This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/5480e32c-3a23-4243-82e3-c7eea059d814.roa File: 5480e32c-3a23-4243-82e3-c7eea059d814.roa (raw, json) Hash identifier: RXXZHQAmPqPSO9hF3t1FRCHZ+NXT/crZgtHIq3RWroc= Subject key identifier: 39:EE:46:42:84:9E:1E:F8:40:9B:15:FA:05:CA:A4:AF:9F:15:90:BC Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 8670EFA0C6C7B434F4D4C5C2D2D147442CB769 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/5480e32c-3a23-4243-82e3-c7eea059d814.roa Signing time: Tue 18 Nov 2025 00:40:06 +0000 ROA not before: Tue 18 Nov 2025 00:40:06 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.92.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86:70:ef:a0:c6:c7:b4:34:f4:d4:c5:c2:d2:d1:47:44:2c:b7:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 18 00:40:06 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=11f0ae0f0504c9832c83cbd49d854d850dade77787d654dbff2641d06c442579, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:82:7f:b3:b9:76:40:c6:9c:97:93:25:e4:63: bd:33:69:dc:f8:1e:30:fd:bf:4d:6c:f1:29:ea:96: ab:06:5f:94:6d:4d:c8:1e:d1:35:3b:9b:25:37:fa: 96:f1:8d:cf:d4:db:f4:05:62:9a:08:f4:cd:db:1d: 86:25:c7:22:5d:6f:c1:18:b8:60:6f:b3:65:2d:5f: d0:7a:29:eb:70:23:8f:e3:4c:48:0f:e3:14:5e:8f: 79:54:1b:8b:4b:6a:31:83:f3:3d:a6:f0:b5:fd:9f: 9b:3e:4e:76:f0:03:bb:96:a9:0c:3c:7a:d3:b1:9d: 6c:a8:a2:aa:89:03:d7:a7:e9:8c:93:92:cc:88:ab: b0:75:ec:5c:98:4b:5e:71:ac:c3:12:1f:a6:0e:59: a2:14:cb:01:7a:c8:59:c1:83:e1:ac:31:6f:38:3e: 6f:3b:37:cd:51:26:1e:35:d2:12:fa:5e:10:c3:34: 15:15:d9:be:f8:3c:fc:07:3e:36:d6:bf:2d:b2:7a: 73:c7:c0:14:e7:8e:82:9e:37:ec:62:12:04:20:5f: 34:4c:78:9e:07:fc:0f:8b:f8:3a:23:46:47:30:81: 79:c3:4d:ec:e5:85:2c:93:51:59:97:a7:5c:0c:d2: 75:f8:71:fd:b7:c5:21:15:12:55:52:43:b9:49:15: b1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:EE:46:42:84:9E:1E:F8:40:9B:15:FA:05:CA:A4:AF:9F:15:90:BC X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/5480e32c-3a23-4243-82e3-c7eea059d814.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.92.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4a:06:b0:f9:1a:b9:c8:a3:09:85:01:c8:ad:8c:b9:80:e6:97: 3f:6f:ec:a2:52:8e:d9:68:49:5e:35:44:78:71:f1:ca:8d:64: 20:cf:ce:f6:8a:ea:14:45:28:9b:0d:e3:9c:e2:00:2f:e2:84: 92:3b:1e:6e:5c:01:86:04:8c:10:b6:18:09:59:7a:7c:a9:15: f7:83:9c:3c:08:d6:71:5a:b7:96:31:ce:df:fb:6a:1b:ae:d9: 34:14:cb:a4:6f:d5:ce:a2:be:e3:2c:ff:db:f6:c9:7b:92:66: 41:f1:bf:48:0a:fe:3e:e9:48:b1:85:9f:e1:f2:c1:4b:9f:5a: f4:95:ca:3b:0a:b4:80:0f:cf:89:61:22:be:26:43:8e:8e:74: 9c:a4:55:f3:a1:a3:91:e7:a0:65:e9:91:9e:09:c8:42:57:6a: ec:5c:51:6b:95:66:0d:5c:98:bc:e0:c3:8f:74:bf:f3:f6:90: eb:0d:47:ca:c1:a5:f3:13:88:3f:b3:39:9f:f6:19:26:ba:04: 95:73:e0:4c:4b:41:57:1c:94:66:9e:cc:d7:b6:79:f3:29:d9: c3:6a:88:b9:2d:38:ad:d0:33:35:2e:9a:b2:c2:c0:7b:a7:24: 27:32:b5:f6:bc:39:c8:e6:6c:6d:60:f6:12:5e:f0:86:f9:c2: 96:60:52:a2 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUAIZw76DGx7Q09NTFwtLRR0Qst2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTgwMDQwMDZaFw0yNjAyMTYyMzU5NTlaMHoxSTBHBgNV BAUTQDExZjBhZTBmMDUwNGM5ODMyYzgzY2JkNDlkODU0ZDg1MGRhZGU3Nzc4N2Q2 NTRkYmZmMjY0MWQwNmM0NDI1NzkxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCCf7O5dkDGnJeTJeRjvTNp3PgeMP2/TWzxKeqWqwZflG1NyB7RNTubJTf6 lvGNz9Tb9AVimgj0zdsdhiXHIl1vwRi4YG+zZS1f0Hop63Ajj+NMSA/jFF6PeVQb i0tqMYPzPabwtf2fmz5OdvADu5apDDx607GdbKiiqokD16fpjJOSzIirsHXsXJhL XnGswxIfpg5ZohTLAXrIWcGD4awxbzg+bzs3zVEmHjXSEvpeEMM0FRXZvvg8/Ac+ Nta/LbJ6c8fAFOeOgp437GISBCBfNEx4ngf8D4v4OiNGRzCBecNN7OWFLJNRWZen XAzSdfhx/bfFIRUSVVJDuUkVsaECAwEAAaOCAiAwggIcMB0GA1UdDgQWBBQ57kZC hJ4e+ECbFfoFyqSvnxWQvDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv NTQ4MGUzMmMtM2EyMy00MjQzLTgyZTMtYzdlZWEwNTlkODE0LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADNcMA0G CSqGSIb3DQEBCwUAA4IBAQBKBrD5GrnIowmFAcitjLmA5pc/b+yiUo7ZaEleNUR4 cfHKjWQgz872iuoURSibDeOc4gAv4oSSOx5uXAGGBIwQthgJWXp8qRX3g5w8CNZx WreWMc7f+2obrtk0FMukb9XOor7jLP/b9sl7kmZB8b9ICv4+6UixhZ/h8sFLn1r0 lco7CrSAD8+JYSK+JkOOjnScpFXzoaOR56Bl6ZGeCchCV2rsXFFrlWYNXJi84MOP dL/z9pDrDUfKwaXzE4g/szmf9hkmugSVc+BMS0FXHJRmnszXtnnzKdnDaoi5LTit 0DM1LpqywsB7pyQnMrX2vDnI5mxtYPYSXvCG+cKWYFKi -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:53 2025 by rpki-client