This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e2093baf-9227-4159-b7ff-180369fe3bda.roa File: e2093baf-9227-4159-b7ff-180369fe3bda.roa (raw, json) Hash identifier: /EI2bUinUh2f+n7ehtnvoMkb2Knp/FQgICjiSwvMGh4= Subject key identifier: 4B:0D:E7:75:E4:61:85:C6:8B:AB:63:A7:F2:FD:CD:D8:01:2A:71:63 Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Certificate serial: 2A315300299C603D5E267FDE04F29107709911BB Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e2093baf-9227-4159-b7ff-180369fe3bda.roa Signing time: Wed 10 Dec 2025 06:40:06 +0000 ROA not before: Wed 10 Dec 2025 06:40:06 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.88.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:31:53:00:29:9c:60:3d:5e:26:7f:de:04:f2:91:07:70:99:11:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf Validity Not Before: Dec 10 06:40:06 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=90b2ad496f6263dec4c9ed4eb33d9e1dcaddee6e4b3ef50b9adfcbada567f5c6, CN=c336411a-6651-4f13-8ef9-de681c7c9444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1a:5e:a5:d0:39:dc:ab:f2:87:69:27:19:11: 5f:bf:af:4a:26:97:3b:5d:07:74:3d:a8:97:29:3e: e7:10:be:07:b9:bd:ce:a2:1f:8f:1e:78:6a:af:d1: b5:64:a2:a3:3c:a1:5b:d3:76:15:1b:94:94:cd:c3: d4:5e:c1:8a:9f:4e:2b:01:f5:33:ca:b2:fe:81:58: 87:c1:14:6e:35:a5:36:88:3c:d7:e6:74:0e:9b:7b: 1c:50:9b:1c:7a:2d:b7:b0:fc:2d:29:68:01:a4:c1: 74:d2:a1:0a:2c:4c:95:4a:ed:9a:c4:fb:96:60:0e: 35:7f:81:44:fb:53:99:7a:39:1e:b7:e3:09:2f:5c: 84:23:2b:09:66:ae:e3:87:92:6f:87:25:c8:68:d9: 16:d1:15:7a:33:10:36:aa:98:34:00:1b:88:33:d5: 4d:1e:30:b3:9d:c5:69:de:f0:96:e2:80:16:77:7d: ab:dd:59:0a:3d:1a:d3:43:98:b2:87:5e:23:44:51: 23:e6:c3:ef:87:d5:45:60:66:4c:77:ab:c5:af:b1: 96:6d:d5:0d:10:5d:0d:33:6e:dc:3a:92:0d:8f:de: 61:11:95:f9:d2:23:b9:d5:db:09:56:7b:c1:e7:21: ff:e5:a2:5c:46:e6:73:fa:bf:65:4f:b8:93:38:2c: 89:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0D:E7:75:E4:61:85:C6:8B:AB:63:A7:F2:FD:CD:D8:01:2A:71:63 X509v3 Authority Key Identifier: keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e2093baf-9227-4159-b7ff-180369fe3bda.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.88.0.0/16 Signature Algorithm: sha256WithRSAEncryption 33:b0:7c:e7:77:81:db:54:d9:2e:94:77:a0:7a:59:45:44:ca: a7:4f:63:17:f3:5a:af:63:8c:2d:4d:4b:35:3f:cd:1d:eb:a3: e6:0b:c7:e0:fb:07:49:73:3c:f4:06:85:8c:5a:2e:94:ac:ed: ce:89:5e:4b:c1:cd:15:59:31:22:dc:ce:a3:17:d1:24:dd:ff: 60:b8:85:da:3f:a7:4b:37:df:9f:e1:c1:20:74:93:a7:bf:e1: ed:43:61:d1:7f:3b:76:4c:7b:88:e9:b1:f4:dd:31:0f:b2:6b: c4:76:f2:8d:16:92:d1:ec:3e:6c:1e:56:2f:a3:14:3d:a8:5a: ff:88:21:68:f7:5e:72:57:4a:10:46:e5:8c:a9:fa:cf:b7:c9: 69:0d:1f:1b:51:00:d6:e1:d7:b9:a4:8e:c4:51:94:4c:5b:96: 1b:b1:28:38:89:a5:77:7e:b1:d2:9c:28:d4:e0:ba:e9:82:8e: ee:ac:f7:1a:7b:20:bf:d9:d6:1a:28:9f:06:de:cc:fb:d9:12: b8:08:b2:de:f6:51:91:af:9a:a9:b7:9d:53:04:65:03:d2:b3: ef:50:d2:75:02:c5:70:bf:f6:19:df:29:81:5e:bb:29:a6:6f: 38:f7:16:e2:00:82:d6:56:d0:6a:8c:cc:a5:16:54:46:34:97: 91:7d:05:a8 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUKjFTACmcYD1eJn/eBPKRB3CZEbswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw ZTVjODdjZjAeFw0yNTEyMTAwNjQwMDZaFw0yNjAzMTAyMzU5NTlaMHoxSTBHBgNV BAUTQDkwYjJhZDQ5NmY2MjYzZGVjNGM5ZWQ0ZWIzM2Q5ZTFkY2FkZGVlNmU0YjNl ZjUwYjlhZGZjYmFkYTU2N2Y1YzYxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ4aXqXQOdyr8odpJxkRX7+vSiaXO10HdD2olyk+5xC+B7m9zqIfjx54aq/R tWSiozyhW9N2FRuUlM3D1F7Bip9OKwH1M8qy/oFYh8EUbjWlNog81+Z0Dpt7HFCb HHott7D8LSloAaTBdNKhCixMlUrtmsT7lmAONX+BRPtTmXo5HrfjCS9chCMrCWau 44eSb4clyGjZFtEVejMQNqqYNAAbiDPVTR4ws53Fad7wluKAFnd9q91ZCj0a00OY sodeI0RRI+bD74fVRWBmTHerxa+xlm3VDRBdDTNu3DqSDY/eYRGV+dIjudXbCVZ7 wech/+WiXEbmc/q/ZU+4kzgsiUUCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBRLDed1 5GGFxourY6fy/c3YASpxYzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv ZTIwOTNiYWYtOTIyNy00MTU5LWI3ZmYtMTgwMzY5ZmUzYmRhLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADNYMA0G CSqGSIb3DQEBCwUAA4IBAQAzsHznd4HbVNkulHegellFRMqnT2MX81qvY4wtTUs1 P80d66PmC8fg+wdJczz0BoWMWi6UrO3OiV5Lwc0VWTEi3M6jF9Ek3f9guIXaP6dL N9+f4cEgdJOnv+HtQ2HRfzt2THuI6bH03TEPsmvEdvKNFpLR7D5sHlYvoxQ9qFr/ iCFo915yV0oQRuWMqfrPt8lpDR8bUQDW4de5pI7EUZRMW5YbsSg4iaV3frHSnCjU 4Lrpgo7urPcaeyC/2dYaKJ8G3sz72RK4CLLe9lGRr5qpt51TBGUD0rPvUNJ1AsVw v/YZ3ymBXrsppm849xbiAILWVtBqjMylFlRGNJeRfQWo -----END CERTIFICATE-----Generated at Fri Dec 19 21:50:12 2025 by rpki-client