This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8551266c-ef98-4dd7-801f-d816ee2eeade.roa File: 8551266c-ef98-4dd7-801f-d816ee2eeade.roa (raw, json) Hash identifier: K/RK9AaLRUDD2VdjJBLWWg/2D3/u8V0RcnwAHQpWBBo= Subject key identifier: 61:94:97:2A:C0:86:1A:E9:89:DA:B4:E5:8D:43:31:5E:A0:3D:20:17 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 41B4AAEDA2A789EF0C441E6F1FCB52C153A7CE7D Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8551266c-ef98-4dd7-801f-d816ee2eeade.roa Signing time: Sat 15 Nov 2025 06:50:34 +0000 ROA not before: Sat 15 Nov 2025 06:50:34 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 51.176.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 20 Nov 2025 07:56:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:b4:aa:ed:a2:a7:89:ef:0c:44:1e:6f:1f:cb:52:c1:53:a7:ce:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 15 06:50:34 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=137288a299abffd6560bb2c248aece2446da155d2a58bda65226a1e205c2898a, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:68:b1:8a:9a:58:73:7a:68:85:a2:06:d0:74: a1:fb:e1:6d:c6:2f:99:20:af:6f:eb:87:fb:20:4e: a0:51:ec:3d:e0:75:45:70:99:28:05:3f:13:58:65: 94:7f:47:15:ab:4b:b7:ca:c4:5b:d1:aa:87:8a:7a: b1:96:aa:00:5f:9b:4d:7e:41:93:02:70:1e:7d:46: 59:8d:a8:3b:89:80:12:c7:39:f3:57:ce:f9:7b:54: 6c:51:d6:7d:70:d5:c0:4f:db:0c:a5:75:cd:8f:eb: ff:4f:00:b2:c4:32:66:63:64:d2:1f:9a:51:d0:ea: 6c:1e:4e:06:bb:66:cd:09:cf:b7:1c:81:2a:7f:a9: 7a:a8:04:a0:d4:06:f8:ea:b5:c2:ec:9e:5b:76:43: 24:86:8f:f4:cd:0e:04:63:11:bd:7b:9b:1c:d6:53: f9:dd:78:96:ef:cb:29:05:4a:df:6b:ad:38:52:44: a4:14:f6:94:1a:af:65:15:fa:17:dd:84:97:33:0a: dd:e0:a2:ea:4a:eb:4d:de:81:e5:41:48:05:63:7c: f3:fc:b0:ea:94:07:e8:82:26:e0:41:5a:aa:88:43: 69:f3:ae:e3:6e:5b:33:12:00:ef:29:47:0a:4f:b6: 4d:ab:76:24:d6:2a:a3:0b:ec:31:a0:b2:61:83:8e: 2f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:94:97:2A:C0:86:1A:E9:89:DA:B4:E5:8D:43:31:5E:A0:3D:20:17 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8551266c-ef98-4dd7-801f-d816ee2eeade.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.176.0.0/15 Signature Algorithm: sha256WithRSAEncryption 0e:8d:01:88:6d:74:37:b1:00:a1:ec:09:dd:fa:a8:fc:5c:07: b4:9a:19:73:40:89:73:b8:fb:0d:e7:71:83:9a:86:aa:c4:71: 7e:f0:ed:fd:fd:89:0f:ff:73:c0:4e:1f:7e:c5:d4:0e:0a:cc: 2f:e1:f0:99:9b:14:37:33:8b:5b:59:e4:40:0a:b1:59:c8:92: 36:07:32:7a:ba:8e:10:93:50:8a:8e:7b:34:0a:3d:49:dc:6d: 60:76:e2:87:8f:c4:2a:3a:ff:41:3d:26:62:0b:4b:7a:e0:16: f7:b6:76:b0:05:1f:60:91:21:5e:5e:4a:18:73:99:7d:45:2c: 9c:5a:15:22:68:e4:a1:51:e1:84:f7:a5:e4:03:1e:7a:d2:55: b1:42:55:72:9d:31:2c:5a:7e:6a:b9:c0:7f:d1:c6:00:46:db: a9:46:3f:22:04:55:2a:b4:e3:f7:47:9a:af:ae:75:c5:45:b5: bf:1a:a5:8c:5b:2c:1e:c3:38:30:cf:8a:a2:b9:94:4d:91:77: 27:11:ae:44:50:b4:4d:2b:a7:15:fb:eb:a8:6b:cd:d4:0a:e1: bd:1b:25:8b:66:46:c6:7c:7f:3a:b2:f4:94:9c:af:18:6a:97: 09:5e:33:70:d3:af:72:7a:67:96:82:22:fa:30:64:17:89:24: e9:ed:99:d8 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUQbSq7aKnie8MRB5vH8tSwVOnzn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTUwNjUwMzRaFw0yNTEyMjAyMzU5NTlaMHoxSTBHBgNV BAUTQDEzNzI4OGEyOTlhYmZmZDY1NjBiYjJjMjQ4YWVjZTI0NDZkYTE1NWQyYTU4 YmRhNjUyMjZhMWUyMDVjMjg5OGExLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhosYqaWHN6aIWiBtB0ofvhbcYvmSCvb+uH+yBOoFHsPeB1RXCZKAU/E1hl lH9HFatLt8rEW9Gqh4p6sZaqAF+bTX5BkwJwHn1GWY2oO4mAEsc581fO+XtUbFHW fXDVwE/bDKV1zY/r/08AssQyZmNk0h+aUdDqbB5OBrtmzQnPtxyBKn+peqgEoNQG +Oq1wuyeW3ZDJIaP9M0OBGMRvXubHNZT+d14lu/LKQVK32utOFJEpBT2lBqvZRX6 F92ElzMK3eCi6krrTd6B5UFIBWN88/yw6pQH6IIm4EFaqohDafOu425bMxIA7ylH Ck+2Tat2JNYqowvsMaCyYYOOL+kCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBRhlJcq wIYa6YnatOWNQzFeoD0gFzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ODU1MTI2NmMtZWY5OC00ZGQ3LTgwMWYtZDgxNmVlMmVlYWRlLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDATOwMA0G CSqGSIb3DQEBCwUAA4IBAQAOjQGIbXQ3sQCh7And+qj8XAe0mhlzQIlzuPsN53GD moaqxHF+8O39/YkP/3PATh9+xdQOCswv4fCZmxQ3M4tbWeRACrFZyJI2BzJ6uo4Q k1CKjns0Cj1J3G1gduKHj8QqOv9BPSZiC0t64Bb3tnawBR9gkSFeXkoYc5l9RSyc WhUiaOShUeGE96XkAx560lWxQlVynTEsWn5qucB/0cYARtupRj8iBFUqtOP3R5qv rnXFRbW/GqWMWywewzgwz4qiuZRNkXcnEa5EULRNK6cV++uoa83UCuG9GyWLZkbG fH86svSUnK8YapcJXjNw069yemeWgiL6MGQXiSTp7ZnY -----END CERTIFICATE-----Generated at Wed Nov 19 13:30:59 2025 by rpki-client