This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/4f9d3c39-ae76-4f22-9df9-c6501acbcc84.roa File: 4f9d3c39-ae76-4f22-9df9-c6501acbcc84.roa (raw, json) Hash identifier: GmzWUXHzaGZ1SNndGuJcRWxRT1t1+zU213V9CXNUuUY= Subject key identifier: EF:98:0F:0B:60:05:F0:36:FE:A2:00:96:C7:FA:B0:A6:6E:B9:CC:6E Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 12E9EB34D12BF995ACBA3FE222D9731409C85FA8 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/4f9d3c39-ae76-4f22-9df9-c6501acbcc84.roa Signing time: Sun 16 Nov 2025 01:00:19 +0000 ROA not before: Sun 16 Nov 2025 01:00:19 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.0.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:e9:eb:34:d1:2b:f9:95:ac:ba:3f:e2:22:d9:73:14:09:c8:5f:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 16 01:00:19 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=2a0b0ab8a11f1772cb92a3aed3f4f66d857befe1a405e8776f9ef870eb7b769b, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:99:b1:ca:76:6b:9c:82:37:b9:85:42:0e:0a: fb:cc:c9:2e:59:fe:81:4a:12:f5:9b:87:86:d3:fc: 3e:bc:a5:84:63:6a:48:0c:61:7b:26:37:f8:e0:99: 30:b2:4a:4c:53:a3:b2:fa:62:f8:4c:8c:df:e9:b0: c1:1a:c7:c5:47:b5:7d:38:55:3b:cb:bb:da:d3:e8: 80:1a:f9:05:08:22:1e:34:6d:c3:4f:00:68:d7:bb: c2:2b:15:c2:d2:af:73:2b:76:41:60:5c:6f:53:65: c4:05:6d:86:50:b1:dd:e4:38:4a:f6:81:2a:94:de: 1c:bb:71:ae:54:52:98:70:41:9e:c6:b1:ef:6b:94: 9f:2e:d4:1b:8c:55:e0:fe:2c:4a:7a:c1:e5:53:2d: cd:95:55:47:e7:8e:dc:5c:6f:c6:f2:69:5b:43:77: dc:62:68:29:7f:03:ca:4f:a4:16:f3:a0:f0:44:bb: dd:4a:c9:f1:ad:d6:89:ff:78:e0:7b:cc:46:a2:a7: 77:ed:23:73:58:75:69:c9:3f:6e:6c:7d:9c:64:c0: d7:3e:61:5a:7f:7a:4b:2e:ab:38:96:1d:0d:0a:00: 0d:2e:43:cf:7e:71:96:23:dd:76:c8:0f:01:9e:df: fb:bc:9d:5c:13:14:a5:bc:51:bb:dd:e2:85:8d:67: 6e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:98:0F:0B:60:05:F0:36:FE:A2:00:96:C7:FA:B0:A6:6E:B9:CC:6E X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/4f9d3c39-ae76-4f22-9df9-c6501acbcc84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.0.88.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:3d:b8:76:78:6f:87:62:ee:5b:7a:a1:af:68:8b:e2:2c:69: d1:27:7e:5e:4a:0a:b5:0c:6f:b7:9e:cc:50:60:22:43:4a:a3: 85:f9:b5:e9:fd:0c:36:8c:47:60:c8:83:25:4c:f3:4c:95:07: 79:91:35:be:d8:93:1b:11:49:57:b1:93:43:54:67:8e:0b:ab: 7a:42:e6:dd:dd:57:ef:fa:f6:37:c8:91:07:7e:4e:35:c6:e1: 1f:80:28:26:50:db:ca:7b:a3:bc:1a:20:55:97:bc:06:1b:28: a4:bd:0b:57:4d:f7:40:a2:4d:6f:20:70:36:2b:e0:d1:5d:26: 3e:ff:bd:ba:bf:2d:55:31:83:0b:29:2e:4c:ce:a2:21:76:29: f5:a8:99:51:df:f9:21:49:62:cf:49:4b:71:9a:58:c3:62:ad: c6:ca:c8:5b:90:09:bc:d0:c7:ae:4d:e2:a2:ee:6e:60:2d:e9: 97:4d:87:f2:1a:a3:1d:51:f2:ac:cd:4a:75:45:e7:57:cf:e6: 58:6f:65:d7:0d:91:82:55:52:99:61:b3:1e:fb:83:ef:b6:ca: c0:be:43:95:10:9d:00:36:35:47:e3:7a:72:74:d3:6b:3c:f8: 76:29:e7:da:8d:cc:3c:53:87:56:3b:3f:16:1f:e5:03:2f:e6: e4:d8:9f:bf -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUEunrNNEr+ZWsuj/iItlzFAnIX6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTYwMTAwMTlaFw0yNTEyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQDJhMGIwYWI4YTExZjE3NzJjYjkyYTNhZWQzZjRmNjZkODU3YmVmZTFhNDA1 ZTg3NzZmOWVmODcwZWI3Yjc2OWIxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2Zscp2a5yCN7mFQg4K+8zJLln+gUoS9ZuHhtP8PrylhGNqSAxheyY3+OCZ MLJKTFOjsvpi+EyM3+mwwRrHxUe1fThVO8u72tPogBr5BQgiHjRtw08AaNe7wisV wtKvcyt2QWBcb1NlxAVthlCx3eQ4SvaBKpTeHLtxrlRSmHBBnsax72uUny7UG4xV 4P4sSnrB5VMtzZVVR+eO3FxvxvJpW0N33GJoKX8Dyk+kFvOg8ES73UrJ8a3Wif94 4HvMRqKnd+0jc1h1ack/bmx9nGTA1z5hWn96Sy6rOJYdDQoADS5Dz35xliPddsgP AZ7f+7ydXBMUpbxRu93ihY1nbv0CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTvmA8L YAXwNv6iAJbH+rCmbrnMbjAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv NGY5ZDNjMzktYWU3Ni00ZjIyLTlkZjktYzY1MDFhY2JjYzg0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzMAWDAN BgkqhkiG9w0BAQsFAAOCAQEADz24dnhvh2LuW3qhr2iL4ixp0Sd+XkoKtQxvt57M UGAiQ0qjhfm16f0MNoxHYMiDJUzzTJUHeZE1vtiTGxFJV7GTQ1RnjgurekLm3d1X 7/r2N8iRB35ONcbhH4AoJlDbynujvBogVZe8BhsopL0LV033QKJNbyBwNivg0V0m Pv+9ur8tVTGDCykuTM6iIXYp9aiZUd/5IUliz0lLcZpYw2KtxsrIW5AJvNDHrk3i ou5uYC3pl02H8hqjHVHyrM1KdUXnV8/mWG9l1w2RglVSmWGzHvuD77bKwL5DlRCd ADY1R+N6cnTTazz4dinn2o3MPFOHVjs/Fh/lAy/m5Nifvw== -----END CERTIFICATE-----Generated at Sat Dec 6 17:31:32 2025 by rpki-client