This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/41816f61-5ce3-406a-8d78-37c4eafa6915.roa File: 41816f61-5ce3-406a-8d78-37c4eafa6915.roa (raw, json) Hash identifier: IwApg15JDFWv5I4sM3SwTfCQQWFBog9SQ2S5TlMWwJ0= Subject key identifier: B2:54:93:7C:E2:DD:7D:41:78:1D:EC:31:4F:FE:A2:15:A4:62:1B:A7 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 39E1DEAED8E519E2A5AA56DEAD04B831F0854CDE Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/41816f61-5ce3-406a-8d78-37c4eafa6915.roa Signing time: Wed 10 Dec 2025 06:30:14 +0000 ROA not before: Wed 10 Dec 2025 06:30:14 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.0.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:e1:de:ae:d8:e5:19:e2:a5:aa:56:de:ad:04:b8:31:f0:85:4c:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:30:14 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=9bf0c7ba168639cd3d1e74903c6d8d7b9a2c2b5719e495a4baf9deb3964ee3d6, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4c:6f:46:43:52:19:32:c9:f2:d1:3c:ad:d5: e7:ba:81:af:2a:83:ad:eb:1f:9a:e0:63:ab:09:f3: 12:15:b5:4a:64:c6:b6:83:21:25:31:f7:f8:39:b9: 69:f1:f0:a3:03:80:5b:68:b1:94:e0:a8:da:70:24: a4:8c:77:0e:88:b5:cb:99:59:78:bc:0c:3f:4e:f6: 98:01:36:f3:79:b7:e1:cc:f3:23:77:5c:97:15:09: a4:33:3d:b6:2c:53:b1:25:27:16:73:12:e7:5b:de: 4c:c0:39:46:0d:bc:32:60:b7:5d:9a:8e:8a:fc:53: f8:3e:7d:54:3a:ed:7c:82:7e:7e:af:41:8d:53:76: 5b:d6:61:7f:78:ac:05:06:74:9a:56:6d:d1:95:80: 16:b3:b0:b2:ae:8f:5e:ba:d6:d1:1e:9a:4d:01:7f: 87:18:36:dc:8d:95:38:af:e2:51:9d:df:fc:78:9d: bc:76:8b:a7:bb:98:c7:91:64:5b:fa:89:35:3e:a8: 6e:00:94:f4:13:ce:21:91:f3:44:62:e2:f4:cf:23: 3e:79:52:64:31:82:0f:dc:c6:f5:c6:10:ba:22:3f: fd:2c:eb:b1:cd:f8:b4:5b:3a:0a:b8:db:39:68:01: b4:99:92:5a:56:8c:0c:71:7a:4b:a6:78:fe:5c:83: 18:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:54:93:7C:E2:DD:7D:41:78:1D:EC:31:4F:FE:A2:15:A4:62:1B:A7 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/41816f61-5ce3-406a-8d78-37c4eafa6915.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.0.32.0/19 Signature Algorithm: sha256WithRSAEncryption a1:b7:c3:f5:26:7b:77:d4:8e:c4:e0:02:05:8f:f2:6b:d3:2d: ef:52:af:e6:47:3d:11:76:16:4d:d4:cc:74:22:e7:b0:bf:a4: 89:05:e7:f8:da:47:45:8c:d4:39:bb:98:0d:60:9a:14:a1:75: c9:eb:fd:65:4a:79:4d:70:23:8f:7d:c9:a9:f3:34:7e:12:ae: 3e:92:18:86:49:99:1f:ee:9e:e2:a0:ea:68:93:15:86:90:d8: bc:35:31:62:65:87:69:cd:03:df:6a:45:e3:80:e1:33:94:52: 8b:0e:65:04:00:89:33:b0:a3:9e:2c:0b:6c:92:32:df:05:f0: 4d:70:a2:00:3b:62:47:ed:6e:62:13:64:ce:50:d0:57:13:f0: 0e:0f:fc:bb:46:df:d4:c1:41:4c:00:76:cb:5f:5f:e9:b8:73: 72:26:93:69:85:ed:af:41:c6:89:6d:3f:46:e3:73:98:7c:5b: cd:0a:1c:08:f1:3a:21:c1:e2:2f:e4:d5:d9:67:0d:0c:28:30: 7c:bb:e7:23:58:52:04:b2:a7:9e:88:13:d6:03:58:5d:e6:9d: 6b:f6:34:9f:e1:19:25:d8:1d:f6:4a:34:82:ec:28:32:39:95: 4b:5d:9e:3c:a7:25:13:ea:b8:b3:44:c5:d5:9d:86:97:81:8d: 3f:52:60:bf -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUOeHertjlGeKlqlberQS4MfCFTN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjMwMTRaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDliZjBjN2JhMTY4NjM5Y2QzZDFlNzQ5MDNjNmQ4ZDdiOWEyYzJiNTcxOWU0 OTVhNGJhZjlkZWIzOTY0ZWUzZDYxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtMb0ZDUhkyyfLRPK3V57qBryqDresfmuBjqwnzEhW1SmTGtoMhJTH3+Dm5 afHwowOAW2ixlOCo2nAkpIx3Doi1y5lZeLwMP072mAE283m34czzI3dclxUJpDM9 tixTsSUnFnMS51veTMA5Rg28MmC3XZqOivxT+D59VDrtfIJ+fq9BjVN2W9Zhf3is BQZ0mlZt0ZWAFrOwsq6PXrrW0R6aTQF/hxg23I2VOK/iUZ3f/HidvHaLp7uYx5Fk W/qJNT6obgCU9BPOIZHzRGLi9M8jPnlSZDGCD9zG9cYQuiI//Szrsc34tFs6Crjb OWgBtJmSWlaMDHF6S6Z4/lyDGKkCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSyVJN8 4t19QXgd7DFP/qIVpGIbpzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv NDE4MTZmNjEtNWNlMy00MDZhLThkNzgtMzdjNGVhZmE2OTE1LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBTMAIDAN BgkqhkiG9w0BAQsFAAOCAQEAobfD9SZ7d9SOxOACBY/ya9Mt71Kv5kc9EXYWTdTM dCLnsL+kiQXn+NpHRYzUObuYDWCaFKF1yev9ZUp5TXAjj33JqfM0fhKuPpIYhkmZ H+6e4qDqaJMVhpDYvDUxYmWHac0D32pF44DhM5RSiw5lBACJM7CjniwLbJIy3wXw TXCiADtiR+1uYhNkzlDQVxPwDg/8u0bf1MFBTAB2y19f6bhzciaTaYXtr0HGiW0/ RuNzmHxbzQocCPE6IcHiL+TV2WcNDCgwfLvnI1hSBLKnnogT1gNYXeada/Y0n+EZ Jdgd9ko0guwoMjmVS12ePKclE+q4s0TF1Z2Gl4GNP1Jgvw== -----END CERTIFICATE-----Generated at Fri Dec 19 20:10:53 2025 by rpki-client