This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9adb83e6-fa36-47fa-b5be-856fd7247898.roa File: 9adb83e6-fa36-47fa-b5be-856fd7247898.roa (raw, json) Hash identifier: u4MeAhfkrxntgVqt71NeRKyFaMbQSsQh0uyjdKEVsbs= Subject key identifier: 9C:6A:1E:3E:AD:4F:AE:F4:1A:70:EB:06:D4:04:99:98:D0:E8:26:E2 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 5B6FB806712D3A70DC205BEAE3B03615D5F76B85 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9adb83e6-fa36-47fa-b5be-856fd7247898.roa Signing time: Sun 16 Nov 2025 01:00:15 +0000 ROA not before: Sun 16 Nov 2025 01:00:15 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.16.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:6f:b8:06:71:2d:3a:70:dc:20:5b:ea:e3:b0:36:15:d5:f7:6b:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 16 01:00:15 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=36bfe034371775b28b410105bc5d4dad186180cf5fdad98957ad511903fae669, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:71:ad:ac:46:85:0c:0f:2f:8e:93:d5:c8:55: 35:3f:f0:6c:17:f8:6e:65:c0:6e:5b:fd:ad:aa:c9: e7:cd:49:6b:6c:3a:e2:4a:99:d7:4c:ca:b9:26:ff: 40:4b:1b:25:99:4c:09:b9:43:5e:c5:9b:bd:08:e3: 78:34:e9:40:74:5f:f4:62:07:4c:50:fa:56:4e:c9: 56:37:35:6f:c3:49:d1:1a:60:fb:7e:5f:6a:fa:60: ef:07:0e:73:b8:a9:19:ae:d0:aa:0e:b4:b4:c5:e2: 57:9f:7c:17:ca:b1:d7:68:eb:9a:1e:ec:ba:31:47: be:69:05:54:c0:aa:96:44:9f:e4:22:dd:1e:d7:b2: 63:72:dc:7b:0a:19:39:b6:a3:d1:d4:be:0d:96:fa: 6e:ea:29:cb:b2:5e:37:e7:e7:2a:78:58:29:fe:fb: 17:68:60:49:b7:c8:10:be:f0:f6:90:c5:6d:7a:03: 7d:ec:11:37:5b:39:24:c7:83:28:2a:4d:03:d6:cd: 6f:0a:6e:85:f1:20:06:b0:a5:a5:88:b6:26:d8:f8: f3:fb:6f:4f:be:88:da:92:25:12:f1:cb:ef:1e:37: c0:e9:ee:56:05:5a:a5:80:ca:90:c9:11:c5:c7:68: ea:01:ae:e1:a4:69:31:0e:1c:3b:b0:29:cb:45:6c: 9a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:6A:1E:3E:AD:4F:AE:F4:1A:70:EB:06:D4:04:99:98:D0:E8:26:E2 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9adb83e6-fa36-47fa-b5be-856fd7247898.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.16.104.0/23 Signature Algorithm: sha256WithRSAEncryption 66:ee:33:64:37:24:f7:e9:6f:f7:ad:1e:3d:fa:c6:34:d6:2c: 6d:b5:91:4c:43:58:35:b1:18:f8:2d:3d:80:ec:f0:4a:73:23: 51:1a:b8:ec:4d:a3:84:90:0b:d3:47:d3:d0:07:9c:59:41:13: 84:59:85:69:8d:b6:83:e2:a1:f9:07:09:c2:06:f3:21:20:df: ef:4e:fb:41:cf:d4:ca:f3:41:6b:8c:bf:a6:47:ae:6a:ee:a2: 90:2b:98:38:34:1e:8a:f2:b9:02:25:ee:9a:b3:b1:70:98:54: c0:93:81:f0:57:71:7f:92:ed:74:0e:48:1a:ff:07:70:b0:21: d8:fc:19:73:f3:9c:fa:3e:14:80:60:6c:47:87:3c:12:df:07: 82:44:79:87:2d:5d:1e:0c:9b:2c:67:3b:a5:02:43:98:7e:8b: ca:8a:e2:58:bf:2b:72:ea:db:df:33:6e:74:2d:3a:08:27:82: c4:ec:19:48:35:7f:4f:cb:49:d5:47:c9:26:a0:79:1e:c3:b8: fc:e6:ba:e1:86:48:14:c1:df:dd:26:3a:75:16:7e:82:a4:93: 6a:e6:06:37:32:5b:3f:be:b7:cf:25:18:a2:69:4b:c5:11:07: d4:3a:8b:7b:d9:eb:14:80:3c:a4:cc:77:b8:62:fc:4f:b2:b9: 19:2b:ee:5b -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUW2+4BnEtOnDcIFvq47A2FdX3a4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTYwMTAwMTVaFw0yNTEyMjEyMzU5NTlaMHoxSTBHBgNV BAUTQDM2YmZlMDM0MzcxNzc1YjI4YjQxMDEwNWJjNWQ0ZGFkMTg2MTgwY2Y1ZmRh ZDk4OTU3YWQ1MTE5MDNmYWU2NjkxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5xraxGhQwPL46T1chVNT/wbBf4bmXAblv9rarJ581Ja2w64kqZ10zKuSb/ QEsbJZlMCblDXsWbvQjjeDTpQHRf9GIHTFD6Vk7JVjc1b8NJ0Rpg+35favpg7wcO c7ipGa7Qqg60tMXiV598F8qx12jrmh7sujFHvmkFVMCqlkSf5CLdHteyY3LcewoZ Obaj0dS+DZb6buopy7JeN+fnKnhYKf77F2hgSbfIEL7w9pDFbXoDfewRN1s5JMeD KCpNA9bNbwpuhfEgBrClpYi2Jtj48/tvT76I2pIlEvHL7x43wOnuVgVapYDKkMkR xcdo6gGu4aRpMQ4cO7Apy0VsmksCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBScah4+ rU+u9Bpw6wbUBJmY0Ogm4jAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv OWFkYjgzZTYtZmEzNi00N2ZhLWI1YmUtODU2ZmQ3MjQ3ODk4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEATMQaDAN BgkqhkiG9w0BAQsFAAOCAQEAZu4zZDck9+lv960ePfrGNNYsbbWRTENYNbEY+C09 gOzwSnMjURq47E2jhJAL00fT0AecWUEThFmFaY22g+Kh+QcJwgbzISDf7077Qc/U yvNBa4y/pkeuau6ikCuYODQeivK5AiXumrOxcJhUwJOB8Fdxf5LtdA5IGv8HcLAh 2PwZc/Oc+j4UgGBsR4c8Et8HgkR5hy1dHgybLGc7pQJDmH6LyoriWL8rcurb3zNu dC06CCeCxOwZSDV/T8tJ1UfJJqB5HsO4/Oa64YZIFMHf3SY6dRZ+gqSTauYGNzJb P763zyUYomlLxREH1DqLe9nrFIA8pMx3uGL8T7K5GSvuWw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:48:02 2025 by rpki-client