This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/07a0a2d7-7de7-4807-863f-fcbe7f8106e1.roa File: 07a0a2d7-7de7-4807-863f-fcbe7f8106e1.roa (raw, json) Hash identifier: dHC2Y0dZgYVLSDlYePDD77CkfnhzVj1kfsl9vM09hV0= Subject key identifier: ED:46:6E:03:3B:13:91:CD:49:5D:5C:39:50:D8:AC:14:EA:AD:90:7D Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 46F876457528E747E31F2E67DB32B0C4F8F130E0 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/07a0a2d7-7de7-4807-863f-fcbe7f8106e1.roa Signing time: Wed 10 Dec 2025 06:30:09 +0000 ROA not before: Wed 10 Dec 2025 06:30:09 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 51.35.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f8:76:45:75:28:e7:47:e3:1f:2e:67:db:32:b0:c4:f8:f1:30:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:30:09 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=edea31b725be99d25b8d70eac2071ac894eeab611a105899780fe6a766569ffe, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6f:56:27:57:39:cf:ac:6d:c0:2e:5f:03:b1: 26:72:75:71:02:98:28:03:c1:fc:01:60:c0:ad:f7: 20:4d:69:6c:05:c0:01:23:57:8d:8c:3e:d9:f5:b4: 8e:79:f1:46:45:3d:14:12:64:03:98:04:f0:80:7c: 0e:dd:6e:94:28:5c:da:ba:74:e9:dd:05:68:7d:3a: db:9c:82:98:53:87:1e:37:28:2b:7f:35:f0:db:79: 17:60:6c:ac:b1:5c:20:12:dc:13:89:41:2a:b1:16: 2c:6d:79:82:5a:78:b7:6b:1d:ce:e3:1c:15:af:b1: ed:4a:a8:fb:db:cf:74:68:22:dd:0e:11:a2:bf:b4: 3d:e0:ff:3e:50:99:cf:33:6a:7b:82:78:27:43:c6: 71:49:87:34:29:a6:d3:af:30:eb:00:eb:57:0c:56: 5d:ae:86:ec:b9:2d:6d:fc:9a:1d:ad:e7:43:d3:ef: c8:97:53:c0:cb:d5:91:20:c9:75:dd:cb:a1:82:5e: 61:1d:dc:30:56:9d:d3:c3:45:f2:59:d8:cd:e6:51: a9:8e:d6:f2:d0:36:8e:43:07:73:f4:75:21:b3:4d: 55:f1:1d:cc:9b:73:e4:7d:2e:65:a9:c3:86:87:56: 56:de:35:15:5f:6c:fd:a0:af:a8:a2:2c:0f:9c:5f: 96:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:46:6E:03:3B:13:91:CD:49:5D:5C:39:50:D8:AC:14:EA:AD:90:7D X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/07a0a2d7-7de7-4807-863f-fcbe7f8106e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.35.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:d5:be:61:f3:1a:ec:d2:e0:1e:2f:0f:7e:5e:5b:14:65:10: b9:bb:30:5c:5b:0e:67:62:76:a2:57:7d:24:f2:b1:74:db:9c: 5b:8c:cc:d6:bf:fe:f4:1c:36:2d:0a:bc:af:be:1f:fa:f7:78: f8:45:02:cf:56:18:9b:65:aa:27:05:20:c4:48:de:5d:78:07: 03:1c:54:f4:52:73:5a:a1:27:ff:6a:16:d6:41:7c:43:19:61: 3d:ae:50:06:41:09:10:eb:ff:4e:f9:06:a8:d4:10:ba:4f:0c: 21:b1:15:26:2d:8c:05:49:13:b1:a6:6c:9d:b6:01:3c:a8:a8: c7:9a:e1:58:de:c6:bc:dc:70:5e:76:6a:7f:25:e6:96:18:6c: 61:c5:18:11:cd:8c:4d:50:1b:fb:83:58:ac:5e:83:76:27:3f: 7e:7b:45:64:59:02:82:02:30:71:02:f2:79:a4:02:c4:d7:13: 85:75:5c:4c:b3:3d:10:b5:5d:f7:fb:9c:87:0d:f3:80:3b:cf: d9:b5:42:d6:b9:29:68:74:39:0f:3d:9f:e3:ea:04:74:23:f9: d6:09:5f:aa:64:5c:e4:02:70:10:22:43:74:67:20:3f:a3:06: 55:e6:bb:f8:70:60:9a:84:a0:6a:d3:04:1b:73:d0:ed:a4:9f: 26:9b:16:ae -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIURvh2RXUo50fjHy5n2zKwxPjxMOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjMwMDlaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGVkZWEzMWI3MjViZTk5ZDI1YjhkNzBlYWMyMDcxYWM4OTRlZWFiNjExYTEw NTg5OTc4MGZlNmE3NjY1NjlmZmUxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN1vVidXOc+sbcAuXwOxJnJ1cQKYKAPB/AFgwK33IE1pbAXAASNXjYw+2fW0 jnnxRkU9FBJkA5gE8IB8Dt1ulChc2rp06d0FaH0625yCmFOHHjcoK3818Nt5F2Bs rLFcIBLcE4lBKrEWLG15glp4t2sdzuMcFa+x7Uqo+9vPdGgi3Q4Ror+0PeD/PlCZ zzNqe4J4J0PGcUmHNCmm068w6wDrVwxWXa6G7LktbfyaHa3nQ9PvyJdTwMvVkSDJ dd3LoYJeYR3cMFad08NF8lnYzeZRqY7W8tA2jkMHc/R1IbNNVfEdzJtz5H0uZanD hodWVt41FV9s/aCvqKIsD5xfllsCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBTtRm4D OxORzUldXDlQ2KwU6q2QfTAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv MDdhMGEyZDctN2RlNy00ODA3LTg2M2YtZmNiZTdmODEwNmUxLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADMjMA0G CSqGSIb3DQEBCwUAA4IBAQAm1b5h8xrs0uAeLw9+XlsUZRC5uzBcWw5nYnaiV30k 8rF025xbjMzWv/70HDYtCryvvh/693j4RQLPVhibZaonBSDESN5deAcDHFT0UnNa oSf/ahbWQXxDGWE9rlAGQQkQ6/9O+Qao1BC6TwwhsRUmLYwFSROxpmydtgE8qKjH muFY3sa83HBedmp/JeaWGGxhxRgRzYxNUBv7g1isXoN2Jz9+e0VkWQKCAjBxAvJ5 pALE1xOFdVxMsz0QtV33+5yHDfOAO8/ZtULWuSlodDkPPZ/j6gR0I/nWCV+qZFzk AnAQIkN0ZyA/owZV5rv4cGCahKBq0wQbc9DtpJ8mmxau -----END CERTIFICATE-----Generated at Wed Jan 7 23:49:35 2026 by rpki-client