This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/23TwZB0hQgHoY34ho2dKSVEgUUs.roa File: 23TwZB0hQgHoY34ho2dKSVEgUUs.roa (raw, json) Hash identifier: x7/4RtPJfF9Yu6Um9fY/U90NIR9VuqDNQTjf3MOeAlo= Subject key identifier: DB:74:F0:64:1D:21:42:01:E8:63:7E:21:A3:67:4A:49:51:20:51:4B Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019ABD6924BD15304F72946EFBD4131B8FE0 Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/23TwZB0hQgHoY34ho2dKSVEgUUs.roa Signing time: Tue 25 Nov 2025 23:46:15 +0000 ROA not before: Tue 25 Nov 2025 23:46:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215607 IP address blocks: 5.175.186.0/24 maxlen: 24 77.90.33.0/24 maxlen: 24 89.106.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:bd:69:24:bd:15:30:4f:72:94:6e:fb:d4:13:1b:8f:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Nov 25 23:46:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=db74f0641d214201e8637e21a3674a495120514b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:10:21:6f:d9:28:13:40:e1:d5:f2:a8:b0:a6: 43:e7:b4:08:da:30:7b:fd:a0:00:d3:f5:b5:6e:dc: 6e:00:1b:31:0c:11:ee:5a:a5:ee:20:ab:bc:a7:fa: 45:d3:9a:a9:e9:60:24:f1:bc:6f:46:70:3e:2e:38: 09:2b:ff:a6:48:a4:f6:9a:fb:75:b5:42:15:f5:3c: 23:e4:5f:cd:e2:90:c9:3b:b3:3e:b3:2d:47:c1:7a: cd:20:4e:05:1c:ee:15:c3:1a:7b:c8:4d:0b:fb:8f: c3:2d:85:f3:b6:2b:5c:0d:d6:9e:0a:33:ff:30:e6: 64:b4:cb:fe:0e:f6:9c:75:37:5b:57:28:f3:a0:c9: 7e:86:c9:b0:6c:6c:1a:a4:95:4b:df:48:59:20:f7: ec:2c:f7:96:78:3c:52:49:db:4f:67:cf:14:a3:57: 1b:ea:b7:b0:61:f6:8e:00:14:d3:db:a0:a4:a0:c8: 01:c3:d2:ca:44:4e:14:31:f0:5d:05:2f:79:9a:dc: 92:0d:48:f5:6f:18:4d:61:ac:da:2c:94:d1:58:b3: 56:83:3a:7e:9b:a5:1a:0b:8d:99:c5:78:81:0a:26: 10:48:44:9c:7e:9f:62:b5:be:db:cf:a8:cb:bf:82: e2:64:d6:a6:19:6b:f6:57:ce:cd:ff:e1:ce:5a:b0: 38:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:74:F0:64:1D:21:42:01:E8:63:7E:21:A3:67:4A:49:51:20:51:4B X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/23TwZB0hQgHoY34ho2dKSVEgUUs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.175.186.0/24 77.90.33.0/24 89.106.89.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:b0:15:0f:7f:14:a1:41:1e:c0:59:9e:58:d5:48:05:c4:1f: c0:44:6a:f8:da:1d:6f:6e:ba:b9:69:01:7c:f0:87:03:c8:92: 01:6a:ce:af:ab:36:29:b1:d4:99:30:cd:e3:be:0f:6a:e9:22: 71:3f:d0:34:80:c2:9e:a0:1a:33:c7:45:6c:9a:ab:fd:da:de: 1d:51:e7:a0:63:68:01:27:5c:1f:a6:45:b9:29:89:8c:11:9a: 1d:e4:81:a1:d5:1a:eb:55:13:9e:8e:44:e7:aa:2d:94:7e:27: 5d:9d:a7:9b:94:fd:f8:d8:e5:42:82:c6:f3:5d:e4:56:ba:d9: f2:1b:c5:64:6a:27:ec:9e:97:b4:67:8f:36:83:3a:95:1b:0c: 7c:0b:72:7e:ce:f5:e4:e4:0b:af:da:e2:e7:31:9e:43:99:c8: 96:41:9c:29:8e:7e:59:1a:5b:13:27:30:8c:3d:b5:13:65:4f: dd:bd:ef:1b:cf:33:45:3e:8f:13:c3:8e:a1:3f:f4:51:72:b4: 21:e7:26:4a:39:84:4a:55:ff:4f:8b:d5:5b:22:29:fa:74:e2: a8:04:68:cf:1d:c7:52:2f:14:7e:ea:e7:b8:c6:02:ae:d5:78: 54:fb:60:fe:e9:c0:c7:ec:c7:cf:3f:0b:6e:49:99:36:6c:26: f8:3b:25:25 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZq9aSS9FTBPcpRu+9QTG4/gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjUxMTI1MjM0NjE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjc0ZjA2NDFkMjE0MjAxZTg2MzdlMjFhMzY3NGE0OTUxMjA1MTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxAhb9koE0Dh1fKosKZD57QI2jB7 /aAA0/W1btxuABsxDBHuWqXuIKu8p/pF05qp6WAk8bxvRnA+LjgJK/+mSKT2mvt1 tUIV9Twj5F/N4pDJO7M+sy1HwXrNIE4FHO4Vwxp7yE0L+4/DLYXztitcDdaeCjP/ MOZktMv+DvacdTdbVyjzoMl+hsmwbGwapJVL30hZIPfsLPeWeDxSSdtPZ88Uo1cb 6rewYfaOABTT26CkoMgBw9LKRE4UMfBdBS95mtySDUj1bxhNYazaLJTRWLNWgzp+ m6UaC42ZxXiBCiYQSEScfp9itb7bz6jLv4LiZNamGWv2V87N/+HOWrA45QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFNt08GQdIUIB6GN+IaNnSklRIFFLMB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvMjNUd1pCMGhRZ0hvWTM0aG8yZEtTVkVnVVVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABa+6AwQA TVohAwQAWWpZMA0GCSqGSIb3DQEBCwUAA4IBAQB+sBUPfxShQR7AWZ5Y1UgFxB/A RGr42h1vbrq5aQF88IcDyJIBas6vqzYpsdSZMM3jvg9q6SJxP9A0gMKeoBozx0Vs mqv92t4dUeegY2gBJ1wfpkW5KYmMEZod5IGh1RrrVROejkTnqi2UfiddnaeblP34 2OVCgsbzXeRWutnyG8Vkaifsnpe0Z482gzqVGwx8C3J+zvXk5Auv2uLnMZ5DmciW QZwpjn5ZGlsTJzCMPbUTZU/dve8bzzNFPo8Tw46hP/RRcrQh5yZKOYRKVf9Pi9Vb Iin6dOKoBGjPHcdSLxR+6ue4xgKu1XhU+2D+6cDH7MfPPwtuSZk2bCb4OyUl -----END CERTIFICATE-----Generated at Fri Dec 5 17:03:50 2025 by rpki-client