This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/15288dfc-bb6b-43a2-9ec3-7275954dae14.roa File: 15288dfc-bb6b-43a2-9ec3-7275954dae14.roa (raw, json) Hash identifier: bduP8JMLOc9MPlh+i0u7YuRK7wvJApWWxdb4ZyCyckg= Subject key identifier: BD:00:37:CD:3C:66:4A:DF:A0:2D:82:F6:63:CF:82:45:4D:5D:76:9B Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 19512625410677F57152EA7862EF8954289D0C0D Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/15288dfc-bb6b-43a2-9ec3-7275954dae14.roa Signing time: Sat 29 Nov 2025 00:00:31 +0000 ROA not before: Sat 29 Nov 2025 00:00:31 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 83.119.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:51:26:25:41:06:77:f5:71:52:ea:78:62:ef:89:54:28:9d:0c:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 29 00:00:31 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=6d16d77b2e162b575587bfc504b49ac6a7662a6a6e7cc73ffa9428926b3710d7, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:9b:57:be:b1:25:bd:33:9b:91:a9:e8:02: 7c:5e:b2:ea:40:01:2f:6d:3b:50:44:9a:9c:c4:36: 4d:da:99:f5:11:f3:fc:bc:0e:a4:43:bc:06:b1:56: 12:c3:fd:65:f3:4b:73:15:69:d8:8a:a1:58:c6:be: da:a5:7a:bc:84:b3:09:99:b6:0e:4b:78:3f:85:a0: 39:73:f7:41:5d:e3:e5:72:45:83:a3:52:9f:d3:db: 39:8e:6d:4b:95:07:1e:e5:b5:6d:44:c1:62:d1:3d: 04:c7:ca:64:a4:04:3b:7f:36:6a:06:75:c0:9c:0a: 09:25:e9:10:c6:7d:16:3e:d5:96:c2:10:05:ab:a1: e2:4d:e4:d3:3b:27:20:30:bb:40:16:c3:14:cc:dc: 18:38:b6:18:ce:e4:77:57:8e:0e:1a:07:eb:39:d3: 57:04:df:b8:43:06:01:f6:fd:9d:31:18:0b:9b:61: a8:67:38:c6:d1:04:39:c0:d1:8d:94:60:f9:67:43: 75:18:7f:fd:6d:f5:83:ab:19:ed:83:9d:65:e3:74: f6:37:a8:b4:35:04:c7:4f:ed:a4:b2:90:92:1b:a7: fe:da:23:70:16:25:e7:5d:21:d4:f0:32:8e:d9:c6: 34:95:a3:2d:2c:7f:b7:4b:bd:fe:19:62:23:8b:b6: 84:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:00:37:CD:3C:66:4A:DF:A0:2D:82:F6:63:CF:82:45:4D:5D:76:9B X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/15288dfc-bb6b-43a2-9ec3-7275954dae14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.119.160.0/19 Signature Algorithm: sha256WithRSAEncryption 26:c2:66:1b:16:45:35:b3:16:3c:0c:ee:b9:13:17:34:3e:d7: 68:07:cb:96:42:09:d9:07:45:2e:e3:56:88:86:b2:ef:0a:6b: 37:75:73:a5:33:73:70:e3:dd:3c:1c:bb:32:69:76:75:4e:49: 36:6c:92:64:bd:13:1b:77:a6:1c:69:8e:e4:2e:4d:b2:7a:ba: c6:d4:7a:1f:a4:e9:c3:3e:6c:16:77:c0:77:da:f0:c3:ea:37: f3:ce:79:56:34:e7:18:fc:8b:8c:b2:11:d5:74:cd:ed:84:9b: e3:6f:b8:34:54:f0:8d:24:37:d0:76:50:8e:95:8e:65:32:c5: 3f:85:3f:7a:fc:cc:13:a2:de:36:1a:3c:55:82:3e:c9:fc:68: 20:ed:d3:92:d8:cf:72:5c:b4:23:c6:29:c4:8f:f7:97:2e:5a: fc:e2:ec:b8:32:61:4e:53:45:62:a0:42:a3:d1:2e:e0:f1:36: e0:df:e2:e8:cb:23:1d:5e:c8:30:17:0b:e3:51:5d:82:b7:8c: b6:f2:58:8b:cb:ea:5d:61:8f:cc:67:f2:54:c4:f0:0c:35:37: 9d:7f:9f:30:4a:3b:72:b5:98:b4:7b:14:4b:7a:f4:d0:c0:71: 7f:e5:ba:cb:67:02:a5:27:79:f1:55:c6:33:1f:47:05:01:0e: 08:3c:d1:f1 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUGVEmJUEGd/VxUup4Yu+JVCidDA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMjkwMDAwMzFaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDZkMTZkNzdiMmUxNjJiNTc1NTg3YmZjNTA0YjQ5YWM2YTc2NjJhNmE2ZTdj YzczZmZhOTQyODkyNmIzNzEwZDcxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALOBm1e+sSW9M5uRqegCfF6y6kABL207UESanMQ2TdqZ9RHz/LwOpEO8BrFW EsP9ZfNLcxVp2IqhWMa+2qV6vISzCZm2Dkt4P4WgOXP3QV3j5XJFg6NSn9PbOY5t S5UHHuW1bUTBYtE9BMfKZKQEO382agZ1wJwKCSXpEMZ9Fj7VlsIQBauh4k3k0zsn IDC7QBbDFMzcGDi2GM7kd1eODhoH6znTVwTfuEMGAfb9nTEYC5thqGc4xtEEOcDR jZRg+WdDdRh//W31g6sZ7YOdZeN09jeotDUEx0/tpLKQkhun/tojcBYl510h1PAy jtnGNJWjLSx/t0u9/hliI4u2hI0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBS9ADfN PGZK36AtgvZjz4JFTV12mzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv MTUyODhkZmMtYmI2Yi00M2EyLTllYzMtNzI3NTk1NGRhZTE0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBVN3oDAN BgkqhkiG9w0BAQsFAAOCAQEAJsJmGxZFNbMWPAzuuRMXND7XaAfLlkIJ2QdFLuNW iIay7wprN3VzpTNzcOPdPBy7Mml2dU5JNmySZL0TG3emHGmO5C5Nsnq6xtR6H6Tp wz5sFnfAd9rww+o38855VjTnGPyLjLIR1XTN7YSb42+4NFTwjSQ30HZQjpWOZTLF P4U/evzME6LeNho8VYI+yfxoIO3TktjPcly0I8YpxI/3ly5a/OLsuDJhTlNFYqBC o9Eu4PE24N/i6MsjHV7IMBcL41FdgreMtvJYi8vqXWGPzGfyVMTwDDU3nX+fMEo7 crWYtHsUS3r00MBxf+W6y2cCpSd58VXGMx9HBQEOCDzR8Q== -----END CERTIFICATE-----Generated at Sat Dec 6 13:38:29 2025 by rpki-client