This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa File: e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa (raw, json) Hash identifier: GnYgX9/D9avoQfHXtJbYtoGqkOxpWtodAJu9nfKVLVs= Subject key identifier: 30:22:A7:3C:66:17:3D:D0:24:88:BC:AB:A1:34:1D:CA:FF:09:0C:17 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 6C72915B455DEAC131F0B51CEC2ED930A372DB34 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa Signing time: Wed 10 Dec 2025 06:40:22 +0000 ROA not before: Wed 10 Dec 2025 06:40:22 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 193.57.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:72:91:5b:45:5d:ea:c1:31:f0:b5:1c:ec:2e:d9:30:a3:72:db:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:40:22 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=055b69ac0b5bec5519ab38424147e03a643fd5458d3ae16234e7360c4612de36, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bc:34:82:5d:1e:ef:54:ed:93:06:45:4a:b6: 54:fc:ef:93:15:fd:09:f9:55:bc:d2:da:3f:8b:e2: 0f:b0:2c:25:d1:60:67:75:db:ab:22:a9:01:0c:8c: 42:8e:94:7b:be:18:c3:61:47:58:b1:56:9f:e4:b5: 18:11:39:83:6f:2c:fa:55:5b:53:b5:d8:8f:96:64: 4e:b8:b5:6a:92:42:f4:8b:47:e7:69:be:38:f8:28: df:ff:50:39:91:59:2a:ac:e3:8c:b1:8f:55:bb:e3: b0:34:3f:ba:ed:76:7d:1f:1d:c5:a1:2f:0a:e2:2e: b9:bd:6e:fd:8d:bc:11:8a:6d:eb:a3:68:1b:9e:9d: 39:fe:7c:7c:97:d1:0f:7b:c9:d0:62:02:c6:d1:89: 4f:47:d6:ac:ea:a9:c0:1d:d1:80:ee:85:03:64:d4: 22:e3:24:97:bc:37:c9:fe:21:ac:04:2a:7a:56:b4: 90:0b:8d:a8:d1:9a:fa:2e:a4:a9:24:f5:cd:69:1d: 35:e3:b8:92:85:aa:0d:1c:fb:b2:86:3d:bd:29:cb: 10:58:cc:49:9c:6d:b2:b4:87:bd:3b:66:08:c9:fe: 9e:78:1f:bc:b4:b3:08:f2:02:09:d8:14:81:23:95: 3f:7d:6e:89:b0:bf:05:0b:8e:22:a7:65:13:af:76: 69:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:22:A7:3C:66:17:3D:D0:24:88:BC:AB:A1:34:1D:CA:FF:09:0C:17 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.57.181.0/24 Signature Algorithm: sha256WithRSAEncryption 05:2a:4e:22:b2:03:fd:f2:37:b6:dd:49:e8:4c:b9:e1:51:c3: 4a:83:02:2a:c1:e9:66:e9:46:ae:16:3f:54:d9:e5:be:e0:05: 3e:4a:14:3b:0b:de:2d:cf:68:01:e0:1c:d5:cb:df:22:fc:59: 24:f5:ac:9d:41:e2:8c:7a:c2:4b:e6:c9:ba:70:c8:d7:6c:9c: dd:73:26:f8:29:29:45:bd:40:54:0c:5a:25:d0:c5:00:c5:f0: c3:93:f2:73:52:af:9e:91:88:8a:d7:fe:06:b4:54:45:57:d8: 5b:3f:1e:e8:f0:e5:0b:c4:a4:78:98:91:c4:5c:8e:71:8d:37: fd:e7:c6:1f:3a:fd:31:45:89:62:c0:29:80:46:01:77:b0:8e: 79:bf:e9:94:fa:0a:b7:09:07:9a:7a:10:53:f8:c9:6e:b0:7a: 79:24:1e:f8:8f:0d:c0:6c:a9:71:08:58:a6:f4:3e:09:3d:e8: 69:92:b8:ba:85:85:90:f6:6a:eb:4a:fe:25:9f:28:a4:58:68: ed:a8:cd:6a:81:3a:28:72:36:49:2a:38:da:09:71:fe:2c:44: da:01:65:cf:9e:1b:8e:69:06:c1:3c:61:6d:b6:15:e4:e7:69: d1:44:69:9c:bd:80:9a:6a:c3:8f:4d:41:2d:01:10:ad:42:b8: c6:73:5c:44 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUbHKRW0Vd6sEx8LUc7C7ZMKNy2zQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjQwMjJaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDA1NWI2OWFjMGI1YmVjNTUxOWFiMzg0MjQxNDdlMDNhNjQzZmQ1NDU4ZDNh ZTE2MjM0ZTczNjBjNDYxMmRlMzYxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALu8NIJdHu9U7ZMGRUq2VPzvkxX9CflVvNLaP4viD7AsJdFgZ3XbqyKpAQyM Qo6Ue74Yw2FHWLFWn+S1GBE5g28s+lVbU7XYj5ZkTri1apJC9ItH52m+OPgo3/9Q OZFZKqzjjLGPVbvjsDQ/uu12fR8dxaEvCuIuub1u/Y28EYpt66NoG56dOf58fJfR D3vJ0GICxtGJT0fWrOqpwB3RgO6FA2TUIuMkl7w3yf4hrAQqela0kAuNqNGa+i6k qST1zWkdNeO4koWqDRz7soY9vSnLEFjMSZxtsrSHvTtmCMn+nngfvLSzCPICCdgU gSOVP31uibC/BQuOIqdlE692aa8CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQwIqc8 Zhc90CSIvKuhNB3K/wkMFzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ZTY4MGZmZTctZDc3Yy00NDMzLTgxZjktZmZiZjc2YTQ1YTZkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAME5tTAN BgkqhkiG9w0BAQsFAAOCAQEABSpOIrID/fI3tt1J6Ey54VHDSoMCKsHpZulGrhY/ VNnlvuAFPkoUOwveLc9oAeAc1cvfIvxZJPWsnUHijHrCS+bJunDI12yc3XMm+Ckp Rb1AVAxaJdDFAMXww5Pyc1KvnpGIitf+BrRURVfYWz8e6PDlC8SkeJiRxFyOcY03 /efGHzr9MUWJYsApgEYBd7COeb/plPoKtwkHmnoQU/jJbrB6eSQe+I8NwGypcQhY pvQ+CT3oaZK4uoWFkPZq60r+JZ8opFho7ajNaoE6KHI2SSo42glx/ixE2gFlz54b jmkGwTxhbbYV5Odp0URpnL2AmmrDj01BLQEQrUK4xnNcRA== -----END CERTIFICATE-----Generated at Tue Dec 23 06:19:14 2025 by rpki-client