This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e6379fd6-eaa8-4348-8280-afb9b8552668.roa File: e6379fd6-eaa8-4348-8280-afb9b8552668.roa (raw, json) Hash identifier: 3+NKqeCkiia/2tmzGT8tyiZa+e5U1xham+LEw9CFZqo= Subject key identifier: 08:A9:7D:59:32:F2:94:28:6D:71:17:69:C5:B1:2A:E7:B6:C5:AF:49 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 2E583A67D357232488BB81DEDF48CD5212AD7A2C Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e6379fd6-eaa8-4348-8280-afb9b8552668.roa Signing time: Tue 18 Nov 2025 00:40:09 +0000 ROA not before: Tue 18 Nov 2025 00:40:09 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 7224 IP address blocks: 83.118.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 20 Nov 2025 23:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:58:3a:67:d3:57:23:24:88:bb:81:de:df:48:cd:52:12:ad:7a:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Nov 18 00:40:09 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=7f6586d0b8eac7de549f1ad350edaad4e37270626f94a01e5671a2737bb2d783, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1f:52:93:b9:8b:7a:4c:ac:ae:e4:bc:79:16: 42:08:26:29:2d:77:b7:d0:74:28:da:e9:d6:6b:e7: 63:8d:7c:ad:cd:c0:c1:ea:5b:33:25:4a:da:5e:20: 7a:e7:86:6f:e0:ce:e3:75:a6:0b:fd:41:5b:a2:23: 51:bd:39:96:01:2d:2c:ec:d2:3d:23:ba:8b:18:98: aa:94:c0:c7:e1:86:26:d0:66:a3:5e:ea:46:c3:66: 10:0e:a0:ef:b3:d5:6d:72:b4:1b:19:95:08:22:1e: 9e:5c:d4:d9:1c:b4:46:90:39:7e:23:1f:6c:d4:c6: ce:99:35:74:70:09:3f:74:5e:50:bf:4d:95:2f:a9: ec:e1:c2:26:0b:61:83:6e:5a:e8:23:17:4c:75:d5: 86:d4:ef:a8:b1:6b:bb:7f:13:d5:5c:b0:6a:4a:44: e6:71:a9:23:5c:84:a4:88:50:6f:b0:19:80:6c:35: 4e:e8:d8:3f:51:d3:0e:ff:d6:78:2a:f4:3d:9e:52: 3e:6b:d0:1f:26:aa:e2:a5:79:c9:f0:6e:21:36:77: 58:15:2f:dd:2d:c0:54:39:58:49:b1:59:e6:3d:80: ca:96:74:7f:81:02:e6:5f:ac:b6:3e:12:4f:37:02: 92:32:db:67:c4:20:07:f5:2a:00:a4:df:2a:25:6c: 93:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A9:7D:59:32:F2:94:28:6D:71:17:69:C5:B1:2A:E7:B6:C5:AF:49 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e6379fd6-eaa8-4348-8280-afb9b8552668.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.118.228.0/22 Signature Algorithm: sha256WithRSAEncryption 36:f8:08:44:b8:79:21:a2:d8:74:b1:36:f7:57:00:c7:6a:52: 7f:c2:7c:22:69:d3:3d:ba:61:81:e7:c6:34:1b:97:3d:25:f0: 4e:ed:ab:e9:a6:01:17:93:fc:d7:ff:60:47:20:ae:b1:cc:8e: b6:ed:14:94:49:78:ec:16:f7:36:d4:c3:06:63:5a:9f:af:2d: c9:69:20:de:66:a4:e2:44:0e:a1:15:a0:ca:11:46:3d:06:5e: 2f:0b:4e:63:90:ad:5e:fc:34:8e:d1:50:dd:5e:68:7f:e0:b4: 22:94:78:bb:5d:13:13:fa:60:b6:11:8d:32:80:1c:e8:ec:d3: 38:52:6f:43:d7:bc:22:bb:df:5f:31:96:28:ab:3f:0d:1f:39: 84:17:c4:93:09:1d:da:f4:24:a2:dd:a1:4e:70:88:55:9f:76: 87:63:c2:b3:76:f7:55:60:de:72:3d:a2:40:58:7b:04:2c:d8: e3:a3:a7:24:4e:10:68:c4:e7:a5:48:41:ba:13:ef:85:d6:f8: 91:c7:35:c9:69:62:05:a1:d4:44:2f:1a:3e:17:93:61:df:f7: a8:ca:b6:9b:57:a5:1c:02:84:9b:49:5a:51:28:6d:dd:28:02: a7:b8:85:21:4b:1c:21:f6:c5:f6:4f:3c:38:1c:51:48:14:40: 94:da:76:c5 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIULlg6Z9NXIySIu4He30jNUhKteiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTExMTgwMDQwMDlaFw0yNjAyMTYyMzU5NTlaMHoxSTBHBgNV BAUTQDdmNjU4NmQwYjhlYWM3ZGU1NDlmMWFkMzUwZWRhYWQ0ZTM3MjcwNjI2Zjk0 YTAxZTU2NzFhMjczN2JiMmQ3ODMxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK4fUpO5i3pMrK7kvHkWQggmKS13t9B0KNrp1mvnY418rc3AwepbMyVK2l4g eueGb+DO43WmC/1BW6IjUb05lgEtLOzSPSO6ixiYqpTAx+GGJtBmo17qRsNmEA6g 77PVbXK0GxmVCCIenlzU2Ry0RpA5fiMfbNTGzpk1dHAJP3ReUL9NlS+p7OHCJgth g25a6CMXTHXVhtTvqLFru38T1VywakpE5nGpI1yEpIhQb7AZgGw1TujYP1HTDv/W eCr0PZ5SPmvQHyaq4qV5yfBuITZ3WBUv3S3AVDlYSbFZ5j2AypZ0f4EC5l+stj4S TzcCkjLbZ8QgB/UqAKTfKiVsk8sCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQIqX1Z MvKUKG1xF2nFsSrntsWvSTAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ZTYzNzlmZDYtZWFhOC00MzQ4LTgyODAtYWZiOWI4NTUyNjY4LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlN25DAN BgkqhkiG9w0BAQsFAAOCAQEANvgIRLh5IaLYdLE291cAx2pSf8J8ImnTPbphgefG NBuXPSXwTu2r6aYBF5P81/9gRyCuscyOtu0UlEl47Bb3NtTDBmNan68tyWkg3mak 4kQOoRWgyhFGPQZeLwtOY5CtXvw0jtFQ3V5of+C0IpR4u10TE/pgthGNMoAc6OzT OFJvQ9e8IrvfXzGWKKs/DR85hBfEkwkd2vQkot2hTnCIVZ92h2PCs3b3VWDecj2i QFh7BCzY46OnJE4QaMTnpUhBuhPvhdb4kcc1yWliBaHURC8aPheTYd/3qMq2m1el HAKEm0laUSht3SgCp7iFIUscIfbF9k88OBxRSBRAlNp2xQ== -----END CERTIFICATE-----Generated at Thu Nov 20 03:11:02 2025 by rpki-client