This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/1e868e55-b1b6-47f2-b1d2-6daf64461ffc.roa File: 1e868e55-b1b6-47f2-b1d2-6daf64461ffc.roa (raw, json) Hash identifier: PjLIFl19n5ir9f+FK4UW8NHOgt1l4OeWp7W0gKEl94g= Subject key identifier: 9A:BB:EA:2B:5D:94:AD:C1:9A:4F:17:06:22:72:24:EA:CB:E8:FC:93 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 7A30CCACB4EF6416CF114395AC475DA3AE9ACD5F Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/1e868e55-b1b6-47f2-b1d2-6daf64461ffc.roa Signing time: Wed 10 Dec 2025 06:50:45 +0000 ROA not before: Wed 10 Dec 2025 06:50:45 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 194.133.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:30:cc:ac:b4:ef:64:16:cf:11:43:95:ac:47:5d:a3:ae:9a:cd:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:50:45 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=19d7dc8a7038ebd15b9cffbfd87c6d1ef41060157a468840026d4778e761334d, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a0:14:35:44:58:8f:01:88:db:97:74:d2:dd: 93:29:2b:14:0a:a0:df:0c:37:c7:6b:a0:09:b2:03: 75:c8:af:3c:88:ee:8a:f3:05:b3:76:a6:db:fa:c0: e2:a3:76:37:11:ea:17:8e:74:de:52:52:9c:01:27: d9:e8:33:eb:7f:1b:c9:cb:c4:84:62:3b:ea:87:f3: 9c:b0:ff:27:18:d8:f6:8c:2a:f2:ac:d8:b4:17:52: b0:3c:db:4a:7b:28:f7:e1:13:10:f9:7b:7b:7a:08: 90:5b:73:da:46:f9:4b:77:82:34:27:69:97:9b:61: f4:c1:26:5f:e5:c3:86:ad:89:5d:65:55:1e:cd:82: 5d:fe:22:1f:8e:72:80:b0:c5:f3:76:d0:6a:c1:95: 65:cb:dc:a5:3d:97:dc:36:7e:4c:53:41:f6:b3:bf: 21:7d:81:62:e2:08:d6:73:01:71:ba:ac:d5:17:8e: 4e:24:22:e5:5b:ed:b5:6f:22:5e:f6:e6:f5:16:48: fb:44:2c:88:07:83:4a:29:90:34:cd:5e:40:b9:7c: 14:89:12:5e:03:60:fd:23:d7:09:50:5e:e1:a5:98: 95:9d:fd:a8:e1:48:d9:97:df:92:16:04:36:58:a4: 68:d7:a6:d7:95:4a:d8:b6:36:67:37:28:59:0f:e5: ee:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:BB:EA:2B:5D:94:AD:C1:9A:4F:17:06:22:72:24:EA:CB:E8:FC:93 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/1e868e55-b1b6-47f2-b1d2-6daf64461ffc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.133.0.0/16 Signature Algorithm: sha256WithRSAEncryption 96:25:b1:0e:74:c3:ac:cc:3e:87:3a:55:26:81:8c:69:2c:53: 24:9c:34:ef:e6:a2:c9:11:d4:77:91:d1:c4:5d:72:b5:57:90: 23:17:f8:7e:05:59:c9:29:b9:c6:4f:88:af:2e:a2:ab:8b:b4: 31:24:d9:77:83:71:fd:66:a1:30:01:91:bc:35:6e:c5:63:7d: 23:9a:df:c8:3e:24:cd:99:e9:00:a4:ce:47:b9:f2:e1:8f:7b: f6:9b:19:d0:6b:d9:a1:fa:32:18:bd:bd:62:ca:31:8e:4d:6b: 1f:70:99:fb:70:63:63:c8:96:1a:2d:f3:f7:c9:75:64:76:be: 76:9f:58:c0:15:37:4e:f1:ce:83:c6:b5:27:b7:e3:33:ad:9d: a7:1e:6b:20:e9:b5:11:6e:6e:82:1a:03:83:04:49:d6:18:96: 68:26:1f:c1:b2:4b:e3:6c:f0:fa:aa:71:36:1e:21:2d:32:5b: 0a:24:0b:70:d7:11:fc:20:43:1e:24:cb:b4:65:c5:1f:a4:7f: 68:5c:68:43:1b:b6:75:f5:6c:90:58:56:22:b4:7a:41:09:98: 43:7d:cb:e9:60:d8:c6:69:95:c9:4d:33:7d:37:c6:f4:b1:a6: 71:18:cf:f1:f3:9a:93:2c:8d:72:1f:8e:5c:89:5f:36:fd:68: cb:3d:7e:4c -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUejDMrLTvZBbPEUOVrEddo66azV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjUwNDVaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDE5ZDdkYzhhNzAzOGViZDE1YjljZmZiZmQ4N2M2ZDFlZjQxMDYwMTU3YTQ2 ODg0MDAyNmQ0Nzc4ZTc2MTMzNGQxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANagFDVEWI8BiNuXdNLdkykrFAqg3ww3x2ugCbIDdcivPIjuivMFs3am2/rA 4qN2NxHqF4503lJSnAEn2egz638bycvEhGI76ofznLD/JxjY9owq8qzYtBdSsDzb Snso9+ETEPl7e3oIkFtz2kb5S3eCNCdpl5th9MEmX+XDhq2JXWVVHs2CXf4iH45y gLDF83bQasGVZcvcpT2X3DZ+TFNB9rO/IX2BYuII1nMBcbqs1ReOTiQi5VvttW8i Xvbm9RZI+0QsiAeDSimQNM1eQLl8FIkSXgNg/SPXCVBe4aWYlZ39qOFI2ZffkhYE NlikaNem15VK2LY2ZzcoWQ/l7ksCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBSau+or XZStwZpPFwYiciTqy+j8kzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv MWU4NjhlNTUtYjFiNi00N2YyLWIxZDItNmRhZjY0NDYxZmZjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMKFMA0G CSqGSIb3DQEBCwUAA4IBAQCWJbEOdMOszD6HOlUmgYxpLFMknDTv5qLJEdR3kdHE XXK1V5AjF/h+BVnJKbnGT4ivLqKri7QxJNl3g3H9ZqEwAZG8NW7FY30jmt/IPiTN mekApM5HufLhj3v2mxnQa9mh+jIYvb1iyjGOTWsfcJn7cGNjyJYaLfP3yXVkdr52 n1jAFTdO8c6DxrUnt+MzrZ2nHmsg6bURbm6CGgODBEnWGJZoJh/BskvjbPD6qnE2 HiEtMlsKJAtw1xH8IEMeJMu0ZcUfpH9oXGhDG7Z19WyQWFYitHpBCZhDfcvpYNjG aZXJTTN9N8b0saZxGM/x85qTLI1yH45ciV82/WjLPX5M -----END CERTIFICATE-----Generated at Tue Dec 16 23:16:57 2025 by rpki-client