This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7f244d46-87ad-4224-b593-bd81b505345a.roa File: 7f244d46-87ad-4224-b593-bd81b505345a.roa (raw, json) Hash identifier: RYRx6mDKSbxQ5tyi0mKflD2XZFFlUKOwB/y51LjVqqU= Subject key identifier: 46:8D:5C:3A:9E:4D:47:4A:4A:6D:7D:B6:DD:FB:DD:A8:D0:19:7D:7F Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 6AF4B33BC5E9C0D86EA790B660A2B50B01550135 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7f244d46-87ad-4224-b593-bd81b505345a.roa Signing time: Tue 18 Nov 2025 00:40:33 +0000 ROA not before: Tue 18 Nov 2025 00:40:33 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 83.119.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f4:b3:3b:c5:e9:c0:d8:6e:a7:90:b6:60:a2:b5:0b:01:55:01:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 18 00:40:33 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=f0a9ca3eba3984c88de17c945eb637a55b3e4e65ed23d3043d087e191b8db94b, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8f:0d:dd:eb:45:d3:d3:ba:66:ea:47:c1:c5: 72:69:20:ab:ce:59:5e:6f:e1:23:86:ff:17:92:93: ed:3e:ba:bd:ee:80:43:eb:ab:00:0d:25:1b:3a:eb: a6:fe:f3:5e:d8:83:d6:b2:a5:4f:5d:31:5a:a0:3a: 9b:86:1f:dd:bb:c0:cb:15:68:60:b0:09:3f:26:f3: a7:51:18:69:f1:b5:7a:b1:05:cb:1c:0a:b5:ee:a4: c1:83:bf:fe:c5:41:9e:bb:b8:0d:7c:11:d6:f3:41: 6a:a3:da:4a:df:56:83:20:b2:80:ac:ec:de:fd:76: a0:42:3e:92:12:40:0b:e3:6e:ac:45:61:5a:cd:c7: 90:16:f6:2a:32:48:55:30:c7:45:52:af:1f:a8:5d: 4e:a6:a1:ea:5d:e5:18:bc:92:f2:e5:10:41:1e:d3: 0c:fa:04:38:c4:89:b3:99:42:53:e4:2e:6f:a0:21: d5:29:f4:16:0d:ff:f5:cc:17:d8:79:03:fd:c0:98: 45:3f:a1:41:6b:f0:96:70:95:57:9c:ed:90:b0:90: 17:9a:63:d6:9f:3c:32:63:59:ab:65:87:cc:b2:08: d4:0d:16:45:2e:60:b9:a0:34:ce:10:4b:ce:7a:05: ee:4a:7c:a3:dd:13:9d:a1:b9:2f:89:3a:96:3e:d4: 42:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:8D:5C:3A:9E:4D:47:4A:4A:6D:7D:B6:DD:FB:DD:A8:D0:19:7D:7F X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7f244d46-87ad-4224-b593-bd81b505345a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.119.64.0/18 Signature Algorithm: sha256WithRSAEncryption ac:97:0b:07:5f:ae:ab:f0:2a:b4:97:4a:c1:ec:3e:fe:53:8c: 91:3d:a3:8b:59:d5:3c:2b:b4:bf:ab:b5:c9:b6:c8:c1:28:30: ed:06:e4:ff:d8:f9:23:81:4d:8d:b7:51:1c:62:de:f8:c6:6a: 21:1c:7c:07:cc:c8:d1:3c:36:e1:fe:f1:c8:bf:7f:2d:4a:b5: 82:b1:9b:3a:9c:33:bc:09:fb:93:01:70:d4:3a:e6:4b:5a:8e: d6:7d:db:dc:1a:bb:40:93:e0:31:8f:05:b5:64:1d:e0:1c:be: 7d:44:59:1a:67:80:c6:6c:f9:0e:52:6c:21:e3:4b:c1:ae:4a: 01:6e:68:ff:5b:82:a8:b6:b8:1f:97:0c:b8:52:ea:47:52:f8: bd:f8:13:69:8e:2d:e3:5f:35:d5:f8:88:af:28:48:76:37:cf: 64:0b:e8:71:b1:a9:3f:42:c0:16:69:7b:bb:99:5d:ee:87:ef: ae:82:0d:23:24:f6:16:9c:ef:68:6e:1c:a5:a5:e2:45:ff:ea: ef:dc:0d:f1:d5:93:ac:08:31:19:e8:75:59:d9:82:a8:35:57: 57:fc:33:d6:c4:43:49:4d:46:6f:3b:1a:a2:d0:03:e8:1e:80: c4:21:60:50:21:f8:75:74:d8:59:d0:f9:ba:9b:63:b1:96:0e: 22:db:b6:6e -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUavSzO8XpwNhup5C2YKK1CwFVATUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTgwMDQwMzNaFw0yNjAyMTYyMzU5NTlaMHoxSTBHBgNV BAUTQGYwYTljYTNlYmEzOTg0Yzg4ZGUxN2M5NDVlYjYzN2E1NWIzZTRlNjVlZDIz ZDMwNDNkMDg3ZTE5MWI4ZGI5NGIxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ6PDd3rRdPTumbqR8HFcmkgq85ZXm/hI4b/F5KT7T66ve6AQ+urAA0lGzrr pv7zXtiD1rKlT10xWqA6m4Yf3bvAyxVoYLAJPybzp1EYafG1erEFyxwKte6kwYO/ /sVBnru4DXwR1vNBaqPaSt9WgyCygKzs3v12oEI+khJAC+NurEVhWs3HkBb2KjJI VTDHRVKvH6hdTqah6l3lGLyS8uUQQR7TDPoEOMSJs5lCU+Qub6Ah1Sn0Fg3/9cwX 2HkD/cCYRT+hQWvwlnCVV5ztkLCQF5pj1p88MmNZq2WHzLII1A0WRS5guaA0zhBL znoF7kp8o90TnaG5L4k6lj7UQl8CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRGjVw6 nk1HSkptfbbd+92o0Bl9fzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv N2YyNDRkNDYtODdhZC00MjI0LWI1OTMtYmQ4MWI1MDUzNDVhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBlN3QDAN BgkqhkiG9w0BAQsFAAOCAQEArJcLB1+uq/AqtJdKwew+/lOMkT2ji1nVPCu0v6u1 ybbIwSgw7Qbk/9j5I4FNjbdRHGLe+MZqIRx8B8zI0Tw24f7xyL9/LUq1grGbOpwz vAn7kwFw1DrmS1qO1n3b3Bq7QJPgMY8FtWQd4By+fURZGmeAxmz5DlJsIeNLwa5K AW5o/1uCqLa4H5cMuFLqR1L4vfgTaY4t41811fiIryhIdjfPZAvocbGpP0LAFml7 u5ld7ofvroINIyT2FpzvaG4cpaXiRf/q79wN8dWTrAgxGeh1WdmCqDVXV/wz1sRD SU1GbzsaotAD6B6AxCFgUCH4dXTYWdD5uptjsZYOItu2bg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:54:33 2025 by rpki-client