This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/77c679c8-2cc0-4e9b-b3da-c3315ea2711c.roa File: 77c679c8-2cc0-4e9b-b3da-c3315ea2711c.roa (raw, json) Hash identifier: h/i8q9llyeflzi5jMqv7DkzMPgiNbA3bxWAHoQ9rDcI= Subject key identifier: 32:99:A9:77:36:59:7B:82:BA:24:60:9F:D8:CA:12:E7:F8:23:87:76 Certificate issuer: /CN=df759b5af3da6c9df033b0de998970a4e79655d0 Certificate serial: 0AB57420CFDC047D0C2AB6E991D00E432102FE65 Authority key identifier: DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/77c679c8-2cc0-4e9b-b3da-c3315ea2711c.roa Signing time: Mon 08 Dec 2025 02:00:26 +0000 ROA not before: Mon 08 Dec 2025 02:00:26 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.0.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.mft rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b5:74:20:cf:dc:04:7d:0c:2a:b6:e9:91:d0:0e:43:21:02:fe:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df759b5af3da6c9df033b0de998970a4e79655d0 Validity Not Before: Dec 8 02:00:26 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=187997aaade649afa897f35b2cc4ceca945ed26923fa56a391567fbc46175430, CN=98d67deb-bb75-4e77-b1a0-36016b2d6350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:85:07:26:e2:b6:7b:c7:55:dc:ee:5d:6f:4e: a9:7c:65:5c:91:55:80:32:98:0b:2e:e9:94:49:5d: b9:0d:24:e3:81:3b:75:bc:8f:30:14:52:0f:9d:75: cb:ff:4a:cb:24:fe:86:c8:f1:08:a7:a6:65:4d:eb: b4:7a:e8:ea:ff:ea:d8:d6:fd:6b:be:d2:17:0c:f7: 01:98:c0:77:c0:30:3b:fc:d9:37:17:a9:ed:ec:55: 62:32:bb:ce:e5:b7:c5:16:d1:3d:00:6d:29:47:26: 11:45:b6:d5:9a:fe:27:ba:71:28:2a:20:2c:1a:28: 7b:29:13:d0:9e:f7:ae:73:b9:a1:f8:dd:cb:91:bc: 89:2e:ee:1b:a3:b8:a2:6b:0c:a3:b8:f2:dd:87:82: 36:ef:b9:56:7e:e7:b9:ee:37:fd:bb:f3:d6:fd:e9: b2:3e:58:db:ef:c0:f3:b0:a7:fd:c3:ab:90:09:99: f8:ba:ab:38:d0:86:b8:c2:22:ef:df:61:62:57:4d: af:ce:ff:16:16:6f:27:ef:8a:33:fc:e6:de:b0:f3: 01:60:ea:1b:6c:ee:9e:02:65:4a:a3:3f:61:8e:d5: bc:99:d3:bb:5b:30:1b:45:00:27:9b:56:c6:80:81: bd:ea:e6:75:99:f0:85:47:39:ae:60:3f:40:93:ad: aa:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:99:A9:77:36:59:7B:82:BA:24:60:9F:D8:CA:12:E7:F8:23:87:76 X509v3 Authority Key Identifier: keyid:DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/77c679c8-2cc0-4e9b-b3da-c3315ea2711c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.0.140.0/23 Signature Algorithm: sha256WithRSAEncryption 25:ba:7d:ec:54:3f:20:04:70:1e:28:51:2e:23:2a:dc:b2:a5: 7e:c9:ec:68:77:8e:dc:e7:c5:a2:69:5e:28:aa:3b:72:52:b8: 56:7b:7c:8d:71:ff:db:a2:f9:a3:32:d4:d9:85:5e:4c:af:b0: 1a:20:25:e3:ef:17:ed:a2:d4:cc:f9:91:a1:ab:05:a9:85:5f: 34:a7:6b:28:98:ef:f2:3d:2c:d2:d4:a9:aa:8d:39:45:14:1c: 3f:90:ae:f8:79:60:ee:fe:ff:40:a6:6e:bd:df:f4:69:c7:0b: 7b:41:71:cf:13:a0:80:68:8c:b7:77:bb:33:10:56:f0:01:a0: d6:a4:64:7d:4d:cc:0c:6b:bb:d7:10:a5:47:65:51:15:01:ff: d4:0e:12:72:f4:fc:33:db:14:74:9c:6b:85:cb:21:4d:0c:88: 74:1a:10:85:8b:6c:6c:01:10:cc:be:91:42:e5:81:cd:9a:d7: 1d:ea:4f:77:27:79:e6:26:86:d6:1a:c4:41:d2:82:19:cb:e3: ce:05:51:a9:0c:cf:c5:60:18:e4:21:9b:fb:5a:b8:16:42:83: 5a:66:d8:bf:fe:78:8a:dd:ab:2e:8c:53:b8:73:9f:94:f3:4b: 46:ec:39:89:ef:c8:63:f3:ea:ad:69:f1:6a:28:4e:0b:2f:bc: 41:5c:ae:a2 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUCrV0IM/cBH0MKrbpkdAOQyEC/mUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZGY3NTliNWFmM2RhNmM5ZGYwMzNiMGRlOTk4OTcwYTRl Nzk2NTVkMDAeFw0yNTEyMDgwMjAwMjZaFw0yNjAzMDgyMzU5NTlaMHoxSTBHBgNV BAUTQDE4Nzk5N2FhYWRlNjQ5YWZhODk3ZjM1YjJjYzRjZWNhOTQ1ZWQyNjkyM2Zh NTZhMzkxNTY3ZmJjNDYxNzU0MzAxLTArBgNVBAMTJDk4ZDY3ZGViLWJiNzUtNGU3 Ny1iMWEwLTM2MDE2YjJkNjM1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOuFBybitnvHVdzuXW9OqXxlXJFVgDKYCy7plElduQ0k44E7dbyPMBRSD511 y/9KyyT+hsjxCKemZU3rtHro6v/q2Nb9a77SFwz3AZjAd8AwO/zZNxep7exVYjK7 zuW3xRbRPQBtKUcmEUW21Zr+J7pxKCogLBooeykT0J73rnO5ofjdy5G8iS7uG6O4 omsMo7jy3YeCNu+5Vn7nue43/bvz1v3psj5Y2+/A87Cn/cOrkAmZ+LqrONCGuMIi 799hYldNr87/FhZvJ++KM/zm3rDzAWDqG2zungJlSqM/YY7VvJnTu1swG0UAJ5tW xoCBvermdZnwhUc5rmA/QJOtqksCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQymal3 Nll7grokYJ/YyhLn+COHdjAfBgNVHSMEGDAWgBTfdZta89psnfAzsN6ZiXCk55ZV 0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMzV2JXdlBh Ykozd003RGVtWWx3cE9lV1ZkQS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9mZTM3MzdmYi0wOTVkLTQ0NGMtOTJmNC0zZjcyMjFmYjU0NGMv NzdjNjc5YzgtMmNjMC00ZTliLWIzZGEtYzMzMTVlYTI3MTFjLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZmUzNzM3ZmItMDk1ZC00NDRjLTkyZjQtM2Y3MjIxZmI1 NDRjLzBYRTV0WlZ5dUdlYUFfaDctMXFCcDdhWTRTby5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEATMAjDAN BgkqhkiG9w0BAQsFAAOCAQEAJbp97FQ/IARwHihRLiMq3LKlfsnsaHeO3OfFomle KKo7clK4Vnt8jXH/26L5ozLU2YVeTK+wGiAl4+8X7aLUzPmRoasFqYVfNKdrKJjv 8j0s0tSpqo05RRQcP5Cu+Hlg7v7/QKZuvd/0accLe0FxzxOggGiMt3e7MxBW8AGg 1qRkfU3MDGu71xClR2VRFQH/1A4ScvT8M9sUdJxrhcshTQyIdBoQhYtsbAEQzL6R QuWBzZrXHepPdyd55iaG1hrEQdKCGcvjzgVRqQzPxWAY5CGb+1q4FkKDWmbYv/54 it2rLoxTuHOflPNLRuw5ie/IY/PqrWnxaihOCy+8QVyuog== -----END CERTIFICATE-----Generated at Fri Dec 19 23:19:51 2025 by rpki-client