This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/2b51d415-1366-43ea-8ce9-f13b63a2c827.roa File: 2b51d415-1366-43ea-8ce9-f13b63a2c827.roa (raw, json) Hash identifier: t0tPDJ2awp52FwRT+Uru87KRHIsetMEFe51z9/B7u7s= Subject key identifier: 66:37:16:8F:C5:65:54:AA:90:84:9D:0E:F7:BC:85:4C:E9:F3:76:88 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 3760217A68DBD82DD3B5B0C666B8B83BA184812D Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/2b51d415-1366-43ea-8ce9-f13b63a2c827.roa Signing time: Tue 18 Nov 2025 00:40:07 +0000 ROA not before: Tue 18 Nov 2025 00:40:07 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.45.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:60:21:7a:68:db:d8:2d:d3:b5:b0:c6:66:b8:b8:3b:a1:84:81:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 18 00:40:07 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=363ad81d8d1e516ba3c1f7a8b6f9dd994488c201149e5d01fd567149549ddbd3, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:6e:32:a3:61:6a:5d:20:30:a5:39:ae:03:f1: 5c:aa:33:9d:68:ff:9c:b1:d6:39:e2:78:7c:c4:96: fc:5b:fa:9c:0b:9a:f1:a8:70:02:a3:57:ba:e0:15: bf:52:8f:d1:a8:f1:14:dc:b4:54:98:15:dd:b0:6a: c6:41:54:9c:aa:aa:ab:c7:f8:00:e3:3e:bd:9b:37: 83:2c:21:46:27:0f:a7:3f:41:4d:0e:d6:76:e5:15: 38:7f:9b:f8:35:a9:33:f4:50:cc:55:43:ac:bb:71: 43:4b:af:11:ea:91:f5:55:18:76:2d:31:b0:ca:45: 34:a0:0b:4c:78:d2:6c:9a:41:ba:ab:1c:2f:23:70: 4b:88:32:de:81:99:a8:a7:65:03:e2:00:e3:8b:fe: d0:a2:6d:dc:bf:d7:c8:26:a9:98:c8:78:d9:71:f4: 6c:db:46:fa:d8:a6:81:f4:78:e4:12:ce:5b:58:20: 72:74:fe:e9:df:47:48:96:2e:c5:cb:97:ac:46:06: a8:f6:90:7a:0e:ba:5f:79:87:9a:02:e7:0e:bc:7e: c6:e8:37:82:1e:3b:5f:e8:1e:4e:ba:26:ab:76:74: ac:86:0f:bb:76:56:06:74:29:37:59:f0:28:78:ba: 09:2d:60:21:38:45:e5:3e:cc:f0:a1:f9:db:a3:0a: 60:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:37:16:8F:C5:65:54:AA:90:84:9D:0E:F7:BC:85:4C:E9:F3:76:88 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/2b51d415-1366-43ea-8ce9-f13b63a2c827.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.45.0.0/16 Signature Algorithm: sha256WithRSAEncryption b7:ad:a0:3b:80:97:bb:0a:92:3d:40:5f:d9:d0:b6:25:9b:14: 98:22:ad:d6:f1:13:dc:c2:d2:82:2a:4c:d8:7c:2d:77:62:7c: aa:ce:df:a7:31:12:96:ac:55:85:6a:05:94:66:3e:0d:86:8f: ce:52:66:8b:86:c5:5d:a4:e7:28:b5:21:5d:83:e3:a8:5d:5c: f3:57:4a:4a:52:3a:ed:9f:b6:41:1f:0e:31:72:64:46:48:57: 60:b9:a7:e1:55:6d:8e:42:eb:f6:d6:29:bd:81:3b:49:c6:6e: cf:25:00:92:96:8c:2e:81:74:0c:40:22:d9:aa:bb:9d:02:d6: 84:90:7b:e2:14:9c:3f:b5:be:c6:c5:73:1f:5f:e4:49:9e:13: a6:f0:8e:88:8d:2e:1a:21:19:45:05:88:1d:df:a4:d6:8c:b2: 0e:cf:41:fe:52:3a:c0:09:3e:bc:02:86:d1:97:a1:c7:d1:07: d1:9d:f8:f4:a6:5b:3e:54:3c:61:dd:93:ae:a5:f0:6a:95:42: 50:9a:ca:ea:0f:c1:13:cb:1a:f8:11:2a:83:59:d9:18:8b:dd: ba:7c:6a:7c:04:40:7d:30:7a:a2:75:27:88:3a:94:8d:5b:57: 72:39:ba:16:e4:b5:a2:9f:b2:b6:b0:f9:c1:c7:5a:9f:2a:cb: 8e:18:41:57 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUN2Ahemjb2C3TtbDGZri4O6GEgS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTgwMDQwMDdaFw0yNjAyMTYyMzU5NTlaMHoxSTBHBgNV BAUTQDM2M2FkODFkOGQxZTUxNmJhM2MxZjdhOGI2ZjlkZDk5NDQ4OGMyMDExNDll NWQwMWZkNTY3MTQ5NTQ5ZGRiZDMxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIhuMqNhal0gMKU5rgPxXKoznWj/nLHWOeJ4fMSW/Fv6nAua8ahwAqNXuuAV v1KP0ajxFNy0VJgV3bBqxkFUnKqqq8f4AOM+vZs3gywhRicPpz9BTQ7WduUVOH+b +DWpM/RQzFVDrLtxQ0uvEeqR9VUYdi0xsMpFNKALTHjSbJpBuqscLyNwS4gy3oGZ qKdlA+IA44v+0KJt3L/XyCapmMh42XH0bNtG+timgfR45BLOW1ggcnT+6d9HSJYu xcuXrEYGqPaQeg66X3mHmgLnDrx+xug3gh47X+geTromq3Z0rIYPu3ZWBnQpN1nw KHi6CS1gIThF5T7M8KH526MKYMcCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBRmNxaP xWVUqpCEnQ73vIVM6fN2iDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv MmI1MWQ0MTUtMTM2Ni00M2VhLThjZTktZjEzYjYzYTJjODI3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADMtMA0G CSqGSIb3DQEBCwUAA4IBAQC3raA7gJe7CpI9QF/Z0LYlmxSYIq3W8RPcwtKCKkzY fC13Ynyqzt+nMRKWrFWFagWUZj4Nho/OUmaLhsVdpOcotSFdg+OoXVzzV0pKUjrt n7ZBHw4xcmRGSFdguafhVW2OQuv21im9gTtJxm7PJQCSlowugXQMQCLZqrudAtaE kHviFJw/tb7GxXMfX+RJnhOm8I6IjS4aIRlFBYgd36TWjLIOz0H+UjrACT68AobR l6HH0QfRnfj0pls+VDxh3ZOupfBqlUJQmsrqD8ETyxr4ESqDWdkYi926fGp8BEB9 MHqidSeIOpSNW1dyOboW5LWin7K2sPnBx1qfKsuOGEFX -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:20 2025 by rpki-client