This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/51429a37-e3fd-4b49-a184-1e07ed522f97.roa File: 51429a37-e3fd-4b49-a184-1e07ed522f97.roa (raw, json) Hash identifier: t21VyvB/eoqwxvmufCMU8wTn3UFjdQgo/k6V8MbpT1I= Subject key identifier: 26:B0:C8:0C:81:5C:E5:4A:92:7C:AA:5A:21:83:19:18:63:7B:2D:75 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 6E7553842E8040010FF1A72308B0F9C8BC8E8340 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/51429a37-e3fd-4b49-a184-1e07ed522f97.roa Signing time: Sat 15 Nov 2025 06:40:31 +0000 ROA not before: Sat 15 Nov 2025 06:40:31 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.3.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:75:53:84:2e:80:40:01:0f:f1:a7:23:08:b0:f9:c8:bc:8e:83:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 15 06:40:31 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=424f5f1b9f246920d805f9d5c23842ee3c85319a839eb436105ad73e1b91a7d4, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:98:37:58:10:5c:92:a5:fd:05:51:a5:4f:b3: ca:14:b3:af:4d:3b:cc:1a:be:b5:ba:0f:59:cf:3a: 55:13:e2:77:99:b0:40:47:a6:82:a0:4e:36:69:e1: e9:5f:3c:81:a7:28:5c:4b:dd:83:1c:8f:e0:93:43: 6d:df:81:24:69:4f:43:6f:1c:4b:8a:6e:16:05:70: 7f:b4:83:fa:ec:45:12:4e:c2:1f:6f:03:05:e6:17: 8f:7e:ce:e3:58:50:35:d5:82:eb:35:ab:48:0a:66: 3e:ee:40:09:bb:1c:10:6a:14:83:fd:32:69:8e:51: 4e:22:1a:e3:4e:02:63:23:48:40:52:04:fb:60:a1: 27:c3:21:26:2c:8d:8d:74:61:2f:67:cd:bf:89:54: f0:a9:d3:c3:f6:fb:0f:5c:62:c4:dd:50:58:63:d1: 4f:ba:7d:c5:35:dc:54:df:11:ee:52:4c:f6:e4:cf: f3:29:0d:d6:78:a4:98:83:ce:e3:8f:b4:f0:ab:8a: d7:c4:4f:ce:dc:8f:49:4b:1a:fd:90:a2:c6:7c:f9: 50:b8:b0:c4:3f:c3:db:9c:a4:1c:e7:d6:22:4b:3f: fc:f3:95:70:70:3e:10:20:11:92:d1:40:74:7d:d6: 3b:40:af:de:c7:73:1c:16:cc:aa:06:48:2f:ea:60: 31:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B0:C8:0C:81:5C:E5:4A:92:7C:AA:5A:21:83:19:18:63:7B:2D:75 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/51429a37-e3fd-4b49-a184-1e07ed522f97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.3.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9f:5f:44:eb:2c:5a:c8:91:6d:11:f5:25:08:c0:b2:41:c9:9d: 6a:e0:6e:51:db:40:ee:a3:d1:3d:00:d4:b2:d6:90:83:a9:3d: 1e:ae:02:42:da:9d:6f:19:f8:1d:ba:de:80:55:56:c1:29:16: 04:c4:20:12:61:1c:8b:6b:27:44:e3:bd:44:e6:62:ed:01:47: 5b:17:dd:c8:92:b5:dd:6b:92:db:46:dc:42:0b:5b:16:f8:68: 3f:c2:29:7b:8e:69:31:43:89:9e:8a:cc:f9:32:8a:81:de:2e: 44:3f:6f:48:40:de:ad:21:16:a7:c1:a6:3e:43:94:41:e1:ec: 37:b8:d4:07:36:94:c7:8a:77:76:a3:1f:4b:f3:7c:0b:6d:33: 6b:53:f9:54:fc:2d:a9:d1:84:50:1e:a8:ba:ec:7a:3e:ee:2f: 33:73:8e:0d:ce:9b:66:7b:08:99:5b:0f:69:ab:ac:73:bd:60: 7d:12:3c:0e:8b:18:92:d3:f3:1c:27:1e:de:00:67:b1:19:ad: 0d:1c:61:9f:2a:4c:bc:9a:83:c7:9d:aa:3f:05:10:92:72:c4: 7c:9c:1c:96:f6:2c:9e:63:02:62:f7:33:c3:bd:34:15:0b:7a: 2a:f9:4c:dd:83:55:de:26:25:cf:83:28:29:64:be:d6:d3:3c: 1f:f7:32:ff -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUbnVThC6AQAEP8acjCLD5yLyOg0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTUwNjQwMzFaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDQyNGY1ZjFiOWYyNDY5MjBkODA1ZjlkNWMyMzg0MmVlM2M4NTMxOWE4Mzll YjQzNjEwNWFkNzNlMWI5MWE3ZDQxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2YN1gQXJKl/QVRpU+zyhSzr007zBq+tboPWc86VRPid5mwQEemgqBONmnh 6V88gacoXEvdgxyP4JNDbd+BJGlPQ28cS4puFgVwf7SD+uxFEk7CH28DBeYXj37O 41hQNdWC6zWrSApmPu5ACbscEGoUg/0yaY5RTiIa404CYyNIQFIE+2ChJ8MhJiyN jXRhL2fNv4lU8KnTw/b7D1xixN1QWGPRT7p9xTXcVN8R7lJM9uTP8ykN1nikmIPO 44+08KuK18RPztyPSUsa/ZCixnz5ULiwxD/D25ykHOfWIks//POVcHA+ECARktFA dH3WO0Cv3sdzHBbMqgZIL+pgMfUCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBQmsMgM gVzlSpJ8qlohgxkYY3stdTAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv NTE0MjlhMzctZTNmZC00YjQ5LWExODQtMWUwN2VkNTIyZjk3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADMDMA0G CSqGSIb3DQEBCwUAA4IBAQCfX0TrLFrIkW0R9SUIwLJByZ1q4G5R20Duo9E9ANSy 1pCDqT0ergJC2p1vGfgdut6AVVbBKRYExCASYRyLaydE471E5mLtAUdbF93IkrXd a5LbRtxCC1sW+Gg/wil7jmkxQ4meisz5MoqB3i5EP29IQN6tIRanwaY+Q5RB4ew3 uNQHNpTHind2ox9L83wLbTNrU/lU/C2p0YRQHqi67Ho+7i8zc44NzptmewiZWw9p q6xzvWB9EjwOixiS0/McJx7eAGexGa0NHGGfKky8moPHnao/BRCScsR8nByW9iye YwJi9zPDvTQVC3oq+Uzdg1XeJiXPgygpZL7W0zwf9zL/ -----END CERTIFICATE-----Generated at Sat Dec 6 10:54:42 2025 by rpki-client