This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/80297c9d-2fd7-4e7a-9f18-49ac9b12c680.roa File: 80297c9d-2fd7-4e7a-9f18-49ac9b12c680.roa (raw, json) Hash identifier: V4Tz8YmXCjIq02tUtTr3e3RiySWHhCZFYlENr+ZgV+U= Subject key identifier: B0:10:0F:E3:B9:56:92:A1:77:9E:B6:31:A3:9D:9C:56:CC:C2:03:08 Certificate issuer: /CN=df759b5af3da6c9df033b0de998970a4e79655d0 Certificate serial: 1FB66668C9BA44C8E7D582B7B7FE7E39065BC3BE Authority key identifier: DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/80297c9d-2fd7-4e7a-9f18-49ac9b12c680.roa Signing time: Mon 08 Dec 2025 02:00:04 +0000 ROA not before: Mon 08 Dec 2025 02:00:04 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 83.118.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.mft rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b6:66:68:c9:ba:44:c8:e7:d5:82:b7:b7:fe:7e:39:06:5b:c3:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df759b5af3da6c9df033b0de998970a4e79655d0 Validity Not Before: Dec 8 02:00:04 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=84c99eebc6247805f183cc258a9df3ca96c126f7dc839148fd37af6153abf9cf, CN=98d67deb-bb75-4e77-b1a0-36016b2d6350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3c:c8:61:6c:61:bf:57:df:7b:a7:63:a5:4e: 95:c0:68:a0:07:a2:13:8e:38:7f:98:dc:f8:cf:aa: 13:a9:59:48:c5:d3:d2:7a:d5:9b:7d:2a:9c:30:4a: 49:f8:a4:44:ae:d1:15:27:ae:f5:e4:39:8f:70:5d: 1d:8e:d0:e7:04:73:6c:5e:c0:08:fd:72:63:32:d0: e6:73:d4:16:87:47:20:a0:7f:e9:16:bc:03:dc:c7: 6a:e1:68:88:a1:a9:3c:64:86:02:55:29:ae:5a:3e: 11:88:32:d1:73:65:c9:57:e7:1f:55:0b:5b:56:d3: 72:74:5f:ca:a1:2f:03:8d:29:25:e7:65:22:2d:ac: 21:d3:99:b4:b1:86:6d:0b:2a:5c:fd:28:0a:77:a5: de:b9:c1:1a:4d:2e:e1:4c:b2:da:b1:9a:85:b4:2d: af:0d:74:7c:44:af:c8:5e:0d:19:ce:76:06:ff:b8: 5e:51:0e:9b:4c:db:ee:f6:f0:9b:0f:33:b2:5f:b4: ca:2c:26:e9:48:5a:0c:ac:94:cb:b7:ff:15:94:df: 45:f3:89:be:fb:bc:ba:3e:4c:ae:c8:44:e3:6e:7c: 3d:86:fa:3d:82:02:2c:bd:dd:b8:c0:ca:a9:46:57: 89:53:c5:a9:65:95:ad:ad:a7:0e:4b:fd:43:07:1a: 8a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:10:0F:E3:B9:56:92:A1:77:9E:B6:31:A3:9D:9C:56:CC:C2:03:08 X509v3 Authority Key Identifier: keyid:DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/80297c9d-2fd7-4e7a-9f18-49ac9b12c680.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.118.240.0/20 Signature Algorithm: sha256WithRSAEncryption 3b:05:1c:66:38:a1:84:a1:62:37:32:6a:a4:a7:2e:f1:37:36: 12:9a:eb:94:eb:20:46:57:09:ce:ff:2b:22:ef:36:e6:72:21: a2:4d:ad:c1:6e:36:b9:06:db:32:9d:cc:8b:fe:09:a4:4a:4b: 3e:9c:10:75:7c:b2:e2:54:e1:6f:02:10:7b:c6:9a:39:ed:4d: c5:da:1a:70:fd:74:fc:f5:d5:62:1c:49:ac:ab:6a:1d:ca:82: 67:c9:a0:60:2b:11:68:2f:b2:06:39:cb:63:75:1d:ef:5c:cc: 1c:58:e0:66:9c:e2:67:fa:3f:a6:9f:08:1e:8e:fe:d9:18:06: 7f:01:07:cf:46:59:6b:cb:c7:dc:cb:27:bb:ea:8f:51:39:bb: 15:4e:79:ab:96:f4:23:67:86:c9:c3:fa:01:80:11:08:e3:26: 90:e4:72:57:d8:25:1d:e7:4f:84:11:40:18:1b:fd:14:f0:4e: cc:e2:47:4e:40:64:00:e7:d7:96:01:c7:d0:e4:a3:5c:ac:d3: 1a:7c:a3:65:72:04:1f:f0:ff:6e:86:9d:f1:f3:17:4d:9c:c5: 04:1e:15:53:1e:fa:0b:71:8a:c6:48:c0:f6:af:b2:b8:e5:d0: 04:da:e4:b2:0a:03:f5:18:4b:cb:86:8d:0f:17:bb:ff:0d:48: 7d:7b:20:3f -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUH7ZmaMm6RMjn1YK3t/5+OQZbw74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZGY3NTliNWFmM2RhNmM5ZGYwMzNiMGRlOTk4OTcwYTRl Nzk2NTVkMDAeFw0yNTEyMDgwMjAwMDRaFw0yNjAzMDgyMzU5NTlaMHoxSTBHBgNV BAUTQDg0Yzk5ZWViYzYyNDc4MDVmMTgzY2MyNThhOWRmM2NhOTZjMTI2ZjdkYzgz OTE0OGZkMzdhZjYxNTNhYmY5Y2YxLTArBgNVBAMTJDk4ZDY3ZGViLWJiNzUtNGU3 Ny1iMWEwLTM2MDE2YjJkNjM1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMo8yGFsYb9X33unY6VOlcBooAeiE444f5jc+M+qE6lZSMXT0nrVm30qnDBK SfikRK7RFSeu9eQ5j3BdHY7Q5wRzbF7ACP1yYzLQ5nPUFodHIKB/6Ra8A9zHauFo iKGpPGSGAlUprlo+EYgy0XNlyVfnH1ULW1bTcnRfyqEvA40pJedlIi2sIdOZtLGG bQsqXP0oCnel3rnBGk0u4Uyy2rGahbQtrw10fESvyF4NGc52Bv+4XlEOm0zb7vbw mw8zsl+0yiwm6UhaDKyUy7f/FZTfRfOJvvu8uj5MrshE4258PYb6PYICLL3duMDK qUZXiVPFqWWVra2nDkv9QwcaiocCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSwEA/j uVaSoXeetjGjnZxWzMIDCDAfBgNVHSMEGDAWgBTfdZta89psnfAzsN6ZiXCk55ZV 0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMzV2JXdlBh Ykozd003RGVtWWx3cE9lV1ZkQS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9mZTM3MzdmYi0wOTVkLTQ0NGMtOTJmNC0zZjcyMjFmYjU0NGMv ODAyOTdjOWQtMmZkNy00ZTdhLTlmMTgtNDlhYzliMTJjNjgwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZmUzNzM3ZmItMDk1ZC00NDRjLTkyZjQtM2Y3MjIxZmI1 NDRjLzBYRTV0WlZ5dUdlYUFfaDctMXFCcDdhWTRTby5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBFN28DAN BgkqhkiG9w0BAQsFAAOCAQEAOwUcZjihhKFiNzJqpKcu8Tc2EprrlOsgRlcJzv8r Iu825nIhok2twW42uQbbMp3Mi/4JpEpLPpwQdXyy4lThbwIQe8aaOe1NxdoacP10 /PXVYhxJrKtqHcqCZ8mgYCsRaC+yBjnLY3Ud71zMHFjgZpziZ/o/pp8IHo7+2RgG fwEHz0ZZa8vH3Msnu+qPUTm7FU55q5b0I2eGycP6AYARCOMmkORyV9glHedPhBFA GBv9FPBOzOJHTkBkAOfXlgHH0OSjXKzTGnyjZXIEH/D/boad8fMXTZzFBB4VUx76 C3GKxkjA9q+yuOXQBNrksgoD9RhLy4aNDxe7/w1IfXsgPw== -----END CERTIFICATE-----Generated at Fri Dec 19 23:19:46 2025 by rpki-client