This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/39032a05-08aa-42f2-98fc-8aa6aeee1dc2.roa File: 39032a05-08aa-42f2-98fc-8aa6aeee1dc2.roa (raw, json) Hash identifier: RgJqvBSuVlZDJOcadSiKgKum/88dV0yPbDyIEt6/a0o= Subject key identifier: F8:8B:97:73:30:21:66:08:D7:D7:65:CB:20:23:9F:FB:19:F0:90:14 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 5E6884BDB680298A0323BBA3CCC0ED7C1095B99A Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/39032a05-08aa-42f2-98fc-8aa6aeee1dc2.roa Signing time: Sun 16 Nov 2025 01:00:07 +0000 ROA not before: Sun 16 Nov 2025 01:00:07 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.0.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:68:84:bd:b6:80:29:8a:03:23:bb:a3:cc:c0:ed:7c:10:95:b9:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 16 01:00:07 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=074c0360684bed15d8d119ed3a0ea35beadebf19854d3cf073f6af4ec80f60b0, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f3:8d:03:db:57:f2:6f:57:fe:fb:f2:f1:5a: c3:7d:ee:b9:ce:40:95:58:c1:08:6f:d1:b1:c1:ce: 30:be:1f:12:00:d5:f1:70:3c:31:e6:1e:c3:e2:3e: 46:f9:db:b6:7c:5d:33:83:d9:0d:9e:e4:b7:21:af: 1a:b7:b2:08:f9:a6:71:f2:b6:34:e9:ed:78:98:a8: dc:3f:87:35:c4:e5:12:b5:8f:9f:69:b8:23:09:a1: d6:5d:a9:ea:6a:51:43:95:5a:df:b8:05:9f:67:24: f1:07:57:7e:48:f3:52:19:33:d1:07:1f:4b:bb:ff: 12:f2:19:06:2a:86:95:0d:b5:56:ae:67:01:40:23: 0e:9e:58:41:6e:25:e2:0a:12:0e:7c:ae:51:88:43: 1a:76:20:53:87:a4:e0:f5:14:87:24:22:d0:2e:e0: a5:36:eb:86:8c:7d:7e:e0:dd:26:04:c8:4f:a5:ca: 6a:1b:e8:75:bb:b3:11:3b:92:84:3f:e5:4d:df:21: 8b:c7:1b:29:e3:b4:c8:33:c9:db:54:40:35:a5:97: ce:f5:2e:5d:7b:a7:32:63:a5:7e:67:43:ac:3a:93: c5:d4:74:4c:11:05:74:bf:30:b3:b7:4f:17:63:fe: ce:fb:56:30:9a:9a:b6:b3:7f:06:43:2c:ca:db:b8: a1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8B:97:73:30:21:66:08:D7:D7:65:CB:20:23:9F:FB:19:F0:90:14 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/39032a05-08aa-42f2-98fc-8aa6aeee1dc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.0.80.0/21 Signature Algorithm: sha256WithRSAEncryption 29:9e:5e:2f:a0:61:d4:9c:cb:8b:47:19:a3:65:6c:d2:f0:62: 55:5a:a0:fb:fc:cf:cd:f2:a5:e3:66:9b:3f:63:aa:2a:21:92: e9:22:1e:96:b7:67:d5:ae:17:5e:8c:04:24:cc:36:4b:4d:08: d1:76:e6:11:69:da:31:c7:49:bc:e0:5b:cc:9e:8e:70:b5:7f: a1:15:42:e9:8f:f1:93:3d:a2:2f:99:2e:b3:64:7e:d8:9b:20: be:ad:6a:de:04:c4:23:28:63:f6:36:0f:bc:61:0c:be:1d:62: a6:13:8e:b8:52:bb:71:54:29:a5:65:da:d3:a8:71:d2:77:6f: 78:c9:7b:ec:47:81:dc:d3:e1:c0:64:50:0a:10:2a:e5:1d:d9: 6d:79:1c:3e:16:81:85:bd:1b:8b:b7:ee:f2:26:f2:0a:de:9c: 29:c9:e7:9b:83:20:a4:16:02:c1:00:bb:f2:9d:dc:54:ef:06: 1b:d2:e3:53:f2:c7:ce:4e:f5:69:9a:76:ad:ae:5c:ff:1e:d4: 61:bc:99:a6:11:1d:15:9a:3a:42:30:a8:7c:98:f7:95:bb:00: 59:c0:4e:b8:9d:6b:3c:8a:44:84:c9:3d:c0:5a:6f:f7:84:53: c2:88:e7:eb:ce:93:8f:6f:b4:51:a5:71:08:d7:18:e4:8a:71: 99:6f:4a:98 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUXmiEvbaAKYoDI7ujzMDtfBCVuZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTYwMTAwMDdaFw0yNTEyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQDA3NGMwMzYwNjg0YmVkMTVkOGQxMTllZDNhMGVhMzViZWFkZWJmMTk4NTRk M2NmMDczZjZhZjRlYzgwZjYwYjAxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/zjQPbV/JvV/778vFaw33uuc5AlVjBCG/RscHOML4fEgDV8XA8MeYew+I+ RvnbtnxdM4PZDZ7ktyGvGreyCPmmcfK2NOnteJio3D+HNcTlErWPn2m4Iwmh1l2p 6mpRQ5Va37gFn2ck8QdXfkjzUhkz0QcfS7v/EvIZBiqGlQ21Vq5nAUAjDp5YQW4l 4goSDnyuUYhDGnYgU4ek4PUUhyQi0C7gpTbrhox9fuDdJgTIT6XKahvodbuzETuS hD/lTd8hi8cbKeO0yDPJ21RANaWXzvUuXXunMmOlfmdDrDqTxdR0TBEFdL8ws7dP F2P+zvtWMJqatrN/BkMsytu4oT0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBT4i5dz MCFmCNfXZcsgI5/7GfCQFDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv MzkwMzJhMDUtMDhhYS00MmYyLTk4ZmMtOGFhNmFlZWUxZGMyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzMAUDAN BgkqhkiG9w0BAQsFAAOCAQEAKZ5eL6Bh1JzLi0cZo2Vs0vBiVVqg+/zPzfKl42ab P2OqKiGS6SIelrdn1a4XXowEJMw2S00I0XbmEWnaMcdJvOBbzJ6OcLV/oRVC6Y/x kz2iL5kus2R+2Jsgvq1q3gTEIyhj9jYPvGEMvh1iphOOuFK7cVQppWXa06hx0ndv eMl77EeB3NPhwGRQChAq5R3ZbXkcPhaBhb0bi7fu8ibyCt6cKcnnm4MgpBYCwQC7 8p3cVO8GG9LjU/LHzk71aZp2ra5c/x7UYbyZphEdFZo6QjCofJj3lbsAWcBOuJ1r PIpEhMk9wFpv94RTwojn686Tj2+0UaVxCNcY5IpxmW9KmA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:20 2025 by rpki-client