This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9a08b99a-284f-4e69-83b1-fbfba94e7f22.roa File: 9a08b99a-284f-4e69-83b1-fbfba94e7f22.roa (raw, json) Hash identifier: miDzAcj6ZXmUq6Unlwn6eELroG4AaEmQA68Cf4qvVgs= Subject key identifier: CD:F6:71:6F:3F:3F:7E:B5:80:D0:C9:99:C7:8F:39:F5:10:EB:42:59 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 437D5121CFEAA278C9589E74E0F8DE77182FEF0A Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9a08b99a-284f-4e69-83b1-fbfba94e7f22.roa Signing time: Wed 10 Dec 2025 06:50:37 +0000 ROA not before: Wed 10 Dec 2025 06:50:37 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 145.55.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7d:51:21:cf:ea:a2:78:c9:58:9e:74:e0:f8:de:77:18:2f:ef:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:50:37 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=ad133bfed60ccced43b8763b27970ab7206e60b4041669f2bdc6ff6b625d7002, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:3b:23:d6:12:9c:12:89:ab:9e:bf:4b:7e:96: 0b:af:24:46:cc:0f:a6:9c:94:a4:c3:93:fb:39:b5: 6a:58:b4:9b:2a:3a:d0:ac:dd:e4:d2:a3:2e:22:24: fb:ad:3e:30:91:62:f5:f9:79:87:f2:fb:42:93:32: fa:45:10:c0:b2:b6:ff:ae:e9:e9:c3:45:9f:3d:03: fa:2f:11:5a:c6:6e:68:0b:94:35:c2:ab:63:d1:17: cf:38:18:ba:cd:9d:36:3c:f9:19:46:2b:77:1e:4a: 07:02:8b:b9:a4:cb:e2:7d:57:bc:13:25:71:c6:f9: 12:d2:9f:e2:ed:45:00:6f:56:0e:1b:93:8a:f6:f8: 17:64:4b:35:c8:dd:78:85:92:1a:6d:09:8f:24:5c: f1:30:cd:70:c9:5f:5b:cd:d9:7a:af:ff:fe:4e:5c: f4:c2:28:7c:0a:24:5e:a2:c0:b2:46:e9:89:24:ea: d9:c1:fc:c3:f9:11:de:c2:e4:74:34:ec:bc:1b:fd: 64:91:7b:1b:e7:d1:df:aa:45:d2:6b:b7:eb:4f:68: ad:38:96:54:66:aa:37:c1:02:df:aa:70:9c:67:87: a5:58:81:c7:61:d0:29:85:3b:33:cb:3d:18:e7:6f: 4d:45:f9:06:5c:f5:45:6a:55:df:cb:04:6f:c4:15: 6d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F6:71:6F:3F:3F:7E:B5:80:D0:C9:99:C7:8F:39:F5:10:EB:42:59 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9a08b99a-284f-4e69-83b1-fbfba94e7f22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.55.0.0/16 Signature Algorithm: sha256WithRSAEncryption c7:c9:21:d8:29:6d:01:50:51:85:70:ae:e8:7e:6b:ca:75:4b: 86:c9:63:4f:a7:92:da:df:56:b7:a0:ad:50:7f:37:12:9b:ca: cb:04:98:d6:72:ad:89:f6:f1:34:77:d3:e9:fa:1e:03:40:e3: 1d:4b:09:fc:a7:b3:d7:a8:e8:74:03:94:8f:01:66:29:87:d6: f0:1c:50:4e:ed:4b:96:3b:43:6b:b5:6b:16:25:c3:bf:d2:17: fb:a3:9d:60:82:0a:b5:40:a8:a2:47:9d:d1:64:de:a3:19:7e: 55:a4:91:42:1d:6d:8c:07:d5:ca:fd:08:0c:ae:60:d8:9c:56: aa:73:df:42:b0:45:67:f8:72:57:2f:f8:4e:70:15:ae:b2:6b: 39:26:27:c5:40:57:5c:5b:81:32:e5:6a:69:83:b1:e9:81:36: e1:70:58:36:8a:0f:92:6d:62:74:f6:01:32:ee:d4:a7:08:44: 4e:d5:65:e3:98:f3:f3:82:9d:c9:ce:34:dd:ee:24:08:cd:ae: 33:d2:36:f9:0c:f4:9a:bf:b1:cf:0e:6f:be:ba:f6:4e:57:f9: ef:99:0c:30:a7:7b:f9:cb:11:b2:e3:2f:a8:1f:3d:84:10:a8: 7e:95:00:50:c1:1b:84:8a:24:3c:ff:f9:06:70:d2:50:d4:1f: 8b:41:22:e1 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUQ31RIc/qonjJWJ504Pjedxgv7wowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjUwMzdaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQGFkMTMzYmZlZDYwY2NjZWQ0M2I4NzYzYjI3OTcwYWI3MjA2ZTYwYjQwNDE2 NjlmMmJkYzZmZjZiNjI1ZDcwMDIxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJQ7I9YSnBKJq56/S36WC68kRswPppyUpMOT+zm1ali0myo60Kzd5NKjLiIk +60+MJFi9fl5h/L7QpMy+kUQwLK2/67p6cNFnz0D+i8RWsZuaAuUNcKrY9EXzzgY us2dNjz5GUYrdx5KBwKLuaTL4n1XvBMlccb5EtKf4u1FAG9WDhuTivb4F2RLNcjd eIWSGm0JjyRc8TDNcMlfW83Zeq///k5c9MIofAokXqLAskbpiSTq2cH8w/kR3sLk dDTsvBv9ZJF7G+fR36pF0mu3609orTiWVGaqN8EC36pwnGeHpViBx2HQKYU7M8s9 GOdvTUX5Blz1RWpV38sEb8QVbT8CAwEAAaOCAiAwggIcMB0GA1UdDgQWBBTN9nFv Pz9+tYDQyZnHjzn1EOtCWTAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv OWEwOGI5OWEtMjg0Zi00ZTY5LTgzYjEtZmJmYmE5NGU3ZjIyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAJE3MA0G CSqGSIb3DQEBCwUAA4IBAQDHySHYKW0BUFGFcK7ofmvKdUuGyWNPp5La31a3oK1Q fzcSm8rLBJjWcq2J9vE0d9Pp+h4DQOMdSwn8p7PXqOh0A5SPAWYph9bwHFBO7UuW O0NrtWsWJcO/0hf7o51gggq1QKiiR53RZN6jGX5VpJFCHW2MB9XK/QgMrmDYnFaq c99CsEVn+HJXL/hOcBWusms5JifFQFdcW4Ey5Wppg7HpgTbhcFg2ig+SbWJ09gEy 7tSnCERO1WXjmPPzgp3JzjTd7iQIza4z0jb5DPSav7HPDm++uvZOV/nvmQwwp3v5 yxGy4y+oHz2EEKh+lQBQwRuEiiQ8//kGcNJQ1B+LQSLh -----END CERTIFICATE-----Generated at Mon Dec 15 19:52:10 2025 by rpki-client