This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/46b220b9-837f-4174-97e6-c711958273ea.roa File: 46b220b9-837f-4174-97e6-c711958273ea.roa (raw, json) Hash identifier: ym+0CeWgAhNcRgtD4ELrPWbQA8A/jlsNCbkIXcPK3Qs= Subject key identifier: D4:E2:9B:72:F7:BD:F2:73:CF:A7:08:35:8B:8D:98:44:45:3F:85:55 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 60ED946A85ED7A95B17E68DFD4BE7533B56B91F5 Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/46b220b9-837f-4174-97e6-c711958273ea.roa Signing time: Wed 10 Dec 2025 06:40:40 +0000 ROA not before: Wed 10 Dec 2025 06:40:40 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.78.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ed:94:6a:85:ed:7a:95:b1:7e:68:df:d4:be:75:33:b5:6b:91:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:40:40 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=073f6b4765d00beb19adf72e4d3cf672991aeb197291c6dd3b93c9b21743937c, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:1a:bf:17:c5:09:2e:1b:72:f7:ea:c1:0a:b7: 0e:d9:93:fc:57:3f:96:25:c3:02:f9:b3:56:8d:c2: a2:fe:0f:e0:be:83:c2:22:1f:5a:6e:13:bb:f0:ef: ab:7f:c2:30:7d:69:ee:4f:0a:79:f8:60:89:43:67: 68:c5:81:08:3f:4a:9f:45:a7:d8:e4:c4:87:07:45: a7:1e:a9:29:f5:2f:d1:0a:96:80:37:6e:77:46:12: 39:25:fe:63:b7:5c:15:ff:b3:26:d6:82:4e:75:60: 32:59:51:b0:b3:26:3a:cd:8b:e9:5d:34:96:c8:a7: ba:0a:a8:dc:39:cd:a3:90:0a:bd:66:1f:eb:6b:c7: 5c:e5:6f:04:12:e7:69:78:bd:d8:70:c7:c3:10:c5: 83:04:ad:99:54:4c:69:6a:55:3e:b8:a5:c3:26:53: eb:5d:34:93:fa:9b:89:50:52:d8:01:3c:9a:bf:70: ed:7a:a9:b0:8a:ed:2a:e0:70:fe:19:d0:7d:91:17: 57:6c:04:98:68:00:79:cf:5a:fc:64:3f:90:7f:16: 69:31:b2:ba:05:88:95:47:40:d0:be:59:bc:c2:1f: 05:73:cf:ef:01:b2:90:6a:f0:99:97:ee:b1:32:4e: 29:13:c9:85:ef:c0:1c:1c:4d:27:65:f9:73:7f:c4: 12:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E2:9B:72:F7:BD:F2:73:CF:A7:08:35:8B:8D:98:44:45:3F:85:55 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/46b220b9-837f-4174-97e6-c711958273ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.78.0.0/16 Signature Algorithm: sha256WithRSAEncryption 97:60:98:bb:cd:32:85:07:bb:2a:27:59:ab:5a:04:84:77:ee: c6:25:06:0b:08:d6:ba:29:53:7d:c4:75:01:78:5a:8d:d4:5b: d3:b2:6c:7f:97:41:3f:84:ba:13:61:d3:51:4c:34:0f:d9:80: f6:21:71:56:4a:00:30:21:d2:fc:0f:d0:2a:64:01:d8:e0:c9: 0f:07:1c:07:61:f5:df:03:85:9e:a0:e9:66:7f:ea:80:0b:72: c0:23:61:d8:d1:71:d7:ca:5c:3e:8c:8a:5f:fc:da:86:71:cb: 07:f6:f7:ee:ff:4f:d7:03:91:b0:be:3c:83:dd:d4:7f:9f:92: 92:2f:be:59:a0:81:3d:2b:1d:f8:5a:cd:2d:62:94:04:d2:4e: b6:53:83:78:e4:51:05:d5:5a:57:1e:2b:a1:66:98:eb:e9:1a: 09:49:ba:90:83:3a:8a:ba:c8:6f:86:62:5e:c5:c1:79:0f:b4: e3:fb:13:c1:84:f2:a4:37:08:d2:f6:2c:b9:f1:c4:7a:ad:5d: 5c:49:e3:87:a0:d2:4b:9b:33:32:23:ca:54:00:4e:20:58:3d: dc:be:16:2c:8d:71:af:3f:a7:52:ed:85:9e:5a:d2:31:6d:4e: ca:02:56:24:53:87:df:c1:3a:9e:57:da:b1:08:df:34:1c:3f: 20:7e:d5:46 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUYO2UaoXtepWxfmjf1L51M7VrkfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjQwNDBaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDA3M2Y2YjQ3NjVkMDBiZWIxOWFkZjcyZTRkM2NmNjcyOTkxYWViMTk3Mjkx YzZkZDNiOTNjOWIyMTc0MzkzN2MxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO4avxfFCS4bcvfqwQq3DtmT/Fc/liXDAvmzVo3Cov4P4L6DwiIfWm4Tu/Dv q3/CMH1p7k8KefhgiUNnaMWBCD9Kn0Wn2OTEhwdFpx6pKfUv0QqWgDdud0YSOSX+ Y7dcFf+zJtaCTnVgMllRsLMmOs2L6V00lsinugqo3DnNo5AKvWYf62vHXOVvBBLn aXi92HDHwxDFgwStmVRMaWpVPrilwyZT6100k/qbiVBS2AE8mr9w7XqpsIrtKuBw /hnQfZEXV2wEmGgAec9a/GQ/kH8WaTGyugWIlUdA0L5ZvMIfBXPP7wGykGrwmZfu sTJOKRPJhe/AHBxNJ2X5c3/EEi0CAwEAAaOCAiAwggIcMB0GA1UdDgQWBBTU4pty 973yc8+nCDWLjZhERT+FVTAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv NDZiMjIwYjktODM3Zi00MTc0LTk3ZTYtYzcxMTk1ODI3M2VhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADNOMA0G CSqGSIb3DQEBCwUAA4IBAQCXYJi7zTKFB7sqJ1mrWgSEd+7GJQYLCNa6KVN9xHUB eFqN1FvTsmx/l0E/hLoTYdNRTDQP2YD2IXFWSgAwIdL8D9AqZAHY4MkPBxwHYfXf A4WeoOlmf+qAC3LAI2HY0XHXylw+jIpf/NqGccsH9vfu/0/XA5GwvjyD3dR/n5KS L75ZoIE9Kx34Ws0tYpQE0k62U4N45FEF1VpXHiuhZpjr6RoJSbqQgzqKushvhmJe xcF5D7Tj+xPBhPKkNwjS9iy58cR6rV1cSeOHoNJLmzMyI8pUAE4gWD3cvhYsjXGv P6dS7YWeWtIxbU7KAlYkU4ffwTqeV9qxCN80HD8gftVG -----END CERTIFICATE-----Generated at Fri Dec 19 20:09:18 2025 by rpki-client