This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/81e19e5f-8cac-4cc7-8c10-c589c96920d0.roa File: 81e19e5f-8cac-4cc7-8c10-c589c96920d0.roa (raw, json) Hash identifier: Mph0kF7GRVaQoA7KmYnqyiXmIunU4ZbBojjQBl3PK6Y= Subject key identifier: C4:54:B7:60:E6:63:3E:C8:87:BD:0D:81:6A:E8:A7:11:66:D4:55:A6 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 09A9C7FD510FFD80572EB32CB87387F0FB233C17 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/81e19e5f-8cac-4cc7-8c10-c589c96920d0.roa Signing time: Sun 16 Nov 2025 01:00:15 +0000 ROA not before: Sun 16 Nov 2025 01:00:15 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.17.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a9:c7:fd:51:0f:fd:80:57:2e:b3:2c:b8:73:87:f0:fb:23:3c:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 16 01:00:15 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=93282ef9e0450dfd7f2972a345b3da7cfe9b230b1583dcb38235d0b610a73895, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0d:ce:5c:75:ce:d9:1a:11:a4:7a:fa:f9:d5: ba:ca:5a:0d:ad:14:b2:62:b5:c1:92:cb:7a:07:48: da:fd:e1:46:7c:a6:b7:50:c5:41:60:0b:f1:88:65: 35:2a:e2:d5:eb:e0:de:d5:c0:6f:7a:4f:2e:0a:70: 38:98:3b:70:ee:31:7f:0a:01:ec:de:07:23:de:41: f5:7b:3f:5b:b8:69:d6:89:6a:21:40:43:b1:31:4b: a0:f7:7b:d1:ea:d8:ab:83:02:39:a5:e2:ef:0e:01: 6f:41:67:a3:c6:14:40:23:71:bc:ee:b0:20:fd:82: ba:17:8a:72:a6:95:79:b9:1d:1d:f5:5e:c8:8b:d2: a4:58:33:63:8c:b4:d1:4c:55:61:ee:bb:b0:d2:09: f9:04:cb:cf:b8:e0:57:6e:55:bd:77:63:72:f6:77: b5:65:a8:2d:c4:71:15:aa:13:e9:0f:84:61:ad:d7: 85:14:51:65:c9:19:ca:bb:d6:ee:21:bf:58:11:3c: e0:d1:91:84:cd:3b:f7:1f:ea:e5:9d:7b:a0:6d:a1: f9:77:3b:b1:15:72:db:72:04:8c:e2:d2:a4:86:32: d3:7d:b4:0c:05:01:91:2d:07:f5:eb:d0:62:1f:31: 1d:84:90:78:09:55:e2:06:8c:78:1b:f7:46:32:be: d6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:54:B7:60:E6:63:3E:C8:87:BD:0D:81:6A:E8:A7:11:66:D4:55:A6 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/81e19e5f-8cac-4cc7-8c10-c589c96920d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.17.1.0/24 Signature Algorithm: sha256WithRSAEncryption 93:cc:a7:ef:16:c4:fb:55:b7:9b:3b:84:e3:a2:d2:10:c2:77: 04:e9:c5:74:90:f9:81:91:2f:81:57:2e:6d:91:af:82:e7:c6: 41:5c:e4:a5:4b:5c:72:7c:8f:c5:ec:89:c5:89:eb:3a:b9:69: 5c:ca:4f:64:d5:01:34:19:e8:86:5d:1d:81:fd:e2:e3:21:ca: 63:37:44:8a:63:c6:0e:c0:64:2e:7d:c3:a0:cf:1a:c7:62:1b: 77:db:00:33:fc:1a:97:65:46:db:79:b4:91:1f:b5:51:e0:d3: 3c:9a:93:02:1a:48:d1:0f:ff:52:1d:04:47:7f:f6:df:64:5c: 9b:3b:e1:21:98:37:83:14:68:3f:74:a5:4f:a3:c8:61:d9:73: 77:8f:d2:68:a1:37:3e:65:35:ad:b5:7d:c4:6a:4a:27:58:86: f7:19:de:bd:47:53:e3:07:9a:b6:41:ba:a3:7f:ed:0f:dd:d4: 8e:d5:ca:b3:e1:47:77:f3:56:0f:69:3c:1d:de:cb:65:30:67: 99:37:d1:a6:8b:2d:09:25:2e:16:80:91:6e:49:74:29:84:ba: 80:00:ad:60:11:16:ba:7e:43:a1:48:b5:d0:b6:53:e8:6f:ff: 46:d4:ff:a7:fd:63:ab:7c:b5:71:53:f2:8e:9b:8d:bd:4f:fa: 92:41:da:51 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUCanH/VEP/YBXLrMsuHOH8PsjPBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTYwMTAwMTVaFw0yNTEyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQDkzMjgyZWY5ZTA0NTBkZmQ3ZjI5NzJhMzQ1YjNkYTdjZmU5YjIzMGIxNTgz ZGNiMzgyMzVkMGI2MTBhNzM4OTUxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQNzlx1ztkaEaR6+vnVuspaDa0UsmK1wZLLegdI2v3hRnymt1DFQWAL8Yhl NSri1evg3tXAb3pPLgpwOJg7cO4xfwoB7N4HI95B9Xs/W7hp1olqIUBDsTFLoPd7 0erYq4MCOaXi7w4Bb0Fno8YUQCNxvO6wIP2CuheKcqaVebkdHfVeyIvSpFgzY4y0 0UxVYe67sNIJ+QTLz7jgV25VvXdjcvZ3tWWoLcRxFaoT6Q+EYa3XhRRRZckZyrvW 7iG/WBE84NGRhM079x/q5Z17oG2h+Xc7sRVy23IEjOLSpIYy0320DAUBkS0H9evQ Yh8xHYSQeAlV4gaMeBv3RjK+1hkCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTEVLdg 5mM+yIe9DYFq6KcRZtRVpjAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ODFlMTllNWYtOGNhYy00Y2M3LThjMTAtYzU4OWM5NjkyMGQwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADMRATAN BgkqhkiG9w0BAQsFAAOCAQEAk8yn7xbE+1W3mzuE46LSEMJ3BOnFdJD5gZEvgVcu bZGvgufGQVzkpUtccnyPxeyJxYnrOrlpXMpPZNUBNBnohl0dgf3i4yHKYzdEimPG DsBkLn3DoM8ax2Ibd9sAM/wal2VG23m0kR+1UeDTPJqTAhpI0Q//Uh0ER3/232Rc mzvhIZg3gxRoP3SlT6PIYdlzd4/SaKE3PmU1rbV9xGpKJ1iG9xnevUdT4weatkG6 o3/tD93UjtXKs+FHd/NWD2k8Hd7LZTBnmTfRpostCSUuFoCRbkl0KYS6gACtYBEW un5DoUi10LZT6G//RtT/p/1jq3y1cVPyjpuNvU/6kkHaUQ== -----END CERTIFICATE-----Generated at Sat Dec 6 17:30:49 2025 by rpki-client