This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e398b47e-9867-4e71-96db-760f9102a39f.roa File: e398b47e-9867-4e71-96db-760f9102a39f.roa (raw, json) Hash identifier: 9shWwePVGu0jqaqzi8Y+UcGfjsyypC663L/ezEVFc/k= Subject key identifier: 79:F3:43:ED:3B:80:9D:EE:DE:D0:43:06:02:BB:00:94:92:AC:3F:6D Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 2C47308805B2DFD93928496AA68A34B4DB924D53 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e398b47e-9867-4e71-96db-760f9102a39f.roa Signing time: Sat 15 Nov 2025 06:40:52 +0000 ROA not before: Sat 15 Nov 2025 06:40:52 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 62785 IP address blocks: 193.57.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:47:30:88:05:b2:df:d9:39:28:49:6a:a6:8a:34:b4:db:92:4d:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 15 06:40:52 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=f7dd4131fa6e2c109792e2e44ba859df2758811eae1175b41a4828b1c72b52ce, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8d:46:b1:4f:e5:30:11:72:dc:81:d5:15:96: e8:45:71:e3:fb:52:b2:ad:52:88:35:a7:cb:44:43: 26:5f:25:58:f5:78:58:e4:2b:aa:11:3c:88:1b:a9: 34:6f:4c:a8:37:0c:31:18:95:76:a0:3b:54:33:c9: 1c:db:93:49:c0:d1:55:85:bc:a6:97:08:9b:38:ae: 2f:cd:8c:ee:0a:12:ad:ac:7b:3a:70:9a:19:38:7a: 7e:34:52:49:ac:40:d0:fd:be:c2:a4:1c:61:78:27: b0:25:54:82:ef:9b:79:b9:14:55:c6:ae:8e:c7:2a: 8a:5e:ff:08:4c:40:21:4b:ad:41:07:12:cb:55:a3: cc:54:4d:8d:cc:14:1a:ba:22:7f:1a:7d:86:7c:9f: 37:fe:6b:08:fc:00:5f:39:3c:2d:a6:17:1b:24:f9: ae:37:74:d1:41:f9:10:89:26:a6:b2:4e:2d:f7:5e: 19:5b:ff:19:78:85:33:9a:82:c4:63:61:f0:e0:ae: 1a:22:d3:bd:b2:7e:3d:62:7a:11:e8:f5:18:df:98: 0e:64:e6:b8:ab:8b:71:97:6c:b8:cd:0a:fd:fe:d6: 22:c4:9e:d3:8d:0c:aa:31:a9:9a:39:29:5c:81:bd: 75:b4:ba:fb:2b:f6:cd:55:3c:23:a5:45:5a:a4:61: 86:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F3:43:ED:3B:80:9D:EE:DE:D0:43:06:02:BB:00:94:92:AC:3F:6D X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e398b47e-9867-4e71-96db-760f9102a39f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.57.182.0/23 Signature Algorithm: sha256WithRSAEncryption cc:c9:e2:9d:64:69:8a:3e:78:19:a0:ac:7c:83:5d:96:86:07: b8:b5:a1:26:69:51:8b:bb:b0:e6:66:bc:b9:82:de:f0:74:d8: d1:4d:ba:77:d7:b2:b1:da:e3:7b:af:4f:93:05:ba:7e:29:3d: 1b:9d:a5:f2:6a:15:24:51:95:fe:af:a3:b1:4a:f6:5b:99:f5: 86:f1:a9:ac:36:6b:50:c9:2e:52:49:4e:41:de:1a:8c:26:e1: dd:62:34:61:e1:0f:3c:34:c4:f5:11:c0:7b:3e:d4:1a:b1:61: cb:a0:e0:db:c6:ec:dc:60:b6:bb:07:e6:40:54:93:54:cf:95: 85:b0:f5:95:81:1e:d6:b2:4b:ff:67:f4:2f:ab:fe:80:02:0c: 09:77:5a:b2:ac:7b:2c:ab:1a:97:47:5b:53:a5:4e:90:95:09: c1:e3:c8:bb:64:56:3a:e6:14:d1:84:60:4d:3b:93:ff:16:e2: f9:43:39:49:91:28:6a:bd:f2:46:cd:8d:17:06:31:05:54:69: 15:e8:dd:87:ee:1c:40:01:a8:b1:e6:77:6d:0a:e3:00:3b:52: 0d:47:3d:0d:22:6b:77:64:db:0f:da:ab:36:9e:2a:e1:05:ff: fd:14:0b:63:f6:14:f2:44:33:99:6c:4e:d9:60:fc:47:3c:4e: 46:ee:93:c5 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIULEcwiAWy39k5KElqpoo0tNuSTVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTUwNjQwNTJaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQGY3ZGQ0MTMxZmE2ZTJjMTA5NzkyZTJlNDRiYTg1OWRmMjc1ODgxMWVhZTEx NzViNDFhNDgyOGIxYzcyYjUyY2UxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOuNRrFP5TARctyB1RWW6EVx4/tSsq1SiDWny0RDJl8lWPV4WOQrqhE8iBup NG9MqDcMMRiVdqA7VDPJHNuTScDRVYW8ppcImziuL82M7goSrax7OnCaGTh6fjRS SaxA0P2+wqQcYXgnsCVUgu+bebkUVcaujscqil7/CExAIUutQQcSy1WjzFRNjcwU Groifxp9hnyfN/5rCPwAXzk8LaYXGyT5rjd00UH5EIkmprJOLfdeGVv/GXiFM5qC xGNh8OCuGiLTvbJ+PWJ6Eej1GN+YDmTmuKuLcZdsuM0K/f7WIsSe040MqjGpmjkp XIG9dbS6+yv2zVU8I6VFWqRhhkUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBR580Pt O4Cd7t7QQwYCuwCUkqw/bTAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ZTM5OGI0N2UtOTg2Ny00ZTcxLTk2ZGItNzYwZjkxMDJhMzlmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcE5tjAN BgkqhkiG9w0BAQsFAAOCAQEAzMninWRpij54GaCsfINdloYHuLWhJmlRi7uw5ma8 uYLe8HTY0U26d9eysdrje69PkwW6fik9G52l8moVJFGV/q+jsUr2W5n1hvGprDZr UMkuUklOQd4ajCbh3WI0YeEPPDTE9RHAez7UGrFhy6Dg28bs3GC2uwfmQFSTVM+V hbD1lYEe1rJL/2f0L6v+gAIMCXdasqx7LKsal0dbU6VOkJUJwePIu2RWOuYU0YRg TTuT/xbi+UM5SZEoar3yRs2NFwYxBVRpFejdh+4cQAGoseZ3bQrjADtSDUc9DSJr d2TbD9qrNp4q4QX//RQLY/YU8kQzmWxO2WD8RzxORu6TxQ== -----END CERTIFICATE-----Generated at Sat Dec 6 22:36:15 2025 by rpki-client