This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/575d6f80-6d4b-4183-8b86-cc4106bedd78.roa File: 575d6f80-6d4b-4183-8b86-cc4106bedd78.roa (raw, json) Hash identifier: zFPrHkPPM5x9spde3r2SXHdzhrc7utQEuYlZE8DaQcQ= Subject key identifier: 5A:F2:84:30:2A:E5:E0:D5:62:A5:F0:F5:F7:9F:1D:D9:1A:8E:3A:4B Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 1CF2A0AFF9106D96E2814EF9433A3F9EECA1ACCD Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/575d6f80-6d4b-4183-8b86-cc4106bedd78.roa Signing time: Fri 13 Feb 2026 15:30:40 +0000 ROA not before: Fri 13 Feb 2026 15:30:40 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 195.119.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Feb 2026 02:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:f2:a0:af:f9:10:6d:96:e2:81:4e:f9:43:3a:3f:9e:ec:a1:ac:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Feb 13 15:30:40 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=1b40a315f5b7260ec3adeea7d7cd2b87d773c525a1b4c7a685a2c0ac30273b17, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5e:66:18:a8:53:7e:b2:3a:2a:6c:3a:fb:59: 9a:29:c5:d4:4d:d9:4d:c4:47:8f:34:00:0f:2f:85: 16:d2:d9:91:31:8d:f8:8c:95:32:8a:1d:fe:52:a7: 24:98:91:14:56:e9:ab:6d:c8:2a:8a:99:4a:68:a4: 9b:0b:08:67:6a:74:d7:25:25:cd:1e:dc:04:fb:1d: a6:b2:71:5f:1c:74:43:28:a5:40:ef:ed:c2:5d:00: 3a:a2:08:4f:96:16:82:5a:61:b9:eb:b0:87:b8:02: 20:da:e7:84:13:d3:0c:04:0a:89:a5:78:e5:44:be: 0d:23:25:95:57:f5:94:7f:ce:82:14:e4:34:2a:32: 42:87:81:d1:47:b8:b0:1e:fe:09:ad:d8:ee:3a:64: d0:3f:5f:24:2f:f2:89:ad:6b:c2:7c:2d:16:f4:19: 62:ca:5b:8d:06:29:70:53:2f:21:b0:8f:fb:03:55: 06:a4:a1:b7:73:29:ba:80:e2:44:21:13:3a:12:0c: bc:36:6b:10:a1:aa:42:35:b3:cf:64:ee:2d:95:29: 50:04:a8:40:ef:00:ad:b2:50:99:85:1d:97:40:69: 6a:cd:4d:79:09:85:d9:37:b2:7f:12:9a:51:40:08: 18:e7:7e:1f:72:05:d4:ca:89:fc:7d:78:b7:66:7b: f8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F2:84:30:2A:E5:E0:D5:62:A5:F0:F5:F7:9F:1D:D9:1A:8E:3A:4B X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/575d6f80-6d4b-4183-8b86-cc4106bedd78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.119.0.0/16 Signature Algorithm: sha256WithRSAEncryption 49:33:89:0c:07:c2:f0:52:b1:36:9b:a8:2a:5b:32:3f:e3:11: b2:e4:93:ba:91:0f:ad:98:77:36:c6:68:9b:a5:c5:4b:ff:98: 15:86:dd:1a:cb:4c:bc:cc:e0:a2:fd:4f:12:17:14:17:f6:30: 2c:b6:1d:d8:7f:a3:45:f0:e9:bd:0e:d9:80:a1:dd:f0:e1:c1: 80:f6:1a:f9:a0:2a:6f:2c:7e:6a:a0:58:7a:7e:48:4a:71:2e: d3:90:72:56:e0:bc:44:1a:1d:62:fa:9b:91:52:69:2a:04:61: b4:eb:81:7f:5e:1e:20:3c:57:c2:dc:9a:79:53:d9:02:42:35: 7d:79:7e:07:73:20:90:0f:8c:07:e7:59:cb:ff:36:f6:d6:cb: a7:59:fc:1c:04:40:c1:1a:bf:9f:ec:ec:0e:09:fc:ed:a4:a4: c9:ea:a2:90:c4:5b:17:3e:bf:92:af:05:45:4c:65:5c:7b:6a: 6e:42:8e:c3:75:1a:7b:83:87:29:c7:29:88:27:99:ce:60:2f: eb:ac:b1:fe:02:ba:32:45:3d:07:cf:d1:d7:41:e4:7b:83:f0: b7:06:b8:b5:60:0b:19:c4:0b:a3:c0:9d:ec:e0:64:07:b3:a7: 42:bd:cb:4b:3d:be:e9:de:f9:27:da:99:44:68:45:d8:bc:84: 03:05:df:ea -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUHPKgr/kQbZbigU75Qzo/nuyhrM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNjAyMTMxNTMwNDBaFw0yNjA1MTQyMzU5NTlaMHoxSTBHBgNV BAUTQDFiNDBhMzE1ZjViNzI2MGVjM2FkZWVhN2Q3Y2QyYjg3ZDc3M2M1MjVhMWI0 YzdhNjg1YTJjMGFjMzAyNzNiMTcxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1eZhioU36yOipsOvtZminF1E3ZTcRHjzQADy+FFtLZkTGN+IyVMood/lKn JJiRFFbpq23IKoqZSmikmwsIZ2p01yUlzR7cBPsdprJxXxx0QyilQO/twl0AOqII T5YWglphueuwh7gCINrnhBPTDAQKiaV45US+DSMllVf1lH/OghTkNCoyQoeB0Ue4 sB7+Ca3Y7jpk0D9fJC/yia1rwnwtFvQZYspbjQYpcFMvIbCP+wNVBqSht3MpuoDi RCETOhIMvDZrEKGqQjWzz2TuLZUpUASoQO8ArbJQmYUdl0Bpas1NeQmF2TeyfxKa UUAIGOd+H3IF1MqJ/H14t2Z7+PcCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBRa8oQw KuXg1WKl8PX3nx3ZGo46SzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv NTc1ZDZmODAtNmQ0Yi00MTgzLThiODYtY2M0MTA2YmVkZDc4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMN3MA0G CSqGSIb3DQEBCwUAA4IBAQBJM4kMB8LwUrE2m6gqWzI/4xGy5JO6kQ+tmHc2xmib pcVL/5gVht0ay0y8zOCi/U8SFxQX9jAsth3Yf6NF8Om9DtmAod3w4cGA9hr5oCpv LH5qoFh6fkhKcS7TkHJW4LxEGh1i+puRUmkqBGG064F/Xh4gPFfC3Jp5U9kCQjV9 eX4HcyCQD4wH51nL/zb21sunWfwcBEDBGr+f7OwOCfztpKTJ6qKQxFsXPr+SrwVF TGVce2puQo7DdRp7g4cpxymIJ5nOYC/rrLH+AroyRT0Hz9HXQeR7g/C3Bri1YAsZ xAujwJ3s4GQHs6dCvctLPb7p3vkn2plEaEXYvIQDBd/q -----END CERTIFICATE-----Generated at Sat Feb 14 10:47:08 2026 by rpki-client