This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/01305f95-02db-46f4-a135-5ff585346b72.roa File: 01305f95-02db-46f4-a135-5ff585346b72.roa (raw, json) Hash identifier: KgVYJDjt7N5+0qk2UybzZQuyYN5PK/wC4k7qzGAdXAs= Subject key identifier: C5:4F:69:6E:26:EA:90:B1:97:08:A3:EA:DA:A8:94:2F:7E:EB:86:CF Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 14F36659E857B3F78B3489634F0F350223B59F4C Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/01305f95-02db-46f4-a135-5ff585346b72.roa Signing time: Wed 10 Dec 2025 06:40:35 +0000 ROA not before: Wed 10 Dec 2025 06:40:35 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.204.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f3:66:59:e8:57:b3:f7:8b:34:89:63:4f:0f:35:02:23:b5:9f:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:40:35 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=98402e1cbfe64e0b6af17dd9a2233545ae5646ec60521e8abcc98882a7ae0336, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:28:31:a6:d5:ee:b3:06:a7:83:f4:4d:fc:14: 40:28:ab:ad:47:ca:0a:a5:85:7c:8e:41:c6:e5:c5: f3:09:ce:08:7c:ee:c1:0a:f5:af:9c:ff:06:c5:37: 8f:03:d1:fd:5e:a5:76:35:ab:7c:9c:d1:da:59:3a: ca:58:76:c1:7f:de:87:d8:35:78:83:6c:ea:95:cd: c0:15:93:86:b3:c2:f0:09:30:df:ab:06:a8:7f:0b: a5:89:ce:b5:6e:19:a9:24:d3:3d:83:34:9e:26:1a: 46:45:4f:bf:c4:03:e5:96:d4:77:b9:d7:a9:a8:6d: c2:c2:be:21:7a:01:ad:b8:d3:49:57:11:d1:a9:2d: 91:18:0d:f7:24:24:1b:02:2d:70:d6:5b:76:8d:2c: 37:bc:ca:f2:3c:be:ff:34:84:bc:79:61:b9:ad:88: 2e:28:19:a3:4e:5a:48:1a:6d:3c:5d:8e:14:d1:36: 07:3d:df:c5:dc:79:9d:2f:e0:5a:35:d1:71:69:3b: fb:29:06:66:58:14:a1:42:ed:2e:4e:8c:26:63:79: 1a:3f:88:82:1e:1f:43:8c:a6:70:24:74:8f:f3:98: fc:7f:73:72:49:1b:64:e7:2a:80:08:07:0b:20:c9: f9:1a:f4:b6:ed:e1:cc:93:12:eb:06:24:16:ec:dc: 16:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:4F:69:6E:26:EA:90:B1:97:08:A3:EA:DA:A8:94:2F:7E:EB:86:CF X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/01305f95-02db-46f4-a135-5ff585346b72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.204.0.0/15 Signature Algorithm: sha256WithRSAEncryption 9a:ac:05:56:a7:dd:ff:5b:cc:ab:b1:cf:87:41:45:51:91:7c: 77:50:97:81:ab:a9:aa:da:63:fd:4d:50:56:b1:38:dc:a0:cd: 27:ef:c1:e1:d5:48:5b:f6:4d:a1:e4:1d:fa:24:17:c8:bf:8c: c4:e4:0c:60:d9:f2:c7:92:89:01:58:e7:80:76:c7:61:36:0c: 29:5b:50:5e:2b:70:c8:ce:ed:e4:30:40:7f:31:37:b8:1b:1d: e9:32:c0:f2:5d:e5:69:54:2e:dc:5e:2d:9e:81:6e:5b:19:c8: 7a:8b:8f:e9:1b:b7:27:43:44:1f:1f:d8:c6:cf:73:7c:f6:97: 7a:0c:f4:a6:02:cf:ad:c0:2e:b1:73:22:59:db:08:11:7e:71: 35:b9:bd:ee:9b:6e:12:5d:29:51:4c:6f:b7:74:cd:c7:a9:68: c1:cc:0f:75:6c:76:25:2d:d3:79:b7:6a:7d:5c:d9:df:3a:e3: 52:37:3b:1c:65:e7:8c:6b:eb:a7:37:f3:4f:cd:47:bc:90:99: ec:7d:34:87:f3:e9:fb:61:67:bd:d7:47:bd:02:4a:f2:54:10: d8:7c:88:e7:de:dd:2f:64:ad:1b:fe:a1:3a:dc:30:01:d2:da: 91:b1:bc:5e:36:d5:cd:a3:6f:88:2e:98:3b:20:93:1e:2b:7b: cb:af:40:ee -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUFPNmWehXs/eLNIljTw81AiO1n0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjQwMzVaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDk4NDAyZTFjYmZlNjRlMGI2YWYxN2RkOWEyMjMzNTQ1YWU1NjQ2ZWM2MDUy MWU4YWJjYzk4ODgyYTdhZTAzMzYxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIcoMabV7rMGp4P0TfwUQCirrUfKCqWFfI5BxuXF8wnOCHzuwQr1r5z/BsU3 jwPR/V6ldjWrfJzR2lk6ylh2wX/eh9g1eINs6pXNwBWThrPC8Akw36sGqH8LpYnO tW4ZqSTTPYM0niYaRkVPv8QD5ZbUd7nXqahtwsK+IXoBrbjTSVcR0aktkRgN9yQk GwItcNZbdo0sN7zK8jy+/zSEvHlhua2ILigZo05aSBptPF2OFNE2Bz3fxdx5nS/g WjXRcWk7+ykGZlgUoULtLk6MJmN5Gj+Igh4fQ4ymcCR0j/OY/H9zckkbZOcqgAgH CyDJ+Rr0tu3hzJMS6wYkFuzcFosCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBTFT2lu JuqQsZcIo+raqJQvfuuGzzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv MDEzMDVmOTUtMDJkYi00NmY0LWExMzUtNWZmNTg1MzQ2YjcyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDATPMMA0G CSqGSIb3DQEBCwUAA4IBAQCarAVWp93/W8yrsc+HQUVRkXx3UJeBq6mq2mP9TVBW sTjcoM0n78Hh1Uhb9k2h5B36JBfIv4zE5Axg2fLHkokBWOeAdsdhNgwpW1BeK3DI zu3kMEB/MTe4Gx3pMsDyXeVpVC7cXi2egW5bGch6i4/pG7cnQ0QfH9jGz3N89pd6 DPSmAs+twC6xcyJZ2wgRfnE1ub3um24SXSlRTG+3dM3HqWjBzA91bHYlLdN5t2p9 XNnfOuNSNzscZeeMa+unN/NPzUe8kJnsfTSH8+n7YWe910e9AkryVBDYfIjn3t0v ZK0b/qE63DAB0tqRsbxeNtXNo2+ILpg7IJMeK3vLr0Du -----END CERTIFICATE-----Generated at Mon Dec 15 19:53:59 2025 by rpki-client