This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/rY7W_lCdKoSUMLLmVBEbz4ji9Qs.roa File: rY7W_lCdKoSUMLLmVBEbz4ji9Qs.roa (raw, json) Hash identifier: 22jpNBTCVCAOns8OzjGVzVxFErq510tGj9l/DdUaaOk= Subject key identifier: AD:8E:D6:FE:50:9D:2A:84:94:30:B2:E6:54:11:1B:CF:88:E2:F5:0B Certificate issuer: /CN=107807c2518915138f555123605c0133dfdbb4fa Certificate serial: 019B4A92227CD8501E9FE7EE5F7D6D730806 Authority key identifier: 10:78:07:C2:51:89:15:13:8F:55:51:23:60:5C:01:33:DF:DB:B4:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHgHwlGJFROPVVEjYFwBM9_btPo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/rY7W_lCdKoSUMLLmVBEbz4ji9Qs.roa Signing time: Tue 23 Dec 2025 09:37:29 +0000 ROA not before: Tue 23 Dec 2025 09:37:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55002 IP address blocks: 132.70.14.0/24 maxlen: 24 132.70.15.0/24 maxlen: 24 132.70.60.0/24 maxlen: 24 132.70.61.0/24 maxlen: 24 132.70.62.0/24 maxlen: 24 132.70.63.0/24 maxlen: 24 132.70.162.0/24 maxlen: 24 132.70.163.0/24 maxlen: 24 132.70.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/EHgHwlGJFROPVVEjYFwBM9_btPo.crl rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/EHgHwlGJFROPVVEjYFwBM9_btPo.mft rsync://rpki.ripe.net/repository/DEFAULT/EHgHwlGJFROPVVEjYFwBM9_btPo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 03:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:92:22:7c:d8:50:1e:9f:e7:ee:5f:7d:6d:73:08:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=107807c2518915138f555123605c0133dfdbb4fa Validity Not Before: Dec 23 09:37:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ad8ed6fe509d2a849430b2e654111bcf88e2f50b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:84:ef:1f:4f:0b:14:9f:b7:8f:d1:40:95:d8: 27:b0:18:c0:e3:ac:f9:71:d7:1d:f1:d7:fb:d6:80: 10:8d:42:38:b7:1d:3c:c8:79:e3:34:c3:26:aa:24: 54:96:fb:25:3b:e5:2d:9d:c4:11:aa:1f:ea:58:7a: ff:f4:30:55:54:88:a2:a2:30:29:8f:56:e6:49:6c: ff:2b:b1:19:b7:34:50:9a:de:db:5d:54:4c:89:99: df:c2:31:c2:87:e0:1e:06:86:2a:57:4a:8e:3e:97: d9:bd:25:f4:73:67:9d:4c:20:90:51:60:fb:a8:e9: cf:c7:95:98:f7:a3:8a:a4:c6:4a:28:76:36:09:99: 53:76:43:ee:74:26:8f:51:e1:56:74:1e:ba:f7:4d: 16:be:8c:41:96:f4:00:ca:8c:0d:46:fe:ec:74:06: ad:27:bb:f8:85:b7:6a:65:b7:4c:0e:f2:22:cc:a6: 24:e4:b2:7b:ad:70:f9:e7:7d:5f:6c:8a:54:4c:33: 6f:38:67:d3:d9:ca:bf:0c:57:8f:71:56:f3:97:c4: 29:a2:52:b8:7d:52:23:01:5b:b2:9d:5f:f5:fa:d2: d6:4a:f3:bf:be:d1:52:1f:b5:25:b2:82:20:34:36: 1e:09:3b:e6:f7:50:d8:9b:87:b0:39:cf:83:02:6a: e4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8E:D6:FE:50:9D:2A:84:94:30:B2:E6:54:11:1B:CF:88:E2:F5:0B X509v3 Authority Key Identifier: keyid:10:78:07:C2:51:89:15:13:8F:55:51:23:60:5C:01:33:DF:DB:B4:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHgHwlGJFROPVVEjYFwBM9_btPo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/rY7W_lCdKoSUMLLmVBEbz4ji9Qs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/EHgHwlGJFROPVVEjYFwBM9_btPo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 132.70.14.0/23 132.70.60.0/22 132.70.162.0/23 132.70.196.0/24 Signature Algorithm: sha256WithRSAEncryption 00:7c:ed:35:5d:37:55:21:57:66:f0:b6:aa:4d:17:a1:e0:68: de:a0:37:1e:e6:08:4d:71:53:12:e0:83:3a:09:33:39:13:78: b9:ad:70:15:33:10:e1:80:3f:2a:ff:66:fe:50:f9:d0:62:bc: 42:0e:fc:64:de:74:a8:9d:43:64:f7:fb:a9:09:e0:08:74:b9: 8e:12:54:11:3b:3b:96:98:f1:5d:1f:31:41:cd:1f:67:76:9f: 0b:cc:af:c8:8d:be:09:f9:0a:56:05:e9:ed:8b:42:a9:ff:2d: 2f:d6:d6:e3:2d:a5:3e:de:45:06:2a:1e:06:3c:62:4e:69:37: f6:9e:92:5f:72:9c:05:18:a9:c5:58:91:df:0e:8b:d4:42:38: 40:13:fd:86:b7:0e:ba:23:7b:d2:1d:5c:29:4e:c1:2d:b8:4a: aa:27:bc:82:48:12:fb:48:2b:c9:85:d7:b4:10:dc:b4:47:46: 82:98:82:2c:08:cf:f8:d3:f4:26:af:45:f5:84:8a:d4:41:b7: 4a:35:0a:5d:d9:c6:10:6f:e9:73:45:37:0a:75:6d:1c:5c:b8: f7:e2:4f:79:ab:9b:aa:8b:37:c5:f5:02:09:f6:81:9c:0c:5d: d5:63:ab:3e:c6:0b:7c:8b:92:bb:41:09:2f:21:70:29:6e:f2: 32:68:16:e4 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZtKkiJ82FAen+fuX31tcwgGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwNzgwN2MyNTE4OTE1MTM4ZjU1NTEyMzYwNWMwMTMzZGZk YmI0ZmEwHhcNMjUxMjIzMDkzNzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZDhlZDZmZTUwOWQyYTg0OTQzMGIyZTY1NDExMWJjZjg4ZTJmNTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4TvH08LFJ+3j9FAldgnsBjA46z5 cdcd8df71oAQjUI4tx08yHnjNMMmqiRUlvslO+UtncQRqh/qWHr/9DBVVIiiojAp j1bmSWz/K7EZtzRQmt7bXVRMiZnfwjHCh+AeBoYqV0qOPpfZvSX0c2edTCCQUWD7 qOnPx5WY96OKpMZKKHY2CZlTdkPudCaPUeFWdB66900WvoxBlvQAyowNRv7sdAat J7v4hbdqZbdMDvIizKYk5LJ7rXD5531fbIpUTDNvOGfT2cq/DFePcVbzl8QpolK4 fVIjAVuynV/1+tLWSvO/vtFSH7UlsoIgNDYeCTvm91DYm4ewOc+DAmrk5wIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFK2O1v5QnSqElDCy5lQRG8+I4vULMB8GA1UdIwQY MBaAFBB4B8JRiRUTj1VRI2BcATPf27T6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUhnSHdsR0pGUk9QVlZFallGd0JNOV9idFBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8yODYwYTQtM2I5NC00Mjc0LWEzYTIt ZjlhYzE1ZTY2Mzg2LzEvclk3V19sQ2RLb1NVTUxMbVZCRWJ6NGppOVFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS8yODYwYTQtM2I5NC00Mjc0LWEzYTItZjlhYzE1ZTY2Mzg2 LzEvRUhnSHdsR0pGUk9QVlZFallGd0JNOV9idFBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBhEYOAwQC hEY8AwQBhEaiAwQAhEbEMA0GCSqGSIb3DQEBCwUAA4IBAQAAfO01XTdVIVdm8Laq TReh4GjeoDce5ghNcVMS4IM6CTM5E3i5rXAVMxDhgD8q/2b+UPnQYrxCDvxk3nSo nUNk9/upCeAIdLmOElQROzuWmPFdHzFBzR9ndp8LzK/Ijb4J+QpWBenti0Kp/y0v 1tbjLaU+3kUGKh4GPGJOaTf2npJfcpwFGKnFWJHfDovUQjhAE/2Gtw66I3vSHVwp TsEtuEqqJ7yCSBL7SCvJhde0ENy0R0aCmIIsCM/40/Qmr0X1hIrUQbdKNQpd2cYQ b+lzRTcKdW0cXLj34k95q5uqizfF9QIJ9oGcDF3VY6s+xgt8i5K7QQkvIXApbvIy aBbk -----END CERTIFICATE-----Generated at Wed Dec 24 11:59:12 2025 by rpki-client