This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/39032a05-08aa-42f2-98fc-8aa6aeee1dc2.roa File: 39032a05-08aa-42f2-98fc-8aa6aeee1dc2.roa (raw, json) Hash identifier: KQPWie/SVRtEWwynBdt5aO4r8Kazd65dtXcaoQJnpC4= Subject key identifier: 6A:C2:F8:72:C6:A0:D2:12:17:0C:0B:2D:3F:3C:D5:E4:F8:AD:93:AA Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 0822C0526CE4D0003037F1D03DFF43C7EA60ABC7 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/39032a05-08aa-42f2-98fc-8aa6aeee1dc2.roa Signing time: Thu 11 Dec 2025 01:00:07 +0000 ROA not before: Thu 11 Dec 2025 01:00:07 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.0.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 08:30:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:22:c0:52:6c:e4:d0:00:30:37:f1:d0:3d:ff:43:c7:ea:60:ab:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 11 01:00:07 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=84c90f576dfb13a49ae83a211d90d5299df1b6fb78bd1179cce9e3a7ece6b266, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:54:47:75:40:da:30:fe:65:89:c4:b8:2c:f7: 52:6d:80:ee:43:51:fe:88:65:c6:a4:87:2b:0b:d0: 0a:b4:39:eb:d5:12:ff:85:8e:6e:e4:bc:0b:a7:82: 2d:2c:0e:4b:42:d1:4c:00:92:29:b9:94:fc:83:04: 07:4d:84:87:d7:02:ee:c7:4e:f4:49:98:2e:6d:a4: 58:05:79:fd:80:77:8f:1f:46:3b:e9:ec:bd:9c:03: fc:01:99:a6:10:b7:e0:da:ba:77:73:e1:a8:36:51: 0a:f5:bf:ea:ab:d1:ac:38:62:9d:d9:45:3c:06:8f: 95:e6:5d:96:16:18:a6:2e:fa:6e:e2:92:f6:e0:d6: 61:ad:75:96:4a:92:37:04:fd:ee:e5:cd:8b:c6:b8: fe:0d:38:4f:07:46:67:2a:46:7e:2c:8b:94:33:5c: 5f:ba:35:ed:8d:78:82:6a:f7:c8:94:87:43:dd:dc: d3:67:35:71:d6:7b:21:10:94:d0:41:a1:b3:5a:74: c7:04:2e:c7:ea:76:f8:9f:24:14:25:90:2e:c7:be: fa:87:49:20:fb:25:b7:aa:9c:82:70:0d:d5:18:49: 3b:33:3a:e6:a9:74:a0:db:e0:23:f2:15:c6:d2:a2: c5:47:9f:5f:97:51:31:f0:2c:2d:50:bd:83:30:64: 89:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:C2:F8:72:C6:A0:D2:12:17:0C:0B:2D:3F:3C:D5:E4:F8:AD:93:AA X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/39032a05-08aa-42f2-98fc-8aa6aeee1dc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.0.80.0/21 Signature Algorithm: sha256WithRSAEncryption ad:42:b4:a6:c1:c6:60:0e:83:81:c8:3f:40:03:38:84:8b:59: 8e:e5:97:f6:66:0a:11:95:b2:0c:f2:a9:61:bf:29:cf:e7:5d: e8:0c:90:21:80:df:76:41:36:07:a3:5c:52:59:eb:dc:76:95: 10:8a:95:ec:6e:f5:1e:95:41:59:7d:a0:ed:74:fb:0f:c6:80: 59:bc:d2:d4:15:1a:f3:a1:f5:d9:e3:e0:74:b7:13:27:5e:50: 33:0c:a5:c7:c2:54:eb:6c:1a:84:c4:c7:c4:65:33:f8:df:f3: c5:95:07:57:c1:9f:2b:e5:d7:69:1c:58:1f:54:cf:c9:4f:f3: 49:f4:e8:5e:e2:57:6f:d9:f0:3a:5b:c1:4a:79:62:48:1c:c6: a3:7c:12:85:b1:ae:62:95:ec:43:6c:d5:d1:79:ce:50:bc:71: 11:c4:09:d8:c1:ac:65:93:87:65:cf:4b:5b:60:0b:84:3b:d5: c9:fe:a1:3c:b7:24:de:bc:97:bd:1a:82:8a:f8:27:7b:2e:c8: 75:f6:1c:29:48:04:ac:a8:30:dc:00:a0:99:4c:c6:77:d2:c7: cb:13:df:f9:3f:3d:50:20:0a:67:87:33:d8:50:4c:3d:ba:03: ac:9c:26:f8:52:06:f2:aa:49:b7:4c:42:01:80:d2:04:a3:53: 7d:3f:bc:fa -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUCCLAUmzk0AAwN/HQPf9Dx+pgq8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTEwMTAwMDdaFw0yNjAzMTEyMzU5NTlaMHoxSTBHBgNV BAUTQDg0YzkwZjU3NmRmYjEzYTQ5YWU4M2EyMTFkOTBkNTI5OWRmMWI2ZmI3OGJk MTE3OWNjZTllM2E3ZWNlNmIyNjYxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKRUR3VA2jD+ZYnEuCz3Um2A7kNR/ohlxqSHKwvQCrQ569US/4WObuS8C6eC LSwOS0LRTACSKbmU/IMEB02Eh9cC7sdO9EmYLm2kWAV5/YB3jx9GO+nsvZwD/AGZ phC34Nq6d3PhqDZRCvW/6qvRrDhindlFPAaPleZdlhYYpi76buKS9uDWYa11lkqS NwT97uXNi8a4/g04TwdGZypGfiyLlDNcX7o17Y14gmr3yJSHQ93c02c1cdZ7IRCU 0EGhs1p0xwQux+p2+J8kFCWQLse++odJIPslt6qcgnAN1RhJOzM65ql0oNvgI/IV xtKixUefX5dRMfAsLVC9gzBkidcCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRqwvhy xqDSEhcMCy0/PNXk+K2TqjAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv MzkwMzJhMDUtMDhhYS00MmYyLTk4ZmMtOGFhNmFlZWUxZGMyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzMAUDAN BgkqhkiG9w0BAQsFAAOCAQEArUK0psHGYA6Dgcg/QAM4hItZjuWX9mYKEZWyDPKp Yb8pz+dd6AyQIYDfdkE2B6NcUlnr3HaVEIqV7G71HpVBWX2g7XT7D8aAWbzS1BUa 86H12ePgdLcTJ15QMwylx8JU62wahMTHxGUz+N/zxZUHV8GfK+XXaRxYH1TPyU/z SfToXuJXb9nwOlvBSnliSBzGo3wShbGuYpXsQ2zV0XnOULxxEcQJ2MGsZZOHZc9L W2ALhDvVyf6hPLck3ryXvRqCivgney7IdfYcKUgErKgw3ACgmUzGd9LHyxPf+T89 UCAKZ4cz2FBMPboDrJwm+FIG8qpJt0xCAYDSBKNTfT+8+g== -----END CERTIFICATE-----Generated at Wed Dec 17 11:19:06 2025 by rpki-client