This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/zoKa5rQePkHEPMZVNfuzo9aiNhc.roa File: zoKa5rQePkHEPMZVNfuzo9aiNhc.roa (raw, json) Hash identifier: vKObmrx8e0xeNE7rTL2Kryo1mCerVlEr58rYUGyO4oM= Subject key identifier: CE:82:9A:E6:B4:1E:3E:41:C4:3C:C6:55:35:FB:B3:A3:D6:A2:36:17 Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Certificate serial: 019AE837E66EF8CA2B94FEAFFB4595693A95 Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/zoKa5rQePkHEPMZVNfuzo9aiNhc.roa Signing time: Thu 04 Dec 2025 07:16:08 +0000 ROA not before: Thu 04 Dec 2025 07:16:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16276 IP address blocks: 178.239.115.0/24 maxlen: 24 185.95.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.mft rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e8:37:e6:6e:f8:ca:2b:94:fe:af:fb:45:95:69:3a:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Validity Not Before: Dec 4 07:16:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ce829ae6b41e3e41c43cc65535fbb3a3d6a23617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3d:ce:d8:ae:07:7b:57:9a:3e:04:7c:7c:e7: 57:6a:43:54:0a:e6:82:9d:28:a8:48:2c:5f:4a:5b: ea:05:64:fc:8e:f9:e3:db:d7:84:b2:a3:0c:27:70: 00:30:df:5e:08:ae:1e:e0:7c:05:75:8a:b9:47:1d: 22:2a:f8:0e:ad:83:1d:0c:63:42:8d:be:7e:87:37: 65:3e:60:eb:d6:b6:e0:24:15:cd:3e:4a:f5:29:b8: c8:a6:04:64:9f:64:7a:9f:b6:9f:15:7d:76:40:16: fe:02:82:31:d4:49:68:4e:89:2b:69:0e:47:9b:56: 2b:9e:39:1a:6c:63:cb:91:4f:06:35:9a:1a:d7:21: 22:15:a8:c1:ae:5d:25:56:99:04:d9:2e:04:9c:c7: c6:64:2e:c8:41:d9:1c:59:9d:0a:b4:a2:aa:ea:7e: 52:2a:ba:27:a8:2c:7a:23:b7:44:73:d0:20:5a:3f: e2:96:15:d1:e7:aa:ef:93:44:86:65:9c:65:2b:31: 06:d7:1a:64:21:ca:89:31:26:47:e8:e6:cf:19:6d: 8a:75:b5:a7:c9:50:fb:cd:33:ab:a6:d3:4e:11:e7: 8e:ab:5e:12:72:ba:51:7c:d3:6d:d0:06:f6:3d:7f: 73:c7:c3:43:6b:9a:d1:3d:50:65:ce:05:41:5a:94: 9d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:82:9A:E6:B4:1E:3E:41:C4:3C:C6:55:35:FB:B3:A3:D6:A2:36:17 X509v3 Authority Key Identifier: keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/zoKa5rQePkHEPMZVNfuzo9aiNhc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.239.115.0/24 185.95.157.0/24 Signature Algorithm: sha256WithRSAEncryption 78:57:46:3a:63:69:2f:16:1f:46:79:ff:cc:30:21:b2:ea:38: 2c:76:2e:31:55:f2:f4:57:cc:b8:34:a2:6e:01:98:17:15:c1: cc:bb:1e:6a:ee:63:2e:4b:05:6c:5b:3c:bf:ee:d0:bc:25:ce: 2d:1e:32:9b:2b:38:0a:79:13:a2:37:77:eb:d7:7b:2c:ce:26: ed:fd:e6:22:5e:78:53:5a:4c:02:68:dc:0a:0e:f4:a9:6c:f9: da:fd:da:7a:dd:7b:d0:b9:90:ca:6b:91:3e:7d:c6:e9:3a:f2: c2:14:a5:1a:f0:78:48:87:78:77:b8:62:69:8b:f5:1f:98:91: 70:fd:a4:90:a6:97:6c:8c:df:74:a3:7b:07:80:1c:e4:d4:77: a8:b7:9e:88:b8:c1:15:55:7b:0b:e8:6d:ef:7f:38:72:d9:75: 63:f0:39:02:bc:4b:2b:04:73:0d:84:51:e0:57:25:14:86:d0: cb:d9:59:db:9d:ea:5f:ca:a2:1c:66:1f:af:2f:3b:f6:a8:4a: df:49:78:09:b6:c1:bf:e6:b4:a4:e8:a5:63:d0:1f:1d:e7:d7: c5:66:ac:6d:bc:e2:81:91:64:73:37:45:11:8e:50:4c:bb:87: 32:dd:9a:2a:09:10:ab:c5:06:91:5d:65:25:6a:ef:be:b5:d9: 0d:43:04:bd -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZroN+Zu+MorlP6v+0WVaTqVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZDJkYWZmMWM1YmI2MWEwYWM4YjNjYWVhZDRiOGExZmEy ODRkMGYwHhcNMjUxMjA0MDcxNjA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZTgyOWFlNmI0MWUzZTQxYzQzY2M2NTUzNWZiYjNhM2Q2YTIzNjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3T3O2K4He1eaPgR8fOdXakNUCuaC nSioSCxfSlvqBWT8jvnj29eEsqMMJ3AAMN9eCK4e4HwFdYq5Rx0iKvgOrYMdDGNC jb5+hzdlPmDr1rbgJBXNPkr1KbjIpgRkn2R6n7afFX12QBb+AoIx1EloTokraQ5H m1YrnjkabGPLkU8GNZoa1yEiFajBrl0lVpkE2S4EnMfGZC7IQdkcWZ0KtKKq6n5S KronqCx6I7dEc9AgWj/ilhXR56rvk0SGZZxlKzEG1xpkIcqJMSZH6ObPGW2KdbWn yVD7zTOrptNOEeeOq14ScrpRfNNt0Ab2PX9zx8NDa5rRPVBlzgVBWpSdAQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFM6Cmua0Hj5BxDzGVTX7s6PWojYXMB8GA1UdIwQY MBaAFCnS2v8cW7YaCsizyurUuKH6KE0PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3Zjgt NGY1N2Q5Y2Y1Y2FhLzEvem9LYTVyUWVQa0hFUE1aVk5mdXpvOWFpTmhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3ZjgtNGY1N2Q5Y2Y1Y2Fh LzEvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsu9zAwQA uV+dMA0GCSqGSIb3DQEBCwUAA4IBAQB4V0Y6Y2kvFh9Gef/MMCGy6jgsdi4xVfL0 V8y4NKJuAZgXFcHMux5q7mMuSwVsWzy/7tC8Jc4tHjKbKzgKeROiN3fr13sszibt /eYiXnhTWkwCaNwKDvSpbPna/dp63XvQuZDKa5E+fcbpOvLCFKUa8HhIh3h3uGJp i/UfmJFw/aSQppdsjN90o3sHgBzk1Heot56IuMEVVXsL6G3vfzhy2XVj8DkCvEsr BHMNhFHgVyUUhtDL2VnbnepfyqIcZh+vLzv2qErfSXgJtsG/5rSk6KVj0B8d59fF ZqxtvOKBkWRzN0URjlBMu4cy3ZoqCRCrxQaRXWUlau++tdkNQwS9 -----END CERTIFICATE-----Generated at Fri Dec 5 04:28:04 2025 by rpki-client