This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/de6a2853-3803-405e-9bac-2b96eb87582d.roa File: de6a2853-3803-405e-9bac-2b96eb87582d.roa (raw, json) Hash identifier: Ue6rO7XTaj+UBkUZI8ZJNy0AZxem832qIqgogSOu98I= Subject key identifier: DF:15:F8:0D:D0:80:DE:0F:EB:00:C3:E2:C1:49:A3:E1:65:CB:CE:60 Certificate issuer: /CN=df759b5af3da6c9df033b0de998970a4e79655d0 Certificate serial: 6CFE487E1BDCBB2615647ACC48AD120E9FC88133 Authority key identifier: DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/de6a2853-3803-405e-9bac-2b96eb87582d.roa Signing time: Mon 08 Dec 2025 02:00:09 +0000 ROA not before: Mon 08 Dec 2025 02:00:09 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 51.0.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.mft rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:fe:48:7e:1b:dc:bb:26:15:64:7a:cc:48:ad:12:0e:9f:c8:81:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df759b5af3da6c9df033b0de998970a4e79655d0 Validity Not Before: Dec 8 02:00:09 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=f4bba2079b674f53ca05cd2448f35992b5d59fff9b7059f9a0cae95008372f03, CN=98d67deb-bb75-4e77-b1a0-36016b2d6350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d3:18:34:a2:38:8d:80:72:8c:a3:86:a6:67: c8:04:0d:8c:6f:db:2e:7b:29:35:d8:fa:96:c5:09: eb:26:9f:b3:58:35:4e:c1:ea:fd:0e:7d:2a:2a:2e: f3:53:1e:b4:bb:87:fb:da:3e:53:2a:d8:6d:b7:a7: 1d:36:1b:11:9b:bd:71:9d:70:09:8a:a4:7b:9e:a3: e2:c2:0f:d6:aa:82:8e:a3:d2:4e:c1:a7:02:85:9f: 41:46:70:ad:33:b2:7d:61:c4:11:d2:c5:0d:bd:aa: 64:17:ce:01:c2:da:32:77:22:9b:2e:f5:95:97:96: ab:21:4a:0d:33:32:46:fd:ad:e6:db:f6:51:57:3e: 16:c6:35:9f:2c:33:e0:6d:f8:30:dc:bc:67:7d:ed: 3d:fc:f1:ff:28:49:0e:e7:1a:80:47:b2:41:c8:f4: 63:75:72:57:8a:de:3e:86:27:42:42:03:71:18:10: 41:dd:04:55:1a:f1:d1:17:ad:2c:10:33:c7:55:45: f7:ca:e3:6f:5b:3c:88:70:8c:2d:5f:97:42:96:42: 2e:5c:65:79:bc:61:f8:6c:3a:94:16:61:49:4a:1b: a0:0a:e8:2f:2f:9f:c7:6a:b9:6e:72:41:9a:a6:26: cd:b7:b9:cf:c2:d5:45:3d:07:c5:9f:d8:b8:10:6f: bc:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:15:F8:0D:D0:80:DE:0F:EB:00:C3:E2:C1:49:A3:E1:65:CB:CE:60 X509v3 Authority Key Identifier: keyid:DF:75:9B:5A:F3:DA:6C:9D:F0:33:B0:DE:99:89:70:A4:E7:96:55:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33WbWvPabJ3wM7DemYlwpOeWVdA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/de6a2853-3803-405e-9bac-2b96eb87582d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/fe3737fb-095d-444c-92f4-3f7221fb544c/0XE5tZVyuGeaA_h7-1qBp7aY4So.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.0.30.0/24 Signature Algorithm: sha256WithRSAEncryption 82:0a:d4:ba:d7:b4:52:0f:db:fc:2b:d1:d7:f3:2f:fa:37:a7: ed:47:0f:67:d8:38:19:6d:ca:e2:72:9f:b3:55:0f:f5:28:92: 73:38:fd:a6:5e:11:35:c6:d7:32:07:69:dc:d0:8c:a6:5c:97: 78:cd:ca:e6:ef:d6:c6:3b:9d:3a:f4:76:ef:23:5c:c2:96:1b: cd:bd:8b:9f:d4:1a:fe:84:d0:6c:8d:bf:f0:d7:98:f4:e5:ac: 76:0e:e0:1a:60:0b:40:7a:73:31:1a:90:33:ff:13:6b:ce:7e: 27:7b:f7:c1:68:b9:e8:9f:8e:80:11:99:6e:4e:c0:aa:21:c1: 3a:99:f4:32:c9:a5:f8:f4:9a:a7:7f:fc:b6:d1:85:b9:1f:83: ea:f6:43:3a:c5:b6:8c:61:e0:7c:52:50:76:5b:ad:5b:40:20: 1f:59:60:20:1b:65:e7:2b:fa:2d:6b:34:a1:f4:e4:a2:e0:34: 11:64:c6:76:11:65:cd:4a:71:16:a4:58:fe:fe:82:82:db:fe: a4:1c:b8:e3:ee:9d:49:77:a2:3f:c1:5c:b1:e3:fd:9c:bd:31: a3:e7:35:73:8b:8f:cc:b3:c9:78:7e:98:67:79:87:e3:39:b5: a1:dd:1a:f8:30:50:d5:86:66:25:68:47:8b:33:98:9b:75:8d: b6:b0:ed:ca -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUbP5IfhvcuyYVZHrMSK0SDp/IgTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZGY3NTliNWFmM2RhNmM5ZGYwMzNiMGRlOTk4OTcwYTRl Nzk2NTVkMDAeFw0yNTEyMDgwMjAwMDlaFw0yNjAzMDgyMzU5NTlaMHoxSTBHBgNV BAUTQGY0YmJhMjA3OWI2NzRmNTNjYTA1Y2QyNDQ4ZjM1OTkyYjVkNTlmZmY5Yjcw NTlmOWEwY2FlOTUwMDgzNzJmMDMxLTArBgNVBAMTJDk4ZDY3ZGViLWJiNzUtNGU3 Ny1iMWEwLTM2MDE2YjJkNjM1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDTGDSiOI2AcoyjhqZnyAQNjG/bLnspNdj6lsUJ6yafs1g1TsHq/Q59Kiou 81MetLuH+9o+UyrYbbenHTYbEZu9cZ1wCYqke56j4sIP1qqCjqPSTsGnAoWfQUZw rTOyfWHEEdLFDb2qZBfOAcLaMncimy71lZeWqyFKDTMyRv2t5tv2UVc+FsY1nywz 4G34MNy8Z33tPfzx/yhJDucagEeyQcj0Y3VyV4rePoYnQkIDcRgQQd0EVRrx0Ret LBAzx1VF98rjb1s8iHCMLV+XQpZCLlxlebxh+Gw6lBZhSUoboAroLy+fx2q5bnJB mqYmzbe5z8LVRT0HxZ/YuBBvvEUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTfFfgN 0IDeD+sAw+LBSaPhZcvOYDAfBgNVHSMEGDAWgBTfdZta89psnfAzsN6ZiXCk55ZV 0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMzV2JXdlBh Ykozd003RGVtWWx3cE9lV1ZkQS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9mZTM3MzdmYi0wOTVkLTQ0NGMtOTJmNC0zZjcyMjFmYjU0NGMv ZGU2YTI4NTMtMzgwMy00MDVlLTliYWMtMmI5NmViODc1ODJkLnJvYTCBiAYDVR0f BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u YXdzLmNvbS92b2x1bWUvZmUzNzM3ZmItMDk1ZC00NDRjLTkyZjQtM2Y3MjIxZmI1 NDRjLzBYRTV0WlZ5dUdlYUFfaDctMXFCcDdhWTRTby5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADMAHjAN BgkqhkiG9w0BAQsFAAOCAQEAggrUute0Ug/b/CvR1/Mv+jen7UcPZ9g4GW3K4nKf s1UP9SiSczj9pl4RNcbXMgdp3NCMplyXeM3K5u/WxjudOvR27yNcwpYbzb2Ln9Qa /oTQbI2/8NeY9OWsdg7gGmALQHpzMRqQM/8Ta85+J3v3wWi56J+OgBGZbk7AqiHB Opn0Msml+PSap3/8ttGFuR+D6vZDOsW2jGHgfFJQdlutW0AgH1lgIBtl5yv6LWs0 ofTkouA0EWTGdhFlzUpxFqRY/v6Cgtv+pBy44+6dSXeiP8FcseP9nL0xo+c1c4uP zLPJeH6YZ3mH4zm1od0a+DBQ1YZmJWhHizOYm3WNtrDtyg== -----END CERTIFICATE-----Generated at Fri Dec 19 23:20:44 2025 by rpki-client