This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/y1icSL4eOecpB1PSQGhZ_TcRn0c.roa File: y1icSL4eOecpB1PSQGhZ_TcRn0c.roa (raw, json) Hash identifier: MGvZBcFzA0Qyn5vQTI1TrTj6Nd9QWD4NnOO0EKwn5Zo= Subject key identifier: CB:58:9C:48:BE:1E:39:E7:29:07:53:D2:40:68:59:FD:37:11:9F:47 Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d Certificate serial: 019A261D9100FB1BD83000B532C2CB1ABE32 Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/y1icSL4eOecpB1PSQGhZ_TcRn0c.roa Signing time: Mon 27 Oct 2025 14:41:03 +0000 ROA not before: Mon 27 Oct 2025 14:41:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 45.148.51.0/24 maxlen: 24 45.152.37.0/24 maxlen: 24 45.154.237.0/24 maxlen: 24 185.208.211.0/24 maxlen: 24 185.232.85.0/24 maxlen: 24 193.57.9.0/24 maxlen: 24 195.60.177.0/24 maxlen: 24 195.88.210.0/24 maxlen: 24 213.185.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.mft rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:26:1d:91:00:fb:1b:d8:30:00:b5:32:c2:cb:1a:be:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d Validity Not Before: Oct 27 14:41:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=cb589c48be1e39e7290753d2406859fd37119f47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2c:c9:4c:2f:65:16:57:9e:43:c0:37:5c:28: ef:57:06:b4:33:7f:28:53:31:ae:3f:01:9b:23:98: c9:da:39:90:68:cc:b6:23:fe:94:1d:c2:af:d6:85: 8d:7a:12:be:2a:7c:46:dd:7f:3d:23:ba:02:1c:7a: 06:65:81:32:c7:54:16:0d:a7:86:26:38:16:12:c2: 62:c0:0a:fa:c2:d5:b3:50:59:fd:b7:4e:0d:c0:f4: eb:0a:5a:cc:77:dd:32:b7:54:70:89:60:5b:2c:d0: c7:08:86:b1:82:80:ae:95:47:fb:f5:2e:a3:50:b0: 48:1b:54:9d:65:02:31:99:f0:d3:1a:73:36:b0:17: 30:01:a6:16:1e:36:42:c7:1b:4e:df:3b:26:3c:21: 17:4f:f5:57:39:8c:22:ed:b8:07:8d:10:52:be:23: e0:b3:b8:30:7c:c3:6b:f7:06:21:cc:61:1d:85:cf: 35:ec:5b:a1:d4:90:2a:04:35:03:3c:41:79:38:8b: 41:1f:20:67:d5:be:19:24:d0:bf:79:53:09:43:2f: 9e:88:1e:c7:b2:37:b7:d5:3d:72:89:d0:0f:3b:13: 07:0c:a6:5d:b3:cc:da:90:cf:1e:87:58:6c:08:0b: 7e:3f:a3:85:ce:ea:0c:a5:00:56:c2:bb:e0:d8:7a: 18:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:58:9C:48:BE:1E:39:E7:29:07:53:D2:40:68:59:FD:37:11:9F:47 X509v3 Authority Key Identifier: keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/y1icSL4eOecpB1PSQGhZ_TcRn0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.148.51.0/24 45.152.37.0/24 45.154.237.0/24 185.208.211.0/24 185.232.85.0/24 193.57.9.0/24 195.60.177.0/24 195.88.210.0/24 213.185.92.0/22 Signature Algorithm: sha256WithRSAEncryption af:ea:03:cb:f2:a6:5f:82:7e:a0:ec:9c:d1:a4:8a:00:ef:c1: ed:13:d6:df:2d:99:22:b9:90:ac:62:8b:cf:1c:f8:31:73:b7: e2:5e:76:42:d0:f4:c3:81:75:9c:6a:1b:aa:bf:b5:0a:7a:74: 65:61:8d:98:93:3d:17:07:d9:ff:03:54:14:c8:93:ba:fa:3a: 87:37:fa:b4:75:e0:a2:5c:d8:10:75:8b:45:59:e0:86:40:c5: 47:2a:36:2e:94:c2:75:bd:6c:27:95:22:bd:fe:3c:97:79:36: 34:4b:d5:a2:83:a2:bd:02:96:48:11:2e:a1:25:96:ee:b1:10: 2f:c3:69:ac:44:69:ff:f7:49:bf:10:e0:52:11:8e:6c:45:06: f4:c7:54:9f:c1:9b:34:42:95:bd:d1:da:96:69:f5:31:92:67: d4:5c:1d:35:04:e6:dc:da:8c:da:6d:53:2e:54:8a:8d:8b:6d: e4:3b:c0:9b:fc:b2:cf:eb:f5:02:fb:49:7d:08:d7:a2:34:0a: c8:e8:0d:8b:51:81:db:bc:e1:da:89:df:15:bf:72:88:61:2d: 20:68:71:72:44:c7:3b:7a:39:68:c4:45:da:c4:f9:ed:bd:f4: 8f:de:3a:d0:66:66:5b:1e:9f:33:8c:4e:f2:39:c1:2a:53:83: e1:0d:7a:5b -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZomHZEA+xvYMAC1MsLLGr4yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw MTRiOGQwHhcNMjUxMDI3MTQ0MTAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjU4OWM0OGJlMWUzOWU3MjkwNzUzZDI0MDY4NTlmZDM3MTE5ZjQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqizJTC9lFleeQ8A3XCjvVwa0M38o UzGuPwGbI5jJ2jmQaMy2I/6UHcKv1oWNehK+KnxG3X89I7oCHHoGZYEyx1QWDaeG JjgWEsJiwAr6wtWzUFn9t04NwPTrClrMd90yt1RwiWBbLNDHCIaxgoCulUf79S6j ULBIG1SdZQIxmfDTGnM2sBcwAaYWHjZCxxtO3zsmPCEXT/VXOYwi7bgHjRBSviPg s7gwfMNr9wYhzGEdhc817Fuh1JAqBDUDPEF5OItBHyBn1b4ZJNC/eVMJQy+eiB7H sje31T1yidAPOxMHDKZds8zakM8eh1hsCAt+P6OFzuoMpQBWwrvg2HoYZwIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFMtYnEi+HjnnKQdT0kBoWf03EZ9HMB8GA1UdIwQY MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt NmJjNzU1NzhiNGMzLzEveTFpY1NMNGVPZWNwQjFQU1FHaFpfVGNSbjBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQALZQzAwQA LZglAwQALZrtAwQAudDTAwQAuehVAwQAwTkJAwQAwzyxAwQAw1jSAwQC1blcMA0G CSqGSIb3DQEBCwUAA4IBAQCv6gPL8qZfgn6g7JzRpIoA78HtE9bfLZkiuZCsYovP HPgxc7fiXnZC0PTDgXWcahuqv7UKenRlYY2Ykz0XB9n/A1QUyJO6+jqHN/q0deCi XNgQdYtFWeCGQMVHKjYulMJ1vWwnlSK9/jyXeTY0S9Wig6K9ApZIES6hJZbusRAv w2msRGn/90m/EOBSEY5sRQb0x1SfwZs0QpW90dqWafUxkmfUXB01BObc2ozabVMu VIqNi23kO8Cb/LLP6/UC+0l9CNeiNArI6A2LUYHbvOHaid8Vv3KIYS0gaHFyRMc7 ejloxEXaxPntvfSP3jrQZmZbHp8zjE7yOcEqU4PhDXpb -----END CERTIFICATE-----Generated at Sat Nov 22 21:34:36 2025 by rpki-client