This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e91c1f40-9f81-4796-b5cc-2c1fe9202cdf.roa File: e91c1f40-9f81-4796-b5cc-2c1fe9202cdf.roa (raw, json) Hash identifier: sjrMb39IH55OsGj2faTAqRxMXcJUOKhAmg4Yap32ypM= Subject key identifier: D4:F2:EC:2B:3D:DB:20:14:B9:98:83:50:0B:7C:DB:A7:70:C2:88:B8 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 414C92F4425254763D538684EDFBC20A7A06E9AD Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e91c1f40-9f81-4796-b5cc-2c1fe9202cdf.roa Signing time: Tue 25 Nov 2025 20:10:04 +0000 ROA not before: Tue 25 Nov 2025 20:10:04 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 62.230.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:4c:92:f4:42:52:54:76:3d:53:86:84:ed:fb:c2:0a:7a:06:e9:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 25 20:10:04 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=2d358658f39bf9f361002d8024caf8ba09b24ea2a9f8ed19692d45023a8f6bef, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:09:fb:27:bd:16:53:0a:59:c7:bb:12:00:32: 5d:50:2f:79:5f:8c:0d:82:7c:b0:c1:13:43:88:54: ca:b0:16:be:ac:cc:1d:13:53:5a:8d:98:b6:ec:3b: 75:97:79:92:7d:87:3c:18:b8:38:11:d0:cf:88:83: 0f:9e:ec:62:68:dc:ca:46:c4:d5:57:2e:4d:aa:69: 30:2d:96:a9:51:6b:9c:35:2d:ea:7e:b4:c1:51:dd: ac:d2:32:03:18:a2:6f:f1:8c:73:70:f2:9f:b5:23: 12:3c:89:50:a1:bf:2d:ff:25:d0:29:84:fd:54:3f: 03:ea:52:21:31:42:df:c3:d7:50:b0:2d:52:70:87: 44:ce:61:4b:58:63:58:97:05:58:ae:4b:77:f8:48: 97:ef:f4:b1:fa:0c:dd:da:f2:c1:7d:50:bb:c4:b7: e4:a8:1c:f5:f8:65:f6:61:b4:42:ca:01:d7:5d:2f: 70:31:b2:c2:cb:06:ae:d6:02:fa:31:10:53:c5:b4: 13:e7:dd:ba:5d:57:c2:d3:b1:43:f7:fd:6b:cd:2c: 3a:9f:6b:32:d9:de:49:8d:59:10:ef:a0:6c:61:54: df:5b:cd:d3:c3:19:a2:2b:ca:85:ea:72:10:c5:94: 29:8c:91:a8:8d:8c:92:79:49:4e:de:a3:5c:dd:5d: ca:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:F2:EC:2B:3D:DB:20:14:B9:98:83:50:0B:7C:DB:A7:70:C2:88:B8 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e91c1f40-9f81-4796-b5cc-2c1fe9202cdf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.230.0.0/16 Signature Algorithm: sha256WithRSAEncryption bd:22:6d:56:c7:3b:64:dd:51:b8:54:b7:df:20:e1:c0:18:de: 2f:55:77:7b:40:91:05:67:8e:94:7f:c2:9d:b1:5d:47:d6:3d: 98:93:0c:1f:a5:c1:16:44:ba:44:1b:43:3b:38:79:51:3e:35: cf:19:61:75:a0:79:78:a3:0b:20:3c:a9:75:05:7f:c8:16:ae: 89:63:4c:74:c9:48:97:ac:3f:6a:e1:ca:c8:9b:1a:36:ab:c6: 7a:62:aa:a1:4f:de:05:2a:03:94:62:81:df:da:75:b7:ba:81: 8c:0c:e3:7d:f6:79:1f:6e:34:ab:4c:2e:4c:d6:a2:73:1b:8b: f9:d1:d5:8c:dc:eb:d2:4f:0b:0d:14:9f:0e:f4:f0:30:fa:48: cc:f3:87:47:a9:7c:88:99:9f:cb:58:aa:8e:ab:0c:c2:eb:3b: 23:39:64:e6:ba:71:08:2c:18:36:35:93:d9:c4:33:ea:75:0f: 17:05:19:59:82:21:a7:4f:ff:e3:7b:1c:2d:0e:0e:17:ec:78: 69:70:88:f6:99:80:6e:64:58:1b:fb:b4:3b:ce:e3:a4:c6:33: a5:71:b9:27:31:7b:9b:15:11:74:a8:3a:c1:b0:61:f5:7b:fd: b1:8a:0b:00:88:3e:3a:b5:88:9d:fe:d0:68:f5:f4:bf:e5:b5: e2:9e:a6:67 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUQUyS9EJSVHY9U4aE7fvCCnoG6a0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMjUyMDEwMDRaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDJkMzU4NjU4ZjM5YmY5ZjM2MTAwMmQ4MDI0Y2FmOGJhMDliMjRlYTJhOWY4 ZWQxOTY5MmQ0NTAyM2E4ZjZiZWYxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJgJ+ye9FlMKWce7EgAyXVAveV+MDYJ8sMETQ4hUyrAWvqzMHRNTWo2Ytuw7 dZd5kn2HPBi4OBHQz4iDD57sYmjcykbE1VcuTappMC2WqVFrnDUt6n60wVHdrNIy Axiib/GMc3Dyn7UjEjyJUKG/Lf8l0CmE/VQ/A+pSITFC38PXULAtUnCHRM5hS1hj WJcFWK5Ld/hIl+/0sfoM3drywX1Qu8S35Kgc9fhl9mG0QsoB110vcDGywssGrtYC +jEQU8W0E+fdul1XwtOxQ/f9a80sOp9rMtneSY1ZEO+gbGFU31vN08MZoivKhepy EMWUKYyRqI2MknlJTt6jXN1dyokCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBTU8uwr PdsgFLmYg1ALfNuncMKIuDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ZTkxYzFmNDAtOWY4MS00Nzk2LWI1Y2MtMmMxZmU5MjAyY2RmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD7mMA0G CSqGSIb3DQEBCwUAA4IBAQC9Im1Wxztk3VG4VLffIOHAGN4vVXd7QJEFZ46Uf8Kd sV1H1j2YkwwfpcEWRLpEG0M7OHlRPjXPGWF1oHl4owsgPKl1BX/IFq6JY0x0yUiX rD9q4crImxo2q8Z6YqqhT94FKgOUYoHf2nW3uoGMDON99nkfbjSrTC5M1qJzG4v5 0dWM3OvSTwsNFJ8O9PAw+kjM84dHqXyImZ/LWKqOqwzC6zsjOWTmunEILBg2NZPZ xDPqdQ8XBRlZgiGnT//jexwtDg4X7HhpcIj2mYBuZFgb+7Q7zuOkxjOlcbknMXub FRF0qDrBsGH1e/2xigsAiD46tYid/tBo9fS/5bXinqZn -----END CERTIFICATE-----Generated at Sat Dec 6 09:51:18 2025 by rpki-client