This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/277d74fd-3101-4a9b-8f2a-9bfd9dc55230.roa File: 277d74fd-3101-4a9b-8f2a-9bfd9dc55230.roa (raw, json) Hash identifier: WTgmlxtHY7DxEfTaiIW6kDxUtqPLLzh3aEYl7KdWVZg= Subject key identifier: 55:6E:7E:BA:AE:78:D7:78:91:CE:C1:37:08:CC:B9:E9:2B:95:80:2D Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 3D3DCDA765EF2110C9B35922A9430C1417DB00E8 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/277d74fd-3101-4a9b-8f2a-9bfd9dc55230.roa Signing time: Fri 05 Dec 2025 01:00:09 +0000 ROA not before: Fri 05 Dec 2025 01:00:09 +0000 ROA not after: Thu 05 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.118.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:3d:cd:a7:65:ef:21:10:c9:b3:59:22:a9:43:0c:14:17:db:00:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 5 01:00:09 2025 GMT Not After : Mar 5 23:59:59 2026 GMT Subject: serialNumber=e47f302f82ae3703f324afa39c7c9b6f07626e4b20586a49468e965224e550ae, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:34:70:8f:69:f7:65:c6:76:b0:ba:a7:dc:48: e7:9a:c1:ef:e1:61:34:69:20:64:77:5b:0e:8c:f4: 63:f5:4c:89:53:d5:0f:1a:ba:b7:13:2b:5d:57:1a: 43:6f:70:88:e0:f4:c8:ff:b2:e7:32:3b:c7:62:02: 46:8a:11:9a:cb:84:59:76:e7:6d:15:43:41:8f:79: b3:bc:fe:b1:40:4e:f5:22:91:70:0e:52:6e:e7:a2: 3f:44:89:b5:d4:61:5a:34:38:13:eb:53:f9:8e:c9: a0:7e:b5:55:70:b5:57:4f:de:3b:22:68:2c:75:81: 0c:3e:93:f2:78:6b:42:ae:97:99:c3:fc:3e:10:34: 07:54:a8:1c:0f:d0:7e:fb:12:a5:2d:a3:1b:5d:21: d7:3c:59:83:b7:79:71:ae:d7:41:56:e4:64:c8:48: 55:f6:80:32:d9:e0:c3:64:ea:4b:1c:0f:eb:3e:9a: 72:47:1d:bc:43:a2:f7:96:c0:72:f9:6e:39:01:ca: bb:9a:b1:bb:a7:09:22:49:46:a6:99:c2:ad:bf:a6: 41:aa:0e:bb:5c:41:59:ae:c9:0c:07:d3:a3:1e:29: e7:75:7a:11:1c:aa:c8:d0:2b:92:ed:06:a7:36:1e: 9d:d8:bd:70:39:31:e9:ca:41:07:3b:21:5e:56:46: 81:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:6E:7E:BA:AE:78:D7:78:91:CE:C1:37:08:CC:B9:E9:2B:95:80:2D X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/277d74fd-3101-4a9b-8f2a-9bfd9dc55230.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.118.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:55:95:3b:7b:0a:26:d1:3b:ef:a0:31:fb:25:5a:99:f8:18: 61:43:b2:58:fb:e7:73:c0:8c:19:66:6a:ab:78:10:f9:32:1f: 10:0b:0a:60:15:d1:fd:51:7c:af:4c:f7:35:bc:d0:69:a4:69: 84:e2:09:a4:0f:86:31:09:4a:16:b9:9d:9d:ce:2c:ed:e7:45: 85:6d:4c:79:83:9f:78:90:54:20:9f:fa:26:a3:f3:b3:78:bf: 12:f9:56:e0:b7:ff:61:fd:f6:53:78:13:31:4c:f1:f3:c4:3e: ee:5a:aa:b5:c1:c3:1c:ee:73:f6:59:a9:f0:c2:d5:6f:30:94: 77:c3:bd:63:b7:d5:65:7f:21:bd:81:4d:ef:9e:f7:b9:4c:b1: 70:52:93:b4:ca:21:9c:2a:44:67:6b:4a:de:87:8f:08:2a:f4: 90:3a:e9:de:49:5b:84:c0:a7:bf:ee:c8:3c:f5:dc:ff:10:bd: 49:3a:45:8e:05:fd:e2:23:e4:86:fb:e4:09:17:87:40:c2:4e: 5b:2e:4a:6b:45:73:50:b2:1c:f8:a1:bc:69:92:88:0d:25:0c: 41:60:5f:ea:66:8f:70:56:4e:30:32:04:3e:bb:11:05:5b:7f: a2:53:35:4e:06:5f:7f:8d:03:04:cc:8f:d0:81:e6:4b:d7:67: 5c:55:a0:c5 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUPT3Np2XvIRDJs1kiqUMMFBfbAOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMDUwMTAwMDlaFw0yNjAzMDUyMzU5NTlaMHoxSTBHBgNV BAUTQGU0N2YzMDJmODJhZTM3MDNmMzI0YWZhMzljN2M5YjZmMDc2MjZlNGIyMDU4 NmE0OTQ2OGU5NjUyMjRlNTUwYWUxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANI0cI9p92XGdrC6p9xI55rB7+FhNGkgZHdbDoz0Y/VMiVPVDxq6txMrXVca Q29wiOD0yP+y5zI7x2ICRooRmsuEWXbnbRVDQY95s7z+sUBO9SKRcA5SbueiP0SJ tdRhWjQ4E+tT+Y7JoH61VXC1V0/eOyJoLHWBDD6T8nhrQq6XmcP8PhA0B1SoHA/Q fvsSpS2jG10h1zxZg7d5ca7XQVbkZMhIVfaAMtngw2TqSxwP6z6ackcdvEOi95bA cvluOQHKu5qxu6cJIklGppnCrb+mQaoOu1xBWa7JDAfTox4p53V6ERyqyNArku0G pzYendi9cDkx6cpBBzshXlZGgfUCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBRVbn66 rnjXeJHOwTcIzLnpK5WALTAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv Mjc3ZDc0ZmQtMzEwMS00YTliLThmMmEtOWJmZDlkYzU1MjMwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADN2MA0G CSqGSIb3DQEBCwUAA4IBAQAAVZU7ewom0TvvoDH7JVqZ+BhhQ7JY++dzwIwZZmqr eBD5Mh8QCwpgFdH9UXyvTPc1vNBppGmE4gmkD4YxCUoWuZ2dzizt50WFbUx5g594 kFQgn/omo/OzeL8S+Vbgt/9h/fZTeBMxTPHzxD7uWqq1wcMc7nP2WanwwtVvMJR3 w71jt9VlfyG9gU3vnve5TLFwUpO0yiGcKkRna0reh48IKvSQOuneSVuEwKe/7sg8 9dz/EL1JOkWOBf3iI+SG++QJF4dAwk5bLkprRXNQshz4obxpkogNJQxBYF/qZo9w Vk4wMgQ+uxEFW3+iUzVOBl9/jQMEzI/QgeZL12dcVaDF -----END CERTIFICATE-----Generated at Sat Dec 6 09:56:42 2025 by rpki-client