This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/41816f61-5ce3-406a-8d78-37c4eafa6915.roa File: 41816f61-5ce3-406a-8d78-37c4eafa6915.roa (raw, json) Hash identifier: 1JFzUcCEUOXF896UgyyTGPWr6sKFMB2PznJ2yenD3dA= Subject key identifier: F9:21:CB:AF:E5:40:D2:6B:A8:29:30:F2:3B:C7:A8:80:2C:A9:60:7F Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 3C885F7DFE5865DBC8BD017A8C9C2A9E45757CFE Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/41816f61-5ce3-406a-8d78-37c4eafa6915.roa Signing time: Sat 15 Nov 2025 06:40:35 +0000 ROA not before: Sat 15 Nov 2025 06:40:35 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.0.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:88:5f:7d:fe:58:65:db:c8:bd:01:7a:8c:9c:2a:9e:45:75:7c:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 15 06:40:35 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=459ee625612fad661dc7a33fad88e343411617bc79ce635aa6b907455bdc62c7, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7e:28:a8:6b:4d:18:aa:b9:b3:ca:47:9b:62: 01:dc:02:22:26:36:36:8e:7a:fe:65:bc:f9:77:ca: 43:39:25:fe:5a:53:3e:f1:ce:3e:63:63:7a:be:76: 1b:da:f8:58:21:3e:bc:66:27:6f:9e:b5:04:c2:01: d3:80:f2:91:cc:03:cf:3f:56:d7:93:81:c9:e6:16: ee:fc:c7:8f:e1:c3:de:da:67:fc:88:d1:42:a6:f6: fe:de:e6:c7:ef:4a:be:f2:1a:be:d9:67:3e:65:59: 43:92:f5:a7:b4:af:d7:26:39:4e:39:19:00:67:25: 3d:8f:63:7c:57:d7:3c:de:59:ae:33:29:f4:fa:6a: 96:ee:ae:10:e6:41:07:49:91:ae:83:61:8a:82:a4: 1c:91:7f:bb:c2:a3:81:fb:2b:ae:59:ab:8c:ba:bf: e1:cd:ba:ea:64:50:e6:90:0b:6f:09:d7:83:44:7a: c9:72:f7:bd:d7:ce:2e:49:01:50:a5:ea:ff:55:a2: 5d:3e:37:0c:58:67:c1:53:c1:4a:28:97:72:4f:83: 99:15:8b:cc:d5:7f:ae:8a:48:d9:39:e6:1b:66:ec: b1:4d:0f:df:9a:f9:1a:85:69:a8:b4:4e:a7:6f:90: e0:46:13:04:9b:23:90:b4:12:4c:45:04:2e:2d:d4: ef:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:21:CB:AF:E5:40:D2:6B:A8:29:30:F2:3B:C7:A8:80:2C:A9:60:7F X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/41816f61-5ce3-406a-8d78-37c4eafa6915.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.0.32.0/19 Signature Algorithm: sha256WithRSAEncryption 4b:5f:52:97:64:46:c6:16:4f:88:b8:d2:14:61:e5:63:b8:02: 43:13:ce:7b:98:d0:c2:5a:54:00:26:df:c6:9d:c8:4f:7b:f0: 86:15:2a:8a:32:53:d0:73:c5:ce:a8:38:94:2e:8d:06:7f:82: 17:ad:d4:9f:af:f0:44:8b:ff:c1:93:ce:37:29:ce:ad:bd:d2: 62:0d:b6:43:07:34:bd:91:b4:34:c8:15:ac:5f:1e:66:46:ce: f3:27:0b:fb:76:ea:1c:9b:a9:14:d6:36:04:b2:f8:6f:8d:20: e3:38:2d:24:05:a6:1e:1f:31:95:f1:12:19:35:2c:50:af:26: 05:b9:c1:d4:79:26:ba:52:03:00:17:de:c5:04:e4:71:a5:9f: 5d:0a:fc:9a:ab:98:7f:62:e7:32:8a:eb:1b:0d:eb:91:90:43: e9:2e:90:cf:7f:88:fc:05:fa:d0:4b:0d:5d:5d:d2:5b:33:5b: 6d:c9:ea:50:ed:0d:e5:04:da:29:3f:fe:73:65:6b:64:86:7b: 8d:19:77:6d:86:99:b1:31:c4:8e:e5:43:2b:53:06:74:df:4a: ab:ff:79:7c:bb:8a:c2:bc:ab:b5:2d:22:4d:fd:23:03:e8:3a: 79:38:7b:ee:44:21:34:e0:e7:6f:a3:3c:41:00:3c:af:a4:6e: 00:3c:68:32 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUPIhfff5YZdvIvQF6jJwqnkV1fP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTUwNjQwMzVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDQ1OWVlNjI1NjEyZmFkNjYxZGM3YTMzZmFkODhlMzQzNDExNjE3YmM3OWNl NjM1YWE2YjkwNzQ1NWJkYzYyYzcxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMR+KKhrTRiqubPKR5tiAdwCIiY2No56/mW8+XfKQzkl/lpTPvHOPmNjer52 G9r4WCE+vGYnb561BMIB04DykcwDzz9W15OByeYW7vzHj+HD3tpn/IjRQqb2/t7m x+9KvvIavtlnPmVZQ5L1p7Sv1yY5TjkZAGclPY9jfFfXPN5ZrjMp9Ppqlu6uEOZB B0mRroNhioKkHJF/u8KjgfsrrlmrjLq/4c266mRQ5pALbwnXg0R6yXL3vdfOLkkB UKXq/1WiXT43DFhnwVPBSiiXck+DmRWLzNV/ropI2TnmG2bssU0P35r5GoVpqLRO p2+Q4EYTBJsjkLQSTEUELi3U718CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBT5Icuv 5UDSa6gpMPI7x6iALKlgfzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv NDE4MTZmNjEtNWNlMy00MDZhLThkNzgtMzdjNGVhZmE2OTE1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBTMAIDAN BgkqhkiG9w0BAQsFAAOCAQEAS19Sl2RGxhZPiLjSFGHlY7gCQxPOe5jQwlpUACbf xp3IT3vwhhUqijJT0HPFzqg4lC6NBn+CF63Un6/wRIv/wZPONynOrb3SYg22Qwc0 vZG0NMgVrF8eZkbO8ycL+3bqHJupFNY2BLL4b40g4zgtJAWmHh8xlfESGTUsUK8m BbnB1HkmulIDABfexQTkcaWfXQr8mquYf2LnMorrGw3rkZBD6S6Qz3+I/AX60EsN XV3SWzNbbcnqUO0N5QTaKT/+c2VrZIZ7jRl3bYaZsTHEjuVDK1MGdN9Kq/95fLuK wryrtS0iTf0jA+g6eTh77kQhNODnb6M8QQA8r6RuADxoMg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:59:47 2025 by rpki-client