This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4cdfefba-9573-485f-8040-202e038ebf78.roa File: 4cdfefba-9573-485f-8040-202e038ebf78.roa (raw, json) Hash identifier: aoptIKhU57cyipICUQo9s2FoWJxXv9AEs7GxBzDmQnk= Subject key identifier: D7:C8:93:BA:56:A0:24:85:F9:C2:13:A9:AC:3A:17:E1:84:4F:A8:D0 Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 0A93740BC26E00BA411881142467AC4A979E6ECC Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4cdfefba-9573-485f-8040-202e038ebf78.roa Signing time: Wed 10 Dec 2025 05:40:09 +0000 ROA not before: Wed 10 Dec 2025 05:40:09 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 79.125.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:93:74:0b:c2:6e:00:ba:41:18:81:14:24:67:ac:4a:97:9e:6e:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:40:09 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=f73197073846b07eb5d03654752d47685ed0d878865b81d6b760bed3e0f238dd, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1e:2c:81:3c:b5:48:b4:9c:d7:78:35:16:1d: ed:92:9e:67:5e:ac:c9:26:8b:cc:2e:7a:02:67:ef: 24:89:a4:54:54:c5:e9:c1:45:09:a1:b1:1d:9e:bd: 16:1d:cb:7c:c1:98:31:7a:f1:54:c6:8c:df:7e:d7: ed:1b:9d:d1:a2:28:3f:dc:c9:e2:a5:7f:d7:c9:7c: 76:6a:7d:55:9e:d7:32:c9:a0:f0:fd:76:95:e4:c4: ed:54:c6:44:d9:56:3c:61:5c:a1:31:fe:fa:00:16: ca:30:8b:c2:b7:b1:e7:76:d6:ba:8b:55:85:de:3f: 6d:83:17:f3:6f:d4:ab:6d:d3:bd:b8:49:7b:53:8c: ee:61:e8:8f:21:d0:03:d9:b8:e2:ae:8a:b6:5e:0a: 74:9f:b0:3a:1c:52:2f:3f:1d:8c:d8:16:79:02:4b: a3:e6:b3:60:fa:09:02:96:e3:67:c4:2c:53:f2:7e: 38:74:61:6f:99:9d:0c:29:44:39:11:60:af:ca:be: 94:66:0a:a6:be:af:0c:25:55:40:95:3e:7d:f4:f5: 8d:9f:3f:e4:91:6d:96:d5:3e:20:93:28:9f:04:39: 85:0a:6d:c3:36:d5:01:12:ef:44:10:84:07:78:d4: 6a:03:47:f2:4e:70:6a:b0:6a:33:48:96:a9:61:72: 7b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:C8:93:BA:56:A0:24:85:F9:C2:13:A9:AC:3A:17:E1:84:4F:A8:D0 X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4cdfefba-9573-485f-8040-202e038ebf78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.125.8.0/21 Signature Algorithm: sha256WithRSAEncryption 10:4a:73:61:26:56:1c:c7:26:75:05:d7:35:12:a9:23:41:a1: e7:18:83:eb:47:35:c2:b8:6c:e1:fe:98:1d:23:b0:da:4c:c8: c0:fc:77:8a:bb:69:73:00:dc:ec:b7:b7:5d:18:f7:22:22:1a: 92:46:9f:08:bf:1d:b2:72:b0:b9:b5:6c:0b:c0:3c:c8:cf:ae: 85:96:4c:59:04:9e:d8:3b:cb:b9:9a:a7:fa:da:d9:38:c7:62: f6:a6:96:f7:5e:9f:1b:4a:63:81:f5:b3:d6:20:45:0f:84:03: ab:a3:6f:bd:83:d2:1e:b9:81:91:6d:d2:d7:9b:98:56:c6:39: 64:2a:76:fa:29:b8:07:f1:aa:49:f9:ae:10:d4:74:e8:3c:39: 7a:31:76:2b:fa:a8:2b:a1:0b:b8:2d:4f:63:c9:2d:c7:88:47: 13:55:31:1f:f4:4d:59:ab:31:61:96:66:84:5e:10:02:4e:7d: 03:5c:80:fd:43:6d:d6:dc:10:0f:fc:49:1f:d3:0a:30:3f:07: 5f:f0:74:18:5c:b5:e2:6e:c5:e4:f3:2f:6a:bb:2a:dd:c9:73: 4c:f2:40:55:4c:df:7f:d7:df:16:0b:3b:0b:2e:8c:65:06:c3: d5:72:7b:50:d7:6c:ca:92:e9:6a:4b:44:38:2b:7d:4d:65:cc: 2f:e5:03:7f -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUCpN0C8JuALpBGIEUJGesSpeebswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTQwMDlaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGY3MzE5NzA3Mzg0NmIwN2ViNWQwMzY1NDc1MmQ0NzY4NWVkMGQ4Nzg4NjVi ODFkNmI3NjBiZWQzZTBmMjM4ZGQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJoeLIE8tUi0nNd4NRYd7ZKeZ16sySaLzC56AmfvJImkVFTF6cFFCaGxHZ69 Fh3LfMGYMXrxVMaM337X7Rud0aIoP9zJ4qV/18l8dmp9VZ7XMsmg8P12leTE7VTG RNlWPGFcoTH++gAWyjCLwrex53bWuotVhd4/bYMX82/Uq23TvbhJe1OM7mHojyHQ A9m44q6Ktl4KdJ+wOhxSLz8djNgWeQJLo+azYPoJApbjZ8QsU/J+OHRhb5mdDClE ORFgr8q+lGYKpr6vDCVVQJU+ffT1jZ8/5JFtltU+IJMonwQ5hQptwzbVARLvRBCE B3jUagNH8k5warBqM0iWqWFye+UCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTXyJO6 VqAkhfnCE6msOhfhhE+o0DAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv NGNkZmVmYmEtOTU3My00ODVmLTgwNDAtMjAyZTAzOGViZjc4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA099CDAN BgkqhkiG9w0BAQsFAAOCAQEAEEpzYSZWHMcmdQXXNRKpI0Gh5xiD60c1wrhs4f6Y HSOw2kzIwPx3irtpcwDc7Le3XRj3IiIakkafCL8dsnKwubVsC8A8yM+uhZZMWQSe 2DvLuZqn+trZOMdi9qaW916fG0pjgfWz1iBFD4QDq6NvvYPSHrmBkW3S15uYVsY5 ZCp2+im4B/GqSfmuENR06Dw5ejF2K/qoK6ELuC1PY8ktx4hHE1UxH/RNWasxYZZm hF4QAk59A1yA/UNt1twQD/xJH9MKMD8HX/B0GFy14m7F5PMvarsq3clzTPJAVUzf f9ffFgs7Cy6MZQbD1XJ7UNdsypLpaktEOCt9TWXML+UDfw== -----END CERTIFICATE-----Generated at Tue Dec 16 23:16:30 2025 by rpki-client