This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7dc90e26-05aa-40c8-bbd0-967e095d6485.roa File: 7dc90e26-05aa-40c8-bbd0-967e095d6485.roa (raw, json) Hash identifier: uS7xPE6agsefk2uIgYSFqCUKeCzvsIvzrvzlLaNFfo4= Subject key identifier: 94:85:98:E0:19:FE:3A:83:37:A5:42:C9:67:C3:EC:3D:D6:2D:B2:5E Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 59A03B695F3A79B4B516F380DFEA16ABACA23B24 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7dc90e26-05aa-40c8-bbd0-967e095d6485.roa Signing time: Sat 15 Nov 2025 06:50:45 +0000 ROA not before: Sat 15 Nov 2025 06:50:45 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 143.65.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a0:3b:69:5f:3a:79:b4:b5:16:f3:80:df:ea:16:ab:ac:a2:3b:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 15 06:50:45 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=0dd39a9b7fc541603fc787f0c347b1dc4e15e576e45045facb8ef3263a464f8d, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:87:00:1a:c4:10:ae:27:20:3b:4f:29:d2:46: 3d:41:6a:dc:bd:99:71:55:9c:e7:ea:00:db:04:9a: 23:a0:6d:37:26:e6:33:83:f4:84:9e:d4:1d:08:9d: 89:7b:c8:f0:f6:7e:36:da:11:07:91:5c:f5:cd:6c: 95:af:d5:0d:0e:2b:0c:5e:27:94:78:16:72:14:d9: 88:1f:5c:43:13:8c:e8:ac:59:71:11:af:42:fd:58: 70:84:0d:c8:ac:19:9c:09:aa:a7:71:f2:af:bc:6d: cd:e5:b3:39:a6:a7:7e:33:6b:89:b2:09:e4:d7:41: f7:6f:36:cd:ed:26:19:7c:95:db:8d:dc:48:de:d6: d1:61:ce:93:70:4e:57:24:6a:99:33:77:5b:ed:05: da:92:44:b4:df:36:2b:ee:70:22:15:5d:1e:08:71: c2:b4:07:92:64:53:ad:77:9c:13:59:43:fa:75:8e: 69:8f:4f:f8:2b:6f:5c:a3:cd:5f:f6:b1:50:93:74: ce:66:7d:21:67:de:ec:cc:1f:7e:c6:91:37:59:59: 8d:6b:e0:30:a4:8b:87:3d:fe:79:3b:88:af:ba:91: 3d:d7:32:2d:3a:06:51:bd:89:da:a8:fa:c5:1c:1b: 0a:a8:c3:f1:06:14:43:7c:92:9f:d7:35:9c:52:41: da:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:85:98:E0:19:FE:3A:83:37:A5:42:C9:67:C3:EC:3D:D6:2D:B2:5E X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7dc90e26-05aa-40c8-bbd0-967e095d6485.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.65.0.0/17 Signature Algorithm: sha256WithRSAEncryption d2:62:cc:75:33:6e:a3:fc:aa:f8:93:4b:7d:58:8c:2e:95:dd: 14:96:d5:f3:19:5a:d2:fe:06:62:fe:eb:7e:de:8d:19:43:c3: 37:b6:c5:a0:31:ea:07:6b:52:79:ae:2d:c1:de:c7:40:21:2c: 4e:ac:82:c5:48:9b:b0:e4:f2:7a:aa:c6:af:1f:6c:da:b9:d1: 06:61:7f:5e:7b:9c:79:43:0f:7f:15:1a:a3:73:59:22:ec:0d: b3:92:21:f9:7e:53:5b:97:f6:91:0e:f9:e6:d7:4e:63:cc:a0: e6:2d:95:13:a1:e1:12:d3:44:66:31:87:f7:9b:58:cc:90:4e: 5c:27:1f:ee:ff:fa:7c:8e:18:cb:6b:2e:f2:7c:23:c6:31:2c: bf:3c:49:65:e8:2e:cb:50:1a:a9:55:f2:11:9d:ce:09:54:42: 09:3c:0f:02:d7:ef:ad:62:9e:ba:bc:8d:1d:ff:4f:88:c4:cd: 93:9e:00:bb:e0:e1:fa:0a:fd:50:05:2a:f4:1f:6c:f2:09:84: a8:6d:83:e5:89:bf:13:19:c0:51:08:31:4b:95:35:e1:38:d7: d4:8b:81:1d:99:7f:88:ec:ee:e0:22:9f:e9:60:ed:c1:2b:09: bd:4c:d2:82:bf:78:b9:1c:cb:cb:61:f0:6c:26:05:b1:9d:20: 4b:73:80:ea -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUWaA7aV86ebS1FvOA3+oWq6yiOyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTUwNjUwNDVaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDBkZDM5YTliN2ZjNTQxNjAzZmM3ODdmMGMzNDdiMWRjNGUxNWU1NzZlNDUw NDVmYWNiOGVmMzI2M2E0NjRmOGQxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOSHABrEEK4nIDtPKdJGPUFq3L2ZcVWc5+oA2wSaI6BtNybmM4P0hJ7UHQid iXvI8PZ+NtoRB5Fc9c1sla/VDQ4rDF4nlHgWchTZiB9cQxOM6KxZcRGvQv1YcIQN yKwZnAmqp3Hyr7xtzeWzOaanfjNribIJ5NdB9282ze0mGXyV243cSN7W0WHOk3BO VyRqmTN3W+0F2pJEtN82K+5wIhVdHghxwrQHkmRTrXecE1lD+nWOaY9P+CtvXKPN X/axUJN0zmZ9IWfe7MwffsaRN1lZjWvgMKSLhz3+eTuIr7qRPdcyLToGUb2J2qj6 xRwbCqjD8QYUQ3ySn9c1nFJB2qMCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSUhZjg Gf46gzelQslnw+w91i2yXjAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv N2RjOTBlMjYtMDVhYS00MGM4LWJiZDAtOTY3ZTA5NWQ2NDg1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB49BADAN BgkqhkiG9w0BAQsFAAOCAQEA0mLMdTNuo/yq+JNLfViMLpXdFJbV8xla0v4GYv7r ft6NGUPDN7bFoDHqB2tSea4twd7HQCEsTqyCxUibsOTyeqrGrx9s2rnRBmF/Xnuc eUMPfxUao3NZIuwNs5Ih+X5TW5f2kQ755tdOY8yg5i2VE6HhEtNEZjGH95tYzJBO XCcf7v/6fI4Yy2su8nwjxjEsvzxJZeguy1AaqVXyEZ3OCVRCCTwPAtfvrWKeuryN Hf9PiMTNk54Au+Dh+gr9UAUq9B9s8gmEqG2D5Ym/ExnAUQgxS5U14TjX1IuBHZl/ iOzu4CKf6WDtwSsJvUzSgr94uRzLy2HwbCYFsZ0gS3OA6g== -----END CERTIFICATE-----Generated at Sat Dec 6 10:59:37 2025 by rpki-client