This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/qJHGcRtxHFNXE2pwXoHnIE1_KFY.roa File: qJHGcRtxHFNXE2pwXoHnIE1_KFY.roa (raw, json) Hash identifier: jmsg++sOnE3uEoDqRj1pn+j4E16A/o/E+Wm48qvpy94= Subject key identifier: A8:91:C6:71:1B:71:1C:53:57:13:6A:70:5E:81:E7:20:4D:7F:28:56 Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664 Certificate serial: 019B0291D2355CFD94A6D4541706BEF80E09 Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/qJHGcRtxHFNXE2pwXoHnIE1_KFY.roa Signing time: Tue 09 Dec 2025 10:04:29 +0000 ROA not before: Tue 09 Dec 2025 10:04:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137409 IP address blocks: 45.131.192.0/24 maxlen: 24 2a0e:d785::/32 maxlen: 48 2a0e:d786::/32 maxlen: 48 2a11:f881::/32 maxlen: 48 2a11:f882::/32 maxlen: 48 2a11:f885::/32 maxlen: 48 2a11:f886::/32 maxlen: 48 2a11:f887::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.mft rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 18:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:02:91:d2:35:5c:fd:94:a6:d4:54:17:06:be:f8:0e:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664 Validity Not Before: Dec 9 10:04:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=a891c6711b711c5357136a705e81e7204d7f2856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c4:73:07:75:53:02:22:e1:3a:84:74:a7:fa: f7:49:f3:5c:51:ad:39:ec:73:b0:c3:9e:2a:fe:63: 46:ca:de:39:a3:d5:b8:93:48:57:71:02:69:3b:30: 05:cb:08:2a:22:7e:c8:7d:7d:06:6f:d3:94:6a:87: e7:d8:c5:21:30:90:d1:3b:81:8d:8f:b4:bb:17:3a: e7:cb:94:5a:02:95:8b:af:61:5c:5f:2c:c5:d0:ab: 1f:cd:d8:41:44:ba:e5:87:18:1b:8b:7b:69:fc:be: 26:98:89:e9:70:03:c8:7a:e6:e0:79:44:87:67:2d: b1:1e:e6:5b:32:38:43:4b:a3:54:41:5a:5a:2c:e5: db:41:38:1d:4d:fb:0e:72:d9:74:d8:d8:22:eb:b6: ea:18:10:ab:f1:59:92:fd:fc:ac:fe:9e:9c:cd:f1: da:69:b3:b3:e7:04:f0:99:c2:45:74:d3:5d:94:28: 32:ae:8c:8d:95:01:5a:e1:7e:4a:77:c7:85:7e:8a: 97:70:a2:22:26:e0:c7:66:06:14:55:65:6c:dc:26: 46:27:ca:2b:03:1f:32:5b:c7:15:d8:22:16:40:91: 19:35:1a:25:06:49:78:df:92:a6:7a:1a:5b:a5:98: 76:9b:9a:06:f4:a9:b8:9a:23:0f:ad:74:8b:ea:ff: 83:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:91:C6:71:1B:71:1C:53:57:13:6A:70:5E:81:E7:20:4D:7F:28:56 X509v3 Authority Key Identifier: keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/qJHGcRtxHFNXE2pwXoHnIE1_KFY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.131.192.0/24 IPv6: 2a0e:d785::-2a0e:d786:ffff:ffff:ffff:ffff:ffff:ffff 2a11:f881::-2a11:f882:ffff:ffff:ffff:ffff:ffff:ffff 2a11:f885::-2a11:f887:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 08:e4:01:93:b7:80:8d:c5:fa:6a:6e:c7:b8:62:2c:30:82:26: 90:e0:fe:85:31:4e:db:64:eb:91:a1:1a:8c:aa:ba:a8:73:00: f2:ca:4c:1a:08:8a:b4:23:63:19:3b:d5:24:ff:48:97:14:b3: b1:ee:0d:76:08:a0:25:b5:99:d5:83:72:e5:88:d0:b9:2c:94: 66:81:10:e3:06:22:7e:fd:ab:f2:9b:c2:34:19:31:bc:4f:82: dc:81:06:75:b0:91:a0:ff:c1:7a:5a:01:9d:3d:39:9f:d5:dd: fc:b2:80:21:d7:f8:1f:e7:48:ae:9e:7f:b3:47:14:67:dd:df: e9:b6:f2:cc:7f:c2:23:48:f9:44:7b:e4:af:4b:9c:5a:7f:55: 78:57:e3:af:8a:01:64:e7:65:0a:f3:04:66:cb:76:ec:73:f4: 47:13:1b:41:35:1c:04:f6:e6:9a:13:34:9a:d3:40:c2:e5:6c: 67:f8:d1:ab:0a:91:c8:f5:e7:66:e6:28:16:31:1d:a2:c2:fa: 06:11:f6:91:6f:94:42:02:5e:12:1a:aa:89:12:32:96:10:48: 65:c3:6d:6f:e4:cf:a2:ef:91:05:b1:1d:13:d1:db:1f:49:52: 10:84:21:3a:ff:27:f7:b6:5d:19:4d:f7:c2:8e:e7:54:03:de: ee:4a:91:68 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISAZsCkdI1XP2UptRUFwa++A4JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkMjk5OTA0MmM1ZTIwMDZiZDVhZWI3YTA1ZGUxZTk2YTVl NzM2NjQwHhcNMjUxMjA5MTAwNDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhODkxYzY3MTFiNzExYzUzNTcxMzZhNzA1ZTgxZTcyMDRkN2YyODU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt8RzB3VTAiLhOoR0p/r3SfNcUa05 7HOww54q/mNGyt45o9W4k0hXcQJpOzAFywgqIn7IfX0Gb9OUaofn2MUhMJDRO4GN j7S7Fzrny5RaApWLr2FcXyzF0KsfzdhBRLrlhxgbi3tp/L4mmInpcAPIeubgeUSH Zy2xHuZbMjhDS6NUQVpaLOXbQTgdTfsOctl02Ngi67bqGBCr8VmS/fys/p6czfHa abOz5wTwmcJFdNNdlCgyroyNlQFa4X5Kd8eFfoqXcKIiJuDHZgYUVWVs3CZGJ8or Ax8yW8cV2CIWQJEZNRolBkl435KmehpbpZh2m5oG9Km4miMPrXSL6v+DhwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFKiRxnEbcRxTVxNqcF6B5yBNfyhWMB8GA1UdIwQY MBaAFA0pmQQsXiAGvVrregXeHpal5zZkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUt OGMxNTM5NjViYWM5LzEvcUpIR2NSdHhIRk5YRTJwd1hvSG5JRTFfS0ZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUtOGMxNTM5NjViYWM5 LzEvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjAMBAIAATAGAwQALYPAMDYE AgACMDAwDgMFACoO14UDBQAqDteGMA4DBQAqEfiBAwUAKhH4gjAOAwUAKhH4hQMF AyoR+IAwDQYJKoZIhvcNAQELBQADggEBAAjkAZO3gI3F+mpux7hiLDCCJpDg/oUx Tttk65GhGoyquqhzAPLKTBoIirQjYxk71ST/SJcUs7HuDXYIoCW1mdWDcuWI0Lks lGaBEOMGIn79q/KbwjQZMbxPgtyBBnWwkaD/wXpaAZ09OZ/V3fyygCHX+B/nSK6e f7NHFGfd3+m28sx/wiNI+UR75K9LnFp/VXhX46+KAWTnZQrzBGbLduxz9EcTG0E1 HAT25poTNJrTQMLlbGf40asKkcj152bmKBYxHaLC+gYR9pFvlEICXhIaqokSMpYQ SGXDbW/kz6LvkQWxHRPR2x9JUhCEITr/J/e2XRlN98KO51QD3u5KkWg= -----END CERTIFICATE-----Generated at Sat Dec 20 04:36:04 2025 by rpki-client