This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/44c4496c-63e1-49fc-828b-d77f94e0a789.roa File: 44c4496c-63e1-49fc-828b-d77f94e0a789.roa (raw, json) Hash identifier: UApU+NeFEm5aD2tAgXKmf8oAO0Ev3VD9NWSQ8Z1LXi8= Subject key identifier: FB:3D:BC:36:F0:67:A5:A1:76:26:65:79:6E:9B:D9:4B:66:54:05:74 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 5B3E922EF2C2E6E9DEA30703C8815D3977F22FDE Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/44c4496c-63e1-49fc-828b-d77f94e0a789.roa Signing time: Sun 16 Nov 2025 01:00:16 +0000 ROA not before: Sun 16 Nov 2025 01:00:16 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 213.72.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:3e:92:2e:f2:c2:e6:e9:de:a3:07:03:c8:81:5d:39:77:f2:2f:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 16 01:00:16 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=45addf894a7b87d73a43438770e7cad6ed260f25b5eabc69c276bba4a6474134, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4f:ce:22:be:b8:11:be:43:76:be:1c:56:f4: 15:c1:81:1d:2b:98:4a:32:70:ba:34:7a:18:54:df: da:4f:30:6a:e8:a4:50:5c:93:65:38:47:79:96:19: 48:95:8a:90:d9:5d:3e:17:20:81:8b:8c:d0:a3:a5: 07:69:9f:b4:da:98:74:2b:ae:b8:72:b6:d9:5d:96: 58:29:e8:ac:7e:be:6e:42:81:e4:b5:7a:dd:cf:c5: 57:4d:55:73:dd:65:ab:c9:06:b7:e1:2d:07:d5:33: 3a:ac:f4:d7:5c:9b:31:ef:64:72:e2:c3:65:f3:2e: 34:8a:4a:e9:49:13:ad:15:91:04:31:9b:29:8d:57: 08:44:99:d2:0d:e2:cb:73:06:e8:38:4e:cd:4d:1e: 48:2c:29:43:b7:5c:25:c4:a2:8e:cb:a7:93:92:d0: 15:ae:0b:8b:40:4b:37:1f:b4:38:7d:73:23:56:e3: f3:1b:28:b8:85:35:ca:99:25:92:13:1b:bc:06:a9: 55:6f:15:be:ee:3b:b6:5f:85:d5:c1:ed:cb:3a:51: 59:2f:ab:50:1a:b0:8f:56:de:96:4f:68:d3:56:3d: 86:a8:13:2e:af:13:ce:07:01:40:3f:17:bd:16:ad: 91:98:5c:24:0e:3c:63:4a:8d:5d:f4:8b:0e:79:8f: 70:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:3D:BC:36:F0:67:A5:A1:76:26:65:79:6E:9B:D9:4B:66:54:05:74 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/44c4496c-63e1-49fc-828b-d77f94e0a789.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.72.128.0/17 Signature Algorithm: sha256WithRSAEncryption 2f:fb:3f:db:f1:f7:fc:c9:6d:02:b0:63:12:c5:05:ae:f9:0d: 45:f6:bc:1d:80:30:ba:c1:52:39:1c:7a:2e:23:fc:e9:a7:1c: 65:29:b6:de:78:9f:56:02:f7:ab:bf:08:6a:86:c8:2b:52:94: 43:3f:9f:8d:46:31:2c:e3:e6:af:93:00:af:a1:49:ea:73:f2: 49:a0:65:2b:a3:40:8e:6e:3d:cf:64:6f:8a:1c:3a:68:8d:91: b5:0d:e9:78:eb:d9:05:58:79:e1:d9:70:7d:53:a2:68:80:cb: c3:db:ed:52:37:7d:7d:f4:84:fc:a5:42:50:74:43:ec:9e:63: b2:12:b0:93:7f:0f:0c:56:b8:4d:79:f5:73:4e:64:0f:c4:81: 45:43:c5:35:e6:b1:12:2e:ae:10:d4:11:17:24:02:fe:9d:bc: 6c:9c:c7:1a:60:08:18:33:82:dc:a4:f3:5a:61:a0:38:b8:a9: 79:d4:fd:47:3d:a9:dd:f5:97:03:a3:d1:89:a8:87:52:7a:44: 56:0b:8a:42:2f:01:25:6c:8b:17:dd:77:e5:49:50:65:95:77: e0:e3:31:56:46:1c:f0:e8:94:3c:c4:b2:c9:12:e3:99:aa:f6: 85:c0:34:1c:fe:f3:43:67:85:df:9a:4d:bf:d2:f6:b9:ee:7a: 25:46:78:08 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUWz6SLvLC5uneowcDyIFdOXfyL94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTYwMTAwMTZaFw0yNTEyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQDQ1YWRkZjg5NGE3Yjg3ZDczYTQzNDM4NzcwZTdjYWQ2ZWQyNjBmMjViNWVh YmM2OWMyNzZiYmE0YTY0NzQxMzQxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALlPziK+uBG+Q3a+HFb0FcGBHSuYSjJwujR6GFTf2k8wauikUFyTZThHeZYZ SJWKkNldPhcggYuM0KOlB2mftNqYdCuuuHK22V2WWCnorH6+bkKB5LV63c/FV01V c91lq8kGt+EtB9UzOqz011ybMe9kcuLDZfMuNIpK6UkTrRWRBDGbKY1XCESZ0g3i y3MG6DhOzU0eSCwpQ7dcJcSijsunk5LQFa4Li0BLNx+0OH1zI1bj8xsouIU1ypkl khMbvAapVW8Vvu47tl+F1cHtyzpRWS+rUBqwj1belk9o01Y9hqgTLq8TzgcBQD8X vRatkZhcJA48Y0qNXfSLDnmPcHkCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBT7Pbw2 8GeloXYmZXlum9lLZlQFdDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv NDRjNDQ5NmMtNjNlMS00OWZjLTgyOGItZDc3Zjk0ZTBhNzg5LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9VIgDAN BgkqhkiG9w0BAQsFAAOCAQEAL/s/2/H3/MltArBjEsUFrvkNRfa8HYAwusFSORx6 LiP86accZSm23nifVgL3q78IaobIK1KUQz+fjUYxLOPmr5MAr6FJ6nPySaBlK6NA jm49z2Rvihw6aI2RtQ3peOvZBVh54dlwfVOiaIDLw9vtUjd9ffSE/KVCUHRD7J5j shKwk38PDFa4TXn1c05kD8SBRUPFNeaxEi6uENQRFyQC/p28bJzHGmAIGDOC3KTz WmGgOLipedT9Rz2p3fWXA6PRiaiHUnpEVguKQi8BJWyLF9135UlQZZV34OMxVkYc 8OiUPMSyyRLjmar2hcA0HP7zQ2eF35pNv9L2ue56JUZ4CA== -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:13 2025 by rpki-client