This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d241761a-4c6e-4db3-ba0a-26b2eda6222a.roa File: d241761a-4c6e-4db3-ba0a-26b2eda6222a.roa (raw, json) Hash identifier: s4Tm0sRVadfREfNCOJZxQSaPbG6H6XvYoafOKuqzamQ= Subject key identifier: FF:71:EC:5F:6C:A9:7D:40:59:78:A9:34:07:B0:F3:08:4E:7D:CD:33 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 0C02DA8FEDCE6848B22C054A1F6254F6A0E487D4 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d241761a-4c6e-4db3-ba0a-26b2eda6222a.roa Signing time: Sat 15 Nov 2025 06:50:08 +0000 ROA not before: Sat 15 Nov 2025 06:50:08 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.110.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:02:da:8f:ed:ce:68:48:b2:2c:05:4a:1f:62:54:f6:a0:e4:87:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 15 06:50:08 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=6f166a8bdb64448ec9f29d5a31732a9f331911c70e887604725fd59aed1b70b4, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0c:f3:b8:93:b5:15:0a:ce:d2:e2:da:d8:be: ee:b6:e6:7f:be:96:3e:36:6e:c5:ba:63:f9:ed:e3: 3c:8a:bb:3d:31:0f:7c:75:32:53:3b:87:b2:14:3c: ac:44:a3:a3:f1:22:70:85:4f:69:1b:cb:8b:2f:39: fb:a4:7e:7b:cb:fd:d2:6a:e1:de:82:df:99:33:31: 7d:01:a3:de:a8:9b:09:8d:23:82:be:49:78:7b:98: b8:9c:fb:8a:a7:91:b4:02:39:53:81:c4:bc:30:53: 99:72:3e:2e:33:7c:e3:cb:4e:0a:be:dc:16:ad:56: a5:2a:6c:7a:10:fb:d7:16:3e:03:38:9e:7b:cc:fd: 73:0f:d4:70:d0:63:92:78:51:1d:f2:58:50:35:9e: ec:7d:ee:11:b6:2a:8a:6e:cb:1a:0b:53:27:4e:fc: 56:32:24:08:a5:bb:98:d1:57:b6:e0:bb:e6:02:ee: d9:28:21:e1:5b:48:ee:bf:d3:3e:d7:c3:0f:01:c9: c1:b7:24:61:80:3e:d1:b5:a5:b0:c4:09:0a:d7:da: b0:95:ab:68:a8:c1:d6:56:f8:06:91:74:48:b4:f3: cb:03:ce:c8:6a:66:2d:05:40:0b:36:f1:e6:74:3e: 0f:16:e7:1e:f6:c0:7a:cc:4c:81:7b:71:cb:0a:28: a8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:71:EC:5F:6C:A9:7D:40:59:78:A9:34:07:B0:F3:08:4E:7D:CD:33 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d241761a-4c6e-4db3-ba0a-26b2eda6222a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.110.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:27:50:dc:4e:b6:b8:8f:dd:5f:3a:c6:c8:2f:76:28:8f:fc: 05:5e:8c:cf:e5:a7:a4:84:83:8b:47:d6:f5:25:f7:88:a0:3c: e6:69:f8:d2:57:63:5e:3f:ca:d1:68:24:16:0d:c8:6b:4e:af: 40:45:3c:51:b3:b3:80:44:28:a4:94:67:38:83:51:b4:83:7b: 89:09:5f:40:f6:05:ee:68:2a:56:cd:42:3b:1c:5d:f2:95:d4: d0:91:98:7a:44:8f:9a:81:38:67:65:9a:b7:aa:73:c1:1c:2e: 6c:6d:5f:b0:88:25:54:9f:bb:b7:dc:c0:4d:e7:55:5d:46:05: cf:c9:fe:d2:3f:6f:77:08:68:e3:00:de:1e:cc:62:58:8b:f4: 52:89:24:d2:87:88:da:3d:91:41:f2:5b:5f:94:f0:a0:bc:f1: 3c:c8:0e:66:c4:3f:ee:e6:f8:f3:ed:00:15:23:54:4b:7b:2d: 3e:d7:b4:8a:31:56:1e:b8:ec:ee:2d:4d:25:35:1a:04:c8:6c: 84:02:07:2e:50:44:9a:4e:01:ae:f3:bb:02:d4:39:4a:be:14: d5:00:bc:77:e3:69:cf:be:6c:2d:2d:b0:54:de:aa:83:3c:8a: 96:2a:45:c3:7c:4d:e3:ec:99:6d:f7:d8:e6:ea:a4:ef:70:90: b3:26:75:7d -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUDALaj+3OaEiyLAVKH2JU9qDkh9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTUwNjUwMDhaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDZmMTY2YThiZGI2NDQ0OGVjOWYyOWQ1YTMxNzMyYTlmMzMxOTExYzcwZTg4 NzYwNDcyNWZkNTlhZWQxYjcwYjQxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKkM87iTtRUKztLi2ti+7rbmf76WPjZuxbpj+e3jPIq7PTEPfHUyUzuHshQ8 rESjo/EicIVPaRvLiy85+6R+e8v90mrh3oLfmTMxfQGj3qibCY0jgr5JeHuYuJz7 iqeRtAI5U4HEvDBTmXI+LjN848tOCr7cFq1WpSpsehD71xY+Aziee8z9cw/UcNBj knhRHfJYUDWe7H3uEbYqim7LGgtTJ078VjIkCKW7mNFXtuC75gLu2Sgh4VtI7r/T PtfDDwHJwbckYYA+0bWlsMQJCtfasJWraKjB1lb4BpF0SLTzywPOyGpmLQVACzbx 5nQ+DxbnHvbAesxMgXtxywooqIcCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBT/cexf bKl9QFl4qTQHsPMITn3NMzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ZDI0MTc2MWEtNGM2ZS00ZGIzLWJhMGEtMjZiMmVkYTYyMjJhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADNuMA0G CSqGSIb3DQEBCwUAA4IBAQApJ1DcTra4j91fOsbIL3Yoj/wFXozP5aekhIOLR9b1 JfeIoDzmafjSV2NeP8rRaCQWDchrTq9ARTxRs7OARCiklGc4g1G0g3uJCV9A9gXu aCpWzUI7HF3yldTQkZh6RI+agThnZZq3qnPBHC5sbV+wiCVUn7u33MBN51VdRgXP yf7SP293CGjjAN4ezGJYi/RSiSTSh4jaPZFB8ltflPCgvPE8yA5mxD/u5vjz7QAV I1RLey0+17SKMVYeuOzuLU0lNRoEyGyEAgcuUESaTgGu87sC1DlKvhTVALx342nP vmwtLbBU3qqDPIqWKkXDfE3j7Jlt99jm6qTvcJCzJnV9 -----END CERTIFICATE-----Generated at Sat Dec 6 09:57:36 2025 by rpki-client