This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/51429a37-e3fd-4b49-a184-1e07ed522f97.roa File: 51429a37-e3fd-4b49-a184-1e07ed522f97.roa (raw, json) Hash identifier: D41HJIga7N3lG4Rt6sJBavWF7ifVMiEjHQboLHuk7GI= Subject key identifier: 47:99:6F:FD:60:62:1A:48:A4:B6:F8:35:4D:9C:13:94:12:14:86:1B Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 7066AA8FC6AE2A167BFD52A98DD9E35CEC31E1FC Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/51429a37-e3fd-4b49-a184-1e07ed522f97.roa Signing time: Wed 10 Dec 2025 06:30:10 +0000 ROA not before: Wed 10 Dec 2025 06:30:10 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.3.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:66:aa:8f:c6:ae:2a:16:7b:fd:52:a9:8d:d9:e3:5c:ec:31:e1:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:30:10 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=957f5cf1c4575d2ed713c76bcc07e10a447d3b500db3a61360fb8fe639232156, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cf:5a:13:2f:19:2a:33:34:07:e8:86:8c:81: f7:3a:8b:46:5d:98:77:7b:60:5f:68:cc:e3:f2:22: ab:68:39:a7:df:5c:99:2b:24:65:f5:4a:cc:1f:50: c6:7f:13:6c:70:5b:31:aa:88:62:10:2a:cd:f0:ed: 7b:51:95:e1:5c:d0:db:a8:bc:2d:1e:63:9f:6d:e3: 79:cc:7c:d0:c5:fd:2b:58:9d:8c:c0:14:49:76:20: 64:b1:2f:34:4c:02:8f:1b:de:29:65:29:3a:66:42: 6f:cd:e0:95:ab:b3:18:3d:1b:de:1c:38:fb:88:e5: 08:82:e1:24:35:7f:3a:a5:e3:5c:70:ce:ac:76:50: 76:cd:ed:3f:88:b4:38:55:95:10:a3:e9:42:54:a2: 8d:b2:4f:2e:d7:6d:ef:13:bf:de:36:99:48:4f:94: ce:cb:a3:3e:ab:f6:c6:4d:60:36:e5:41:4c:08:6c: 57:c2:6a:3b:39:ee:cd:a6:ce:66:25:3b:b5:1e:2a: 0c:e2:a7:68:e5:56:6a:3f:33:79:f5:e3:63:47:87: 4b:bb:06:0a:2b:c7:1b:62:66:c2:69:3d:1e:cc:81: d4:12:01:94:72:e2:ea:eb:dc:d2:c1:03:9d:8a:6e: eb:c8:d6:e7:d1:d3:b9:bd:e4:03:c6:65:54:af:bb: d8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:99:6F:FD:60:62:1A:48:A4:B6:F8:35:4D:9C:13:94:12:14:86:1B X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/51429a37-e3fd-4b49-a184-1e07ed522f97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.3.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:a4:fc:2b:e7:a2:7b:78:84:80:a8:69:c7:f2:40:51:98:b8: f7:c1:26:01:8d:5c:c9:47:85:c4:9c:5a:69:8d:db:38:18:ac: 9d:a4:43:6c:e9:65:46:a9:e5:78:40:cd:57:43:b0:8c:bb:d5: bd:1b:bd:86:20:4c:14:ae:6b:c7:22:23:31:c9:13:68:ef:c8: 96:d4:b2:2f:2f:fd:66:b1:c9:a7:61:14:0b:5d:21:b3:da:db: 27:4f:a1:b8:8b:41:17:5f:17:e6:cc:29:f7:47:21:6b:96:9d: 46:b3:df:31:d8:f9:e5:0f:4d:6d:40:5e:70:42:19:4d:12:cf: 24:09:a4:8e:c4:df:ca:ff:4b:65:d7:27:da:86:30:47:9b:69: 14:e0:62:81:f8:d1:09:7f:39:dc:1e:7f:b8:ad:f5:7a:3c:a5: 75:01:0b:17:8d:89:49:b0:1c:a2:10:11:c4:69:66:0b:78:4a: ba:df:0e:1b:40:f7:0c:01:c3:6a:fb:a3:dc:c3:72:56:d9:80: 6f:e9:a3:43:a1:dc:bf:30:45:7e:17:ab:40:82:1c:d7:d7:f1: aa:c8:aa:74:b2:26:62:6f:92:f8:7e:6d:5d:3c:04:03:c2:f7: 24:d3:b5:1e:70:a3:10:89:4b:94:22:f9:5f:10:50:36:83:76: d2:f1:23:91 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUcGaqj8auKhZ7/VKpjdnjXOwx4fwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjMwMTBaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDk1N2Y1Y2YxYzQ1NzVkMmVkNzEzYzc2YmNjMDdlMTBhNDQ3ZDNiNTAwZGIz YTYxMzYwZmI4ZmU2MzkyMzIxNTYxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALfPWhMvGSozNAfohoyB9zqLRl2Yd3tgX2jM4/Iiq2g5p99cmSskZfVKzB9Q xn8TbHBbMaqIYhAqzfDte1GV4VzQ26i8LR5jn23jecx80MX9K1idjMAUSXYgZLEv NEwCjxveKWUpOmZCb83glauzGD0b3hw4+4jlCILhJDV/OqXjXHDOrHZQds3tP4i0 OFWVEKPpQlSijbJPLtdt7xO/3jaZSE+UzsujPqv2xk1gNuVBTAhsV8JqOznuzabO ZiU7tR4qDOKnaOVWaj8zefXjY0eHS7sGCivHG2Jmwmk9HsyB1BIBlHLi6uvc0sED nYpu68jW59HTub3kA8ZlVK+72N0CAwEAAaOCAiAwggIcMB0GA1UdDgQWBBRHmW/9 YGIaSKS2+DVNnBOUEhSGGzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv NTE0MjlhMzctZTNmZC00YjQ5LWExODQtMWUwN2VkNTIyZjk3LnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADMDMA0G CSqGSIb3DQEBCwUAA4IBAQA+pPwr56J7eISAqGnH8kBRmLj3wSYBjVzJR4XEnFpp jds4GKydpENs6WVGqeV4QM1XQ7CMu9W9G72GIEwUrmvHIiMxyRNo78iW1LIvL/1m scmnYRQLXSGz2tsnT6G4i0EXXxfmzCn3RyFrlp1Gs98x2PnlD01tQF5wQhlNEs8k CaSOxN/K/0tl1yfahjBHm2kU4GKB+NEJfzncHn+4rfV6PKV1AQsXjYlJsByiEBHE aWYLeEq63w4bQPcMAcNq+6Pcw3JW2YBv6aNDody/MEV+F6tAghzX1/GqyKp0siZi b5L4fm1dPAQDwvck07UecKMQiUuUIvlfEFA2g3bS8SOR -----END CERTIFICATE-----Generated at Tue Dec 16 23:13:48 2025 by rpki-client