This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ie7KVkKweIXbB0DVNB_EH5O9BmA.roa File: ie7KVkKweIXbB0DVNB_EH5O9BmA.roa (raw, json) Hash identifier: ua70d4pLX8eNM1WLEkeaIrK6I4PQ8JnFk1nHAhlQVOs= Subject key identifier: 89:EE:CA:56:42:B0:78:85:DB:07:40:D5:34:1F:C4:1F:93:BD:06:60 Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019B2B552E807FC06C3A80A05647F2181E4D Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ie7KVkKweIXbB0DVNB_EH5O9BmA.roa Signing time: Wed 17 Dec 2025 08:02:41 +0000 ROA not before: Wed 17 Dec 2025 08:02:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132005 IP address blocks: 5.175.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:55:2e:80:7f:c0:6c:3a:80:a0:56:47:f2:18:1e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Dec 17 08:02:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=89eeca5642b07885db0740d5341fc41f93bd0660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:05:f8:e3:eb:f9:c7:66:9c:ad:5a:2c:8e:21: 6a:67:35:c8:3a:4e:ef:22:5b:8d:54:c9:0c:49:45: 02:e8:a5:0d:f3:24:40:d8:cd:78:43:f8:8c:2a:78: c1:05:51:a1:fd:29:57:d9:5c:8d:ac:e8:67:15:0c: 7d:ed:59:0c:eb:df:0e:27:82:c1:c2:2c:67:9e:24: a2:71:ed:ac:2d:51:23:3b:42:02:04:6c:5e:a3:db: b0:37:90:0b:4e:a0:ba:a6:4c:db:8b:f2:f4:51:19: 8b:5e:4b:8e:bf:40:65:d6:38:32:be:6b:77:57:da: d6:00:c8:22:f6:40:52:98:b4:8d:3a:32:d8:7e:1a: 37:3f:3a:db:14:4e:e4:fa:c8:11:ef:ac:ae:dc:6e: ae:83:90:35:39:a3:cd:6b:72:e9:d7:70:03:a7:73: 34:a7:3b:48:37:d1:fe:dd:15:be:9e:5b:55:fb:33: e0:81:31:fa:54:e5:ce:25:a4:54:12:49:47:21:88: c6:0c:f8:92:32:af:2c:05:14:49:32:aa:40:8c:8f: 34:ad:72:46:a8:9e:de:41:a8:9b:90:f8:42:8c:43: 01:40:1d:c3:ac:07:5a:e1:f4:7f:b6:59:d1:cd:8b: 55:91:b5:bf:00:7c:25:88:fe:ca:58:e6:0d:0c:7f: 42:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:EE:CA:56:42:B0:78:85:DB:07:40:D5:34:1F:C4:1F:93:BD:06:60 X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ie7KVkKweIXbB0DVNB_EH5O9BmA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.175.167.0/24 Signature Algorithm: sha256WithRSAEncryption d7:af:b7:dd:d4:55:ab:43:1b:ed:a4:17:0b:af:48:2d:22:98: 18:fd:7e:0b:7b:6c:d4:c8:2e:dd:b9:ed:95:f6:2f:28:2b:55: b0:6f:d3:4e:ba:ff:e2:71:8a:36:1c:67:ed:46:42:30:5a:a4: e7:b7:ec:57:74:81:84:36:ea:fd:64:da:f9:0c:8b:a0:d9:ca: 09:87:58:ad:67:31:70:2b:a4:50:46:fd:aa:ed:45:1a:08:7d: 01:bc:bd:80:ef:6a:31:80:07:70:11:05:c6:be:8f:02:46:c4: cb:95:eb:b8:4f:c6:7f:94:44:45:c1:9d:b3:f7:8e:6b:73:0c: 05:77:1f:1f:4c:04:c4:64:36:ac:4d:d6:22:04:be:93:fb:42: 84:de:6c:6d:15:5b:05:a8:ca:bc:90:ce:2a:fc:68:2b:43:79: 32:62:2c:12:ad:f2:ba:09:8b:0e:b5:08:ec:22:f9:db:09:9d: 88:f4:1d:f3:a2:a7:89:c3:b0:84:75:49:36:39:55:1a:66:0f: b7:ce:ec:26:d9:19:6e:15:1e:af:1b:af:2c:6a:92:3e:13:f5: 96:04:0f:4c:6b:42:7a:54:b2:bf:22:4f:47:41:7d:cc:31:df: 41:17:a7:72:33:9c:b4:ca:31:ad:53:ba:e5:ea:ff:e1:a0:31: 2e:df:9f:c1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsrVS6Af8BsOoCgVkfyGB5NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjUxMjE3MDgwMjQxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWVlY2E1NjQyYjA3ODg1ZGIwNzQwZDUzNDFmYzQxZjkzYmQwNjYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAX44+v5x2acrVosjiFqZzXIOk7v IluNVMkMSUUC6KUN8yRA2M14Q/iMKnjBBVGh/SlX2VyNrOhnFQx97VkM698OJ4LB wixnniSice2sLVEjO0ICBGxeo9uwN5ALTqC6pkzbi/L0URmLXkuOv0Bl1jgyvmt3 V9rWAMgi9kBSmLSNOjLYfho3PzrbFE7k+sgR76yu3G6ug5A1OaPNa3Lp13ADp3M0 pztIN9H+3RW+nltV+zPggTH6VOXOJaRUEklHIYjGDPiSMq8sBRRJMqpAjI80rXJG qJ7eQaibkPhCjEMBQB3DrAda4fR/tlnRzYtVkbW/AHwliP7KWOYNDH9CxwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFInuylZCsHiF2wdA1TQfxB+TvQZgMB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvaWU3S1ZrS3dlSVhiQjBEVk5CX0VINU85Qm1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABa+nMA0G CSqGSIb3DQEBCwUAA4IBAQDXr7fd1FWrQxvtpBcLr0gtIpgY/X4Le2zUyC7due2V 9i8oK1Wwb9NOuv/icYo2HGftRkIwWqTnt+xXdIGENur9ZNr5DIug2coJh1itZzFw K6RQRv2q7UUaCH0BvL2A72oxgAdwEQXGvo8CRsTLleu4T8Z/lERFwZ2z945rcwwF dx8fTATEZDasTdYiBL6T+0KE3mxtFVsFqMq8kM4q/GgrQ3kyYiwSrfK6CYsOtQjs IvnbCZ2I9B3zoqeJw7CEdUk2OVUaZg+3zuwm2RluFR6vG68sapI+E/WWBA9Ma0J6 VLK/Ik9HQX3MMd9BF6dyM5y0yjGtU7rl6v/hoDEu35/B -----END CERTIFICATE-----Generated at Fri Dec 19 20:55:23 2025 by rpki-client