This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9a08b99a-284f-4e69-83b1-fbfba94e7f22.roa File: 9a08b99a-284f-4e69-83b1-fbfba94e7f22.roa (raw, json) Hash identifier: wFzVaGYEH+hXW4HI7O04FUf9BLWhzSko/tbi3FHtZrU= Subject key identifier: 5C:D0:9A:D0:1C:31:68:6F:70:8B:8C:85:49:67:F8:60:39:82:0C:18 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 04C746B232C348768510CD62AA18321988307E8B Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9a08b99a-284f-4e69-83b1-fbfba94e7f22.roa Signing time: Sat 15 Nov 2025 06:50:22 +0000 ROA not before: Sat 15 Nov 2025 06:50:22 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 145.55.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:c7:46:b2:32:c3:48:76:85:10:cd:62:aa:18:32:19:88:30:7e:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 15 06:50:22 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=fc094eebc6fcee2371b61503fce6863728301415000c6deb42b965582863f4da, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:20:d2:5c:6d:d0:3b:84:8c:05:f9:85:64:52: e0:d5:09:2f:39:69:da:1c:f2:5b:79:22:1a:54:f9: 05:af:df:33:f5:5d:5d:df:06:ad:79:0b:d5:04:f3: 91:e4:29:6f:58:c9:00:ad:5f:a2:8f:0b:43:b9:52: 62:b7:13:ca:e7:25:06:1f:1a:af:05:9b:19:44:88: b2:dd:90:29:1f:ea:ce:2e:e3:89:0f:45:60:07:39: 1a:a7:1a:4b:ee:44:5b:60:39:01:59:97:3b:1e:90: 3d:37:51:34:d3:58:e0:3e:ed:b2:11:3d:1c:8d:53: f6:34:2d:9b:e5:a5:06:73:f7:90:c7:f4:cd:cf:aa: 81:8b:cc:dd:4e:52:7e:2c:95:6f:c3:0f:f1:c9:4e: f4:77:da:a2:3f:12:e8:e2:a6:d9:30:56:91:b8:5d: 1b:97:01:5a:f9:1d:8e:1a:61:ba:ac:0c:d0:95:3e: e2:9f:2a:47:af:7a:a1:79:c6:68:17:75:a8:04:c4: a0:e8:cf:84:ca:73:6e:a9:28:90:cb:53:b9:de:62: aa:9e:11:20:10:0b:3e:d2:e3:81:52:63:8f:65:41: 6a:f5:3a:64:99:38:79:1f:9c:d0:c8:85:e1:55:22: cc:70:ac:90:d2:2e:a4:4f:56:cb:52:2a:43:0e:da: 70:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D0:9A:D0:1C:31:68:6F:70:8B:8C:85:49:67:F8:60:39:82:0C:18 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9a08b99a-284f-4e69-83b1-fbfba94e7f22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.55.0.0/16 Signature Algorithm: sha256WithRSAEncryption c3:95:53:e5:44:f0:02:13:aa:17:4d:f9:b4:fa:03:3f:15:19: 6e:c2:21:2e:ba:86:67:23:1c:31:88:ef:e2:31:27:2e:2d:2b: c7:fe:5b:de:43:50:65:de:a6:73:90:b6:83:27:c5:75:c9:66: c0:5a:a9:15:f2:10:4e:b5:fa:ff:95:eb:93:00:6d:97:e0:02: a1:d4:72:ef:08:8c:07:e2:b1:84:cc:c6:64:ce:74:33:84:7d: 43:03:ad:97:c2:78:5a:26:ef:f8:46:1c:50:34:7e:5f:02:22: be:4a:e8:e3:15:00:18:e3:31:ee:56:42:fa:17:2d:e8:2a:81: 4e:9d:e6:19:da:3b:4f:45:55:27:4b:c2:be:c9:df:0c:79:ec: 7c:25:09:b7:7e:ed:8d:4f:ac:5d:7d:7f:83:df:27:d1:b1:86: c1:60:48:bc:b0:ef:a2:95:1f:24:68:3a:cd:0a:da:28:9c:b6: b8:c5:52:79:74:de:29:89:bd:87:e7:18:6f:33:39:2c:51:c2: d7:23:8e:cb:c5:fc:ed:0d:72:a8:65:1a:4a:9f:c4:e9:93:ba: ab:53:9f:f6:fe:b3:14:60:b1:54:94:d9:1a:f8:70:63:44:e6: 2d:59:59:8c:8a:55:a5:e1:6d:64:e1:d5:be:c7:a6:68:d5:90: df:b4:33:ea -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUBMdGsjLDSHaFEM1iqhgyGYgwfoswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTUwNjUwMjJaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGZjMDk0ZWViYzZmY2VlMjM3MWI2MTUwM2ZjZTY4NjM3MjgzMDE0MTUwMDBj NmRlYjQyYjk2NTU4Mjg2M2Y0ZGExLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKUg0lxt0DuEjAX5hWRS4NUJLzlp2hzyW3kiGlT5Ba/fM/VdXd8GrXkL1QTz keQpb1jJAK1foo8LQ7lSYrcTyuclBh8arwWbGUSIst2QKR/qzi7jiQ9FYAc5Gqca S+5EW2A5AVmXOx6QPTdRNNNY4D7tshE9HI1T9jQtm+WlBnP3kMf0zc+qgYvM3U5S fiyVb8MP8clO9Hfaoj8S6OKm2TBWkbhdG5cBWvkdjhphuqwM0JU+4p8qR696oXnG aBd1qATEoOjPhMpzbqkokMtTud5iqp4RIBALPtLjgVJjj2VBavU6ZJk4eR+c0MiF 4VUizHCskNIupE9Wy1IqQw7acP0CAwEAAaOCAiAwggIcMB0GA1UdDgQWBBRc0JrQ HDFob3CLjIVJZ/hgOYIMGDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv OWEwOGI5OWEtMjg0Zi00ZTY5LTgzYjEtZmJmYmE5NGU3ZjIyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAJE3MA0G CSqGSIb3DQEBCwUAA4IBAQDDlVPlRPACE6oXTfm0+gM/FRluwiEuuoZnIxwxiO/i MScuLSvH/lveQ1Bl3qZzkLaDJ8V1yWbAWqkV8hBOtfr/leuTAG2X4AKh1HLvCIwH 4rGEzMZkznQzhH1DA62XwnhaJu/4RhxQNH5fAiK+SujjFQAY4zHuVkL6Fy3oKoFO neYZ2jtPRVUnS8K+yd8Meex8JQm3fu2NT6xdfX+D3yfRsYbBYEi8sO+ilR8kaDrN CtoonLa4xVJ5dN4pib2H5xhvMzksUcLXI47LxfztDXKoZRpKn8Tpk7qrU5/2/rMU YLFUlNka+HBjROYtWVmMilWl4W1k4dW+x6Zo1ZDftDPq -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:38 2025 by rpki-client