This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/842e7f-0350-4b02-a994-f71a49eba48a/1/Cc4909gwaI-DgMxZjqOBV0ftw7g.roa File: Cc4909gwaI-DgMxZjqOBV0ftw7g.roa (raw, json) Hash identifier: puxPlTPwGGajuBJpoUjLb8aY1yOEYFbygGRRSG/6dfY= Subject key identifier: 09:CE:3D:D3:D8:30:68:8F:83:80:CC:59:8E:A3:81:57:47:ED:C3:B8 Certificate issuer: /CN=a4f131e3e15058d93ffddb60ac7083bef89d2e86 Certificate serial: 019A84409A9F9F0EABA86825797226BAD0EB Authority key identifier: A4:F1:31:E3:E1:50:58:D9:3F:FD:DB:60:AC:70:83:BE:F8:9D:2E:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPEx4-FQWNk__dtgrHCDvvidLoY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/842e7f-0350-4b02-a994-f71a49eba48a/1/Cc4909gwaI-DgMxZjqOBV0ftw7g.roa Signing time: Fri 14 Nov 2025 21:23:37 +0000 ROA not before: Fri 14 Nov 2025 21:23:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 12628 IP address blocks: 194.153.117.0/24 maxlen: 24 2001:67c:2738::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/842e7f-0350-4b02-a994-f71a49eba48a/1/pPEx4-FQWNk__dtgrHCDvvidLoY.crl rsync://rpki.ripe.net/repository/DEFAULT/16/842e7f-0350-4b02-a994-f71a49eba48a/1/pPEx4-FQWNk__dtgrHCDvvidLoY.mft rsync://rpki.ripe.net/repository/DEFAULT/pPEx4-FQWNk__dtgrHCDvvidLoY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:84:40:9a:9f:9f:0e:ab:a8:68:25:79:72:26:ba:d0:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4f131e3e15058d93ffddb60ac7083bef89d2e86 Validity Not Before: Nov 14 21:23:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=09ce3dd3d830688f8380cc598ea3815747edc3b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8d:31:bb:d2:50:d0:6e:13:2a:83:0a:3c:4e: 57:0f:63:b2:d3:0f:b4:7a:71:4a:58:6c:9b:27:d4: 4f:ba:46:57:68:b0:e2:69:a8:90:ab:2a:58:44:ec: 61:18:78:94:d3:95:48:d9:44:2f:9b:87:d1:fb:08: 1a:ce:04:70:9e:02:b1:d0:ce:47:7a:82:46:9c:fe: e9:15:33:3c:ed:9b:6c:36:34:94:c2:b7:c0:bd:a7: 75:dc:be:ff:ca:54:da:eb:6e:86:28:4d:7c:d5:f8: 03:9f:96:75:18:77:34:ff:60:a9:3d:a1:8f:b6:d8: 11:dc:ae:75:d1:fd:91:3c:84:0b:14:23:14:b0:a0: 35:8f:0e:e5:90:b7:7a:a3:55:7b:84:cb:35:5c:54: 0a:31:46:ee:15:31:04:5e:d1:df:e8:9a:a1:1b:39: b0:be:17:25:0b:d9:97:92:9e:4d:af:3f:07:5b:e5: 36:7e:44:0c:0f:c1:7f:e8:ee:90:25:8e:97:14:e8: 2c:58:0a:11:72:d7:02:66:31:be:72:e1:d9:7c:2b: da:9b:a3:f7:c7:3b:6d:79:54:ec:f2:13:c8:05:ba: ae:ba:2f:fe:79:17:ad:6b:a4:f7:d2:39:69:1b:f7: f3:cf:ad:95:ae:60:d2:11:75:84:66:eb:b4:ac:04: fb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CE:3D:D3:D8:30:68:8F:83:80:CC:59:8E:A3:81:57:47:ED:C3:B8 X509v3 Authority Key Identifier: keyid:A4:F1:31:E3:E1:50:58:D9:3F:FD:DB:60:AC:70:83:BE:F8:9D:2E:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPEx4-FQWNk__dtgrHCDvvidLoY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/842e7f-0350-4b02-a994-f71a49eba48a/1/Cc4909gwaI-DgMxZjqOBV0ftw7g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/842e7f-0350-4b02-a994-f71a49eba48a/1/pPEx4-FQWNk__dtgrHCDvvidLoY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.153.117.0/24 IPv6: 2001:67c:2738::/48 Signature Algorithm: sha256WithRSAEncryption 24:4a:4c:b0:ef:ef:0e:bd:ce:39:22:4b:8e:83:fc:23:4a:47: 6a:fe:0c:0f:87:e1:c5:40:b3:72:7f:06:50:02:21:72:16:3f: 74:7f:2b:cd:c9:9a:d1:48:a0:01:5e:32:a2:85:98:ff:51:37: e9:4b:fb:29:b2:f1:37:1e:cc:1f:58:fa:ca:c8:c7:94:84:a9: a3:65:ed:94:59:8a:0e:60:09:26:35:d1:3c:62:12:65:ff:7b: c3:07:7a:1e:4e:72:57:c5:1e:c2:9f:2e:00:0c:da:41:89:ff: f4:2f:bf:70:8c:a1:e2:51:56:b0:c8:55:88:23:45:d9:50:ec: ca:07:3d:8a:d0:ed:64:8b:22:d6:64:6b:42:01:b2:ff:d7:32: 9f:92:45:f6:fd:cd:f3:de:e4:c0:5f:97:ce:80:38:24:d2:2e: c6:08:52:6d:70:df:f8:4a:61:0a:ff:83:5d:e9:2a:84:42:74: 8d:d8:7f:e1:d7:45:2d:23:d5:ef:f2:33:bc:af:c7:b0:73:ea: 65:50:61:41:3b:55:cf:04:49:7c:8f:74:4e:5d:26:85:43:9d: 23:c9:8f:86:37:9e:7d:78:3c:84:7e:d9:b3:5a:c5:23:4f:d8: 33:87:0b:c3:a9:f2:59:33:ba:a5:3b:ba:32:a7:03:07:09:89: 4a:85:95:25 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZqEQJqfnw6rqGgleXImutDrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZjEzMWUzZTE1MDU4ZDkzZmZkZGI2MGFjNzA4M2JlZjg5 ZDJlODYwHhcNMjUxMTE0MjEyMzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOWNlM2RkM2Q4MzA2ODhmODM4MGNjNTk4ZWEzODE1NzQ3ZWRjM2I4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApI0xu9JQ0G4TKoMKPE5XD2Oy0w+0 enFKWGybJ9RPukZXaLDiaaiQqypYROxhGHiU05VI2UQvm4fR+wgazgRwngKx0M5H eoJGnP7pFTM87ZtsNjSUwrfAvad13L7/ylTa626GKE181fgDn5Z1GHc0/2CpPaGP ttgR3K510f2RPIQLFCMUsKA1jw7lkLd6o1V7hMs1XFQKMUbuFTEEXtHf6JqhGzmw vhclC9mXkp5Nrz8HW+U2fkQMD8F/6O6QJY6XFOgsWAoRctcCZjG+cuHZfCvam6P3 xztteVTs8hPIBbquui/+eReta6T30jlpG/fzz62VrmDSEXWEZuu0rAT7BwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFAnOPdPYMGiPg4DMWY6jgVdH7cO4MB8GA1UdIwQY MBaAFKTxMePhUFjZP/3bYKxwg774nS6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFBFeDQtRlFXTmtfX2R0Z3JIQ0R2dmlkTG9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi84NDJlN2YtMDM1MC00YjAyLWE5OTQt ZjcxYTQ5ZWJhNDhhLzEvQ2M0OTA5Z3dhSS1EZ014WmpxT0JWMGZ0dzdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi84NDJlN2YtMDM1MC00YjAyLWE5OTQtZjcxYTQ5ZWJhNDhh LzEvcFBFeDQtRlFXTmtfX2R0Z3JIQ0R2dmlkTG9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwpl1MA8E AgACMAkDBwAgAQZ8JzgwDQYJKoZIhvcNAQELBQADggEBACRKTLDv7w69zjkiS46D /CNKR2r+DA+H4cVAs3J/BlACIXIWP3R/K83JmtFIoAFeMqKFmP9RN+lL+ymy8Tce zB9Y+srIx5SEqaNl7ZRZig5gCSY10TxiEmX/e8MHeh5OclfFHsKfLgAM2kGJ//Qv v3CMoeJRVrDIVYgjRdlQ7MoHPYrQ7WSLItZka0IBsv/XMp+SRfb9zfPe5MBfl86A OCTSLsYIUm1w3/hKYQr/g13pKoRCdI3Yf+HXRS0j1e/yM7yvx7Bz6mVQYUE7Vc8E SXyPdE5dJoVDnSPJj4Y3nn14PIR+2bNaxSNP2DOHC8Op8lkzuqU7ujKnAwcJiUqF lSU= -----END CERTIFICATE-----Generated at Thu Dec 18 17:28:27 2025 by rpki-client