This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/80e298e3-975b-4cea-9586-8d04a37a53a2.roa File: 80e298e3-975b-4cea-9586-8d04a37a53a2.roa (raw, json) Hash identifier: mZqziXhwnFZmQyCweK3eG2sPeoCo6lVc0IDja8ChTRM= Subject key identifier: 05:31:7D:37:1D:E6:F1:D1:E3:50:7F:F9:AD:61:DE:0F:AA:FA:19:F5 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 509FC3D24D7AE1DA3AD6DEA3C0433179FFA8420D Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/80e298e3-975b-4cea-9586-8d04a37a53a2.roa Signing time: Fri 05 Dec 2025 01:00:09 +0000 ROA not before: Fri 05 Dec 2025 01:00:09 +0000 ROA not after: Thu 05 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 57.93.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:9f:c3:d2:4d:7a:e1:da:3a:d6:de:a3:c0:43:31:79:ff:a8:42:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 5 01:00:09 2025 GMT Not After : Mar 5 23:59:59 2026 GMT Subject: serialNumber=7a0034b5913c79caa009d4eeb43180db4db97064cc32c9e321fc77b8810a5183, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a1:6c:a3:68:c5:53:ef:7c:f6:52:17:23:da: 37:d0:e6:52:d5:ba:86:5f:46:6a:89:f7:98:eb:4b: 82:d6:f5:b1:c8:f6:dc:69:5d:0b:38:d2:f5:3a:1f: 63:95:fb:7b:5c:cd:d8:87:8d:82:6e:45:75:ae:f5: 5b:2c:26:30:74:a3:06:0c:76:3c:3c:80:a1:c4:f2: 8f:66:57:a1:b0:7d:67:8a:75:c3:73:ac:f2:47:72: 64:80:ca:be:95:45:e2:20:ac:80:6a:05:0e:75:3b: e8:62:b8:85:5a:c3:1a:05:15:0c:a6:d0:4d:aa:a3: 7b:cc:13:29:b9:ef:d2:39:75:ce:64:33:b5:5b:c2: 93:55:73:a7:f7:42:03:30:98:ec:82:69:b0:73:a5: 39:b6:06:76:d4:4a:40:05:33:2c:6f:34:09:dd:35: 4d:b2:6d:6f:a1:9d:81:bf:43:5c:e4:39:3e:85:d5: 87:fa:34:69:63:be:5e:1b:fd:ff:96:1f:45:2a:d5: 72:49:7a:90:d5:69:a2:a8:9d:64:c9:45:b5:ad:d2: 5c:48:33:a0:ca:7d:ae:8e:3a:50:33:80:c1:78:aa: a7:02:29:6f:ef:fc:54:26:a6:ca:3c:a5:64:69:c7: f2:08:93:3c:8f:84:ac:d9:c8:09:10:b3:27:d8:68: 21:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:31:7D:37:1D:E6:F1:D1:E3:50:7F:F9:AD:61:DE:0F:AA:FA:19:F5 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/80e298e3-975b-4cea-9586-8d04a37a53a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.93.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7d:dc:cd:be:91:75:59:8f:4e:62:ac:d3:fc:ed:3e:99:25:8a: bb:5a:f0:d0:af:b0:b6:b4:39:5b:be:40:32:02:61:9b:4d:0e: fb:21:15:b4:03:55:ae:3a:a9:35:86:07:89:d5:db:e9:59:8e: 46:f0:5e:ff:ce:5a:ae:de:c7:ab:86:e9:2f:a9:83:71:7b:01: 38:d3:c6:f6:f7:90:c2:58:c4:d9:40:bd:65:4e:c3:39:78:e6: 80:a4:3c:1a:8f:74:c0:e5:25:98:54:66:7e:72:fa:9e:c2:92: d6:e6:4d:f6:2d:9f:96:ee:5c:23:56:f2:56:15:93:99:90:45: 4d:f7:fe:34:0f:d5:8d:e3:48:a1:58:dc:31:9a:3c:b4:dc:58: 76:73:08:3f:6a:e3:5c:64:89:b3:7e:4b:4f:cd:af:a1:1a:0a: 9a:a7:1c:6c:5d:0b:7b:d1:57:77:e0:76:a1:ce:9b:d8:d2:d2: 10:d3:d2:d2:da:91:19:5b:20:1c:d7:f1:dd:3d:66:64:dd:73: bd:9e:53:ec:b7:18:fc:db:33:db:1b:d2:31:34:92:d4:93:a7: 8f:61:1b:c9:ea:be:e7:9b:3b:35:1d:8e:a3:e9:b3:22:6e:50: 92:08:ad:c8:7d:f8:be:9b:8f:e9:76:e4:55:71:73:30:f7:ad: f4:c2:34:c9 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUUJ/D0k164do61t6jwEMxef+oQg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMDUwMTAwMDlaFw0yNjAzMDUyMzU5NTlaMHoxSTBHBgNV BAUTQDdhMDAzNGI1OTEzYzc5Y2FhMDA5ZDRlZWI0MzE4MGRiNGRiOTcwNjRjYzMy YzllMzIxZmM3N2I4ODEwYTUxODMxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMyhbKNoxVPvfPZSFyPaN9DmUtW6hl9Gaon3mOtLgtb1scj23GldCzjS9Tof Y5X7e1zN2IeNgm5Fda71WywmMHSjBgx2PDyAocTyj2ZXobB9Z4p1w3Os8kdyZIDK vpVF4iCsgGoFDnU76GK4hVrDGgUVDKbQTaqje8wTKbnv0jl1zmQztVvCk1Vzp/dC AzCY7IJpsHOlObYGdtRKQAUzLG80Cd01TbJtb6Gdgb9DXOQ5PoXVh/o0aWO+Xhv9 /5YfRSrVckl6kNVpoqidZMlFta3SXEgzoMp9ro46UDOAwXiqpwIpb+/8VCamyjyl ZGnH8giTPI+ErNnICRCzJ9hoIdkCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBQFMX03 Hebx0eNQf/mtYd4PqvoZ9TAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ODBlMjk4ZTMtOTc1Yi00Y2VhLTk1ODYtOGQwNGEzN2E1M2EyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADldMA0G CSqGSIb3DQEBCwUAA4IBAQB93M2+kXVZj05irNP87T6ZJYq7WvDQr7C2tDlbvkAy AmGbTQ77IRW0A1WuOqk1hgeJ1dvpWY5G8F7/zlqu3serhukvqYNxewE408b295DC WMTZQL1lTsM5eOaApDwaj3TA5SWYVGZ+cvqewpLW5k32LZ+W7lwjVvJWFZOZkEVN 9/40D9WN40ihWNwxmjy03Fh2cwg/auNcZImzfktPza+hGgqapxxsXQt70Vd34Hah zpvY0tIQ09LS2pEZWyAc1/HdPWZk3XO9nlPstxj82zPbG9IxNJLUk6ePYRvJ6r7n mzs1HY6j6bMiblCSCK3Iffi+m4/pduRVcXMw9630wjTJ -----END CERTIFICATE-----Generated at Sat Dec 6 11:48:30 2025 by rpki-client