This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/5e0372f9-155c-44b5-a4db-e3da48adfab2.roa File: 5e0372f9-155c-44b5-a4db-e3da48adfab2.roa (raw, json) Hash identifier: YHOOQ2t9akgachknqeaAV6mfSlZadE9CLx1EiN7A3UI= Subject key identifier: D0:44:D4:E4:24:29:44:03:44:9B:06:10:89:96:E3:5F:68:17:37:A0 Certificate issuer: /CN=df759b5af3da6c9df033b0de998970a4e79655d0 Certificate serial: 072054B29DE43C42187A0F61B49ACF93475C654E Authority key identifier: DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/5e0372f9-155c-44b5-a4db-e3da48adfab2.roa Signing time: Mon 08 Dec 2025 02:00:27 +0000 ROA not before: Mon 08 Dec 2025 02:00:27 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.0.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.mft rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:20:54:b2:9d:e4:3c:42:18:7a:0f:61:b4:9a:cf:93:47:5c:65:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df759b5af3da6c9df033b0de998970a4e79655d0 Validity Not Before: Dec 8 02:00:27 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=a7e6fd40ec22af6759e367683eb06473fcf93f64a2c979db6d3593a080b6f0cd, CN=98d67deb-bb75-4e77-b1a0-36016b2d6350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:92:96:7c:f9:84:e6:a0:f7:eb:52:ad:fb:e0: 61:b4:5f:5c:63:5f:94:a7:2b:0c:25:c7:0f:fa:9e: d5:76:16:83:f2:58:28:af:5e:11:32:85:f2:1a:0b: 7f:4f:b8:ec:da:90:cc:9d:c9:6f:fb:3c:87:dd:13: 56:24:69:68:70:57:e3:cc:0b:73:62:49:e6:14:52: db:04:89:fe:bb:69:d7:e0:96:5f:53:1b:2f:28:61: 0e:79:d9:ec:1e:54:0e:00:94:58:5c:f7:65:f4:cd: cf:a4:cf:08:33:e3:db:0b:37:30:21:dc:96:ff:01: ad:53:64:88:e8:7d:19:fe:4c:58:a6:c9:29:d0:53: 04:a7:91:89:89:1d:2b:df:7f:58:99:63:98:91:4b: db:65:65:cd:49:b4:a4:6a:ed:9e:45:8b:53:f2:74: 6d:a4:76:ff:52:7b:b8:22:e9:76:a9:94:28:60:41: 97:bf:c4:85:8e:e0:9b:6b:11:48:c4:41:da:76:d0: 61:4a:59:45:89:b5:bf:db:d9:a2:2d:e3:53:89:1f: c6:4b:bf:51:7f:f3:32:d2:af:87:0a:8f:b5:1c:26: 92:be:1d:2c:bb:71:15:10:b8:40:ba:98:59:10:6b: 88:96:a2:22:46:d8:d6:e8:4f:e5:b3:14:23:00:59: 8b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:44:D4:E4:24:29:44:03:44:9B:06:10:89:96:E3:5F:68:17:37:A0 X509v3 Authority Key Identifier: keyid:DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/5e0372f9-155c-44b5-a4db-e3da48adfab2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.0.0.0/20 Signature Algorithm: sha256WithRSAEncryption 13:21:23:48:4f:15:f0:54:8a:10:76:3b:c3:dd:b0:d0:e1:d7: 57:c7:a2:31:c9:93:a5:3d:54:72:3c:ee:c6:ca:ac:06:64:f4: d6:40:e3:27:47:87:5c:55:35:5e:a6:11:a4:70:15:c8:e2:90: 85:e3:48:fc:b5:b3:42:c8:1a:b5:ab:03:c6:9b:39:62:8e:0d: 0f:54:e1:6f:a5:00:ae:81:95:f2:dc:7e:8d:43:f2:2c:50:8a: 41:eb:ba:18:13:b6:1b:2d:29:55:f2:9f:61:89:78:ee:6f:e4: e0:bd:b4:4a:f9:38:74:3f:3f:06:ca:ed:93:5a:3f:dd:7d:42: 99:e6:84:d6:3e:a4:19:5a:2f:be:86:62:c2:70:d5:23:b7:73: 9d:8f:5e:70:85:9f:58:ae:be:2c:15:02:21:75:48:df:4e:48: a7:c2:12:f8:ff:62:73:36:77:25:52:6a:eb:d8:19:1a:f4:d8: d1:52:c4:6a:f2:99:0e:39:2e:63:8e:a1:13:c0:8b:a5:94:4c: a1:3c:78:b5:01:af:6d:5d:3b:0e:a3:cf:38:84:f6:72:e2:54: 2a:11:83:53:c0:7b:12:17:51:eb:37:b2:d8:9e:31:a9:ea:fe: af:f9:ae:98:84:58:0e:d4:65:49:ff:0b:7d:c6:8d:fe:5b:7a: fe:0d:b3:67 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUByBUsp3kPEIYeg9htJrPk0dcZU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZGY3NTliNWFmM2RhNmM5ZGYwMzNiMGRlOTk4OTcwYTRl Nzk2NTVkMDAeFw0yNTEyMDgwMjAwMjdaFw0yNjAzMDgyMzU5NTlaMHoxSTBHBgNV BAUTQGE3ZTZmZDQwZWMyMmFmNjc1OWUzNjc2ODNlYjA2NDczZmNmOTNmNjRhMmM5 NzlkYjZkMzU5M2EwODBiNmYwY2QxLTArBgNVBAMTJDk4ZDY3ZGViLWJiNzUtNGU3 Ny1iMWEwLTM2MDE2YjJkNjM1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI6Slnz5hOag9+tSrfvgYbRfXGNflKcrDCXHD/qe1XYWg/JYKK9eETKF8hoL f0+47NqQzJ3Jb/s8h90TViRpaHBX48wLc2JJ5hRS2wSJ/rtp1+CWX1MbLyhhDnnZ 7B5UDgCUWFz3ZfTNz6TPCDPj2ws3MCHclv8BrVNkiOh9Gf5MWKbJKdBTBKeRiYkd K99/WJljmJFL22VlzUm0pGrtnkWLU/J0baR2/1J7uCLpdqmUKGBBl7/EhY7gm2sR SMRB2nbQYUpZRYm1v9vZoi3jU4kfxku/UX/zMtKvhwqPtRwmkr4dLLtxFRC4QLqY WRBriJaiIkbY1uhP5bMUIwBZizsCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTQRNTk JClEA0SbBhCJluNfaBc3oDAfBgNVHSMEGDAWgBTfdZta89psnfAzsN6ZiXCk55ZV 0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMzV2JXdlBh Ykozd003RGVtWWx3cE9lV1ZkQS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9mZTM3MzdmYi0wOTVkLTQ0NGMtOTJmNC0zZjcyMjFmYjU0NGMv NWUwMzcyZjktMTU1Yy00NGI1LWE0ZGItZTNkYTQ4YWRmYWIyLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZmUzNzM3ZmItMDk1ZC00NDRjLTkyZjQtM2Y3MjIxZmI1 NDRjLzBYRTV0WlZ5dUdlYUFfaDctMXFCcDdhWTRTby5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBDMAADAN BgkqhkiG9w0BAQsFAAOCAQEAEyEjSE8V8FSKEHY7w92w0OHXV8eiMcmTpT1Ucjzu xsqsBmT01kDjJ0eHXFU1XqYRpHAVyOKQheNI/LWzQsgatasDxps5Yo4ND1Thb6UA roGV8tx+jUPyLFCKQeu6GBO2Gy0pVfKfYYl47m/k4L20Svk4dD8/Bsrtk1o/3X1C meaE1j6kGVovvoZiwnDVI7dznY9ecIWfWK6+LBUCIXVI305Ip8IS+P9iczZ3JVJq 69gZGvTY0VLEavKZDjkuY46hE8CLpZRMoTx4tQGvbV07DqPPOIT2cuJUKhGDU8B7 EhdR6zey2J4xqer+r/mumIRYDtRlSf8LfcaN/lt6/g2zZw== -----END CERTIFICATE-----Generated at Fri Dec 19 23:19:52 2025 by rpki-client