This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/05d2e6e0-648a-472a-b287-1b954eae646d.roa File: 05d2e6e0-648a-472a-b287-1b954eae646d.roa (raw, json) Hash identifier: bfRL2HUUYVMvycaxxOvSfC9534xIgz12TpwIYms5Ia8= Subject key identifier: E6:73:1A:D8:C3:9B:1D:83:F4:E8:9B:8B:59:3D:D2:8A:26:E7:46:DC Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 545702AA9741FB0623E4370F06710FAE7AD62E42 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/05d2e6e0-648a-472a-b287-1b954eae646d.roa Signing time: Tue 25 Nov 2025 20:10:24 +0000 ROA not before: Tue 25 Nov 2025 20:10:24 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 83.118.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 17:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:57:02:aa:97:41:fb:06:23:e4:37:0f:06:71:0f:ae:7a:d6:2e:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 25 20:10:24 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=7cd17d17c472543b82eb7b72cb65af524c414212d78df557f27eb32f18986b26, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:15:ed:60:1c:68:4c:c5:77:8f:ce:1d:0b:9f: 55:0f:7b:3b:ae:d8:32:b4:e3:4b:3d:f0:f8:ee:02: b0:61:5f:a9:dc:81:10:14:36:0a:05:30:f1:04:2c: b8:78:6d:e2:35:cb:d0:7a:39:c6:25:75:cb:7a:42: e4:78:e0:35:5d:62:cb:98:97:b3:c9:c4:16:18:25: 32:53:a2:78:26:72:ff:a2:15:0c:60:15:02:6a:c4: 9f:c4:36:42:70:42:38:df:36:70:83:5f:19:bb:08: f6:f9:5e:bf:23:bf:35:ea:10:1f:c8:c3:d7:01:a2: 49:6a:33:fa:ca:32:41:83:26:ab:19:bf:e5:a0:1f: 5d:7d:e9:9f:a4:dd:cb:7a:57:3e:78:ab:01:34:6f: fe:ea:09:fc:f5:88:25:b1:b9:8c:45:1f:07:a2:97: 1a:88:ed:0c:72:d5:e8:df:a2:46:aa:1e:2f:ef:5d: 1a:27:f5:54:26:7e:51:c7:b6:8e:33:d7:1c:3b:18: f3:e8:a3:04:21:45:fe:fc:04:3f:7b:17:6d:6e:de: 95:69:33:75:5b:89:1c:b8:99:63:0e:a1:95:da:39: 1d:b4:a1:d1:c5:15:59:ea:ac:4b:99:1a:4c:58:85: c0:4d:fa:c7:6e:60:09:e2:09:22:d4:63:4f:5a:83: 0f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:73:1A:D8:C3:9B:1D:83:F4:E8:9B:8B:59:3D:D2:8A:26:E7:46:DC X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/05d2e6e0-648a-472a-b287-1b954eae646d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.118.234.0/23 Signature Algorithm: sha256WithRSAEncryption d1:62:74:0e:c6:f6:aa:af:95:e2:6d:3f:c0:d8:6f:03:79:bf: 99:7f:d0:dd:53:4f:bc:08:be:08:97:a2:a1:e7:65:d4:cc:e4: d2:e0:75:80:74:a2:8c:b2:a2:cb:b9:8d:a7:d4:53:96:56:6e: 00:31:0c:28:5a:2e:de:63:16:39:28:e3:51:34:1f:13:d7:ad: ba:53:a3:af:87:99:68:00:b6:f4:cb:85:5b:62:74:0c:a9:72: 41:bb:b1:19:67:c4:6a:5e:64:5f:0b:30:e1:31:57:e3:b9:5a: da:66:97:38:e6:25:60:ab:9e:f8:13:2d:72:d1:f9:3f:5c:b2: 37:56:49:4c:22:e6:2e:3e:67:76:ab:ad:96:18:e7:9a:60:06: eb:b8:ba:fe:07:f6:ed:e4:98:fb:64:37:ab:f3:33:c6:89:04: 86:a9:d8:13:2b:fe:b5:17:24:72:b8:45:af:d3:c7:4b:3f:f5: e4:c7:23:d2:6e:27:23:37:f1:61:06:b3:d7:e1:2c:72:37:61: f2:b2:6f:4c:14:9d:68:bb:27:cb:6f:fd:f5:51:74:45:cf:c4: 7a:ab:ee:84:4b:8c:69:b2:71:31:a2:04:09:65:98:96:80:8c: 2e:07:d8:79:c9:8a:04:f7:1d:65:e9:76:17:40:ea:97:16:51: 05:3c:d5:84 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUVFcCqpdB+wYj5DcPBnEPrnrWLkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMjUyMDEwMjRaFw0yNjAyMjMyMzU5NTlaMHoxSTBHBgNV BAUTQDdjZDE3ZDE3YzQ3MjU0M2I4MmViN2I3MmNiNjVhZjUyNGM0MTQyMTJkNzhk ZjU1N2YyN2ViMzJmMTg5ODZiMjYxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALoV7WAcaEzFd4/OHQufVQ97O67YMrTjSz3w+O4CsGFfqdyBEBQ2CgUw8QQs uHht4jXL0Ho5xiV1y3pC5HjgNV1iy5iXs8nEFhglMlOieCZy/6IVDGAVAmrEn8Q2 QnBCON82cINfGbsI9vlevyO/NeoQH8jD1wGiSWoz+soyQYMmqxm/5aAfXX3pn6Td y3pXPnirATRv/uoJ/PWIJbG5jEUfB6KXGojtDHLV6N+iRqoeL+9dGif1VCZ+Uce2 jjPXHDsY8+ijBCFF/vwEP3sXbW7elWkzdVuJHLiZYw6hldo5HbSh0cUVWeqsS5ka TFiFwE36x25gCeIJItRjT1qDD0kCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTmcxrY w5sdg/Tom4tZPdKKJudG3DAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv MDVkMmU2ZTAtNjQ4YS00NzJhLWIyODctMWI5NTRlYWU2NDZkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVN26jAN BgkqhkiG9w0BAQsFAAOCAQEA0WJ0Dsb2qq+V4m0/wNhvA3m/mX/Q3VNPvAi+CJei oedl1Mzk0uB1gHSijLKiy7mNp9RTllZuADEMKFou3mMWOSjjUTQfE9etulOjr4eZ aAC29MuFW2J0DKlyQbuxGWfEal5kXwsw4TFX47la2maXOOYlYKue+BMtctH5P1yy N1ZJTCLmLj5ndqutlhjnmmAG67i6/gf27eSY+2Q3q/MzxokEhqnYEyv+tRckcrhF r9PHSz/15Mcj0m4nIzfxYQaz1+Escjdh8rJvTBSdaLsny2/99VF0Rc/EeqvuhEuM abJxMaIECWWYloCMLgfYecmKBPcdZel2F0DqlxZRBTzVhA== -----END CERTIFICATE-----Generated at Sat Dec 6 01:12:56 2025 by rpki-client