This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d241761a-4c6e-4db3-ba0a-26b2eda6222a.roa File: d241761a-4c6e-4db3-ba0a-26b2eda6222a.roa (raw, json) Hash identifier: WxV7y56DWTzNH6zgq8K6YVZDv5LhvA2JG2aR+ZE+djU= Subject key identifier: 0A:47:E4:C6:F8:7A:79:28:90:04:0F:47:B2:64:CE:30:71:91:F3:9F Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 130ABBB99ED60B60D3F576FA896F97DCC882E33A Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d241761a-4c6e-4db3-ba0a-26b2eda6222a.roa Signing time: Wed 10 Dec 2025 06:40:21 +0000 ROA not before: Wed 10 Dec 2025 06:40:21 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.110.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:0a:bb:b9:9e:d6:0b:60:d3:f5:76:fa:89:6f:97:dc:c8:82:e3:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:40:21 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=812665db0db422cbb7f9f3eb183c7c756ab0bdae5307eeaa00bd41bcac4e18de, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:20:b2:a9:a4:a6:81:9d:15:7b:5a:b3:11:f3: 2a:22:ac:ac:f6:13:ce:6e:5b:da:35:d7:f9:06:55: af:7e:c9:9c:6f:f6:14:b9:2d:33:ed:71:0c:bd:f2: b5:b4:b7:52:1d:31:68:ee:82:6c:bf:f2:26:8c:e6: 5c:f8:e7:47:74:3b:e6:07:91:f6:dd:56:9b:e5:14: 07:bc:35:b1:00:87:a6:cb:a0:ae:43:37:0e:e4:0f: f4:c4:ba:94:5f:47:64:81:ff:55:8d:64:f3:19:40: fb:d9:48:19:5c:da:ab:83:14:47:3e:ec:6f:07:93: 74:2b:4d:92:d6:a2:ea:8b:71:38:8d:ab:83:31:2f: 12:99:86:d7:71:5a:a2:e8:d7:d3:2d:05:96:ad:37: a3:c6:74:b6:27:b4:99:58:92:90:eb:d4:0e:60:f8: 49:b1:9b:f9:88:f6:80:59:7b:ce:f3:30:ee:05:ba: b8:bc:b9:f8:8e:8b:82:6f:5b:fa:02:a7:de:c5:d9: e8:5d:82:c1:4b:5c:88:e9:b4:e2:65:3a:2b:49:83: 2f:87:4f:44:57:97:e7:4e:fa:a2:0a:82:41:28:b0: 53:cf:af:7b:61:72:fa:f2:11:9a:a9:9b:c4:85:55: 31:5f:52:1d:c4:8b:73:ec:a5:23:71:8d:ef:e4:42: ea:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:47:E4:C6:F8:7A:79:28:90:04:0F:47:B2:64:CE:30:71:91:F3:9F X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d241761a-4c6e-4db3-ba0a-26b2eda6222a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.110.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1b:04:eb:c8:8c:ba:b6:e1:ad:7a:60:be:2e:72:9e:66:10:cb: 1b:e9:fd:be:b6:77:25:b8:a8:81:1f:92:17:fb:95:44:7f:e0: 85:8d:2b:b0:2f:df:5c:3a:32:2b:bc:f7:59:4d:2d:e6:06:63: 41:d7:fb:1d:d3:97:2e:6d:da:72:c5:d1:46:c9:2b:95:33:cb: b2:79:de:a1:d0:44:76:66:0f:cb:ee:1e:f2:15:bb:39:e1:2f: fe:cf:48:31:e0:1f:6e:79:e8:2c:41:2e:88:2e:94:ec:13:ef: ce:1f:75:7b:eb:a1:1c:b9:89:a9:34:95:b7:94:d8:c3:cb:14: 7d:e3:cb:0c:99:5f:64:bf:d6:c9:59:5c:e1:e6:b8:07:89:18: 8e:95:0c:95:22:1c:9d:6e:04:86:58:e3:ea:c0:de:5d:6e:19: 31:3b:06:2d:1c:7f:61:6f:62:46:99:85:4e:5d:e4:2f:5a:e7: dd:b0:89:03:34:eb:5e:36:32:87:5a:72:99:4e:db:91:63:ba: 7e:b4:cc:31:61:67:4a:67:6c:fd:ae:ee:34:7d:08:56:49:1f: d8:ff:1e:d4:a8:1b:93:b4:d3:e4:12:7b:3c:5c:eb:45:e7:bb: 44:5f:e3:b4:1d:74:86:68:53:f2:f6:a1:1c:f3:6f:67:04:c4: 6e:5d:87:01 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUEwq7uZ7WC2DT9Xb6iW+X3MiC4zowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjQwMjFaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDgxMjY2NWRiMGRiNDIyY2JiN2Y5ZjNlYjE4M2M3Yzc1NmFiMGJkYWU1MzA3 ZWVhYTAwYmQ0MWJjYWM0ZTE4ZGUxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOEgsqmkpoGdFXtasxHzKiKsrPYTzm5b2jXX+QZVr37JnG/2FLktM+1xDL3y tbS3Uh0xaO6CbL/yJozmXPjnR3Q75geR9t1Wm+UUB7w1sQCHpsugrkM3DuQP9MS6 lF9HZIH/VY1k8xlA+9lIGVzaq4MURz7sbweTdCtNktai6otxOI2rgzEvEpmG13Fa oujX0y0Flq03o8Z0tie0mViSkOvUDmD4SbGb+Yj2gFl7zvMw7gW6uLy5+I6Lgm9b +gKn3sXZ6F2CwUtciOm04mU6K0mDL4dPRFeX5076ogqCQSiwU8+ve2Fy+vIRmqmb xIVVMV9SHcSLc+ylI3GN7+RC6rMCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBQKR+TG +Hp5KJAED0eyZM4wcZHznzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ZDI0MTc2MWEtNGM2ZS00ZGIzLWJhMGEtMjZiMmVkYTYyMjJhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADNuMA0G CSqGSIb3DQEBCwUAA4IBAQAbBOvIjLq24a16YL4ucp5mEMsb6f2+tncluKiBH5IX +5VEf+CFjSuwL99cOjIrvPdZTS3mBmNB1/sd05cubdpyxdFGySuVM8uyed6h0ER2 Zg/L7h7yFbs54S/+z0gx4B9ueegsQS6ILpTsE+/OH3V766EcuYmpNJW3lNjDyxR9 48sMmV9kv9bJWVzh5rgHiRiOlQyVIhydbgSGWOPqwN5dbhkxOwYtHH9hb2JGmYVO XeQvWufdsIkDNOteNjKHWnKZTtuRY7p+tMwxYWdKZ2z9ru40fQhWSR/Y/x7UqBuT tNPkEns8XOtF57tEX+O0HXSGaFPy9qEc829nBMRuXYcB -----END CERTIFICATE-----Generated at Fri Dec 19 15:58:39 2025 by rpki-client