This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/16337db0-8420-40f0-982b-9d50c20f4e08.roa File: 16337db0-8420-40f0-982b-9d50c20f4e08.roa (raw, json) Hash identifier: Q1zKDMLqlz6WYNz72F0YZSs2jEfr5UYllUZodp/3PLw= Subject key identifier: 89:1D:3B:E1:4E:05:FD:A0:B4:F7:D0:4D:95:C0:B2:CD:2B:71:B6:D7 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 6F39A4E365E350AB2CF24BB85443553F779A8B61 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/16337db0-8420-40f0-982b-9d50c20f4e08.roa Signing time: Wed 10 Dec 2025 06:50:07 +0000 ROA not before: Wed 10 Dec 2025 06:50:07 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 193.57.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 16:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:39:a4:e3:65:e3:50:ab:2c:f2:4b:b8:54:43:55:3f:77:9a:8b:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:50:07 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=96275c935f685c5ec1f4a75395da294f6a18d6ac19fec38d03a80d71690c3e47, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:15:8c:db:7b:32:2e:c5:2c:09:70:1e:f4:5d: 89:e8:80:0c:ec:4d:31:a7:3b:c1:cf:65:29:1c:c0: 2d:8e:d1:e2:82:48:2a:b6:04:1e:57:bb:98:99:c6: 2a:18:d0:a5:e5:78:9f:5a:1c:14:a1:b1:47:4b:6d: 46:ed:cd:b3:7f:51:17:49:a2:70:8e:38:73:a4:47: b7:fe:7c:e5:4d:b8:46:49:ce:2f:34:0e:5d:ec:74: 30:05:e2:cc:69:86:7a:e3:bf:05:8b:b2:fc:70:16: 64:4b:14:bd:a3:9a:4e:5a:e1:ae:6d:53:34:04:6c: 7c:89:51:19:7a:21:d0:26:0d:33:a1:ae:ea:fc:aa: 58:c6:3d:23:cc:11:90:f7:1a:91:da:d6:d7:0d:6d: f6:31:f1:f1:d0:37:61:c1:c3:60:46:f8:9a:a4:d5: a4:73:57:ce:0d:a1:fc:60:e5:6a:b6:6d:86:34:cd: 79:7a:25:3c:2d:47:3b:f8:7e:ea:54:26:bf:76:8e: b8:c0:1c:1f:02:c7:91:90:49:76:27:20:bf:01:d9: 0b:be:32:c6:f1:81:03:df:ef:6d:26:77:9c:5f:a5: e4:6b:ea:e0:39:df:48:7e:d0:58:54:e1:dc:d9:5a: 10:5b:c6:ad:2b:53:05:b9:4c:9a:45:f9:0d:d9:eb: 29:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:1D:3B:E1:4E:05:FD:A0:B4:F7:D0:4D:95:C0:B2:CD:2B:71:B6:D7 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/16337db0-8420-40f0-982b-9d50c20f4e08.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.57.254.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:63:80:3e:e3:a6:0a:e9:b9:0d:48:88:83:41:92:18:95:ab: 35:23:15:6e:12:71:e6:86:d2:00:fb:0b:02:1d:a3:6a:dd:e5: 5c:46:14:f6:3a:2f:cb:5f:a4:b7:76:3b:b2:06:01:1f:cb:2c: fa:f4:d6:12:7c:1d:ce:f9:c6:01:8e:b3:25:2f:3b:21:21:bb: ea:0e:64:f5:18:04:a5:1a:10:11:44:76:e2:f0:1c:55:60:fb: f3:cd:5c:92:f6:78:6a:16:d0:aa:79:ed:bf:e0:90:02:4c:d7: 05:01:be:43:e0:44:46:4a:82:a9:cd:c3:99:20:a1:4e:a0:0f: 04:61:95:de:48:50:46:54:a6:d3:09:6f:1a:4d:6f:0b:32:51: 14:bd:82:f5:8e:e6:1a:be:67:3c:e2:33:0c:46:97:90:80:d4: d3:59:5d:d7:1f:05:37:b0:db:c6:bb:7b:bd:e1:95:d9:b1:c6: 5f:92:dc:33:3c:21:5c:11:76:51:3d:a8:8d:6c:99:87:9d:bb: 6c:25:f2:d9:c6:69:52:f3:28:41:46:c9:6f:cd:88:8b:95:77: ba:97:72:5b:86:7c:2b:f0:e3:bc:4a:08:34:74:b9:2a:4f:6d: e9:8c:82:cc:17:a0:9f:6c:35:78:cc:8c:13:90:be:1f:f9:15: 0f:9c:83:93 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUbzmk42XjUKss8ku4VENVP3eai2EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjUwMDdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDk2Mjc1YzkzNWY2ODVjNWVjMWY0YTc1Mzk1ZGEyOTRmNmExOGQ2YWMxOWZl YzM4ZDAzYTgwZDcxNjkwYzNlNDcxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMEVjNt7Mi7FLAlwHvRdieiADOxNMac7wc9lKRzALY7R4oJIKrYEHle7mJnG KhjQpeV4n1ocFKGxR0ttRu3Ns39RF0micI44c6RHt/585U24RknOLzQOXex0MAXi zGmGeuO/BYuy/HAWZEsUvaOaTlrhrm1TNARsfIlRGXoh0CYNM6Gu6vyqWMY9I8wR kPcakdrW1w1t9jHx8dA3YcHDYEb4mqTVpHNXzg2h/GDlarZthjTNeXolPC1HO/h+ 6lQmv3aOuMAcHwLHkZBJdicgvwHZC74yxvGBA9/vbSZ3nF+l5Gvq4DnfSH7QWFTh 3NlaEFvGrStTBblMmkX5DdnrKccCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSJHTvh TgX9oLT30E2VwLLNK3G21zAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv MTYzMzdkYjAtODQyMC00MGYwLTk4MmItOWQ1MGMyMGY0ZTA4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcE5/jAN BgkqhkiG9w0BAQsFAAOCAQEAXmOAPuOmCum5DUiIg0GSGJWrNSMVbhJx5obSAPsL Ah2jat3lXEYU9jovy1+kt3Y7sgYBH8ss+vTWEnwdzvnGAY6zJS87ISG76g5k9RgE pRoQEUR24vAcVWD7881ckvZ4ahbQqnntv+CQAkzXBQG+Q+BERkqCqc3DmSChTqAP BGGV3khQRlSm0wlvGk1vCzJRFL2C9Y7mGr5nPOIzDEaXkIDU01ld1x8FN7Dbxrt7 veGV2bHGX5LcMzwhXBF2UT2ojWyZh527bCXy2cZpUvMoQUbJb82Ii5V3updyW4Z8 K/DjvEoINHS5Kk9t6YyCzBegn2w1eMyME5C+H/kVD5yDkw== -----END CERTIFICATE-----Generated at Thu Jan 22 22:18:24 2026 by rpki-client