfNFOyY4 mrPhISxWC1iH76qNOcngiP2VoB36S3yrIrHU0j+6mXtjFPJZCkulzOm4RTG9jXbd lHdeP16QztLd2p7b4gZrUFxvID2lFT3l3mU6L7pCsw61dx6rPWKs1qYV8GPAHtAv PXKPloWaEBqbk1aoknbRt44z2WbTrpbhzahZqiu3TCxIS3TgUHGXDOBeTkKz4tov ncyMt26mijOV2NXMVY5iqI0EDvJKOVSIixFA3X1EUNn5ToQE -----END CERTIFICATE-----Generated at Sun Dec 14 00:08:25 2025 by rpki-client