This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8dcd1031-0c8d-4ee4-9563-57ddb63e1678.roa File: 8dcd1031-0c8d-4ee4-9563-57ddb63e1678.roa (raw, json) Hash identifier: gnh3xFvvJ81GPUPqutu33KXzvg0lqRSbZaNVszhvDxo= Subject key identifier: B2:00:A0:25:44:4D:D9:C2:C5:40:CC:84:35:65:6C:DE:F5:D6:74:5C Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 06741DD6559FB262DD1DB4AF1B8C1B6A5BEEA7ED Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8dcd1031-0c8d-4ee4-9563-57ddb63e1678.roa Signing time: Wed 10 Dec 2025 06:50:34 +0000 ROA not before: Wed 10 Dec 2025 06:50:34 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.226.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 09:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:74:1d:d6:55:9f:b2:62:dd:1d:b4:af:1b:8c:1b:6a:5b:ee:a7:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:50:34 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=c451ddb4f5bd61ee3825ccce9d8c00cd9618238b1af0d2ff780917448f6ddfe2, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5e:bd:db:a3:51:6e:fd:5f:b7:bd:af:0d:42: 6f:ce:4d:38:3d:27:6a:29:69:a4:c1:2b:a8:c7:1b: 90:7b:2a:35:3e:ad:44:84:6f:a4:3b:09:f1:5c:6e: 84:b1:21:40:72:b6:63:92:73:9f:4a:dc:e0:e6:e4: c6:97:a7:29:1d:52:0e:11:6c:8d:93:cd:c7:df:5c: b6:0c:2c:c1:c3:ed:d3:c2:d7:53:96:38:e2:ac:5f: 0f:a2:fc:be:d7:6d:ac:b1:99:31:fe:05:82:35:69: 32:4d:f9:99:ce:44:1d:97:43:04:ac:00:e3:e5:20: e0:d4:9d:ab:c9:2a:1f:12:43:50:69:6d:4e:41:b2: 81:b7:f2:82:f2:1f:21:67:37:aa:f0:a9:ac:a3:1d: 53:28:f7:26:33:db:55:8b:86:23:f6:46:f3:0b:18: 65:9f:79:7b:2b:cf:52:4f:d1:1a:28:a9:1f:f9:80: de:40:14:7b:ab:9c:8b:16:b1:f6:9a:92:9c:e9:05: 12:ee:97:da:0d:e5:e8:a3:08:fc:dc:22:50:9e:37: 46:20:36:fa:32:6d:da:48:08:94:b3:df:b7:e4:f2: fe:c7:eb:60:2a:4c:c8:76:06:5c:6a:82:75:5d:4b: 29:8b:02:a3:b0:5b:33:d6:54:cf:9d:e8:c6:ce:ad: fc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:00:A0:25:44:4D:D9:C2:C5:40:CC:84:35:65:6C:DE:F5:D6:74:5C X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8dcd1031-0c8d-4ee4-9563-57ddb63e1678.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.226.0.0/15 Signature Algorithm: sha256WithRSAEncryption a8:9d:18:cc:66:29:a1:c4:9f:4d:87:5b:82:a3:62:97:55:d8: 66:7d:93:0e:f1:7e:e2:de:54:f4:80:99:07:71:37:65:d9:4d: 2a:c0:1e:80:76:dc:fd:1d:7e:a4:ce:8c:78:9c:71:94:38:c7: e5:b6:d7:ff:b6:b6:b9:e6:d1:33:b8:20:ab:33:16:38:42:43: e0:38:df:fd:d8:df:8e:f4:e6:c0:5a:60:d4:f6:72:c3:01:62: a4:b0:2d:2e:80:a3:cc:32:65:1b:ee:92:f1:56:5c:d3:80:d2: 30:2f:74:29:2e:72:dd:f5:aa:c8:01:a5:6b:58:76:a9:fb:1d: 52:81:32:0d:9b:f1:65:8b:e9:a6:17:51:75:c3:38:f9:c9:78: 6a:64:72:7a:08:9c:08:f0:bf:ed:5a:e7:86:3d:cd:01:dc:bd: f8:a3:68:ed:63:33:d3:7a:e9:d1:8c:18:be:04:9b:2a:93:77: 5f:3e:b8:0e:5a:de:2a:0f:5b:ed:4b:c6:31:84:a8:58:da:46: 35:98:17:ca:da:ea:ad:0a:cf:b1:5d:7f:ee:cb:4a:0f:7e:30: 7f:ba:7c:a1:e7:02:3c:df:5b:02:66:41:23:f4:9d:d9:f7:09: 04:b8:9c:a2:a7:7b:6b:bd:e9:bb:89:26:41:0f:12:1d:ab:ad: ec:d6:f0:d9 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUBnQd1lWfsmLdHbSvG4wbalvup+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjUwMzRaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGM0NTFkZGI0ZjViZDYxZWUzODI1Y2NjZTlkOGMwMGNkOTYxODIzOGIxYWYw ZDJmZjc4MDkxNzQ0OGY2ZGRmZTIxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKlevdujUW79X7e9rw1Cb85NOD0nailppMErqMcbkHsqNT6tRIRvpDsJ8Vxu hLEhQHK2Y5Jzn0rc4ObkxpenKR1SDhFsjZPNx99ctgwswcPt08LXU5Y44qxfD6L8 vtdtrLGZMf4FgjVpMk35mc5EHZdDBKwA4+Ug4NSdq8kqHxJDUGltTkGygbfygvIf IWc3qvCprKMdUyj3JjPbVYuGI/ZG8wsYZZ95eyvPUk/RGiipH/mA3kAUe6ucixax 9pqSnOkFEu6X2g3l6KMI/NwiUJ43RiA2+jJt2kgIlLPft+Ty/sfrYCpMyHYGXGqC dV1LKYsCo7BbM9ZUz53oxs6t/AUCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBSyAKAl RE3ZwsVAzIQ1ZWze9dZ0XDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv OGRjZDEwMzEtMGM4ZC00ZWU0LTk1NjMtNTdkZGI2M2UxNjc4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDATPiMA0G CSqGSIb3DQEBCwUAA4IBAQConRjMZimhxJ9Nh1uCo2KXVdhmfZMO8X7i3lT0gJkH cTdl2U0qwB6Adtz9HX6kzox4nHGUOMflttf/tra55tEzuCCrMxY4QkPgON/92N+O 9ObAWmDU9nLDAWKksC0ugKPMMmUb7pLxVlzTgNIwL3QpLnLd9arIAaVrWHap+x1S gTINm/Fli+mmF1F1wzj5yXhqZHJ6CJwI8L/tWueGPc0B3L34o2jtYzPTeunRjBi+ BJsqk3dfPrgOWt4qD1vtS8YxhKhY2kY1mBfK2uqtCs+xXX/uy0oPfjB/unyh5wI8 31sCZkEj9J3Z9wkEuJyip3trvem7iSZBDxIdq63s1vDZ -----END CERTIFICATE-----Generated at Tue Dec 16 13:42:08 2025 by rpki-client