This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/c5b27928-f79b-49c0-80c5-88852eab11e3.roa File: c5b27928-f79b-49c0-80c5-88852eab11e3.roa (raw, json) Hash identifier: zVo4pDhggAh4vlt+rclCKen/Z8DBWAZDS4hAtNf3Pxc= Subject key identifier: BB:F3:AF:47:93:87:38:59:87:4D:AF:FB:F3:3B:79:9C:4C:91:44:F2 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 2A3A7E095830CFCEC331FA74DC493DEB1A33F142 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/c5b27928-f79b-49c0-80c5-88852eab11e3.roa Signing time: Sat 15 Nov 2025 06:40:52 +0000 ROA not before: Sat 15 Nov 2025 06:40:52 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 193.57.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:3a:7e:09:58:30:cf:ce:c3:31:fa:74:dc:49:3d:eb:1a:33:f1:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 15 06:40:52 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=e150e117c30411a760919d8531536c106195a57fcff1f58cd2e2491af1c6877b, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:89:c2:78:de:ff:d8:69:9e:ad:82:2d:58:7f: 8a:b7:81:d4:c8:6a:62:39:ed:73:c8:85:0e:b2:f1: f6:1a:12:8a:f6:27:b7:1c:89:61:36:7b:e6:c1:42: 0f:63:3d:28:12:c0:d1:26:0f:a4:46:5f:9b:7b:ae: ac:dd:52:cb:f2:7e:2e:31:92:a6:d9:67:30:2c:75: 1d:fa:7a:55:01:fe:e7:e6:62:38:fd:40:ac:17:bd: df:79:6c:a4:ca:a2:f9:f7:4f:e9:71:4b:2f:b2:36: 4d:1c:bd:cc:22:b5:e1:cd:f0:f4:66:9b:3f:54:ad: 70:cf:83:40:a6:bc:0e:1b:cf:96:f1:04:cb:04:0b: fe:38:fb:a2:4c:68:5e:fb:d9:1a:7f:c7:26:5b:2d: 04:07:75:1b:58:2b:24:49:2f:ca:38:39:4f:67:5c: 9f:d3:38:d8:5e:b0:d7:b1:af:af:c9:4f:8b:be:c8: 84:b8:95:eb:6e:fb:3a:2e:3f:c3:48:52:49:45:16: 24:ad:30:a5:9d:b0:fc:0a:a1:3f:0f:d1:d8:37:17: a3:4b:2b:60:48:a1:a6:38:04:8f:4c:37:8b:cb:22: 60:ea:43:f1:04:13:30:e5:a5:08:97:07:de:40:ef: 8a:49:79:52:40:cd:bc:c0:98:a0:c5:ef:fa:2e:d3: 29:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F3:AF:47:93:87:38:59:87:4D:AF:FB:F3:3B:79:9C:4C:91:44:F2 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/c5b27928-f79b-49c0-80c5-88852eab11e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.57.182.0/23 Signature Algorithm: sha256WithRSAEncryption 04:ce:5d:ac:3e:21:97:96:d7:46:f5:1e:80:f5:28:30:57:f2: ab:e2:9d:3d:d4:83:a4:47:e5:ba:0a:02:24:d4:5b:49:71:59: 9f:86:03:c4:f9:83:ff:4d:92:2d:55:fe:d7:8e:a7:fc:52:7c: 4e:ec:16:ed:8a:a7:12:ab:81:02:5d:e1:ca:e0:ec:e5:3e:c4: 57:86:12:50:86:42:12:d1:f6:e1:a3:96:76:e2:11:db:71:67: 18:3b:bd:89:2e:14:95:e4:ab:3c:4f:eb:68:ec:55:55:f6:4c: c1:fa:db:8a:42:35:08:cd:e9:06:7c:41:6f:9d:1d:13:2e:00: cc:7f:90:b6:28:fb:c4:93:38:fd:65:c8:79:f6:1c:84:c8:7d: c2:0d:48:e3:89:bd:20:d1:53:81:94:24:20:f8:02:93:52:63: 83:93:fb:84:9b:d7:14:e6:50:7d:51:36:01:0a:c2:b7:29:44: f9:d0:4a:68:4d:2e:c9:dc:58:aa:b1:ff:5d:60:1e:ef:04:db: 65:da:95:62:74:ad:71:bd:be:59:0c:3c:d9:3c:52:1a:c7:a6: 56:d3:50:63:37:2c:e3:69:b9:ad:b8:71:09:8b:d9:8e:f4:b1: 7f:d8:fa:d4:86:b0:f4:a3:cf:cd:37:46:75:0a:f4:e2:dc:ac: 84:0c:89:ac -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUKjp+CVgwz87DMfp03Ek96xoz8UIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTUwNjQwNTJaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGUxNTBlMTE3YzMwNDExYTc2MDkxOWQ4NTMxNTM2YzEwNjE5NWE1N2ZjZmYx ZjU4Y2QyZTI0OTFhZjFjNjg3N2IxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANSJwnje/9hpnq2CLVh/ireB1MhqYjntc8iFDrLx9hoSivYntxyJYTZ75sFC D2M9KBLA0SYPpEZfm3uurN1Sy/J+LjGSptlnMCx1Hfp6VQH+5+ZiOP1ArBe933ls pMqi+fdP6XFLL7I2TRy9zCK14c3w9GabP1StcM+DQKa8DhvPlvEEywQL/jj7okxo XvvZGn/HJlstBAd1G1grJEkvyjg5T2dcn9M42F6w17Gvr8lPi77IhLiV6277Oi4/ w0hSSUUWJK0wpZ2w/AqhPw/R2DcXo0srYEihpjgEj0w3i8siYOpD8QQTMOWlCJcH 3kDvikl5UkDNvMCYoMXv+i7TKSECAwEAAaOCAiEwggIdMB0GA1UdDgQWBBS7869H k4c4WYdNr/vzO3mcTJFE8jAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv YzViMjc5MjgtZjc5Yi00OWMwLTgwYzUtODg4NTJlYWIxMWUzLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcE5tjAN BgkqhkiG9w0BAQsFAAOCAQEABM5drD4hl5bXRvUegPUoMFfyq+KdPdSDpEflugoC JNRbSXFZn4YDxPmD/02SLVX+146n/FJ8TuwW7YqnEquBAl3hyuDs5T7EV4YSUIZC EtH24aOWduIR23FnGDu9iS4UleSrPE/raOxVVfZMwfrbikI1CM3pBnxBb50dEy4A zH+Qtij7xJM4/WXIefYchMh9wg1I44m9INFTgZQkIPgCk1Jjg5P7hJvXFOZQfVE2 AQrCtylE+dBKaE0uydxYqrH/XWAe7wTbZdqVYnStcb2+WQw82TxSGsemVtNQYzcs 42m5rbhxCYvZjvSxf9j61Iaw9KPPzTdGdQr04tyshAyJrA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:58:34 2025 by rpki-client