This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/fdb81a1b-3eea-4c1a-97f6-940966a0bde0.roa File: fdb81a1b-3eea-4c1a-97f6-940966a0bde0.roa (raw, json) Hash identifier: WlxueoO8VwwKNC8SDCjHkjUeiaKU3E49g5ywyvxGzl8= Subject key identifier: 54:2C:6E:E1:35:2C:40:D3:62:26:7F:8B:CC:50:58:E4:52:5C:36:17 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 7B3CB568FC2D11FA0E0BD6CB7FE7F94456E23887 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/fdb81a1b-3eea-4c1a-97f6-940966a0bde0.roa Signing time: Sat 29 Nov 2025 00:00:31 +0000 ROA not before: Sat 29 Nov 2025 00:00:31 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 83.119.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:3c:b5:68:fc:2d:11:fa:0e:0b:d6:cb:7f:e7:f9:44:56:e2:38:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 29 00:00:31 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=4105c6da8fbb815c98bf51f84a833ca6b6b92aad11bcb85594d459d03a26d59e, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ff:92:7c:7a:d7:cf:39:2f:c3:1a:d7:33:f7: 5f:7d:d8:c8:6e:07:d4:c9:54:ad:07:db:ab:89:8a: fd:c8:1a:ca:bf:c5:0b:d5:97:1b:f0:c9:6e:cf:e3: 6a:08:0c:79:0a:84:92:d3:e5:26:35:7b:96:ad:11: cf:80:66:83:e5:19:5d:13:46:d5:a3:e0:b3:fe:a5: 4b:15:52:f3:4d:03:d2:56:bc:3f:1d:5c:9e:be:4a: 8c:dd:08:43:6a:9a:fe:77:82:54:da:18:8b:53:7d: eb:2c:7a:cf:e5:35:99:f6:95:bb:d7:47:c8:4a:83: 41:d9:f7:41:3c:d1:c7:19:b0:77:c2:23:2e:fd:8a: 63:98:6f:e7:93:bb:7b:1b:33:0f:92:9a:1f:be:15: 2b:b3:49:a8:3e:fc:17:ea:bb:a8:e2:4a:bb:ca:ec: 96:17:54:28:88:cf:d6:da:d5:28:60:b7:8b:52:3d: ae:dc:97:d7:98:8d:f0:44:2c:67:d3:43:66:04:76: 57:81:a9:4e:02:41:c8:20:62:8a:a4:33:33:43:6d: c3:3c:73:a2:aa:b2:f1:ab:24:7a:33:49:0c:45:e1: d5:fc:88:b1:e0:07:51:f9:93:18:b0:4c:9f:21:b8: 7e:04:78:ec:f1:ca:75:41:b3:16:2f:05:f7:be:20: 0a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2C:6E:E1:35:2C:40:D3:62:26:7F:8B:CC:50:58:E4:52:5C:36:17 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/fdb81a1b-3eea-4c1a-97f6-940966a0bde0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.119.128.0/19 Signature Algorithm: sha256WithRSAEncryption 87:5c:52:c0:86:be:34:07:52:f5:17:76:1c:53:b6:9f:fc:76: c4:57:c5:ec:0c:e6:0e:4a:4c:61:6e:a7:07:52:17:2a:a4:4e: 15:d6:0d:df:82:5e:d3:07:0f:7c:74:8f:89:c6:38:e1:ea:af: aa:32:d4:05:8d:65:0e:3c:62:4d:14:34:b3:32:c1:12:e9:bf: 1a:d0:5d:74:a1:4c:b6:67:de:a4:cf:3b:54:db:27:c0:70:6e: 92:c3:6d:59:32:dd:88:96:a7:c2:c3:ca:55:8f:1b:b0:7d:ad: a2:eb:97:e9:ed:65:5b:be:e8:c2:59:86:ad:e2:0e:30:fc:03: ba:2f:28:2e:ef:62:b5:d9:ec:d0:0c:46:a0:55:b3:2a:4f:ac: 62:8a:b8:bf:4f:89:c7:c5:59:04:bf:9f:25:34:9a:24:66:ee: 15:99:f9:4c:a8:76:38:03:2b:31:2a:63:c8:ae:a1:3f:93:95: 4c:f3:00:35:71:39:cc:b4:46:38:04:78:fb:a2:f3:eb:6d:fa: d2:de:66:ee:9d:f1:1c:97:41:03:62:54:5c:32:ad:d0:2d:a2: b3:d5:b0:68:62:65:1b:6b:72:59:10:15:a0:d4:d8:29:6d:18: 05:c2:bc:9d:b2:b7:73:99:72:45:6f:ea:2e:b4:c7:5b:20:34: 79:46:1d:a8 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUezy1aPwtEfoOC9bLf+f5RFbiOIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMjkwMDAwMzFaFw0yNjAyMjcyMzU5NTlaMHoxSTBHBgNV BAUTQDQxMDVjNmRhOGZiYjgxNWM5OGJmNTFmODRhODMzY2E2YjZiOTJhYWQxMWJj Yjg1NTk0ZDQ1OWQwM2EyNmQ1OWUxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOD/knx61885L8Ma1zP3X33YyG4H1MlUrQfbq4mK/cgayr/FC9WXG/DJbs/j aggMeQqEktPlJjV7lq0Rz4Bmg+UZXRNG1aPgs/6lSxVS800D0la8Px1cnr5KjN0I Q2qa/neCVNoYi1N96yx6z+U1mfaVu9dHyEqDQdn3QTzRxxmwd8IjLv2KY5hv55O7 exszD5KaH74VK7NJqD78F+q7qOJKu8rslhdUKIjP1trVKGC3i1I9rtyX15iN8EQs Z9NDZgR2V4GpTgJByCBiiqQzM0Ntwzxzoqqy8askejNJDEXh1fyIseAHUfmTGLBM nyG4fgR47PHKdUGzFi8F974gCrUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRULG7h NSxA02Imf4vMUFjkUlw2FzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ZmRiODFhMWItM2VlYS00YzFhLTk3ZjYtOTQwOTY2YTBiZGUwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBVN3gDAN BgkqhkiG9w0BAQsFAAOCAQEAh1xSwIa+NAdS9Rd2HFO2n/x2xFfF7AzmDkpMYW6n B1IXKqROFdYN34Je0wcPfHSPicY44eqvqjLUBY1lDjxiTRQ0szLBEum/GtBddKFM tmfepM87VNsnwHBuksNtWTLdiJanwsPKVY8bsH2touuX6e1lW77owlmGreIOMPwD ui8oLu9itdns0AxGoFWzKk+sYoq4v0+Jx8VZBL+fJTSaJGbuFZn5TKh2OAMrMSpj yK6hP5OVTPMANXE5zLRGOAR4+6Lz62360t5m7p3xHJdBA2JUXDKt0C2is9WwaGJl G2tyWRAVoNTYKW0YBcK8nbK3c5lyRW/qLrTHWyA0eUYdqA== -----END CERTIFICATE-----Generated at Sat Dec 6 18:34:24 2025 by rpki-client