This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/80a19bac-b522-4340-8501-74870117a3ce.roa File: 80a19bac-b522-4340-8501-74870117a3ce.roa (raw, json) Hash identifier: LB/nFDEG38bqj6nOa3KFgWQEMi/eAnhjLKBSX3Nz8DQ= Subject key identifier: 99:F3:8A:40:AD:DF:E1:F5:6F:E8:9F:3C:92:5A:0A:06:2E:D8:25:C6 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 2F5B1450A1B19BCF4E9F3237AB5B7BD86EFA8151 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/80a19bac-b522-4340-8501-74870117a3ce.roa Signing time: Wed 10 Dec 2025 06:40:02 +0000 ROA not before: Wed 10 Dec 2025 06:40:02 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.80.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:5b:14:50:a1:b1:9b:cf:4e:9f:32:37:ab:5b:7b:d8:6e:fa:81:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:40:02 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=a6aff21c036f64b5ef2281be35344d5838e9cfcb9e9f7700c328c0a111789521, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:dc:55:26:b9:8a:e1:ff:8b:06:c0:90:43:10: 1c:f6:f1:ec:d2:eb:76:29:a5:e0:88:0d:fe:e0:f0: 6d:58:29:11:65:38:d5:88:4a:5c:f7:e8:3b:fe:8e: 5a:c2:43:bd:86:15:73:91:f5:a1:37:7e:b2:94:53: a8:7a:95:12:ed:cb:6b:81:c3:05:62:11:78:d8:40: da:a4:cf:9d:c4:e2:e4:52:92:e1:34:2a:cd:29:c1: 6e:ba:38:47:9c:76:b6:14:e7:75:6b:98:0b:31:6b: 22:f7:6e:cd:4a:c6:5e:b3:ea:93:dc:78:8f:ed:e1: 6d:9f:2a:07:75:06:5d:41:9b:b3:9c:90:6b:fc:cb: 60:26:4e:0d:2c:76:55:ea:2c:ba:fa:54:34:3e:8a: a5:81:ef:24:3b:ea:b5:87:21:1f:8d:81:0e:f5:1f: 29:ba:f2:2a:75:80:a0:61:66:f2:6f:15:79:b0:6d: c3:43:d8:a4:de:a1:c2:c4:df:5f:96:e9:43:d1:34: db:e1:99:fd:b9:4a:b9:f4:92:d7:a7:a1:5e:f5:5c: 8b:fc:e0:ed:d1:99:56:45:c3:46:3a:bd:78:c5:89: bc:ce:15:89:8a:53:3e:83:f8:35:19:10:d0:19:a0: f5:0b:26:5d:84:19:1f:1b:79:d5:06:29:92:27:8d: b3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F3:8A:40:AD:DF:E1:F5:6F:E8:9F:3C:92:5A:0A:06:2E:D8:25:C6 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/80a19bac-b522-4340-8501-74870117a3ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5f:71:a9:7e:e7:8c:df:b9:2e:5c:92:bf:33:f0:12:31:91:1f: bb:fd:03:d1:2b:09:60:ad:3f:47:c3:62:ef:fe:02:ac:91:24: ba:b9:95:bc:61:c9:bd:53:0e:cb:f5:9f:f1:b8:c8:ba:9d:1e: cd:6f:46:3c:00:2e:8c:9f:0a:35:6f:cf:c5:a5:3b:9c:2e:75: f1:3d:12:b6:76:46:f5:cd:76:b7:70:19:fd:70:a5:17:22:c7: b0:16:21:b0:e3:bd:5d:7c:79:45:b9:cc:a5:2c:7a:a1:b4:5b: 09:81:66:89:d3:b3:57:10:20:0a:a5:61:74:e7:5a:42:48:a2: 92:71:f3:29:a0:39:e0:e3:20:a4:9c:5f:cf:68:c9:5c:9f:2d: e0:7d:ae:5d:71:94:14:9a:a9:f2:13:5e:52:ab:11:03:ef:91: aa:6f:01:7a:db:f4:a1:0b:a5:36:4d:04:cc:a8:c2:8f:c4:e2: 73:2a:ac:85:bc:2f:bb:4a:07:ca:3a:25:6b:21:a5:27:8b:0b: 8b:f4:cb:e8:78:3a:2d:30:0a:c0:fd:a8:b6:b3:0c:97:a7:19: ae:55:28:de:8d:24:13:5a:43:45:18:47:4d:81:14:60:a6:9f: e5:15:a9:f6:26:0a:d3:e5:19:c3:96:e2:f6:40:e8:01:31:0c: 0b:1f:46:73 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUL1sUUKGxm89OnzI3q1t72G76gVEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjQwMDJaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGE2YWZmMjFjMDM2ZjY0YjVlZjIyODFiZTM1MzQ0ZDU4MzhlOWNmY2I5ZTlm NzcwMGMzMjhjMGExMTE3ODk1MjExLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJPcVSa5iuH/iwbAkEMQHPbx7NLrdiml4IgN/uDwbVgpEWU41YhKXPfoO/6O WsJDvYYVc5H1oTd+spRTqHqVEu3La4HDBWIReNhA2qTPncTi5FKS4TQqzSnBbro4 R5x2thTndWuYCzFrIvduzUrGXrPqk9x4j+3hbZ8qB3UGXUGbs5yQa/zLYCZODSx2 VeosuvpUND6KpYHvJDvqtYchH42BDvUfKbryKnWAoGFm8m8VebBtw0PYpN6hwsTf X5bpQ9E02+GZ/blKufSS16ehXvVci/zg7dGZVkXDRjq9eMWJvM4ViYpTPoP4NRkQ 0Bmg9QsmXYQZHxt51QYpkieNsxsCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBSZ84pA rd/h9W/onzySWgoGLtglxjAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ODBhMTliYWMtYjUyMi00MzQwLTg1MDEtNzQ4NzAxMTdhM2NlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADNQMA0G CSqGSIb3DQEBCwUAA4IBAQBfcal+54zfuS5ckr8z8BIxkR+7/QPRKwlgrT9Hw2Lv /gKskSS6uZW8Ycm9Uw7L9Z/xuMi6nR7Nb0Y8AC6Mnwo1b8/FpTucLnXxPRK2dkb1 zXa3cBn9cKUXIsewFiGw471dfHlFucylLHqhtFsJgWaJ07NXECAKpWF051pCSKKS cfMpoDng4yCknF/PaMlcny3gfa5dcZQUmqnyE15SqxED75GqbwF62/ShC6U2TQTM qMKPxOJzKqyFvC+7SgfKOiVrIaUniwuL9MvoeDotMArA/ai2swyXpxmuVSjejSQT WkNFGEdNgRRgpp/lFan2JgrT5RnDluL2QOgBMQwLH0Zz -----END CERTIFICATE-----Generated at Fri Dec 19 19:17:40 2025 by rpki-client