This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/63e023f1-83fd-412f-8365-33afe1ac80af.roa File: 63e023f1-83fd-412f-8365-33afe1ac80af.roa (raw, json) Hash identifier: iep90bdEV/NEuEyiLkaovZoXvef+/FABHNHSzxR16wE= Subject key identifier: C9:EA:C6:CF:C6:EA:D1:50:60:3A:1D:07:EF:29:6A:33:2D:8B:9D:F0 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 69800F1B4FD8A06F94A0A7C71C5A0BBFDFFD6709 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/63e023f1-83fd-412f-8365-33afe1ac80af.roa Signing time: Wed 10 Dec 2025 06:50:47 +0000 ROA not before: Wed 10 Dec 2025 06:50:47 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.160.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:80:0f:1b:4f:d8:a0:6f:94:a0:a7:c7:1c:5a:0b:bf:df:fd:67:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:50:47 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=fb27413b60dbc38d9629133dc0ed7f68e1f6f7966205965f8e1cbcd4ed4417a7, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1b:5f:8f:cb:11:8a:b2:e1:aa:73:23:e9:0c: df:af:a8:7f:e0:a0:92:a1:58:80:4a:c3:9b:e8:f5: 82:24:e7:ed:c3:67:50:2d:9c:b2:a8:0d:42:15:68: 42:bf:23:ab:10:31:d9:75:26:f5:3b:d7:02:33:bd: 6f:ac:5a:d2:a6:e3:4b:42:49:ce:eb:80:00:c8:1b: 63:4f:d2:f3:b1:1e:af:de:6c:37:fb:71:33:0c:6a: 8c:d5:b9:89:54:ad:34:6c:11:01:f4:e9:cd:c3:df: 11:78:e8:cb:1b:04:0c:5c:0f:7c:25:e9:72:22:b7: ac:bd:36:bf:62:e2:20:bf:c0:30:07:68:2d:e7:aa: 83:af:60:9f:0a:de:85:ee:cb:02:1a:7c:5e:c0:6a: c1:aa:a8:6a:f9:89:c0:02:a8:c3:3b:48:6f:a6:f7: 94:82:f5:de:22:6a:96:a8:73:78:df:c2:ea:55:31: d9:de:c9:18:f1:95:a9:d9:0f:0e:b5:d8:fe:b5:a1: e4:15:0e:7b:45:34:a1:3b:d2:af:f9:bc:ce:4b:9e: 5f:b1:f2:f7:2e:9f:57:e8:ef:9e:d3:f6:9f:1f:ce: 70:54:9a:e2:6b:84:22:bd:19:6b:6f:4a:4c:0c:c8: 7f:ff:34:8e:72:42:97:33:ef:60:a4:7f:dd:25:57: 71:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:EA:C6:CF:C6:EA:D1:50:60:3A:1D:07:EF:29:6A:33:2D:8B:9D:F0 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/63e023f1-83fd-412f-8365-33afe1ac80af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.160.0.0/16 Signature Algorithm: sha256WithRSAEncryption 09:0f:5c:7c:16:4c:ed:76:c7:60:70:92:3c:91:b9:f8:92:0e: ca:de:f9:f2:0b:7a:42:ed:7f:8e:c2:56:aa:bf:3c:8c:0b:36: 14:91:0d:db:0f:b3:7f:d8:f7:a1:b2:86:e4:c7:29:98:27:bc: ef:ff:9d:f7:7c:05:e4:8c:f1:e7:4b:91:35:25:97:f6:9a:e2: 9f:d8:19:cb:2e:39:16:e8:cc:6d:d0:82:d2:20:e5:f5:71:2f: f0:47:53:5b:ee:a3:37:6c:c8:75:00:01:b5:ed:09:b0:55:79: 10:d0:93:df:75:d9:c2:a3:51:1b:46:b4:f2:71:2d:11:ad:0b: bd:b5:85:86:0f:3f:2d:e8:9c:0a:c1:9a:5a:cf:1e:dd:0f:66: 55:99:d9:97:02:9a:0e:db:42:e8:35:aa:ae:61:17:9e:a4:96: 5d:f1:7e:c1:43:77:26:70:c7:df:02:13:a7:63:c2:32:9c:bb: 23:c5:61:15:e5:16:ec:e1:01:18:76:2d:a9:18:49:3e:34:4a: 55:8d:3c:1d:b9:cc:3f:08:84:5b:e7:1e:09:8e:2c:62:36:5f: d3:78:52:03:aa:a7:45:f8:e4:86:af:75:16:7e:9e:ae:2e:54: 3d:ae:e4:e4:e4:7c:ac:ca:8c:3f:6d:56:99:99:8a:89:7a:1e: b3:12:26:b6 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUaYAPG0/YoG+UoKfHHFoLv9/9ZwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjUwNDdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGZiMjc0MTNiNjBkYmMzOGQ5NjI5MTMzZGMwZWQ3ZjY4ZTFmNmY3OTY2MjA1 OTY1ZjhlMWNiY2Q0ZWQ0NDE3YTcxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYbX4/LEYqy4apzI+kM36+of+CgkqFYgErDm+j1giTn7cNnUC2csqgNQhVo Qr8jqxAx2XUm9TvXAjO9b6xa0qbjS0JJzuuAAMgbY0/S87Eer95sN/txMwxqjNW5 iVStNGwRAfTpzcPfEXjoyxsEDFwPfCXpciK3rL02v2LiIL/AMAdoLeeqg69gnwre he7LAhp8XsBqwaqoavmJwAKowztIb6b3lIL13iJqlqhzeN/C6lUx2d7JGPGVqdkP DrXY/rWh5BUOe0U0oTvSr/m8zkueX7Hy9y6fV+jvntP2nx/OcFSa4muEIr0Za29K TAzIf/80jnJClzPvYKR/3SVXcfcCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBTJ6sbP xurRUGA6HQfvKWozLYud8DAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv NjNlMDIzZjEtODNmZC00MTJmLTgzNjUtMzNhZmUxYWM4MGFmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADOgMA0G CSqGSIb3DQEBCwUAA4IBAQAJD1x8FkztdsdgcJI8kbn4kg7K3vnyC3pC7X+Owlaq vzyMCzYUkQ3bD7N/2PehsobkxymYJ7zv/533fAXkjPHnS5E1JZf2muKf2BnLLjkW 6Mxt0ILSIOX1cS/wR1Nb7qM3bMh1AAG17QmwVXkQ0JPfddnCo1EbRrTycS0RrQu9 tYWGDz8t6JwKwZpazx7dD2ZVmdmXApoO20LoNaquYReepJZd8X7BQ3cmcMffAhOn Y8IynLsjxWEV5Rbs4QEYdi2pGEk+NEpVjTwducw/CIRb5x4JjixiNl/TeFIDqqdF +OSGr3UWfp6uLlQ9ruTk5Hysyow/bVaZmYqJeh6zEia2 -----END CERTIFICATE-----Generated at Sat Dec 13 20:05:22 2025 by rpki-client