This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d38ec1-d4c6-40fb-ab1d-d202f2a40081/1/417x_tVp2zupRI19gmGtEr42pAU.roa File: 417x_tVp2zupRI19gmGtEr42pAU.roa (raw, json) Hash identifier: jM5VoBmYgAi+dYDgZAd7It6YdKGwaYgeQqIUOmodcEY= Subject key identifier: E3:5E:F1:FE:D5:69:DB:3B:A9:44:8D:7D:82:61:AD:12:BE:36:A4:05 Certificate issuer: /CN=2d1815b0c9dc9ee2207ec9417cdec2bc4be23c61 Certificate serial: 019B7A5A9D87A4E5609A310AC07808B6196D Authority key identifier: 2D:18:15:B0:C9:DC:9E:E2:20:7E:C9:41:7C:DE:C2:BC:4B:E2:3C:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRgVsMncnuIgfslBfN7CvEviPGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d38ec1-d4c6-40fb-ab1d-d202f2a40081/1/417x_tVp2zupRI19gmGtEr42pAU.roa Signing time: Thu 01 Jan 2026 16:18:37 +0000 ROA not before: Thu 01 Jan 2026 16:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25274 IP address blocks: 37.218.232.0/21 maxlen: 21 45.10.28.0/22 maxlen: 22 45.132.200.0/22 maxlen: 22 45.134.236.0/22 maxlen: 22 45.138.88.0/22 maxlen: 22 45.140.232.0/22 maxlen: 22 85.235.92.0/22 maxlen: 22 109.105.0.0/19 maxlen: 24 185.40.136.0/22 maxlen: 22 185.153.216.0/22 maxlen: 22 2a00:d240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d38ec1-d4c6-40fb-ab1d-d202f2a40081/1/LRgVsMncnuIgfslBfN7CvEviPGE.crl rsync://rpki.ripe.net/repository/DEFAULT/18/d38ec1-d4c6-40fb-ab1d-d202f2a40081/1/LRgVsMncnuIgfslBfN7CvEviPGE.mft rsync://rpki.ripe.net/repository/DEFAULT/LRgVsMncnuIgfslBfN7CvEviPGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 16:20:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:9d:87:a4:e5:60:9a:31:0a:c0:78:08:b6:19:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d1815b0c9dc9ee2207ec9417cdec2bc4be23c61 Validity Not Before: Jan 1 16:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e35ef1fed569db3ba9448d7d8261ad12be36a405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2f:2b:53:f7:ca:b1:6d:e7:e0:23:a6:fa:ee: 6c:78:04:f5:7a:ea:14:6c:65:a9:e5:d2:f2:aa:d7: 1a:3a:43:1c:2f:4d:ea:c6:c6:45:f2:d3:83:66:16: b2:7a:3d:00:6b:f0:07:50:bc:22:eb:a9:38:c5:32: eb:18:11:1f:73:d5:a2:d9:3f:7b:c8:13:4b:9c:a9: 7e:ed:85:78:e3:59:fe:8d:bb:1b:cc:60:e8:dc:e6: 1a:a7:33:33:93:b7:40:1a:4d:fd:2b:c1:96:5d:4e: 4a:3f:56:e7:33:e1:7c:f1:57:e3:a9:14:47:6e:5c: e0:47:7c:a0:a5:1d:f3:56:05:60:55:82:ac:87:94: 7f:5f:d1:60:27:41:eb:21:66:11:26:f8:40:62:42: 2f:8a:a2:fa:c2:cf:4e:93:51:8f:7c:91:d6:33:0d: b6:70:58:67:9e:7b:52:da:ba:16:6e:8e:9f:66:30: 90:99:1c:01:ef:f2:2a:a8:da:31:ad:3d:57:5c:89: 03:f1:2c:df:b2:65:2f:18:fd:bf:a8:1f:ed:b7:bc: 50:0e:dc:06:1d:a6:3d:ed:1f:0e:7f:84:c8:c0:4a: e1:80:91:09:99:b6:2d:0d:84:f0:3e:c4:45:db:e3: 9c:21:b7:7f:0a:d3:4f:b7:61:67:4f:cd:75:11:cc: d3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5E:F1:FE:D5:69:DB:3B:A9:44:8D:7D:82:61:AD:12:BE:36:A4:05 X509v3 Authority Key Identifier: keyid:2D:18:15:B0:C9:DC:9E:E2:20:7E:C9:41:7C:DE:C2:BC:4B:E2:3C:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRgVsMncnuIgfslBfN7CvEviPGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d38ec1-d4c6-40fb-ab1d-d202f2a40081/1/417x_tVp2zupRI19gmGtEr42pAU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d38ec1-d4c6-40fb-ab1d-d202f2a40081/1/LRgVsMncnuIgfslBfN7CvEviPGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.218.232.0/21 45.10.28.0/22 45.132.200.0/22 45.134.236.0/22 45.138.88.0/22 45.140.232.0/22 85.235.92.0/22 109.105.0.0/19 185.40.136.0/22 185.153.216.0/22 IPv6: 2a00:d240::/32 Signature Algorithm: sha256WithRSAEncryption 65:e5:44:79:46:f5:cb:7d:be:2e:bb:24:68:d4:00:03:83:0e: d5:b9:f9:5f:01:13:c4:da:f7:fa:d0:d5:df:28:04:45:88:17: bd:bb:2c:c6:ed:6b:bf:06:1e:85:eb:12:41:b4:ec:85:c0:1a: be:fc:59:88:49:c5:95:07:5e:db:94:19:ae:f9:56:ef:a6:87: 36:a2:fb:76:3e:2c:be:de:e8:90:eb:10:51:8f:20:3d:74:fd: c3:6a:bd:5e:63:e4:16:38:c4:1f:0b:26:51:d3:d8:6f:87:38: e1:b3:b6:37:ca:1e:71:92:89:54:96:32:59:fc:ba:b3:80:cd: e5:c3:ff:2c:ec:38:de:66:1d:63:91:24:64:ff:46:f5:36:eb: 87:d0:36:64:05:0f:c3:b9:e2:44:2a:28:e0:59:3f:86:27:3d: a0:48:e4:b2:cb:95:8c:8c:f6:7b:33:d5:43:66:0d:a8:71:a1: e1:32:6c:78:82:4c:9c:19:3c:d8:df:b6:f7:cf:6a:91:ae:fa: 75:20:f6:21:0f:65:d5:de:16:f2:d8:63:7c:9f:72:c9:4d:61: 53:3b:0a:91:a9:10:9c:0c:8d:32:26:fe:4e:c8:d0:31:f4:e4: 02:92:dc:db:6a:06:94:83:5b:a7:32:d7:c7:a2:8d:8c:b8:9a: e1:1a:00:f0 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgISAZt6Wp2HpOVgmjEKwHgIthltMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkMTgxNWIwYzlkYzllZTIyMDdlYzk0MTdjZGVjMmJjNGJl MjNjNjEwHhcNMjYwMTAxMTYxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzVlZjFmZWQ1NjlkYjNiYTk0NDhkN2Q4MjYxYWQxMmJlMzZhNDA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtC8rU/fKsW3n4COm+u5seAT1euoU bGWp5dLyqtcaOkMcL03qxsZF8tODZhayej0Aa/AHULwi66k4xTLrGBEfc9Wi2T97 yBNLnKl+7YV441n+jbsbzGDo3OYapzMzk7dAGk39K8GWXU5KP1bnM+F88VfjqRRH blzgR3ygpR3zVgVgVYKsh5R/X9FgJ0HrIWYRJvhAYkIviqL6ws9Ok1GPfJHWMw22 cFhnnntS2roWbo6fZjCQmRwB7/IqqNoxrT1XXIkD8SzfsmUvGP2/qB/tt7xQDtwG HaY97R8Of4TIwErhgJEJmbYtDYTwPsRF2+OcIbd/CtNPt2FnT811EczT3QIDAQAB o4ICTjCCAkowHQYDVR0OBBYEFONe8f7Vads7qUSNfYJhrRK+NqQFMB8GA1UdIwQY MBaAFC0YFbDJ3J7iIH7JQXzewrxL4jxhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFJnVnNNbmNudUlnZnNsQmZON0N2RXZpUEdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9kMzhlYzEtZDRjNi00MGZiLWFiMWQt ZDIwMmYyYTQwMDgxLzEvNDE3eF90VnAyenVwUkkxOWdtR3RFcjQycEFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9kMzhlYzEtZDRjNi00MGZiLWFiMWQtZDIwMmYyYTQwMDgx LzEvTFJnVnNNbmNudUlnZnNsQmZON0N2RXZpUEdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGQGCCsGAQUFBwEHAQH/BFUwUzBCBAIAATA8AwQDJdroAwQC LQocAwQCLYTIAwQCLYbsAwQCLYpYAwQCLYzoAwQCVetcAwQFbWkAAwQCuSiIAwQC uZnYMA0EAgACMAcDBQAqANJAMA0GCSqGSIb3DQEBCwUAA4IBAQBl5UR5RvXLfb4u uyRo1AADgw7VuflfARPE2vf60NXfKARFiBe9uyzG7Wu/Bh6F6xJBtOyFwBq+/FmI ScWVB17blBmu+Vbvpoc2ovt2Piy+3uiQ6xBRjyA9dP3Dar1eY+QWOMQfCyZR09hv hzjhs7Y3yh5xkolUljJZ/LqzgM3lw/8s7DjeZh1jkSRk/0b1NuuH0DZkBQ/DueJE KijgWT+GJz2gSOSyy5WMjPZ7M9VDZg2ocaHhMmx4gkycGTzY37b3z2qRrvp1IPYh D2XV3hby2GN8n3LJTWFTOwqRqRCcDI0yJv5OyNAx9OQCktzbagaUg1unMtfHoo2M uJrhGgDw -----END CERTIFICATE-----Generated at Thu Jan 1 21:18:49 2026 by rpki-client