This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/b66569-33db-4d89-9a67-f069345e428c/1/4KV8lpniR8UxE5ZzouJqiraVYdU.roa File: 4KV8lpniR8UxE5ZzouJqiraVYdU.roa (raw, json) Hash identifier: 2DsJOVXnej+D8A8DI149UPDkM6EL2VAPk54dRCZJTH8= Subject key identifier: E0:A5:7C:96:99:E2:47:C5:31:13:96:73:A2:E2:6A:8A:B6:95:61:D5 Certificate issuer: /CN=1de2fce0859ab7e01b851cb606ebdbd5c0338125 Certificate serial: 019B2CAC531C530C51045A295CEC39FD3C1D Authority key identifier: 1D:E2:FC:E0:85:9A:B7:E0:1B:85:1C:B6:06:EB:DB:D5:C0:33:81:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeL84IWat-AbhRy2Buvb1cAzgSU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/b66569-33db-4d89-9a67-f069345e428c/1/4KV8lpniR8UxE5ZzouJqiraVYdU.roa Signing time: Wed 17 Dec 2025 14:17:29 +0000 ROA not before: Wed 17 Dec 2025 14:17:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 42707 IP address blocks: 5.45.32.0/22 maxlen: 22 5.57.248.0/21 maxlen: 21 5.206.208.0/20 maxlen: 20 77.75.48.0/22 maxlen: 22 84.39.204.0/22 maxlen: 22 91.189.224.0/21 maxlen: 21 91.195.64.0/22 maxlen: 22 109.207.72.0/22 maxlen: 22 185.148.28.0/22 maxlen: 22 185.229.80.0/22 maxlen: 22 185.231.24.0/22 maxlen: 22 185.231.28.0/22 maxlen: 22 185.233.212.0/22 maxlen: 22 185.236.4.0/22 maxlen: 22 185.245.88.0/22 maxlen: 22 185.247.44.0/22 maxlen: 22 185.247.48.0/22 maxlen: 22 185.248.228.0/22 maxlen: 22 185.250.136.0/22 maxlen: 22 185.252.124.0/22 maxlen: 22 185.254.48.0/22 maxlen: 22 193.33.134.0/23 maxlen: 23 193.36.164.0/22 maxlen: 22 194.49.88.0/22 maxlen: 22 195.42.224.0/22 maxlen: 22 195.42.228.0/23 maxlen: 23 2a00:5140::/32 maxlen: 32 2a00:5141::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/b66569-33db-4d89-9a67-f069345e428c/1/HeL84IWat-AbhRy2Buvb1cAzgSU.crl rsync://rpki.ripe.net/repository/DEFAULT/34/b66569-33db-4d89-9a67-f069345e428c/1/HeL84IWat-AbhRy2Buvb1cAzgSU.mft rsync://rpki.ripe.net/repository/DEFAULT/HeL84IWat-AbhRy2Buvb1cAzgSU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:ac:53:1c:53:0c:51:04:5a:29:5c:ec:39:fd:3c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1de2fce0859ab7e01b851cb606ebdbd5c0338125 Validity Not Before: Dec 17 14:17:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e0a57c9699e247c531139673a2e26a8ab69561d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a4:69:af:d9:fd:6f:ed:48:98:46:0b:2e:d6: d2:b0:3c:ee:ab:38:bc:6c:78:cc:60:60:95:52:ca: 51:f0:b8:a7:2a:2b:54:67:c8:dd:c4:7f:a7:90:89: 96:77:03:7a:ec:b3:c4:4a:1d:dd:74:e6:f3:1b:81: 5c:95:93:03:18:bc:1d:10:4a:f8:1a:3c:cb:ec:cb: 5f:6a:6c:ec:fd:f4:b5:dc:59:53:87:11:dc:ed:47: 47:f2:8b:24:87:5a:ea:ff:a4:59:df:6d:a6:34:70: 79:a7:07:af:12:40:81:44:4c:aa:1e:87:97:73:10: 81:db:b3:a5:fe:dc:ba:69:d1:f6:92:ef:91:53:fb: 8f:65:fa:75:6b:09:d1:6c:8d:0d:cc:bd:c1:4c:21: c2:1a:5c:fb:0e:c4:fa:48:74:8f:7f:87:a3:f3:c9: 73:6b:01:ba:03:18:04:28:dc:c5:9b:aa:32:8d:2d: 60:30:a0:6a:1b:d9:68:be:c1:a7:a2:d5:92:88:61: c1:0b:32:db:02:a2:ac:26:30:3e:f4:5c:a9:9c:c0: 4f:e3:2b:72:ac:7e:80:29:51:37:d3:52:b1:4b:87: e5:cd:85:e7:1a:4d:a5:24:a7:ec:be:ef:45:61:4d: b8:91:52:77:a9:cd:5b:ec:0e:40:e5:4c:c4:d8:e3: d4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A5:7C:96:99:E2:47:C5:31:13:96:73:A2:E2:6A:8A:B6:95:61:D5 X509v3 Authority Key Identifier: keyid:1D:E2:FC:E0:85:9A:B7:E0:1B:85:1C:B6:06:EB:DB:D5:C0:33:81:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeL84IWat-AbhRy2Buvb1cAzgSU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/b66569-33db-4d89-9a67-f069345e428c/1/4KV8lpniR8UxE5ZzouJqiraVYdU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/b66569-33db-4d89-9a67-f069345e428c/1/HeL84IWat-AbhRy2Buvb1cAzgSU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.45.32.0/22 5.57.248.0/21 5.206.208.0/20 77.75.48.0/22 84.39.204.0/22 91.189.224.0/21 91.195.64.0/22 109.207.72.0/22 185.148.28.0/22 185.229.80.0/22 185.231.24.0/21 185.233.212.0/22 185.236.4.0/22 185.245.88.0/22 185.247.44.0-185.247.51.255 185.248.228.0/22 185.250.136.0/22 185.252.124.0/22 185.254.48.0/22 193.33.134.0/23 193.36.164.0/22 194.49.88.0/22 195.42.224.0-195.42.229.255 IPv6: 2a00:5140::/31 Signature Algorithm: sha256WithRSAEncryption 93:7e:76:84:1a:19:65:6d:03:85:d4:ca:67:a0:d8:e6:fd:f7: cb:ff:22:fa:5e:a2:56:75:ba:6a:dd:11:b7:11:21:16:48:3c: 39:71:a1:fb:52:00:9a:86:1b:0f:c9:52:31:79:53:7e:94:c2: 47:0f:25:69:87:ef:b0:49:17:ec:5c:00:49:b7:5c:c5:70:00: 75:b8:67:ce:47:30:9c:e0:6c:d9:4a:be:ae:80:c3:2c:7f:91: 82:49:ed:0e:d2:64:4e:14:3b:c6:1c:15:3b:2f:86:d2:ec:09: fb:47:81:79:15:1e:6a:35:ed:ca:96:a6:4a:97:56:1f:25:d3: 6b:e7:b6:aa:d6:23:84:43:2b:09:ff:21:58:bb:d9:72:08:33: 2f:e5:0d:b8:19:bf:8d:25:87:3a:4d:da:99:1e:89:b2:72:b4: 1b:ed:8c:3a:b3:65:72:be:8f:5a:87:3e:16:09:fc:b0:58:ec: d8:0c:9c:8c:ad:01:8b:1b:61:37:61:b8:98:1e:e3:09:ea:f1: 5f:87:ce:9c:cf:83:57:4c:1c:d0:50:4f:38:29:d2:64:44:5b: 11:73:01:10:09:32:33:a8:df:d5:dc:f2:c5:07:0b:69:91:19: 57:b2:2a:a4:53:a6:8c:b0:03:88:9d:bb:07:f4:23:bf:12:01: 2d:a6:03:01 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZssrFMcUwxRBFopXOw5/TwdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZTJmY2UwODU5YWI3ZTAxYjg1MWNiNjA2ZWJkYmQ1YzAz MzgxMjUwHhcNMjUxMjE3MTQxNzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMGE1N2M5Njk5ZTI0N2M1MzExMzk2NzNhMmUyNmE4YWI2OTU2MWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKRpr9n9b+1ImEYLLtbSsDzuqzi8 bHjMYGCVUspR8LinKitUZ8jdxH+nkImWdwN67LPESh3ddObzG4FclZMDGLwdEEr4 GjzL7Mtfamzs/fS13FlThxHc7UdH8oskh1rq/6RZ322mNHB5pwevEkCBREyqHoeX cxCB27Ol/ty6adH2ku+RU/uPZfp1awnRbI0NzL3BTCHCGlz7DsT6SHSPf4ej88lz awG6AxgEKNzFm6oyjS1gMKBqG9lovsGnotWSiGHBCzLbAqKsJjA+9FypnMBP4yty rH6AKVE301KxS4flzYXnGk2lJKfsvu9FYU24kVJ3qc1b7A5A5UzE2OPUoQIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFOClfJaZ4kfFMROWc6Liaoq2lWHVMB8GA1UdIwQY MBaAFB3i/OCFmrfgG4Uctgbr29XAM4ElMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGVMODRJV2F0LUFiaFJ5MkJ1dmIxY0F6Z1NVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9iNjY1NjktMzNkYi00ZDg5LTlhNjct ZjA2OTM0NWU0MjhjLzEvNEtWOGxwbmlSOFV4RTVaem91SnFpcmFWWWRVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC9iNjY1NjktMzNkYi00ZDg5LTlhNjctZjA2OTM0NWU0Mjhj LzEvSGVMODRJV2F0LUFiaFJ5MkJ1dmIxY0F6Z1NVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHGBggrBgEFBQcBBwEB/wSBtjCBszCBoQQCAAEwgZoDBAIF LSADBAMFOfgDBAQFztADBAJNSzADBAJUJ8wDBANbveADBAJbw0ADBAJtz0gDBAK5 lBwDBAK55VADBAO55xgDBAK56dQDBAK57AQDBAK59VgwDAMEArn3LAMEArn3MAME Arn45AMEArn6iAMEArn8fAMEArn+MAMEAcEhhgMEAsEkpAMEAsIxWDAMAwQFwyrg AwQBwyrkMA0EAgACMAcDBQEqAFFAMA0GCSqGSIb3DQEBCwUAA4IBAQCTfnaEGhll bQOF1MpnoNjm/ffL/yL6XqJWdbpq3RG3ESEWSDw5caH7UgCahhsPyVIxeVN+lMJH DyVph++wSRfsXABJt1zFcAB1uGfORzCc4GzZSr6ugMMsf5GCSe0O0mROFDvGHBU7 L4bS7An7R4F5FR5qNe3KlqZKl1YfJdNr57aq1iOEQysJ/yFYu9lyCDMv5Q24Gb+N JYc6TdqZHomycrQb7Yw6s2Vyvo9ahz4WCfywWOzYDJyMrQGLG2E3YbiYHuMJ6vFf h86cz4NXTBzQUE84KdJkRFsRcwEQCTIzqN/V3PLFBwtpkRlXsiqkU6aMsAOInbsH 9CO/EgEtpgMB -----END CERTIFICATE-----Generated at Thu Dec 18 20:23:15 2025 by rpki-client