This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/v4s8zoxX9w1T97f8gcffvIIzfeU.roa File: v4s8zoxX9w1T97f8gcffvIIzfeU.roa (raw, json) Hash identifier: vT7aWpMklpx78/ipShQmGhN54UezlYtXXeZvMlbztJ0= Subject key identifier: BF:8B:3C:CE:8C:57:F7:0D:53:F7:B7:FC:81:C7:DF:BC:82:33:7D:E5 Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c Certificate serial: 019ACC3BFE7C0D339507C3B040583B88B04E Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/v4s8zoxX9w1T97f8gcffvIIzfeU.roa Signing time: Fri 28 Nov 2025 20:51:15 +0000 ROA not before: Fri 28 Nov 2025 20:51:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 210644 IP address blocks: 147.45.40.0/22 maxlen: 32 147.45.68.0/22 maxlen: 32 147.45.72.0/21 maxlen: 24 185.103.100.0/22 maxlen: 24 193.233.114.0/23 maxlen: 24 193.233.133.0/24 maxlen: 24 193.233.232.0/24 maxlen: 24 193.233.233.0/24 maxlen: 24 193.233.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 17:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:cc:3b:fe:7c:0d:33:95:07:c3:b0:40:58:3b:88:b0:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c Validity Not Before: Nov 28 20:51:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=bf8b3cce8c57f70d53f7b7fc81c7dfbc82337de5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4f:4b:ab:92:37:fe:ce:46:a5:f6:2d:a3:d4: 13:8c:da:62:cf:15:a2:4a:2b:83:ac:81:c5:19:60: 87:6b:2a:02:27:64:92:72:87:31:57:19:d7:d6:5c: ae:11:53:9b:fd:d5:b4:bf:f9:d6:08:32:2d:c3:d2: 0c:24:f8:4c:cb:98:ec:cb:46:f4:f6:fb:b9:79:a3: e9:7e:85:e1:0d:f3:62:49:87:30:4d:fa:68:2f:5a: f0:61:9c:0f:54:e7:96:ea:6b:e5:f1:6c:a7:42:64: 04:2c:72:a7:7f:9a:cb:ac:85:b3:3c:a6:1b:a1:cc: ef:ff:b4:d1:97:7f:bd:e2:63:de:b5:62:eb:69:c3: 9f:45:5d:d6:60:39:7a:52:01:0e:83:f5:42:2c:69: 91:80:d8:70:cf:9c:86:f5:20:98:06:3c:5d:15:1e: bc:ae:e7:ac:ce:40:0c:7b:59:0c:d1:03:9b:75:13: f1:44:7a:ae:1d:b1:8d:48:f7:b2:e4:6b:21:87:60: 7d:70:41:9d:64:ec:2a:4b:38:60:19:5c:fc:ea:d3: 9f:5a:2d:df:04:6d:36:d3:df:e6:8c:e2:bf:52:a6: 39:84:5a:31:b9:6c:96:f8:3d:c2:50:8c:81:b1:a7: 62:27:6b:d1:83:af:f2:2c:b8:c7:b7:31:d4:5b:72: 46:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8B:3C:CE:8C:57:F7:0D:53:F7:B7:FC:81:C7:DF:BC:82:33:7D:E5 X509v3 Authority Key Identifier: keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/v4s8zoxX9w1T97f8gcffvIIzfeU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.45.40.0/22 147.45.68.0-147.45.79.255 185.103.100.0/22 193.233.114.0/23 193.233.133.0/24 193.233.232.0/23 193.233.251.0/24 Signature Algorithm: sha256WithRSAEncryption 87:ab:12:e8:28:e4:67:14:3a:0e:91:54:c6:6d:f5:9d:16:98: aa:58:66:6f:87:86:85:21:72:69:a6:e2:19:e2:f9:da:e0:43: cd:b8:02:a9:01:57:8b:cc:f1:60:b5:ac:38:63:3e:f1:d9:68: 9e:ee:5e:d6:fa:39:91:55:ca:9a:a4:76:0d:9e:60:dd:65:50: db:04:35:78:01:60:d2:ae:71:b9:bf:7d:d9:32:45:99:81:51: df:e2:8a:33:97:0f:aa:f5:a8:24:0e:5a:db:bc:cb:61:bb:de: e6:06:4b:3e:41:29:a6:22:27:04:b7:b2:3f:c5:68:5a:71:83: f7:0c:e4:46:72:55:19:53:33:2f:f3:32:62:10:0e:63:9b:26: 0c:fb:86:aa:30:38:1f:3f:6b:e4:a3:5d:0f:dd:8c:57:d2:e2: e7:1f:c2:61:19:d0:5f:20:da:f8:5b:c4:0a:d8:67:fc:c9:d1: 90:b6:48:22:b2:44:de:da:62:62:4f:8b:7d:0a:7f:30:29:dd: 94:75:68:e4:9a:13:5f:85:02:70:c8:5c:1d:4f:90:b0:13:7d: 58:bd:06:b8:c9:37:e1:4d:f4:3f:84:68:02:e2:e5:bb:f9:ba: 84:f8:bd:c4:8d:42:6c:ca:e2:a6:77:e7:53:44:ca:91:40:7e: f2:03:bd:12 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISAZrMO/58DTOVB8OwQFg7iLBOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4 Mjg3M2MwHhcNMjUxMTI4MjA1MTE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjhiM2NjZThjNTdmNzBkNTNmN2I3ZmM4MWM3ZGZiYzgyMzM3ZGU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApk9Lq5I3/s5GpfYto9QTjNpizxWi SiuDrIHFGWCHayoCJ2SScocxVxnX1lyuEVOb/dW0v/nWCDItw9IMJPhMy5jsy0b0 9vu5eaPpfoXhDfNiSYcwTfpoL1rwYZwPVOeW6mvl8WynQmQELHKnf5rLrIWzPKYb oczv/7TRl3+94mPetWLracOfRV3WYDl6UgEOg/VCLGmRgNhwz5yG9SCYBjxdFR68 rueszkAMe1kM0QObdRPxRHquHbGNSPey5Gshh2B9cEGdZOwqSzhgGVz86tOfWi3f BG0209/mjOK/UqY5hFoxuWyW+D3CUIyBsadiJ2vRg6/yLLjHtzHUW3JGmwIDAQAB o4ICNTCCAjEwHQYDVR0OBBYEFL+LPM6MV/cNU/e3/IHH37yCM33lMB8GA1UdIwQY MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt NGRlYzRkYWZlZTQ5LzEvdjRzOHpveFg5dzFUOTdmOGdjZmZ2SUl6ZmVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5 LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQCky0oMAwD BAKTLUQDBASTLUADBAK5Z2QDBAHB6XIDBADB6YUDBAHB6egDBADB6fswDQYJKoZI hvcNAQELBQADggEBAIerEugo5GcUOg6RVMZt9Z0WmKpYZm+HhoUhcmmm4hni+drg Q824AqkBV4vM8WC1rDhjPvHZaJ7uXtb6OZFVypqkdg2eYN1lUNsENXgBYNKucbm/ fdkyRZmBUd/iijOXD6r1qCQOWtu8y2G73uYGSz5BKaYiJwS3sj/FaFpxg/cM5EZy VRlTMy/zMmIQDmObJgz7hqowOB8/a+SjXQ/djFfS4ucfwmEZ0F8g2vhbxArYZ/zJ 0ZC2SCKyRN7aYmJPi30KfzAp3ZR1aOSaE1+FAnDIXB1PkLATfVi9BrjJN+FN9D+E aALi5bv5uoT4vcSNQmzK4qZ351NEypFAfvIDvRI= -----END CERTIFICATE-----Generated at Sat Dec 6 01:49:54 2025 by rpki-client