This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/1b39e9a7-4f3d-4cfc-975f-d9eaceed0ed2.roa File: 1b39e9a7-4f3d-4cfc-975f-d9eaceed0ed2.roa (raw, json) Hash identifier: Ciy42V5/GkwmuMBth9c2RNp5BfIQ3nKT8dUxxpdITlw= Subject key identifier: A3:10:2D:D4:F7:91:B9:8A:51:CB:F7:FD:15:77:BF:DE:73:88:D5:28 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 1F9DD96CFF74757CFCB55B0D2153EC1C6770D960 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/1b39e9a7-4f3d-4cfc-975f-d9eaceed0ed2.roa Signing time: Sat 15 Nov 2025 06:50:35 +0000 ROA not before: Sat 15 Nov 2025 06:50:35 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:9d:d9:6c:ff:74:75:7c:fc:b5:5b:0d:21:53:ec:1c:67:70:d9:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 15 06:50:35 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=c239914964b87d61c3b18a7777cf52ee7aada82f55a0980bb3db7f2d6912ce98, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f8:b7:9b:cc:5d:f0:e1:11:f8:76:34:c9:b7: c6:ac:a5:58:44:93:03:79:00:3a:6e:aa:25:83:f2: 54:5e:e6:8e:51:4b:b6:a2:8b:b5:46:f7:b5:6b:54: 43:fe:b2:65:af:40:a9:c4:b7:b4:da:26:9b:bd:ef: 5b:12:93:98:ca:c7:46:4f:3e:22:11:17:7e:72:01: 89:15:70:bb:d9:54:74:88:4e:fa:c6:1b:81:06:9b: 43:d9:95:c9:39:2d:38:b4:df:56:d9:dc:36:ec:d1: 67:da:0d:12:7c:d0:81:16:41:a2:db:19:c6:0b:66: 11:d7:86:ee:f8:58:51:4e:ee:96:ef:b2:17:f6:e6: e0:12:24:a3:e5:5e:aa:f9:53:5d:f1:8a:bb:a8:76: 27:86:3b:d5:09:a7:19:97:fa:10:9c:0d:f0:7a:1f: d0:ea:8f:89:f9:d4:f6:85:6f:17:db:f4:08:e3:1e: b1:60:f5:16:c5:83:a0:94:21:07:83:79:02:1e:2d: a9:78:78:bb:b4:30:ba:9a:6a:14:ce:de:cd:15:9c: 4a:85:47:63:f9:9f:71:2b:02:06:34:fb:d8:45:90: 4c:61:56:8d:94:a9:95:98:87:dc:db:76:9d:e2:71: 51:89:35:fe:53:5d:d6:ce:9f:34:b4:2a:e3:9a:eb: f1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:10:2D:D4:F7:91:B9:8A:51:CB:F7:FD:15:77:BF:DE:73:88:D5:28 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/1b39e9a7-4f3d-4cfc-975f-d9eaceed0ed2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:5e:f8:00:e9:58:65:57:61:e6:d5:f5:c4:86:a3:24:d5:46: 60:74:bb:08:11:cc:37:19:89:00:36:59:55:21:cb:22:42:02: 9b:e2:96:56:b4:16:2f:02:12:ff:a7:de:ef:16:b3:7e:bd:29: d4:c1:d4:f9:92:77:2c:5e:d1:8e:84:dc:a4:9d:7e:99:a1:25: d5:29:35:14:34:a5:57:62:ec:a7:18:43:cc:c9:e7:38:50:f6: 0d:74:c7:a1:42:de:9d:9d:de:08:bd:67:b0:59:89:6b:f3:fd: c7:e2:a7:ec:eb:11:f5:5f:de:90:e4:20:f9:13:8e:d7:f2:06: b6:44:ad:72:8e:aa:ee:5f:9c:fc:a4:00:8b:8d:c5:74:53:ef: 96:90:bc:f6:87:b7:a6:67:54:9b:2f:35:76:34:5c:5d:87:cb: eb:0f:04:d9:d9:49:fd:da:89:18:b8:84:a3:7a:c3:0c:81:fc: ca:b4:90:f4:d4:79:40:c6:a0:ef:6e:6b:54:87:43:81:80:49: 8f:65:e9:93:9b:99:7f:69:f1:7b:7d:e5:5f:37:f7:6f:60:14: 9c:ae:37:95:bc:cf:e3:d2:de:eb:38:9b:a9:28:54:d8:54:74: ea:fc:db:62:c0:bb:0f:a3:39:ce:10:6e:09:29:a7:77:dc:6f: ff:d6:b1:ec -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUH53ZbP90dXz8tVsNIVPsHGdw2WAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTUwNjUwMzVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGMyMzk5MTQ5NjRiODdkNjFjM2IxOGE3Nzc3Y2Y1MmVlN2FhZGE4MmY1NWEw OTgwYmIzZGI3ZjJkNjkxMmNlOTgxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANv4t5vMXfDhEfh2NMm3xqylWESTA3kAOm6qJYPyVF7mjlFLtqKLtUb3tWtU Q/6yZa9AqcS3tNomm73vWxKTmMrHRk8+IhEXfnIBiRVwu9lUdIhO+sYbgQabQ9mV yTktOLTfVtncNuzRZ9oNEnzQgRZBotsZxgtmEdeG7vhYUU7ulu+yF/bm4BIko+Ve qvlTXfGKu6h2J4Y71QmnGZf6EJwN8Hof0OqPifnU9oVvF9v0COMesWD1FsWDoJQh B4N5Ah4tqXh4u7QwuppqFM7ezRWcSoVHY/mfcSsCBjT72EWQTGFWjZSplZiH3Nt2 neJxUYk1/lNd1s6fNLQq45rr8SECAwEAAaOCAiAwggIcMB0GA1UdDgQWBBSjEC3U 95G5ilHL9/0Vd7/ec4jVKDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv MWIzOWU5YTctNGYzZC00Y2ZjLTk3NWYtZDllYWNlZWQwZWQyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADOGMA0G CSqGSIb3DQEBCwUAA4IBAQCIXvgA6VhlV2Hm1fXEhqMk1UZgdLsIEcw3GYkANllV IcsiQgKb4pZWtBYvAhL/p97vFrN+vSnUwdT5kncsXtGOhNyknX6ZoSXVKTUUNKVX YuynGEPMyec4UPYNdMehQt6dnd4IvWewWYlr8/3H4qfs6xH1X96Q5CD5E47X8ga2 RK1yjqruX5z8pACLjcV0U++WkLz2h7emZ1SbLzV2NFxdh8vrDwTZ2Un92okYuISj esMMgfzKtJD01HlAxqDvbmtUh0OBgEmPZemTm5l/afF7feVfN/dvYBScrjeVvM/j 0t7rOJupKFTYVHTq/NtiwLsPoznOEG4JKad33G//1rHs -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:07 2025 by rpki-client