This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/9fc884bc-2b9f-4180-a386-f94e759f70bf.roa File: 9fc884bc-2b9f-4180-a386-f94e759f70bf.roa (raw, json) Hash identifier: ohIf4EySbPfmBVDjjUYk0WoTsoJc4TkGNHoocrJvojY= Subject key identifier: 8C:E4:1B:5E:35:5D:FF:0A:5A:AB:1A:98:E1:95:A9:F2:78:7C:B2:A4 Certificate issuer: /CN=df759b5af3da6c9df033b0de998970a4e79655d0 Certificate serial: 77CA1161B3D09F2E6842FB8143178D6A60DE723B Authority key identifier: DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/9fc884bc-2b9f-4180-a386-f94e759f70bf.roa Signing time: Mon 08 Dec 2025 02:00:26 +0000 ROA not before: Mon 08 Dec 2025 02:00:26 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.0.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.mft rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:ca:11:61:b3:d0:9f:2e:68:42:fb:81:43:17:8d:6a:60:de:72:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df759b5af3da6c9df033b0de998970a4e79655d0 Validity Not Before: Dec 8 02:00:26 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=8785d42ae84039e770a17ce388225ec4789f6f45efd5e3ea26ed6083f87fb823, CN=98d67deb-bb75-4e77-b1a0-36016b2d6350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b1:45:fe:fb:7f:cb:0e:6c:2d:01:1d:2c:72: 12:40:41:3c:fd:f5:41:3e:88:fd:c7:e0:3c:ac:8b: 2a:d2:09:84:a9:84:b6:72:76:02:d8:50:7e:9f:a4: 98:00:ef:50:1e:3c:f8:4a:35:23:63:6c:2e:73:f2: d5:0d:a0:75:fc:3f:1d:67:ed:b4:9d:b6:6a:07:7b: 94:e3:52:8f:2d:b3:f0:1d:c4:4e:9f:14:c0:61:76: 1c:42:d7:a3:a4:3b:cf:1c:ce:63:38:c9:1c:ef:b4: a0:67:a0:2f:c4:37:f8:c4:b7:7b:7c:91:72:96:35: 4d:03:a0:4a:93:f6:ff:b8:cd:f9:a8:da:63:41:7c: a8:5b:5f:0e:f5:06:71:83:53:3b:47:88:d3:c4:68: 39:59:67:6a:e1:9c:31:b6:33:13:cf:25:a9:38:2d: aa:63:65:c7:45:6b:fd:15:ae:58:87:ad:90:eb:e3: 13:00:49:c8:db:d7:5b:db:81:37:da:6e:14:f7:0c: b2:e4:48:97:2f:29:0b:ea:c8:ab:71:93:af:13:89: 46:98:ae:f6:c0:de:8d:10:20:14:ae:b7:49:96:62: 66:ac:d1:96:d4:41:dc:5e:f3:b4:07:db:57:b4:fd: d4:4d:0e:9b:c9:a1:58:7e:b4:aa:3f:ae:dc:17:15: 15:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E4:1B:5E:35:5D:FF:0A:5A:AB:1A:98:E1:95:A9:F2:78:7C:B2:A4 X509v3 Authority Key Identifier: keyid:DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/9fc884bc-2b9f-4180-a386-f94e759f70bf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.0.31.0/24 Signature Algorithm: sha256WithRSAEncryption 03:35:22:ca:dc:b9:5b:0d:77:d5:ab:82:7a:f4:24:d2:16:92: c2:16:02:c7:65:b3:d8:a7:86:8b:41:3e:e9:c5:f8:3d:00:88: 9f:97:4b:bb:06:20:a5:c0:aa:ac:2b:51:85:83:93:85:e6:7e: c8:91:df:34:89:60:b2:78:1d:05:29:fe:bb:d6:1d:41:20:28: 15:0d:8c:e5:c7:38:36:34:ef:a9:27:4c:71:a8:f4:2e:e7:07: 3d:f1:63:4d:39:bd:e3:11:80:92:3b:f9:a5:99:b9:ed:be:7b: 62:c8:26:2e:db:8b:57:8d:65:4d:8a:4f:ac:dc:53:c7:f8:8c: 99:38:ae:62:1b:25:49:8b:7f:1c:99:ac:54:2c:e8:41:89:13: 1f:d9:f1:e0:ca:49:75:bb:e5:0e:33:82:93:8b:72:9a:f7:d8: 79:56:cd:e7:a3:9b:b8:3c:2b:33:22:1a:c8:a9:34:d4:6d:b5: 8a:a8:e9:e5:93:35:3f:62:18:28:47:2e:2a:31:61:5a:24:13: 05:41:33:36:da:c2:fe:ff:18:c5:aa:7a:6e:2b:90:1c:74:37: 9c:5b:b2:ab:1d:06:be:19:65:2c:9a:2c:fe:59:3c:28:9f:cf: 3f:88:7f:74:27:d0:4d:c7:d5:61:de:14:29:0e:62:ed:fc:9b: fb:47:1d:53 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUd8oRYbPQny5oQvuBQxeNamDecjswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZGY3NTliNWFmM2RhNmM5ZGYwMzNiMGRlOTk4OTcwYTRl Nzk2NTVkMDAeFw0yNTEyMDgwMjAwMjZaFw0yNjAzMDgyMzU5NTlaMHoxSTBHBgNV BAUTQDg3ODVkNDJhZTg0MDM5ZTc3MGExN2NlMzg4MjI1ZWM0Nzg5ZjZmNDVlZmQ1 ZTNlYTI2ZWQ2MDgzZjg3ZmI4MjMxLTArBgNVBAMTJDk4ZDY3ZGViLWJiNzUtNGU3 Ny1iMWEwLTM2MDE2YjJkNjM1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJmxRf77f8sObC0BHSxyEkBBPP31QT6I/cfgPKyLKtIJhKmEtnJ2AthQfp+k mADvUB48+Eo1I2NsLnPy1Q2gdfw/HWfttJ22agd7lONSjy2z8B3ETp8UwGF2HELX o6Q7zxzOYzjJHO+0oGegL8Q3+MS3e3yRcpY1TQOgSpP2/7jN+ajaY0F8qFtfDvUG cYNTO0eI08RoOVlnauGcMbYzE88lqTgtqmNlx0Vr/RWuWIetkOvjEwBJyNvXW9uB N9puFPcMsuRIly8pC+rIq3GTrxOJRpiu9sDejRAgFK63SZZiZqzRltRB3F7ztAfb V7T91E0Om8mhWH60qj+u3BcVFYkCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSM5Bte NV3/ClqrGpjhlanyeHyypDAfBgNVHSMEGDAWgBTfdZta89psnfAzsN6ZiXCk55ZV 0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMzV2JXdlBh Ykozd003RGVtWWx3cE9lV1ZkQS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9mZTM3MzdmYi0wOTVkLTQ0NGMtOTJmNC0zZjcyMjFmYjU0NGMv OWZjODg0YmMtMmI5Zi00MTgwLWEzODYtZjk0ZTc1OWY3MGJmLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZmUzNzM3ZmItMDk1ZC00NDRjLTkyZjQtM2Y3MjIxZmI1 NDRjLzBYRTV0WlZ5dUdlYUFfaDctMXFCcDdhWTRTby5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADMAHzAN BgkqhkiG9w0BAQsFAAOCAQEAAzUiyty5Ww131auCevQk0haSwhYCx2Wz2KeGi0E+ 6cX4PQCIn5dLuwYgpcCqrCtRhYOTheZ+yJHfNIlgsngdBSn+u9YdQSAoFQ2M5cc4 NjTvqSdMcaj0LucHPfFjTTm94xGAkjv5pZm57b57YsgmLtuLV41lTYpPrNxTx/iM mTiuYhslSYt/HJmsVCzoQYkTH9nx4MpJdbvlDjOCk4tymvfYeVbN56ObuDwrMyIa yKk01G21iqjp5ZM1P2IYKEcuKjFhWiQTBUEzNtrC/v8Yxap6biuQHHQ3nFuyqx0G vhllLJos/lk8KJ/PP4h/dCfQTcfVYd4UKQ5i7fyb+0cdUw== -----END CERTIFICATE-----Generated at Fri Dec 19 23:19:51 2025 by rpki-client