This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d13d26ae-36b1-4815-a7f0-4dc090d15b78.roa File: d13d26ae-36b1-4815-a7f0-4dc090d15b78.roa (raw, json) Hash identifier: 0aEIeoCINtX/b2l9BfwoSCPF8gK6KqyaDtgA0EPUa94= Subject key identifier: 72:20:90:BB:21:F3:9E:1B:94:31:4F:22:34:08:CC:74:72:64:7C:C0 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 2A44E2A582E26CB7B043331F27E3FDA89A1FB506 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d13d26ae-36b1-4815-a7f0-4dc090d15b78.roa Signing time: Sat 15 Nov 2025 06:40:56 +0000 ROA not before: Sat 15 Nov 2025 06:40:56 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.129.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:44:e2:a5:82:e2:6c:b7:b0:43:33:1f:27:e3:fd:a8:9a:1f:b5:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 15 06:40:56 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=458f56042257a3f90bac232aaf224fb83c2ece644d30a9dab9eb9c6476640f41, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:75:5a:5a:ef:da:a3:f3:94:11:40:d2:aa:84: 59:35:a6:8f:06:82:dc:bb:5d:fc:55:fb:f8:e5:c9: 63:e7:4a:38:08:5a:30:b6:68:d6:16:3f:25:58:34: 08:2e:7a:6a:5e:6d:ab:45:1f:64:69:08:de:8c:cd: 69:2e:a3:7a:1b:21:de:e8:a8:9b:89:ab:d0:af:6b: c2:8e:09:12:3b:a8:98:1e:fc:cf:31:da:da:a2:30: 3a:94:0e:c4:25:0d:a1:bd:84:eb:be:c1:7d:92:f0: a0:61:48:57:67:38:2a:78:06:63:b3:1f:d3:82:f1: 86:b3:c2:51:6d:54:35:63:a1:ba:e1:47:6f:21:97: ba:eb:5b:9b:33:b7:82:03:f4:0a:a3:76:b1:17:b1: 11:ba:2a:d4:25:da:de:1f:51:66:f4:36:c0:ea:b0: 14:2f:ca:6f:0a:03:f8:38:bf:89:d2:2a:a4:89:25: 94:71:08:65:9f:44:5c:2a:6e:64:46:84:8b:6d:da: a7:bf:fc:a6:2f:e7:75:94:95:54:6f:11:23:8d:80: ea:e4:84:c8:5b:6f:f2:e2:c2:d5:5b:36:f5:d3:6c: 34:f8:d7:66:37:03:db:77:81:d8:8e:f2:25:e3:1f: bd:38:a6:25:43:0a:cc:44:ef:7f:fb:74:9f:da:ba: 14:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:20:90:BB:21:F3:9E:1B:94:31:4F:22:34:08:CC:74:72:64:7C:C0 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d13d26ae-36b1-4815-a7f0-4dc090d15b78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.129.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0f:4d:5c:0e:ba:68:9d:44:d2:36:c8:d5:ad:42:76:ee:0a:bd: d0:e7:d5:18:a9:84:c8:a0:e8:be:59:80:ae:23:b8:e3:34:ec: ef:9b:47:a8:69:7f:0a:cb:b8:9a:3e:f0:50:b8:4c:24:24:73: e5:b7:3d:61:08:1a:3b:ff:ec:46:0b:68:41:cf:6f:e4:8a:7f: 6c:89:f4:a6:05:c2:75:5e:c5:ce:db:73:d9:05:7c:63:fd:84: 05:4b:6d:a8:73:bb:3b:2f:a7:20:a1:ab:4f:b9:41:65:46:1a: b6:fc:b6:47:f2:16:ed:a1:09:2f:dd:8d:af:b3:60:b5:60:20: 1b:ab:b0:2e:9f:63:e4:e4:b9:a7:2b:b7:3a:78:fe:61:06:5f: 10:08:43:37:39:b0:20:2e:1c:1b:6e:02:9e:04:67:5b:74:7a: db:cd:46:16:03:61:8d:56:1d:72:7d:08:c1:9b:db:18:19:4c: 7b:8c:5b:c9:ed:2b:66:58:98:8e:0e:74:3f:7b:4c:c5:d9:b0: 00:f4:f6:4c:02:61:6a:84:0d:74:b2:5d:37:70:76:41:89:c8: 29:9d:e9:2b:87:2e:1e:20:ca:2b:60:96:d1:52:3c:74:e2:88: 0b:62:3f:84:5c:86:94:01:87:23:d2:57:00:87:22:44:59:75: 96:67:2c:f0 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUKkTipYLibLewQzMfJ+P9qJoftQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTUwNjQwNTZaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDQ1OGY1NjA0MjI1N2EzZjkwYmFjMjMyYWFmMjI0ZmI4M2MyZWNlNjQ0ZDMw YTlkYWI5ZWI5YzY0NzY2NDBmNDExLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALR1Wlrv2qPzlBFA0qqEWTWmjwaC3Ltd/FX7+OXJY+dKOAhaMLZo1hY/JVg0 CC56al5tq0UfZGkI3ozNaS6jehsh3uiom4mr0K9rwo4JEjuomB78zzHa2qIwOpQO xCUNob2E677BfZLwoGFIV2c4KngGY7Mf04LxhrPCUW1UNWOhuuFHbyGXuutbmzO3 ggP0CqN2sRexEboq1CXa3h9RZvQ2wOqwFC/KbwoD+Di/idIqpIkllHEIZZ9EXCpu ZEaEi23ap7/8pi/ndZSVVG8RI42A6uSEyFtv8uLC1Vs29dNsNPjXZjcD23eB2I7y JeMfvTimJUMKzETvf/t0n9q6FEECAwEAAaOCAiAwggIcMB0GA1UdDgQWBBRyIJC7 IfOeG5QxTyI0CMx0cmR8wDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ZDEzZDI2YWUtMzZiMS00ODE1LWE3ZjAtNGRjMDkwZDE1Yjc4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADOBMA0G CSqGSIb3DQEBCwUAA4IBAQAPTVwOumidRNI2yNWtQnbuCr3Q59UYqYTIoOi+WYCu I7jjNOzvm0eoaX8Ky7iaPvBQuEwkJHPltz1hCBo7/+xGC2hBz2/kin9sifSmBcJ1 XsXO23PZBXxj/YQFS22oc7s7L6cgoatPuUFlRhq2/LZH8hbtoQkv3Y2vs2C1YCAb q7Aun2Pk5LmnK7c6eP5hBl8QCEM3ObAgLhwbbgKeBGdbdHrbzUYWA2GNVh1yfQjB m9sYGUx7jFvJ7StmWJiODnQ/e0zF2bAA9PZMAmFqhA10sl03cHZBicgpnekrhy4e IMorYJbRUjx04ogLYj+EXIaUAYcj0lcAhyJEWXWWZyzw -----END CERTIFICATE-----Generated at Sat Dec 6 20:21:01 2025 by rpki-client