This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/IAKwuSZ0uqQ9fuRyIUBx0EnYNH0.roa File: IAKwuSZ0uqQ9fuRyIUBx0EnYNH0.roa (raw, json) Hash identifier: clY1UJp9qfCTZHHbfK+ety14EvAWe0RUUT77mvrQdok= Subject key identifier: 20:02:B0:B9:26:74:BA:A4:3D:7E:E4:72:21:40:71:D0:49:D8:34:7D Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019AFCFA2487A9CB71A16D62C684B4B8D701 Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/IAKwuSZ0uqQ9fuRyIUBx0EnYNH0.roa Signing time: Mon 08 Dec 2025 08:00:42 +0000 ROA not before: Mon 08 Dec 2025 08:00:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 207252 IP address blocks: 5.83.152.0/24 maxlen: 24 5.231.29.0/24 maxlen: 24 77.90.12.0/24 maxlen: 24 77.90.42.0/24 maxlen: 24 85.93.8.0/24 maxlen: 24 89.144.15.0/24 maxlen: 24 185.119.16.0/22 maxlen: 24 185.119.16.0/24 maxlen: 24 185.119.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fc:fa:24:87:a9:cb:71:a1:6d:62:c6:84:b4:b8:d7:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Dec 8 08:00:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=2002b0b92674baa43d7ee472214071d049d8347d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:57:b7:a1:ad:c0:f5:90:5d:4b:39:b6:aa:d8: 51:64:79:eb:63:55:53:46:43:67:76:55:f3:21:a4: 44:76:3c:b4:0c:36:fc:6b:e9:6e:54:8b:72:69:34: a7:db:95:5a:b0:3a:62:d3:83:fc:1e:1a:2b:c9:21: 5b:b4:43:5a:ed:e0:41:c6:4d:11:5c:3d:05:89:46: c7:12:0a:f1:b7:b8:ca:af:9c:bf:18:ac:35:85:bd: 92:2e:e1:7d:d6:bc:13:d3:f0:7e:32:e8:58:78:50: 9d:1b:2f:5e:7b:a7:12:14:49:1b:61:06:fd:3f:70: 30:e4:8c:73:3b:6f:83:8d:4b:56:aa:bc:cd:d6:8f: 85:b6:c2:64:5b:1f:cb:82:ad:cf:a1:a1:44:81:e3: 47:fe:4e:60:64:64:f7:8f:fe:ac:42:50:a6:3e:de: 64:ae:b1:b3:41:24:1c:92:39:1d:5f:80:1b:f4:53: 9a:1c:be:6c:4e:94:72:4a:86:bf:cc:1b:cf:ec:f2: e0:88:8f:ff:35:43:55:35:83:fa:dd:14:32:c4:a0: 4b:70:e7:dc:fd:63:f6:4c:08:98:2b:2c:88:58:1a: 09:4f:fe:ba:02:f8:65:49:54:b3:78:97:30:80:0f: 89:c2:e7:02:06:57:10:6e:08:82:68:9d:0e:09:38: 5c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:02:B0:B9:26:74:BA:A4:3D:7E:E4:72:21:40:71:D0:49:D8:34:7D X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/IAKwuSZ0uqQ9fuRyIUBx0EnYNH0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.152.0/24 5.231.29.0/24 77.90.12.0/24 77.90.42.0/24 85.93.8.0/24 89.144.15.0/24 185.119.16.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:41:8d:0f:aa:70:3c:2b:32:82:3d:d2:dd:e9:a6:2a:13:01: d9:89:c8:51:3c:12:da:57:a1:44:27:f6:80:c3:79:44:84:d5: a3:97:10:07:e1:a8:1f:33:2e:ce:68:9e:09:f0:65:7b:95:56: 9c:a9:e4:0c:14:71:13:93:14:f7:ca:46:5f:64:65:e6:4d:b7: 84:60:5b:93:b0:ba:32:f4:a5:2d:fe:35:cf:29:55:2f:eb:52: c1:09:71:47:0a:38:48:4b:49:5d:4e:35:e4:91:85:5a:19:21: 4e:59:d9:bf:9f:86:fe:72:db:6b:da:63:90:69:3d:bf:d1:33: 6a:6e:d0:c5:fc:32:52:ef:00:f7:2a:ca:44:f5:fa:de:5c:fd: 3b:8b:9b:f7:1d:98:55:43:b6:91:dc:c3:e0:2c:fd:e3:b7:f1: 4b:5e:73:7a:85:7d:4c:44:13:95:00:9a:f1:ac:21:72:49:28: b4:d8:e6:53:2f:d4:11:71:b7:dd:22:c2:4e:14:ca:71:02:16: cf:42:5b:74:88:b0:4e:1c:28:65:3a:f4:72:d1:d4:0a:0f:5b: ed:87:c3:fc:e2:30:4b:6e:d1:7b:68:4d:e7:4a:0b:94:03:13: 7a:9f:eb:5f:aa:ff:48:2c:79:b1:5b:22:b0:84:4b:94:a2:59: fb:eb:33:64 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZr8+iSHqctxoW1ixoS0uNcBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjUxMjA4MDgwMDQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDAyYjBiOTI2NzRiYWE0M2Q3ZWU0NzIyMTQwNzFkMDQ5ZDgzNDdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0le3oa3A9ZBdSzm2qthRZHnrY1VT RkNndlXzIaREdjy0DDb8a+luVItyaTSn25VasDpi04P8HhorySFbtENa7eBBxk0R XD0FiUbHEgrxt7jKr5y/GKw1hb2SLuF91rwT0/B+MuhYeFCdGy9ee6cSFEkbYQb9 P3Aw5IxzO2+DjUtWqrzN1o+FtsJkWx/Lgq3PoaFEgeNH/k5gZGT3j/6sQlCmPt5k rrGzQSQckjkdX4Ab9FOaHL5sTpRySoa/zBvP7PLgiI//NUNVNYP63RQyxKBLcOfc /WP2TAiYKyyIWBoJT/66AvhlSVSzeJcwgA+JwucCBlcQbgiCaJ0OCThcRQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFCACsLkmdLqkPX7kciFAcdBJ2DR9MB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvSUFLd3VTWjB1cVE5ZnVSeUlVQngwRW5ZTkgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQABVOYAwQA BecdAwQATVoMAwQATVoqAwQAVV0IAwQAWZAPAwQCuXcQMA0GCSqGSIb3DQEBCwUA A4IBAQBrQY0PqnA8KzKCPdLd6aYqEwHZichRPBLaV6FEJ/aAw3lEhNWjlxAH4agf My7OaJ4J8GV7lVacqeQMFHETkxT3ykZfZGXmTbeEYFuTsLoy9KUt/jXPKVUv61LB CXFHCjhIS0ldTjXkkYVaGSFOWdm/n4b+cttr2mOQaT2/0TNqbtDF/DJS7wD3KspE 9freXP07i5v3HZhVQ7aR3MPgLP3jt/FLXnN6hX1MRBOVAJrxrCFySSi02OZTL9QR cbfdIsJOFMpxAhbPQlt0iLBOHChlOvRy0dQKD1vth8P84jBLbtF7aE3nSguUAxN6 n+tfqv9ILHmxWyKwhEuUoln76zNk -----END CERTIFICATE-----Generated at Fri Dec 19 20:55:19 2025 by rpki-client