This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/695716ab-c4db-435d-95fe-4143be62030e.roa File: 695716ab-c4db-435d-95fe-4143be62030e.roa (raw, json) Hash identifier: iqXFWd9T6yQw3emzaII2+Z0cgI4GZNwtGN5y+39/gFk= Subject key identifier: DE:E1:55:FF:A0:69:06:BA:3F:3C:68:CC:17:EE:05:B2:6C:2C:C7:AD Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 4A4D18584AFCB8A96565C8FE8AE89FA2B8C6538B Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/695716ab-c4db-435d-95fe-4143be62030e.roa Signing time: Thu 11 Dec 2025 01:00:25 +0000 ROA not before: Thu 11 Dec 2025 01:00:25 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 139.79.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:4d:18:58:4a:fc:b8:a9:65:65:c8:fe:8a:e8:9f:a2:b8:c6:53:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 11 01:00:25 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=47e5bce8f27580b8e4274a8fbefe9f2ec6e6e6a09f4aea6b20bca78326c81c59, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8d:83:a3:a7:a6:3f:64:f4:03:18:13:6c:91: 8d:6c:6c:5a:00:a5:c9:fa:10:45:52:31:96:f5:f0: 6a:d2:82:f7:93:2b:99:d8:2b:fc:9d:79:26:df:24: 6b:b3:9a:b7:5b:79:85:31:71:eb:d1:12:5c:e1:90: fb:4a:6f:d0:9e:59:47:48:62:87:ab:14:07:12:ef: 65:94:d3:25:62:ec:04:31:2a:5b:df:00:18:28:ed: 61:1e:a5:c6:55:79:34:b1:df:e6:46:ca:cb:7c:ad: 24:3c:6a:28:9c:4e:c6:b0:13:8f:96:df:a7:46:47: 32:d7:cb:1e:3d:67:f9:2a:0b:27:f9:fd:3c:71:f5: 76:90:fe:0e:cc:d3:bc:99:24:7c:37:b9:d8:1f:3c: e4:01:62:9b:fa:40:ec:eb:35:70:63:aa:63:e9:6d: 85:5f:4f:8b:70:a9:85:ae:45:96:d7:d1:dd:77:6a: d0:06:31:8f:5b:ed:50:da:28:5c:8e:37:90:6c:e6: 8c:dc:16:11:b5:87:f9:cc:5c:22:64:58:eb:e7:26: 7d:bf:11:0e:a8:7f:7f:cf:b2:51:e7:42:53:e0:e9: cd:3c:b7:ab:01:e3:5c:9a:36:cc:85:47:4b:2a:66: bd:42:29:ee:25:27:82:d9:64:3a:3c:ea:b4:38:c5: cd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E1:55:FF:A0:69:06:BA:3F:3C:68:CC:17:EE:05:B2:6C:2C:C7:AD X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/695716ab-c4db-435d-95fe-4143be62030e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:f9:b6:24:79:b3:57:a6:46:30:58:be:84:ab:49:96:c3:c1: 12:3a:52:1b:92:ed:79:8e:5b:e5:d7:30:13:8e:64:dd:58:b6: e1:63:89:1c:ec:e4:82:fd:a3:10:cd:61:43:f5:3f:19:8c:0e: c3:83:81:6c:22:38:91:43:09:87:cb:67:f9:64:d1:34:8f:09: da:be:26:9d:c2:a4:9f:c8:5b:28:2d:a9:da:0d:e7:1d:30:4c: 6b:37:85:61:a1:e9:c2:00:c3:ca:c2:42:66:54:3f:d0:12:24: 98:5d:ef:e4:4f:f7:4f:58:77:03:a7:43:b5:90:b8:ab:03:69: 06:cc:e1:ac:37:58:fb:45:55:35:91:c7:9d:8f:91:7f:98:80: 10:55:03:36:04:a7:ac:b7:c3:59:41:df:92:aa:1a:3f:8c:77: 1a:9c:ed:6c:21:7d:a3:61:87:05:44:04:87:00:7d:64:b6:18: 24:26:f8:a4:3f:ba:f8:ac:da:60:cb:3b:6b:c7:d5:8e:b9:4f: 8a:f6:0b:bd:90:6f:aa:ff:75:70:8c:ec:af:3c:d0:9a:4f:2e: 13:3d:c8:2b:5d:f2:4e:50:11:91:1f:d9:2b:08:50:c8:e6:67: 38:05:9d:af:f1:d5:de:b6:3b:41:25:6e:c8:7d:94:c9:09:43: 56:e1:3e:e4 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUSk0YWEr8uKllZcj+iuiforjGU4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTEwMTAwMjVaFw0yNjAzMTEyMzU5NTlaMHoxSTBHBgNV BAUTQDQ3ZTViY2U4ZjI3NTgwYjhlNDI3NGE4ZmJlZmU5ZjJlYzZlNmU2YTA5ZjRh ZWE2YjIwYmNhNzgzMjZjODFjNTkxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMONg6Onpj9k9AMYE2yRjWxsWgClyfoQRVIxlvXwatKC95Mrmdgr/J15Jt8k a7Oat1t5hTFx69ESXOGQ+0pv0J5ZR0hih6sUBxLvZZTTJWLsBDEqW98AGCjtYR6l xlV5NLHf5kbKy3ytJDxqKJxOxrATj5bfp0ZHMtfLHj1n+SoLJ/n9PHH1dpD+DszT vJkkfDe52B885AFim/pA7Os1cGOqY+lthV9Pi3Cpha5FltfR3Xdq0AYxj1vtUNoo XI43kGzmjNwWEbWH+cxcImRY6+cmfb8RDqh/f8+yUedCU+DpzTy3qwHjXJo2zIVH SypmvUIp7iUngtlkOjzqtDjFzecCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBTe4VX/ oGkGuj88aMwX7gWybCzHrTAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv Njk1NzE2YWItYzRkYi00MzVkLTk1ZmUtNDE0M2JlNjIwMzBlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAItPMA0G CSqGSIb3DQEBCwUAA4IBAQBA+bYkebNXpkYwWL6Eq0mWw8ESOlIbku15jlvl1zAT jmTdWLbhY4kc7OSC/aMQzWFD9T8ZjA7Dg4FsIjiRQwmHy2f5ZNE0jwnaviadwqSf yFsoLanaDecdMExrN4VhoenCAMPKwkJmVD/QEiSYXe/kT/dPWHcDp0O1kLirA2kG zOGsN1j7RVU1kcedj5F/mIAQVQM2BKest8NZQd+Sqho/jHcanO1sIX2jYYcFRASH AH1kthgkJvikP7r4rNpgyztrx9WOuU+K9gu9kG+q/3VwjOyvPNCaTy4TPcgrXfJO UBGRH9krCFDI5mc4BZ2v8dXetjtBJW7IfZTJCUNW4T7k -----END CERTIFICATE-----Generated at Tue Dec 16 07:01:19 2025 by rpki-client