This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e5744d03-14d6-49dd-bcc7-bbf41846c647.roa File: e5744d03-14d6-49dd-bcc7-bbf41846c647.roa (raw, json) Hash identifier: AI2YDlITIaob+pu0Kl8aLqA9gtvS8hnWh6sbfT1Cbbk= Subject key identifier: 1E:20:E3:64:DC:56:19:BB:DB:39:03:D9:D7:A2:A4:20:C4:57:8D:04 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 155AACC1498C5161E20DBADA69BEB7D0E9248343 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e5744d03-14d6-49dd-bcc7-bbf41846c647.roa Signing time: Wed 10 Dec 2025 05:20:51 +0000 ROA not before: Wed 10 Dec 2025 05:20:51 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.32.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:5a:ac:c1:49:8c:51:61:e2:0d:ba:da:69:be:b7:d0:e9:24:83:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:20:51 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=f0874654e39a8296ba7acd2c7e2a569df85b79363dd7f9b25e70948e1efed59d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d2:8f:00:64:7e:d6:ee:04:29:5a:97:c7:5f: c2:20:ef:7e:87:be:a7:51:3f:e1:79:5b:7e:8d:5b: b3:bf:59:bd:29:65:23:6f:b7:62:dc:da:bb:90:01: c0:55:1d:58:e6:27:c9:6f:90:a1:17:ae:ba:62:f6: 99:69:52:40:d6:99:4d:7a:f7:4a:08:83:c1:b6:c6: 0b:84:ca:89:5a:1b:5c:18:8d:13:6f:3e:a9:28:92: 7a:33:85:01:94:00:a2:10:50:2f:32:28:d7:72:80: 99:d4:21:32:22:99:80:11:18:c5:3e:6c:ea:3f:1f: 82:d3:9e:52:68:75:8d:09:6d:61:e6:61:ec:49:f7: 7a:a4:5c:93:1a:c7:5e:cf:9e:66:3f:24:ce:59:e2: 43:33:88:b4:93:e0:95:3a:3f:1d:1e:6c:4a:c6:56: 5e:09:82:70:10:64:2e:a4:a5:fc:e4:22:ac:d4:68: 56:a5:8b:9b:1f:bf:2d:8f:39:e9:d5:df:5d:d0:db: f6:08:e3:d1:6b:7b:48:89:a7:15:20:ca:6c:69:e5: 8e:64:c0:90:eb:d9:fe:bc:63:e0:e5:67:ff:aa:c9: 25:a2:ed:f9:30:a7:27:a9:0d:4f:86:39:6e:50:4a: f2:cb:1d:50:44:dc:bc:99:b4:58:87:5e:2f:3d:ab: fe:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:20:E3:64:DC:56:19:BB:DB:39:03:D9:D7:A2:A4:20:C4:57:8D:04 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e5744d03-14d6-49dd-bcc7-bbf41846c647.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.32.126.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:d0:a6:f1:4c:27:63:fa:23:e9:6c:20:45:a0:a8:90:b0:35: 2d:99:9a:83:1c:54:00:a0:91:15:a7:e7:9e:e6:b0:1e:87:bc: f0:ee:ec:36:42:00:de:e7:98:88:73:d2:ce:09:98:48:48:12: d0:53:c6:37:9d:88:ed:14:dc:1c:8d:8b:88:50:f4:2a:eb:72: bc:1d:82:20:1b:d4:63:c8:97:0b:18:cf:90:e2:a4:c0:37:31: 09:cf:bc:7e:e0:c4:a8:b8:3e:de:6c:91:90:23:87:8f:28:37: 2d:f8:47:9b:e1:c3:40:fa:6c:11:0c:fb:4c:df:ae:06:e5:9f: 1c:de:a3:38:7c:f2:ea:80:ed:13:9f:c1:ff:a7:9c:b8:27:2d: f6:64:94:ff:0b:e8:45:d4:9e:ae:a2:a6:b1:af:16:50:f9:02: 40:c6:7c:ef:d8:db:e5:f6:33:7d:f3:e5:07:96:01:3d:8a:03: e5:c4:13:78:dc:3b:92:d7:71:59:e7:9d:3f:0b:e2:f6:0f:1e: df:1f:c7:b3:d0:6d:eb:56:1c:04:25:cf:af:86:79:13:d5:31: ca:c6:fb:22:05:92:ab:db:4c:e5:8f:09:94:12:ac:eb:d7:c6: 52:00:ab:20:eb:ac:6f:54:f2:de:04:05:85:e6:0e:c8:d5:c0: de:16:a7:41 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUFVqswUmMUWHiDbraab630Okkg0MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTIwNTFaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGYwODc0NjU0ZTM5YTgyOTZiYTdhY2QyYzdlMmE1NjlkZjg1Yjc5MzYzZGQ3 ZjliMjVlNzA5NDhlMWVmZWQ1OWQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJjSjwBkftbuBClal8dfwiDvfoe+p1E/4Xlbfo1bs79ZvSllI2+3Ytzau5AB wFUdWOYnyW+QoReuumL2mWlSQNaZTXr3SgiDwbbGC4TKiVobXBiNE28+qSiSejOF AZQAohBQLzIo13KAmdQhMiKZgBEYxT5s6j8fgtOeUmh1jQltYeZh7En3eqRckxrH Xs+eZj8kzlniQzOItJPglTo/HR5sSsZWXgmCcBBkLqSl/OQirNRoVqWLmx+/LY85 6dXfXdDb9gjj0Wt7SImnFSDKbGnljmTAkOvZ/rxj4OVn/6rJJaLt+TCnJ6kNT4Y5 blBK8ssdUETcvJm0WIdeLz2r/l8CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQeIONk 3FYZu9s5A9nXoqQgxFeNBDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZTU3NDRkMDMtMTRkNi00OWRkLWJjYzctYmJmNDE4NDZjNjQ3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbAgfjAN BgkqhkiG9w0BAQsFAAOCAQEAbdCm8UwnY/oj6WwgRaCokLA1LZmagxxUAKCRFafn nuawHoe88O7sNkIA3ueYiHPSzgmYSEgS0FPGN52I7RTcHI2LiFD0KutyvB2CIBvU Y8iXCxjPkOKkwDcxCc+8fuDEqLg+3myRkCOHjyg3LfhHm+HDQPpsEQz7TN+uBuWf HN6jOHzy6oDtE5/B/6ecuCct9mSU/wvoRdSerqKmsa8WUPkCQMZ879jb5fYzffPl B5YBPYoD5cQTeNw7ktdxWeedPwvi9g8e3x/Hs9Bt61YcBCXPr4Z5E9Uxysb7IgWS q9tM5Y8JlBKs69fGUgCrIOusb1Ty3gQFheYOyNXA3hanQQ== -----END CERTIFICATE-----Generated at Fri Jan 9 12:47:02 2026 by rpki-client