This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/81e19e5f-8cac-4cc7-8c10-c589c96920d0.roa File: 81e19e5f-8cac-4cc7-8c10-c589c96920d0.roa (raw, json) Hash identifier: PDDXhclg+QYhpYISIof8JudGPXrXXwTn0FiuzYg3gMU= Subject key identifier: 04:E7:FE:F8:87:2C:A7:3A:7A:DA:09:AE:9F:70:05:F7:29:F6:F9:AC Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 06DB4DA77E84A5BF8D852FA2A354AE2EF393B69E Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/81e19e5f-8cac-4cc7-8c10-c589c96920d0.roa Signing time: Thu 11 Dec 2025 01:00:21 +0000 ROA not before: Thu 11 Dec 2025 01:00:21 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.17.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:db:4d:a7:7e:84:a5:bf:8d:85:2f:a2:a3:54:ae:2e:f3:93:b6:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 11 01:00:21 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=3311f09f48d4768ae8a28d0661175e22a7cd2e071fbe5cb0eb22b5ae18b12343, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bb:40:49:96:93:dd:89:ad:4c:bf:fe:de:6f: 54:26:06:4b:3c:61:33:fb:70:6e:a1:51:c9:4a:2e: 46:9b:d0:92:dc:ff:1e:b2:c4:49:7a:76:aa:88:f6: e0:9e:af:1d:fe:28:d5:2d:58:51:d5:35:d7:7e:87: ba:84:a5:9f:59:2e:76:74:b8:fe:df:3e:1e:7d:e9: d2:b2:f4:38:37:5f:03:75:14:89:c1:c5:ae:00:f7: b1:83:ff:a3:25:60:2e:4f:c9:cb:ff:81:af:b8:28: 01:49:de:90:57:f3:dc:cc:65:1a:c2:68:e3:2c:76: 35:81:f4:49:9f:90:e3:e0:92:7d:92:d4:ae:a9:bc: e6:8f:98:c0:64:76:6f:0c:c7:8b:0c:a6:64:b8:83: d8:97:99:60:33:e0:ab:ef:44:d5:84:58:72:8c:fb: 8b:4d:ab:f6:2e:af:10:28:4c:96:9d:5b:86:2b:1c: 96:b1:5e:8a:7b:95:51:29:7e:4d:46:b9:56:0f:ac: 8a:e5:53:1c:8b:e1:77:44:80:b5:42:39:c2:53:ec: 41:66:e1:f9:0a:c5:f3:b9:99:33:85:0e:68:66:b2: 53:e7:14:82:80:ae:a6:08:7e:1c:59:aa:04:f2:de: 9d:da:f1:07:45:6c:7d:4f:96:d1:b3:e4:ea:f6:83: 6a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E7:FE:F8:87:2C:A7:3A:7A:DA:09:AE:9F:70:05:F7:29:F6:F9:AC X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/81e19e5f-8cac-4cc7-8c10-c589c96920d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.17.1.0/24 Signature Algorithm: sha256WithRSAEncryption 44:c9:ee:f5:6a:c5:59:ac:26:fc:4d:fb:a3:71:22:b8:67:8e: b8:02:eb:66:5e:05:74:3b:ef:58:be:8d:b0:d8:8e:91:96:fe: ae:13:7d:88:9b:a9:a6:37:15:73:d0:5d:05:52:39:41:92:41: bd:6b:14:4d:c6:b3:27:62:7b:c8:0b:c4:bd:59:88:6d:d5:93: 40:a9:c2:ba:1e:b1:08:77:e1:59:af:04:d7:4b:d8:c4:f4:f8: 0b:31:55:4d:e5:d2:a9:a5:00:99:f7:3f:ae:12:f7:00:a1:fe: 4c:6c:1f:ec:9c:ea:9d:da:57:f8:8f:b5:d4:ed:78:41:5f:6c: b3:cd:8d:33:1e:52:7a:01:fc:a7:ce:e7:1d:2d:c8:57:4f:3e: 74:c6:30:e3:e0:d9:e8:48:68:11:57:3e:a1:01:96:ca:15:8b: 66:65:1f:0e:f5:b8:4d:f3:f7:a4:2b:58:f3:d4:30:85:93:50: 2b:7b:70:f3:bf:88:a4:5b:0b:64:7b:75:53:3a:c2:fe:42:ac: 05:1e:b4:b7:62:d2:f5:35:9d:1d:d8:2d:c8:a0:4f:8e:ee:f3: 7e:d8:78:ac:b0:3b:bf:7c:03:a7:13:c6:07:65:3a:38:f0:19: d8:2f:3a:57:8b:10:64:d7:25:5f:ec:06:3a:5d:ef:d9:2a:e1: b5:f7:68:af -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUBttNp36Epb+NhS+io1SuLvOTtp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTEwMTAwMjFaFw0yNjAzMTEyMzU5NTlaMHoxSTBHBgNV BAUTQDMzMTFmMDlmNDhkNDc2OGFlOGEyOGQwNjYxMTc1ZTIyYTdjZDJlMDcxZmJl NWNiMGViMjJiNWFlMThiMTIzNDMxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALO7QEmWk92JrUy//t5vVCYGSzxhM/twbqFRyUouRpvQktz/HrLESXp2qoj2 4J6vHf4o1S1YUdU1136HuoSln1kudnS4/t8+Hn3p0rL0ODdfA3UUicHFrgD3sYP/ oyVgLk/Jy/+Br7goAUnekFfz3MxlGsJo4yx2NYH0SZ+Q4+CSfZLUrqm85o+YwGR2 bwzHiwymZLiD2JeZYDPgq+9E1YRYcoz7i02r9i6vEChMlp1bhisclrFeinuVUSl+ TUa5Vg+siuVTHIvhd0SAtUI5wlPsQWbh+QrF87mZM4UOaGayU+cUgoCupgh+HFmq BPLendrxB0VsfU+W0bPk6vaDapsCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQE5/74 hyynOnraCa6fcAX3Kfb5rDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ODFlMTllNWYtOGNhYy00Y2M3LThjMTAtYzU4OWM5NjkyMGQwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADMRATAN BgkqhkiG9w0BAQsFAAOCAQEARMnu9WrFWawm/E37o3EiuGeOuALrZl4FdDvvWL6N sNiOkZb+rhN9iJuppjcVc9BdBVI5QZJBvWsUTcazJ2J7yAvEvVmIbdWTQKnCuh6x CHfhWa8E10vYxPT4CzFVTeXSqaUAmfc/rhL3AKH+TGwf7JzqndpX+I+11O14QV9s s82NMx5SegH8p87nHS3IV08+dMYw4+DZ6EhoEVc+oQGWyhWLZmUfDvW4TfP3pCtY 89QwhZNQK3tw87+IpFsLZHt1UzrC/kKsBR60t2LS9TWdHdgtyKBPju7zfth4rLA7 v3wDpxPGB2U6OPAZ2C86V4sQZNclX+wGOl3v2Srhtfdorw== -----END CERTIFICATE-----Generated at Tue Dec 16 00:31:40 2025 by rpki-client