This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/1UemlBoyrdhETW_irRPgwv8GNgE.roa File: 1UemlBoyrdhETW_irRPgwv8GNgE.roa (raw, json) Hash identifier: 7rZWC6ED7RuQ75kFqjqfToLqGoXpVmL7iU8UFdjyImw= Subject key identifier: D5:47:A6:94:1A:32:AD:D8:44:4D:6F:E2:AD:13:E0:C2:FF:06:36:01 Certificate issuer: /CN=58ee47d32a599341f5ff1a88bf142e1538da40ea Certificate serial: 019B2B2390A2247CBF2BF3F89D0322A6985A Authority key identifier: 58:EE:47:D3:2A:59:93:41:F5:FF:1A:88:BF:14:2E:15:38:DA:40:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WO5H0ypZk0H1_xqIvxQuFTjaQOo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/1UemlBoyrdhETW_irRPgwv8GNgE.roa Signing time: Wed 17 Dec 2025 07:08:29 +0000 ROA not before: Wed 17 Dec 2025 07:08:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 3342 IP address blocks: 45.15.4.0/24 maxlen: 24 45.15.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/WO5H0ypZk0H1_xqIvxQuFTjaQOo.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/WO5H0ypZk0H1_xqIvxQuFTjaQOo.mft rsync://rpki.ripe.net/repository/DEFAULT/WO5H0ypZk0H1_xqIvxQuFTjaQOo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:23:90:a2:24:7c:bf:2b:f3:f8:9d:03:22:a6:98:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58ee47d32a599341f5ff1a88bf142e1538da40ea Validity Not Before: Dec 17 07:08:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=d547a6941a32add8444d6fe2ad13e0c2ff063601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:66:03:30:33:33:e0:96:de:81:bc:a5:63:f7: bb:b6:1a:25:4b:6f:7c:bf:64:a3:74:20:d9:d5:6f: 66:42:b8:81:bc:cf:bb:39:f8:ba:f7:26:9f:60:ef: af:11:32:13:dc:c9:6a:69:b2:c5:e3:e7:ff:6b:20: 87:7f:1b:11:bb:64:82:ca:3e:1b:2b:10:8d:03:88: 34:3e:9f:32:59:1e:4f:ad:ef:72:15:06:32:63:cf: 40:73:9e:48:ce:de:33:27:b4:99:21:78:28:3a:cb: c1:e9:0b:1a:28:fe:84:6d:06:78:0d:e5:2a:6b:c7: 77:41:e2:46:30:de:ed:7a:b6:0b:cc:df:30:51:72: 25:fd:99:8f:af:2f:58:2f:c9:7b:12:7d:b6:78:bf: 5e:18:07:9d:5d:6d:36:32:6f:e5:2d:4d:64:48:94: d1:ee:fd:f6:5d:f1:f2:67:b0:d2:41:ae:80:c4:49: 7a:7a:90:a2:74:cf:27:12:f8:7e:0e:96:e6:de:b3: 5b:94:26:ef:7d:6e:3d:37:cb:35:12:7f:9e:ec:a7: 15:f2:99:06:e1:ad:5d:1a:27:58:37:62:6c:74:c2: bd:f3:af:08:d3:0e:34:e2:fa:05:10:fd:b4:95:cb: 91:60:ae:74:3a:61:82:97:94:17:e7:97:ea:8b:29: f8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:47:A6:94:1A:32:AD:D8:44:4D:6F:E2:AD:13:E0:C2:FF:06:36:01 X509v3 Authority Key Identifier: keyid:58:EE:47:D3:2A:59:93:41:F5:FF:1A:88:BF:14:2E:15:38:DA:40:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WO5H0ypZk0H1_xqIvxQuFTjaQOo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/1UemlBoyrdhETW_irRPgwv8GNgE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/WO5H0ypZk0H1_xqIvxQuFTjaQOo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.15.4.0/24 45.15.7.0/24 Signature Algorithm: sha256WithRSAEncryption 76:75:db:28:4f:4d:dc:fd:86:24:c9:5d:8d:66:0f:fb:a3:05: 01:43:c6:86:58:e1:47:e4:39:e3:f2:5b:d6:4c:dc:c8:3a:65: a8:07:b5:c9:b7:5f:b5:f8:1c:c7:b2:ae:b7:89:91:e9:25:6f: cf:8d:7a:29:87:f3:c8:18:40:23:b1:f7:2b:43:09:a7:c9:22: d9:cc:be:10:68:da:42:d0:bd:c7:72:fe:dc:16:ff:b7:97:90: 8b:b2:48:bd:86:63:97:88:34:0c:bb:36:73:a9:c0:6f:4b:6b: 36:ae:8e:d6:1a:01:ef:6a:8f:ed:72:93:ac:aa:29:7c:8c:88: ff:3d:1f:81:56:89:9e:d4:9d:45:1f:ca:e7:2a:60:85:60:41: 25:26:23:0d:0f:48:fa:92:c1:f6:b0:94:fc:a4:d9:10:37:bd: 5c:65:cf:bf:22:31:85:1a:5f:db:15:e6:90:14:00:1d:2c:17: fe:58:49:6f:f2:64:e9:5b:50:e4:5e:c3:ee:5f:d4:df:d0:d0: 41:57:7b:af:af:9f:09:90:86:37:0f:ee:bc:27:56:5a:f5:a1: a4:be:4c:26:06:fe:81:ac:72:8d:ff:b6:2f:df:62:46:cd:50: ef:f1:6e:4f:b0:03:d9:93:b5:c0:60:b4:af:1c:bf:0d:d6:a4: d2:1e:c3:41 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZsrI5CiJHy/K/P4nQMipphaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ZWU0N2QzMmE1OTkzNDFmNWZmMWE4OGJmMTQyZTE1Mzhk YTQwZWEwHhcNMjUxMjE3MDcwODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNTQ3YTY5NDFhMzJhZGQ4NDQ0ZDZmZTJhZDEzZTBjMmZmMDYzNjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWYDMDMz4JbegbylY/e7tholS298 v2SjdCDZ1W9mQriBvM+7Ofi69yafYO+vETIT3MlqabLF4+f/ayCHfxsRu2SCyj4b KxCNA4g0Pp8yWR5Pre9yFQYyY89Ac55Izt4zJ7SZIXgoOsvB6QsaKP6EbQZ4DeUq a8d3QeJGMN7terYLzN8wUXIl/ZmPry9YL8l7En22eL9eGAedXW02Mm/lLU1kSJTR 7v32XfHyZ7DSQa6AxEl6epCidM8nEvh+Dpbm3rNblCbvfW49N8s1En+e7KcV8pkG 4a1dGidYN2JsdMK9868I0w404voFEP20lcuRYK50OmGCl5QX55fqiyn4uQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNVHppQaMq3YRE1v4q0T4ML/BjYBMB8GA1UdIwQY MBaAFFjuR9MqWZNB9f8aiL8ULhU42kDqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV081SDB5cFprMEgxX3hxSXZ4UXVGVGphUU9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9hNDI2OTktMWQzZi00YTcwLTgzY2Ut YzU2NGI0MGVjYTA1LzEvMVVlbWxCb3lyZGhFVFdfaXJSUGd3djhHTmdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9hNDI2OTktMWQzZi00YTcwLTgzY2UtYzU2NGI0MGVjYTA1 LzEvV081SDB5cFprMEgxX3hxSXZ4UXVGVGphUU9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALQ8EAwQA LQ8HMA0GCSqGSIb3DQEBCwUAA4IBAQB2ddsoT03c/YYkyV2NZg/7owUBQ8aGWOFH 5Dnj8lvWTNzIOmWoB7XJt1+1+BzHsq63iZHpJW/PjXoph/PIGEAjsfcrQwmnySLZ zL4QaNpC0L3Hcv7cFv+3l5CLski9hmOXiDQMuzZzqcBvS2s2ro7WGgHvao/tcpOs qil8jIj/PR+BVome1J1FH8rnKmCFYEElJiMND0j6ksH2sJT8pNkQN71cZc+/IjGF Gl/bFeaQFAAdLBf+WElv8mTpW1DkXsPuX9Tf0NBBV3uvr58JkIY3D+68J1Za9aGk vkwmBv6BrHKN/7Yv32JGzVDv8W5PsAPZk7XAYLSvHL8N1qTSHsNB -----END CERTIFICATE-----Generated at Sat Dec 20 12:05:31 2025 by rpki-client