This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8c7710c7-6ab8-4545-b04c-0bbeaa573eae.roa File: 8c7710c7-6ab8-4545-b04c-0bbeaa573eae.roa (raw, json) Hash identifier: ESUi8a1sd8M/3B6XY5RofUZIlAUWnpFx0N000ZCqpQQ= Subject key identifier: 8B:F7:1E:DE:4B:05:FD:73:1A:B5:68:CE:79:24:DC:BA:B2:CE:EC:FF Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 772881307D07832AA9636BA2B2A97D7B9B0F776F Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8c7710c7-6ab8-4545-b04c-0bbeaa573eae.roa Signing time: Sun 16 Nov 2025 01:00:07 +0000 ROA not before: Sun 16 Nov 2025 01:00:07 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.112.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:28:81:30:7d:07:83:2a:a9:63:6b:a2:b2:a9:7d:7b:9b:0f:77:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 16 01:00:07 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=ae8de4d6c0d05dc735bfbc260732b92403b0d4930630456d4d2b8808590b34b9, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f2:d8:4a:ab:de:5b:cd:b3:06:22:ce:4c:bd: 1c:3d:84:70:f2:8d:1b:83:d8:84:9e:4f:c9:90:1c: 3e:44:13:03:18:6d:87:65:56:0b:3f:02:27:33:8a: 1b:b6:4e:3e:02:42:23:68:c0:fa:ef:69:30:f1:9e: 7e:76:1f:ef:62:62:a4:09:06:bd:0a:c5:9b:91:35: e6:62:bc:9e:18:91:bb:9f:d3:c7:27:94:d3:c3:d1: 74:71:c6:65:eb:76:46:1d:fc:09:2d:fd:05:ac:29: bc:71:cb:b9:12:05:ec:df:23:84:0f:c0:31:25:bc: c4:5c:a8:fa:fe:d6:d6:28:fe:b6:ad:07:9f:26:54: 04:f5:11:52:ad:70:7a:15:32:e1:be:80:ab:fc:df: ca:33:f6:ee:aa:89:8a:14:74:8f:79:e8:86:bc:d8: b9:ce:6f:50:3a:be:ff:f6:2c:23:a8:c0:1b:12:a7: ce:1b:3d:96:31:8b:60:2d:05:81:87:ae:7c:71:c1: 49:b3:a6:38:38:0d:ba:2a:23:2a:db:38:1b:b5:18: 49:3c:69:91:8a:1f:3b:63:b5:25:63:af:ac:dd:50: 66:6c:16:de:8d:89:9b:d8:a1:28:b7:f2:54:e7:36: 4c:29:15:b8:79:f0:32:5e:80:10:1e:18:da:4b:44: ba:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F7:1E:DE:4B:05:FD:73:1A:B5:68:CE:79:24:DC:BA:B2:CE:EC:FF X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8c7710c7-6ab8-4545-b04c-0bbeaa573eae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.112.0.0/16 Signature Algorithm: sha256WithRSAEncryption a5:94:12:74:d0:d0:7f:01:98:ff:49:67:ec:ae:65:59:07:e4: e5:90:24:ce:42:21:f5:9e:d9:5b:68:1a:29:a0:a7:5f:fa:8c: 75:a7:13:3b:b3:14:1a:ae:f9:45:a7:ec:4c:27:eb:7c:37:d0: 8b:fd:d9:db:ec:07:97:bf:0b:30:9f:1c:53:4a:69:28:17:9c: a6:39:03:02:41:af:ba:d1:78:e3:8a:8a:e0:aa:24:f5:23:ad: aa:88:e1:22:f4:55:4e:db:b5:26:c5:fa:d3:ad:70:7d:82:30: 33:bf:e2:6e:29:7f:57:13:af:03:c5:8d:68:42:41:e4:94:71: 95:ab:d1:bf:0c:88:50:9d:fc:20:b2:6d:12:56:84:03:2e:17: a5:70:4c:c4:d6:04:80:e6:82:96:24:cc:1e:08:04:38:32:07: 7f:dc:40:16:2a:e3:25:11:77:c9:72:60:b9:4a:64:81:55:72: 92:db:01:4f:d2:3c:8a:40:f8:90:be:af:15:73:af:45:bb:61: 9d:60:e2:aa:ef:a6:f6:1f:41:a0:67:92:3e:dc:b1:21:03:ed: 9c:64:d3:47:e5:b3:7f:b4:6e:26:0e:1c:06:e5:f0:a9:c7:72: e1:c9:b2:41:ff:ce:d3:7c:9e:39:50:9e:ba:1c:fd:d0:0c:81: ea:54:0a:90 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUdyiBMH0HgyqpY2uisql9e5sPd28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTYwMTAwMDdaFw0yNTEyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQGFlOGRlNGQ2YzBkMDVkYzczNWJmYmMyNjA3MzJiOTI0MDNiMGQ0OTMwNjMw NDU2ZDRkMmI4ODA4NTkwYjM0YjkxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMny2Eqr3lvNswYizky9HD2EcPKNG4PYhJ5PyZAcPkQTAxhth2VWCz8CJzOK G7ZOPgJCI2jA+u9pMPGefnYf72JipAkGvQrFm5E15mK8nhiRu5/TxyeU08PRdHHG Zet2Rh38CS39BawpvHHLuRIF7N8jhA/AMSW8xFyo+v7W1ij+tq0HnyZUBPURUq1w ehUy4b6Aq/zfyjP27qqJihR0j3nohrzYuc5vUDq+//YsI6jAGxKnzhs9ljGLYC0F gYeufHHBSbOmODgNuiojKts4G7UYSTxpkYofO2O1JWOvrN1QZmwW3o2Jm9ihKLfy VOc2TCkVuHnwMl6AEB4Y2ktEugMCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBSL9x7e SwX9cxq1aM55JNy6ss7s/zAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv OGM3NzEwYzctNmFiOC00NTQ1LWIwNGMtMGJiZWFhNTczZWFlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADNwMA0G CSqGSIb3DQEBCwUAA4IBAQCllBJ00NB/AZj/SWfsrmVZB+TlkCTOQiH1ntlbaBop oKdf+ox1pxM7sxQarvlFp+xMJ+t8N9CL/dnb7AeXvwswnxxTSmkoF5ymOQMCQa+6 0XjjiorgqiT1I62qiOEi9FVO27UmxfrTrXB9gjAzv+JuKX9XE68DxY1oQkHklHGV q9G/DIhQnfwgsm0SVoQDLhelcEzE1gSA5oKWJMweCAQ4Mgd/3EAWKuMlEXfJcmC5 SmSBVXKS2wFP0jyKQPiQvq8Vc69Fu2GdYOKq76b2H0GgZ5I+3LEhA+2cZNNH5bN/ tG4mDhwG5fCpx3LhybJB/87TfJ45UJ66HP3QDIHqVAqQ -----END CERTIFICATE-----Generated at Sat Dec 6 21:33:28 2025 by rpki-client