This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/913f508a-6669-4aae-b87b-35989f3889f0.roa File: 913f508a-6669-4aae-b87b-35989f3889f0.roa (raw, json) Hash identifier: o4Sr/MM4AzDnrs8oCfzslIzjceM7elITaMUSh3a8rD0= Subject key identifier: 56:A0:D9:06:9E:08:CF:59:6B:03:80:09:44:6B:C5:3C:31:A4:0F:85 Certificate issuer: /CN=df759b5af3da6c9df033b0de998970a4e79655d0 Certificate serial: 26FB8E1FF0BA7BF6D965E0333A923D4EEFF76BC0 Authority key identifier: DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/913f508a-6669-4aae-b87b-35989f3889f0.roa Signing time: Fri 23 Jan 2026 19:06:47 +0000 ROA not before: Fri 23 Jan 2026 19:06:47 +0000 ROA not after: Thu 23 Apr 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.0.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.mft rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:fb:8e:1f:f0:ba:7b:f6:d9:65:e0:33:3a:92:3d:4e:ef:f7:6b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df759b5af3da6c9df033b0de998970a4e79655d0 Validity Not Before: Jan 23 19:06:47 2026 GMT Not After : Apr 23 23:59:59 2026 GMT Subject: serialNumber=e31f351d67ff9a438df87502ec0d6a3c757267aa3b0bc238401d0f37ddcff35a, CN=98d67deb-bb75-4e77-b1a0-36016b2d6350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:56:70:61:91:aa:2d:d8:5e:2f:10:36:ad:29: ca:b6:c6:c1:89:01:9a:5f:e2:15:07:78:43:92:5c: 9d:53:53:e6:95:87:44:8c:3e:2d:91:33:ab:7c:ce: d0:c0:cb:88:01:69:ab:82:9d:e2:d4:77:b4:c4:b9: e7:59:8f:8c:6d:80:cb:cf:b0:a0:cb:16:12:a9:ab: 2f:5b:1d:14:cc:3d:b2:73:49:5d:3e:8e:0e:06:c8: 5e:7b:f3:0f:fa:30:c2:37:44:6f:ea:10:4b:b4:aa: 76:67:ce:cd:a5:fc:03:32:da:f8:a2:17:40:8d:21: 4a:78:a3:bd:9c:34:18:c6:62:3e:9c:f1:7d:4c:a7: 86:91:57:a8:c9:43:e0:27:90:1e:2d:96:73:6e:30: 5d:cc:8a:73:85:e3:af:d4:6d:f4:67:d9:4c:b7:8d: 0e:1c:1d:58:57:de:53:99:51:9c:43:3c:a0:e5:99: 6d:14:05:97:96:34:9c:80:a9:da:e2:f6:e6:7f:ae: 0a:37:c8:7e:b1:63:fa:29:bb:5d:89:02:73:df:6e: 83:3d:20:4d:63:7b:cf:3d:70:20:81:9e:c4:28:54: 1f:cb:18:74:bf:b0:29:13:80:46:b8:f9:ba:96:83: 9f:53:78:f3:41:70:93:93:e6:d1:a2:25:92:49:2f: 37:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A0:D9:06:9E:08:CF:59:6B:03:80:09:44:6B:C5:3C:31:A4:0F:85 X509v3 Authority Key Identifier: keyid:DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/913f508a-6669-4aae-b87b-35989f3889f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.0.251.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:a4:4c:f8:8e:e4:7f:1f:c4:d2:d5:b6:8b:2f:3a:9a:08:c2: 2b:45:bd:8d:56:75:00:b9:5d:a3:c7:a2:6f:bb:93:bb:b5:6c: 51:85:83:7d:4c:b0:e3:90:0b:09:70:5d:00:d1:9d:e8:d3:96: a4:fd:71:1c:b4:0e:85:74:69:99:14:97:43:0c:a1:6a:ea:8d: 04:f5:56:4c:c5:2f:12:9f:3f:d3:f6:16:77:41:aa:40:0b:20: d1:44:5d:1a:af:a9:72:97:d0:ef:05:e4:87:c3:00:d5:2a:78: fd:38:cc:fa:83:3e:7d:98:75:f9:16:a3:41:f8:83:e1:75:47: 1c:c3:66:18:cc:1a:04:92:bb:63:56:ec:c8:c8:41:5c:d8:7e: cb:bd:9b:64:68:93:6c:5a:ca:a9:7f:c0:f1:57:15:82:d0:05: c6:82:12:27:1e:e8:46:5a:1c:63:fa:70:f7:75:0b:9c:da:5e: 5b:46:77:9e:f6:19:78:88:22:be:98:90:d0:b7:b4:78:51:e5: 1c:6b:f5:04:2c:73:b4:bf:fe:d7:9d:5e:81:76:61:14:67:56: e6:bb:8e:d7:97:f3:3f:c1:7e:d6:fb:85:b5:68:9c:f1:ba:72: f5:22:51:de:d4:43:64:35:2d:26:d0:ac:7e:3b:40:a3:da:e5: 58:8d:d0:32 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUJvuOH/C6e/bZZeAzOpI9Tu/3a8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZGY3NTliNWFmM2RhNmM5ZGYwMzNiMGRlOTk4OTcwYTRl Nzk2NTVkMDAeFw0yNjAxMjMxOTA2NDdaFw0yNjA0MjMyMzU5NTlaMHoxSTBHBgNV BAUTQGUzMWYzNTFkNjdmZjlhNDM4ZGY4NzUwMmVjMGQ2YTNjNzU3MjY3YWEzYjBi YzIzODQwMWQwZjM3ZGRjZmYzNWExLTArBgNVBAMTJDk4ZDY3ZGViLWJiNzUtNGU3 Ny1iMWEwLTM2MDE2YjJkNjM1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOBWcGGRqi3YXi8QNq0pyrbGwYkBml/iFQd4Q5JcnVNT5pWHRIw+LZEzq3zO 0MDLiAFpq4Kd4tR3tMS551mPjG2Ay8+woMsWEqmrL1sdFMw9snNJXT6ODgbIXnvz D/owwjdEb+oQS7SqdmfOzaX8AzLa+KIXQI0hSnijvZw0GMZiPpzxfUynhpFXqMlD 4CeQHi2Wc24wXcyKc4Xjr9Rt9GfZTLeNDhwdWFfeU5lRnEM8oOWZbRQFl5Y0nICp 2uL25n+uCjfIfrFj+im7XYkCc99ugz0gTWN7zz1wIIGexChUH8sYdL+wKROARrj5 upaDn1N480Fwk5Pm0aIlkkkvN7kCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRWoNkG ngjPWWsDgAlEa8U8MaQPhTAfBgNVHSMEGDAWgBTfdZta89psnfAzsN6ZiXCk55ZV 0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMzV2JXdlBh Ykozd003RGVtWWx3cE9lV1ZkQS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9mZTM3MzdmYi0wOTVkLTQ0NGMtOTJmNC0zZjcyMjFmYjU0NGMv OTEzZjUwOGEtNjY2OS00YWFlLWI4N2ItMzU5ODlmMzg4OWYwLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZmUzNzM3ZmItMDk1ZC00NDRjLTkyZjQtM2Y3MjIxZmI1 NDRjLzBYRTV0WlZ5dUdlYUFfaDctMXFCcDdhWTRTby5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADMA+zAN BgkqhkiG9w0BAQsFAAOCAQEAjaRM+I7kfx/E0tW2iy86mgjCK0W9jVZ1ALldo8ei b7uTu7VsUYWDfUyw45ALCXBdANGd6NOWpP1xHLQOhXRpmRSXQwyhauqNBPVWTMUv Ep8/0/YWd0GqQAsg0URdGq+pcpfQ7wXkh8MA1Sp4/TjM+oM+fZh1+RajQfiD4XVH HMNmGMwaBJK7Y1bsyMhBXNh+y72bZGiTbFrKqX/A8VcVgtAFxoISJx7oRlocY/pw 93ULnNpeW0Z3nvYZeIgivpiQ0Le0eFHlHGv1BCxztL/+151egXZhFGdW5ruO15fz P8F+1vuFtWic8bpy9SJR3tRDZDUtJtCsfjtAo9rlWI3QMg== -----END CERTIFICATE-----Generated at Sun Jan 25 04:16:36 2026 by rpki-client