This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/chSACx1VgLKyNtNJ9O5s9AIxCyc.roa File: chSACx1VgLKyNtNJ9O5s9AIxCyc.roa (raw, json) Hash identifier: 4nO1fEyFfsR+vSI+jlyPCDWwuq/XK1IsiDbCXjTztsI= Subject key identifier: 72:14:80:0B:1D:55:80:B2:B2:36:D3:49:F4:EE:6C:F4:02:31:0B:27 Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Certificate serial: 019B306564AB7729138EC50AA60F401BA9FA Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/chSACx1VgLKyNtNJ9O5s9AIxCyc.roa Signing time: Thu 18 Dec 2025 07:38:29 +0000 ROA not before: Thu 18 Dec 2025 07:38:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 50129 IP address blocks: 31.15.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:65:64:ab:77:29:13:8e:c5:0a:a6:0f:40:1b:a9:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Validity Not Before: Dec 18 07:38:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=7214800b1d5580b2b236d349f4ee6cf402310b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cb:9a:a0:fe:05:04:91:ac:4c:21:f7:6e:96: ee:b7:ba:ea:28:4b:b2:f9:58:93:bd:07:8b:54:8a: c9:bd:fc:5a:8a:3b:f5:f5:d6:54:8b:f1:55:de:af: 95:5f:62:28:14:33:5a:9e:52:ae:b4:a3:52:c1:77: 13:b7:94:18:a1:64:41:69:81:b5:ef:33:a1:74:02: 65:dd:93:03:d1:1f:bf:8e:22:42:ca:6b:da:10:9c: 16:f3:30:08:0a:d6:37:6d:79:f0:2d:21:99:e0:a9: 9e:87:c5:34:10:5f:3a:31:fe:a6:47:45:5b:85:3f: 4a:c5:80:87:11:dc:50:82:89:ff:e0:45:23:8b:75: 8e:0e:48:9b:73:fc:39:69:62:21:05:3b:a4:84:bf: fe:9d:c4:44:bd:5c:b4:2a:3f:de:0e:9c:ab:07:f1: 52:7c:96:e3:6e:2f:0f:2a:dd:e8:a9:32:33:88:28: bc:22:f5:e6:2a:5c:00:ab:7c:6d:bd:70:61:6b:a7: 7d:04:e2:0e:43:de:3d:bd:ea:ae:44:05:7a:63:35: e6:e1:2b:44:e3:7e:a5:65:f7:8e:df:79:5d:b5:5a: d3:c7:55:56:f8:c6:67:8c:e7:9e:13:5c:03:52:7c: ef:3f:85:27:18:5c:0d:d9:5f:e0:da:9f:36:fd:d7: be:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:14:80:0B:1D:55:80:B2:B2:36:D3:49:F4:EE:6C:F4:02:31:0B:27 X509v3 Authority Key Identifier: keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/chSACx1VgLKyNtNJ9O5s9AIxCyc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.15.0.0/22 Signature Algorithm: sha256WithRSAEncryption c1:5c:53:2f:9d:9c:04:aa:fe:d8:bf:37:ec:00:a6:20:c0:9a: fd:99:7e:52:5f:57:6e:76:f0:26:64:32:4d:de:95:ab:f1:e8: 13:b6:61:a9:ec:79:6e:85:c1:9c:aa:1d:36:f1:2f:b5:da:75: bf:11:b3:1f:10:da:ad:c6:d9:a6:e2:78:8c:21:dc:df:be:8d: 78:b1:18:76:bb:f7:95:91:d3:e4:09:8a:97:44:2c:12:25:a9: 8f:e1:a2:35:45:b4:cb:6a:9a:0a:ca:e1:e8:f7:59:2c:d5:d6: 2e:ac:94:21:64:d1:3b:cf:05:40:bd:9b:b4:78:60:9f:36:3a: a5:a3:12:89:59:0e:70:d6:0f:99:42:b8:ab:6c:4c:cc:4f:e1: 0c:c4:ee:50:c7:70:59:f0:04:0d:ff:1c:6e:34:1a:be:62:2a: d4:04:7d:3c:7e:16:fb:82:76:c2:a8:d9:30:44:63:16:7c:a1: c4:d8:4f:62:6a:cb:e5:70:ef:ff:be:ef:75:8b:67:8d:0e:2f: 42:37:d8:62:b1:97:f0:5d:d6:76:d5:34:06:e1:c8:d1:32:f3: 39:a9:73:c6:4f:f9:89:17:e9:54:5d:74:e2:a2:f0:a6:5f:e1: 48:09:db:32:a6:2f:7e:7e:d4:af:40:2d:c3:20:46:74:e0:47: 8d:2c:1e:6f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZswZWSrdykTjsUKpg9AG6n6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy N2E0NjcwHhcNMjUxMjE4MDczODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjE0ODAwYjFkNTU4MGIyYjIzNmQzNDlmNGVlNmNmNDAyMzEwYjI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtMuaoP4FBJGsTCH3bpbut7rqKEuy +ViTvQeLVIrJvfxaijv19dZUi/FV3q+VX2IoFDNanlKutKNSwXcTt5QYoWRBaYG1 7zOhdAJl3ZMD0R+/jiJCymvaEJwW8zAICtY3bXnwLSGZ4Kmeh8U0EF86Mf6mR0Vb hT9KxYCHEdxQgon/4EUji3WODkibc/w5aWIhBTukhL/+ncREvVy0Kj/eDpyrB/FS fJbjbi8PKt3oqTIziCi8IvXmKlwAq3xtvXBha6d9BOIOQ949vequRAV6YzXm4StE 436lZfeO33ldtVrTx1VW+MZnjOeeE1wDUnzvP4UnGFwN2V/g2p82/de+1QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHIUgAsdVYCysjbTSfTubPQCMQsnMB8GA1UdIwQY MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt Y2Q3ZTA2Y2JiNTMxLzEvY2hTQUN4MVZnTEt5TnROSjlPNXM5QUl4Q3ljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCHw8AMA0G CSqGSIb3DQEBCwUAA4IBAQDBXFMvnZwEqv7YvzfsAKYgwJr9mX5SX1dudvAmZDJN 3pWr8egTtmGp7HluhcGcqh028S+12nW/EbMfENqtxtmm4niMIdzfvo14sRh2u/eV kdPkCYqXRCwSJamP4aI1RbTLapoKyuHo91ks1dYurJQhZNE7zwVAvZu0eGCfNjql oxKJWQ5w1g+ZQrirbEzMT+EMxO5Qx3BZ8AQN/xxuNBq+YirUBH08fhb7gnbCqNkw RGMWfKHE2E9iasvlcO//vu91i2eNDi9CN9hisZfwXdZ21TQG4cjRMvM5qXPGT/mJ F+lUXXTiovCmX+FICdsypi9+ftSvQC3DIEZ04EeNLB5v -----END CERTIFICATE-----Generated at Sat Dec 20 14:06:22 2025 by rpki-client