This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ea9f1f24-552b-49dd-a167-4872d5575c1d.roa File: ea9f1f24-552b-49dd-a167-4872d5575c1d.roa (raw, json) Hash identifier: GQ6SyqxPdOkFmv2/pM+KIb3C1KTkgTVrewuit6l2zRw= Subject key identifier: 2D:57:D8:BD:26:04:38:E3:81:EA:76:21:B6:DD:38:B6:EF:84:A4:2C Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Certificate serial: 6D5A9E016AB12B87CB63E9861656519854969872 Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ea9f1f24-552b-49dd-a167-4872d5575c1d.roa Signing time: Wed 10 Dec 2025 05:51:02 +0000 ROA not before: Wed 10 Dec 2025 05:51:02 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 176.32.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 22:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:5a:9e:01:6a:b1:2b:87:cb:63:e9:86:16:56:51:98:54:96:98:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc Validity Not Before: Dec 10 05:51:02 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=13682dbe0cc91753ec48bedbcda6df45478de697e648e31ded28822606cd1749, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d4:c2:94:d5:04:b9:bc:13:7a:aa:b6:34:93: e9:ac:8d:95:66:a5:22:e1:d1:4f:f7:5d:0d:b1:7f: 70:22:cf:19:3a:de:bb:ac:d6:8d:61:80:6a:06:e9: 65:91:bd:62:06:07:18:57:db:28:bc:84:5c:d6:6f: 02:5f:87:0f:6d:64:19:50:2c:96:7d:70:92:67:65: 20:60:96:03:9f:87:95:d6:93:82:4b:ee:ee:d7:a3: 0a:4d:37:e2:38:4c:e8:92:e3:77:1e:aa:02:d3:3d: 54:10:fe:26:8e:1c:e1:11:90:44:d8:8f:68:ff:98: 63:82:5f:71:ea:ea:b2:b8:38:0d:b1:e9:56:b6:1d: 64:fc:8f:a6:ab:bb:61:93:19:1c:8b:65:65:2e:14: 92:d8:51:a6:26:03:de:f7:87:05:67:af:f3:bd:ee: 6e:89:a2:49:1e:10:b0:b8:10:af:c4:ad:ee:19:dc: 07:6c:da:59:eb:64:33:8a:5a:98:32:fa:07:b6:81: d6:c4:bc:1f:09:d1:75:0d:c8:fc:44:19:0e:21:a1: 0b:a5:26:07:4c:d0:bb:76:80:55:fc:03:36:df:ef: cd:f7:ed:4d:8b:15:b0:4f:7d:ef:ca:c9:ec:51:ec: fc:91:86:b6:f0:39:dd:a6:47:98:b9:e1:06:c8:5a: ca:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:57:D8:BD:26:04:38:E3:81:EA:76:21:B6:DD:38:B6:EF:84:A4:2C X509v3 Authority Key Identifier: keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ea9f1f24-552b-49dd-a167-4872d5575c1d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.32.120.0/22 Signature Algorithm: sha256WithRSAEncryption 35:57:df:d8:d0:6f:8b:89:b3:93:b9:b3:76:80:dc:9a:92:10: cd:6c:9c:6d:60:41:9d:8a:4e:4f:7d:0d:8f:b7:06:c2:67:b6: 7f:13:08:c3:ac:cd:11:b1:7e:f8:e7:c7:01:a7:8e:ac:f5:16: c9:ff:68:98:17:e3:de:49:50:31:dc:6f:32:67:cf:22:56:e7: 0a:b5:88:74:23:4c:ea:08:66:db:51:66:7b:b7:28:a1:fc:93: 94:8e:ea:15:72:fb:17:38:dd:ff:90:7d:c3:ef:59:b8:b7:4e: 4d:fd:2b:46:0f:9f:d8:9a:21:27:2d:da:3c:1c:47:0e:ee:5c: 6a:4f:db:7c:11:ce:5e:22:0f:96:e1:bd:27:64:54:04:30:48: e7:1a:6c:6c:86:27:45:7f:cb:c6:e1:70:ad:79:0d:63:82:26: cb:b0:fe:cd:bb:45:a0:04:a5:93:0c:f0:51:87:6a:67:53:9c: d1:23:a8:4b:ed:f4:a4:29:a2:e7:3a:ca:d0:3e:cc:5c:fc:6d: 3d:c2:4e:f6:b8:55:7b:18:25:25:a0:87:27:c5:15:f5:9a:24: c0:c3:d8:83:09:bc:4d:c2:9d:87:da:77:89:ed:4e:78:eb:9f: ff:43:cf:af:6c:5e:92:f5:a4:5f:b5:86:b2:40:5f:b4:6e:fa: 6f:56:2c:56 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUbVqeAWqxK4fLY+mGFlZRmFSWmHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4 NDk5NzBiYzAeFw0yNTEyMTAwNTUxMDJaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDEzNjgyZGJlMGNjOTE3NTNlYzQ4YmVkYmNkYTZkZjQ1NDc4ZGU2OTdlNjQ4 ZTMxZGVkMjg4MjI2MDZjZDE3NDkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTUwpTVBLm8E3qqtjST6ayNlWalIuHRT/ddDbF/cCLPGTreu6zWjWGAagbp ZZG9YgYHGFfbKLyEXNZvAl+HD21kGVAsln1wkmdlIGCWA5+HldaTgkvu7tejCk03 4jhM6JLjdx6qAtM9VBD+Jo4c4RGQRNiPaP+YY4Jfcerqsrg4DbHpVrYdZPyPpqu7 YZMZHItlZS4UkthRpiYD3veHBWev873ubomiSR4QsLgQr8St7hncB2zaWetkM4pa mDL6B7aB1sS8HwnRdQ3I/EQZDiGhC6UmB0zQu3aAVfwDNt/vzfftTYsVsE9978rJ 7FHs/JGGtvA53aZHmLnhBshayq0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQtV9i9 JgQ444HqdiG23Ti274SkLDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1 bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv ZWE5ZjFmMjQtNTUyYi00OWRkLWExNjctNDg3MmQ1NTc1YzFkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5 Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArAgeDAN BgkqhkiG9w0BAQsFAAOCAQEANVff2NBvi4mzk7mzdoDcmpIQzWycbWBBnYpOT30N j7cGwme2fxMIw6zNEbF++OfHAaeOrPUWyf9omBfj3klQMdxvMmfPIlbnCrWIdCNM 6ghm21Fme7coofyTlI7qFXL7Fzjd/5B9w+9ZuLdOTf0rRg+f2JohJy3aPBxHDu5c ak/bfBHOXiIPluG9J2RUBDBI5xpsbIYnRX/LxuFwrXkNY4Imy7D+zbtFoASlkwzw UYdqZ1Oc0SOoS+30pCmi5zrK0D7MXPxtPcJO9rhVexglJaCHJ8UV9ZokwMPYgwm8 TcKdh9p3ie1OeOuf/0PPr2xekvWkX7WGskBftG76b1YsVg== -----END CERTIFICATE-----Generated at Tue Dec 16 04:37:18 2025 by rpki-client