This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/lKqiUo4mci2UjYE0_-sVMZ0GoOA.roa File: lKqiUo4mci2UjYE0_-sVMZ0GoOA.roa (raw, json) Hash identifier: 7BTP9SuTT65hzvLk9S354H39fbEGmXHaqHwL7rBGsZQ= Subject key identifier: 94:AA:A2:52:8E:26:72:2D:94:8D:81:34:FF:EB:15:31:9D:06:A0:E0 Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019AC8BD2011879516372C7884EE7A4DB956 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/lKqiUo4mci2UjYE0_-sVMZ0GoOA.roa Signing time: Fri 28 Nov 2025 04:33:48 +0000 ROA not before: Fri 28 Nov 2025 04:33:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 87.120.68.0/23 maxlen: 24 87.121.60.0/23 maxlen: 23 87.121.61.0/24 maxlen: 24 93.123.74.0/23 maxlen: 24 94.156.253.0/24 maxlen: 24 185.252.160.0/23 maxlen: 24 193.148.253.0/24 maxlen: 24 212.87.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 29 Nov 2025 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c8:bd:20:11:87:95:16:37:2c:78:84:ee:7a:4d:b9:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Nov 28 04:33:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=94aaa2528e26722d948d8134ffeb15319d06a0e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b1:c8:57:74:db:11:0e:10:d1:5c:00:c0:65: 6b:de:32:78:78:ad:09:9f:71:ed:b6:5c:5b:e2:26: 8f:b3:48:55:d7:5f:cb:e1:eb:53:ee:e5:2d:9a:71: 4b:48:f5:76:4f:0a:4e:9e:d2:3c:a5:51:7e:30:4b: 0d:dc:17:38:cd:98:ce:9b:cc:f6:21:6f:1c:c5:bf: 16:17:f5:35:63:cc:48:86:2c:79:9a:46:ff:3d:80: 3e:54:d8:ac:3b:66:7c:e7:94:d9:85:d9:2e:b1:53: 06:c7:b1:10:89:ab:66:d3:a5:09:b8:e9:b5:26:43: 35:4d:ed:ed:a5:42:d3:19:6a:ee:a8:75:2a:b6:15: c5:cb:45:fa:c3:68:d8:86:8b:98:7c:a5:8c:0f:03: 81:77:20:80:0c:5f:25:9c:ef:e6:97:b4:79:44:c0: 24:69:75:36:7b:ec:5a:40:25:43:16:ce:bc:c1:06: a8:cc:2b:ed:fb:bb:b6:f9:5e:fa:b5:b0:a1:e0:89: a0:d1:99:f2:f6:26:29:d8:fe:ee:57:a6:1e:69:c3: 06:74:f4:b8:7f:44:c9:78:a8:93:f2:16:04:5a:9b: 64:b3:83:60:d3:f0:06:ef:45:1b:ca:4b:4c:1f:24: 3a:fa:7f:22:8b:d2:59:8e:16:d8:20:ba:bb:68:87: 49:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:AA:A2:52:8E:26:72:2D:94:8D:81:34:FF:EB:15:31:9D:06:A0:E0 X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/lKqiUo4mci2UjYE0_-sVMZ0GoOA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.120.68.0/23 87.121.60.0/23 93.123.74.0/23 94.156.253.0/24 185.252.160.0/23 193.148.253.0/24 212.87.204.0/24 Signature Algorithm: sha256WithRSAEncryption 08:d1:5c:8f:c2:b1:4c:38:5f:79:56:6d:df:58:75:49:f8:03: 50:ff:34:03:78:35:12:52:c1:10:d2:6a:0f:db:b1:af:32:df: 5e:53:51:05:11:8e:6b:5f:1f:9e:cd:e4:2d:18:91:70:ef:22: 4f:b1:5d:7f:26:7e:9e:78:70:ae:f9:7a:93:3b:17:81:dc:31: 4a:e6:46:82:d5:71:47:50:f6:93:97:d5:35:22:11:8d:5f:16: a7:d3:e8:76:06:62:5e:b8:f4:af:76:79:64:00:fa:78:31:51: f7:69:44:8c:cb:ff:20:54:fd:2f:9f:7c:89:4c:ec:6a:4a:63: 7d:8b:07:30:4e:dd:f0:23:9d:2d:59:fe:ab:65:ec:93:e1:f6: cd:8e:fb:9d:db:58:89:ca:a2:b7:d7:81:47:29:e9:8a:a0:c2: 9a:62:99:e3:55:d4:88:ae:23:66:f1:b9:28:d5:5f:d9:d5:61: ba:d8:fc:c1:35:4b:4e:df:11:d0:4f:9f:f3:00:aa:ae:7e:63: 8a:41:54:04:fc:a2:a7:aa:cf:3b:6e:34:52:55:40:5a:aa:28: 54:f4:5b:60:7b:72:38:bf:d2:16:98:17:3e:7c:23:51:73:4a: 22:ba:c9:20:eb:e2:ea:bd:8f:af:e3:43:88:82:3e:fc:be:2b: 36:79:d6:f7 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZrIvSARh5UWNyx4hO56TblWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjUxMTI4MDQzMzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NGFhYTI1MjhlMjY3MjJkOTQ4ZDgxMzRmZmViMTUzMTlkMDZhMGUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4rHIV3TbEQ4Q0VwAwGVr3jJ4eK0J n3Httlxb4iaPs0hV11/L4etT7uUtmnFLSPV2TwpOntI8pVF+MEsN3Bc4zZjOm8z2 IW8cxb8WF/U1Y8xIhix5mkb/PYA+VNisO2Z855TZhdkusVMGx7EQiatm06UJuOm1 JkM1Te3tpULTGWruqHUqthXFy0X6w2jYhouYfKWMDwOBdyCADF8lnO/ml7R5RMAk aXU2e+xaQCVDFs68wQaozCvt+7u2+V76tbCh4Img0Zny9iYp2P7uV6YeacMGdPS4 f0TJeKiT8hYEWptks4Ng0/AG70UbyktMHyQ6+n8ii9JZjhbYILq7aIdJeQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFJSqolKOJnItlI2BNP/rFTGdBqDgMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvbEtxaVVvNG1jaTJVallFMF8tc1ZNWjBHb09BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBV3hEAwQB V3k8AwQBXXtKAwQAXpz9AwQBufygAwQAwZT9AwQA1FfMMA0GCSqGSIb3DQEBCwUA A4IBAQAI0VyPwrFMOF95Vm3fWHVJ+ANQ/zQDeDUSUsEQ0moP27GvMt9eU1EFEY5r Xx+ezeQtGJFw7yJPsV1/Jn6eeHCu+XqTOxeB3DFK5kaC1XFHUPaTl9U1IhGNXxan 0+h2BmJeuPSvdnlkAPp4MVH3aUSMy/8gVP0vn3yJTOxqSmN9iwcwTt3wI50tWf6r ZeyT4fbNjvud21iJyqK314FHKemKoMKaYpnjVdSIriNm8bko1V/Z1WG62PzBNUtO 3xHQT5/zAKqufmOKQVQE/KKnqs87bjRSVUBaqihU9Ftge3I4v9IWmBc+fCNRc0oi uskg6+LqvY+v40OIgj78vis2edb3 -----END CERTIFICATE-----Generated at Fri Nov 28 08:36:32 2025 by rpki-client