This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/jdBpTvCq-8MvV_8qSjTQkaTjius.roa File: jdBpTvCq-8MvV_8qSjTQkaTjius.roa (raw, json) Hash identifier: K6cLTvXBhmw9xWXVpTfX3a6fAiT7AzPGCPpq04cBjsw= Subject key identifier: 8D:D0:69:4E:F0:AA:FB:C3:2F:57:FF:2A:4A:34:D0:91:A4:E3:8A:EB Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 019B227EBDB2912EC572D686FFF5133AFA02 Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/jdBpTvCq-8MvV_8qSjTQkaTjius.roa Signing time: Mon 15 Dec 2025 14:51:29 +0000 ROA not before: Mon 15 Dec 2025 14:51:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 19148 IP address blocks: 152.163.48.0/22 maxlen: 22 152.163.76.0/22 maxlen: 22 152.163.124.0/22 maxlen: 22 152.163.152.0/22 maxlen: 22 152.163.176.0/22 maxlen: 22 152.163.200.0/22 maxlen: 22 152.163.228.0/22 maxlen: 22 152.163.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 03:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:7e:bd:b2:91:2e:c5:72:d6:86:ff:f5:13:3a:fa:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Dec 15 14:51:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=8dd0694ef0aafbc32f57ff2a4a34d091a4e38aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:90:91:ca:ec:bf:60:4c:3a:56:cc:f0:e9:32: 97:e6:84:52:f4:6e:ff:1a:58:0b:84:12:0a:1f:57: 57:89:f3:da:d6:c4:27:06:d5:a0:76:b0:1a:4d:09: 7c:e5:0a:c4:b7:df:a8:02:01:71:5c:6e:57:7b:6d: 47:e2:68:c4:d3:41:a4:45:90:83:66:f7:1f:d6:2b: c4:76:71:be:92:0d:d3:94:a0:a4:22:ab:5d:95:af: 16:9e:8e:99:1f:e8:e3:34:85:11:5d:8d:41:a5:e9: 4c:8c:85:54:20:68:65:d0:91:2c:7a:12:59:13:98: 31:d9:92:7d:ad:b4:56:1c:05:6a:7a:c5:72:54:95: 37:c7:7f:e3:97:91:a7:7b:cb:2c:6f:8e:fc:29:a4: c8:10:55:30:a1:3e:db:1a:12:4e:69:17:44:d6:5d: 4d:3b:6f:d6:62:66:75:c2:0e:1c:21:ff:9b:28:f8: da:ac:33:c6:8f:a3:71:22:4a:0a:0f:71:1b:ea:00: 51:09:79:72:57:ce:4a:ea:b5:b9:39:ff:09:af:00: 0d:6a:75:51:59:70:3a:e0:8f:94:15:04:39:79:07: b0:51:d7:4f:08:2b:5a:34:c0:b6:11:a8:8c:c3:a7: 23:de:3c:82:62:91:9e:51:0e:13:2d:d0:0e:b2:ba: 93:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D0:69:4E:F0:AA:FB:C3:2F:57:FF:2A:4A:34:D0:91:A4:E3:8A:EB X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/jdBpTvCq-8MvV_8qSjTQkaTjius.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.163.48.0/22 152.163.76.0/22 152.163.124.0/22 152.163.152.0/22 152.163.176.0/22 152.163.200.0/22 152.163.228.0/22 152.163.252.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:94:5a:24:b0:d2:52:5e:03:c3:f9:8a:15:7c:78:2e:54:49: 0d:d1:df:69:a9:c9:8c:e4:8e:e1:70:2a:d5:6c:45:ed:59:ee: 23:46:b4:34:73:93:84:73:1f:22:97:3c:92:60:1a:23:63:77: 9a:0c:3b:1b:54:7c:ef:22:f7:dc:0b:6e:c3:cd:09:55:a1:80: ff:80:bb:4a:b4:3b:8e:e4:45:41:14:a3:2f:9f:e2:7b:5f:80: 47:af:73:7e:fe:15:ab:0c:57:a2:88:10:2c:1a:b1:a5:39:ee: b5:90:53:a2:a9:dd:46:36:e3:45:8a:90:b3:21:42:4c:18:a5: 97:83:b3:4d:da:7a:7a:3b:f3:a3:4a:1a:bb:4e:73:36:9e:59: 2b:f7:00:0e:40:88:23:1d:00:20:e4:7d:5f:7b:f1:1a:f5:5f: bb:dc:18:81:0f:1d:c8:d2:9b:f7:0e:b3:b0:b0:57:60:f7:28: 3e:ab:9f:8e:a1:6e:27:6d:8c:60:72:ec:d7:1d:41:0f:f6:44: 7b:95:74:38:3f:21:ee:a5:cb:ea:c6:53:a8:5b:d9:34:04:e6: b5:33:b4:77:a7:92:f0:31:45:fd:ba:b1:c1:c7:9e:ae:90:59: 83:d7:6e:45:0f:fd:84:a7:2f:00:b5:7f:4e:c3:3c:b2:f1:d9: d2:b7:12:0b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZsifr2ykS7FctaG//UTOvoCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjUxMjE1MTQ1MTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZGQwNjk0ZWYwYWFmYmMzMmY1N2ZmMmE0YTM0ZDA5MWE0ZTM4YWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ZCRyuy/YEw6Vszw6TKX5oRS9G7/ GlgLhBIKH1dXifPa1sQnBtWgdrAaTQl85QrEt9+oAgFxXG5Xe21H4mjE00GkRZCD Zvcf1ivEdnG+kg3TlKCkIqtdla8Wno6ZH+jjNIURXY1BpelMjIVUIGhl0JEsehJZ E5gx2ZJ9rbRWHAVqesVyVJU3x3/jl5Gne8ssb478KaTIEFUwoT7bGhJOaRdE1l1N O2/WYmZ1wg4cIf+bKPjarDPGj6NxIkoKD3Eb6gBRCXlyV85K6rW5Of8JrwANanVR WXA64I+UFQQ5eQewUddPCCtaNMC2EaiMw6cj3jyCYpGeUQ4TLdAOsrqTjwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFI3QaU7wqvvDL1f/Kko00JGk44rrMB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvamRCcFR2Q3EtOE12Vl84cVNqVFFrYVRqaXVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCmKMwAwQC mKNMAwQCmKN8AwQCmKOYAwQCmKOwAwQCmKPIAwQCmKPkAwQCmKP8MA0GCSqGSIb3 DQEBCwUAA4IBAQAMlFoksNJSXgPD+YoVfHguVEkN0d9pqcmM5I7hcCrVbEXtWe4j RrQ0c5OEcx8ilzySYBojY3eaDDsbVHzvIvfcC27DzQlVoYD/gLtKtDuO5EVBFKMv n+J7X4BHr3N+/hWrDFeiiBAsGrGlOe61kFOiqd1GNuNFipCzIUJMGKWXg7NN2np6 O/OjShq7TnM2nlkr9wAOQIgjHQAg5H1fe/Ea9V+73BiBDx3I0pv3DrOwsFdg9yg+ q5+OoW4nbYxgcuzXHUEP9kR7lXQ4PyHupcvqxlOoW9k0BOa1M7R3p5LwMUX9urHB x56ukFmD125FD/2Epy8AtX9Owzyy8dnStxIL -----END CERTIFICATE-----Generated at Sat Dec 20 11:47:15 2025 by rpki-client