This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/tHKH5ds9rRnc2frrrle08aF3SYE.roa File: tHKH5ds9rRnc2frrrle08aF3SYE.roa (raw, json) Hash identifier: XkRYZgocvc/OgyREPQ4YHu8teoi5obOlIaDRreyvN6Y= Subject key identifier: B4:72:87:E5:DB:3D:AD:19:DC:D9:FA:EB:AE:57:B4:F1:A1:77:49:81 Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019A76756AB25312F150A3D62CB4ACC0065E Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/tHKH5ds9rRnc2frrrle08aF3SYE.roa Signing time: Wed 12 Nov 2025 05:06:37 +0000 ROA not before: Wed 12 Nov 2025 05:06:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 53107 IP address blocks: 185.47.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:76:75:6a:b2:53:12:f1:50:a3:d6:2c:b4:ac:c0:06:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Nov 12 05:06:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=b47287e5db3dad19dcd9faebae57b4f1a1774981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b9:a0:ee:70:3e:33:ed:c6:c5:3e:96:dd:5d: d1:03:4d:b7:b1:e3:52:ce:1e:10:62:40:6a:97:ea: ce:ae:08:70:f8:7f:ed:0f:75:a5:dd:30:8c:30:bb: 34:73:3b:9d:aa:7b:34:2f:a3:e5:2c:7d:05:09:a5: a9:17:e7:95:5a:2d:53:78:e6:63:09:e6:49:31:30: 65:d8:0d:9f:07:09:97:28:23:d0:98:9b:e0:48:6c: 8d:cb:2b:d7:ad:f1:15:31:6c:63:3d:cf:57:36:9b: a0:a4:64:74:0c:b9:bf:82:00:b0:20:5e:eb:59:95: b4:07:ea:eb:77:de:fb:9a:70:b4:17:8c:ec:57:6a: 34:12:9d:ca:66:0f:6b:c7:38:90:9a:a8:65:c0:94: 8c:fd:e9:39:df:19:a2:26:be:e0:3b:89:6a:e0:f8: 55:c0:44:fc:56:d6:f7:29:00:31:fb:b6:95:14:55: af:34:a6:23:71:df:e4:9e:f2:6d:52:8a:70:67:4c: 25:da:0f:3b:f9:b5:a1:ab:0c:7d:3c:56:73:a9:f8: f6:aa:82:c2:04:a6:16:cc:45:2c:f7:3d:d4:03:07: 43:3b:04:6b:d6:12:d7:fb:62:bc:12:2a:bf:16:bd: 28:66:0f:60:29:2b:20:18:d2:55:37:04:13:f5:50: d6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:72:87:E5:DB:3D:AD:19:DC:D9:FA:EB:AE:57:B4:F1:A1:77:49:81 X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/tHKH5ds9rRnc2frrrle08aF3SYE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.47.143.0/24 Signature Algorithm: sha256WithRSAEncryption 25:77:60:7f:c9:aa:b4:77:3c:58:9c:b9:11:26:4c:53:18:ae: 6e:c1:27:b9:51:e0:2d:ca:6a:4b:94:3c:e5:e4:8d:c1:e8:27: 5b:49:02:c6:8c:47:26:c4:c1:20:8e:f7:23:23:16:da:10:13: a3:34:3e:d9:8f:e7:81:8d:99:bd:66:9e:79:2b:8e:5a:3f:3f: 87:49:60:4a:d5:3b:9f:e0:7c:a1:41:3a:79:89:97:ad:4a:5b: 14:76:30:81:17:99:6b:3c:f6:17:77:a6:e1:b8:48:56:d5:70: f5:9f:71:5f:23:d2:77:bd:30:ff:7d:fc:c0:47:e2:4a:02:2d: 5a:fc:d8:d2:72:5e:34:ab:e9:86:ba:69:16:56:b2:ae:da:43: 3e:55:73:2e:e6:ba:ce:30:99:0f:14:95:89:c5:79:10:78:dc: 2a:69:fd:7a:66:7d:a9:8f:f4:f3:a3:74:2f:ae:44:8b:ef:87: 05:24:44:e2:7e:f0:2d:20:f1:ce:c0:dd:8c:c8:ad:b8:1b:36: 07:c8:32:68:43:30:ec:6f:a5:36:10:4e:eb:b0:af:ab:c8:77: 75:19:1a:af:d7:f7:68:3d:8e:2b:6d:83:8b:03:cd:69:e8:67: 5d:c7:3f:32:6c:01:18:c1:1b:9f:73:3a:f8:7d:1f:79:83:fd: b7:b0:69:6a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZp2dWqyUxLxUKPWLLSswAZeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjUxMTEyMDUwNjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDcyODdlNWRiM2RhZDE5ZGNkOWZhZWJhZTU3YjRmMWExNzc0OTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLmg7nA+M+3GxT6W3V3RA023seNS zh4QYkBql+rOrghw+H/tD3Wl3TCMMLs0czudqns0L6PlLH0FCaWpF+eVWi1TeOZj CeZJMTBl2A2fBwmXKCPQmJvgSGyNyyvXrfEVMWxjPc9XNpugpGR0DLm/ggCwIF7r WZW0B+rrd977mnC0F4zsV2o0Ep3KZg9rxziQmqhlwJSM/ek53xmiJr7gO4lq4PhV wET8Vtb3KQAx+7aVFFWvNKYjcd/knvJtUopwZ0wl2g87+bWhqwx9PFZzqfj2qoLC BKYWzEUs9z3UAwdDOwRr1hLX+2K8Eiq/Fr0oZg9gKSsgGNJVNwQT9VDWoQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLRyh+XbPa0Z3Nn6665XtPGhd0mBMB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvdEhLSDVkczlyUm5jMmZycnJsZTA4YUYzU1lFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuS+PMA0G CSqGSIb3DQEBCwUAA4IBAQAld2B/yaq0dzxYnLkRJkxTGK5uwSe5UeAtympLlDzl 5I3B6CdbSQLGjEcmxMEgjvcjIxbaEBOjND7Zj+eBjZm9Zp55K45aPz+HSWBK1Tuf 4HyhQTp5iZetSlsUdjCBF5lrPPYXd6bhuEhW1XD1n3FfI9J3vTD/ffzAR+JKAi1a /NjScl40q+mGumkWVrKu2kM+VXMu5rrOMJkPFJWJxXkQeNwqaf16Zn2pj/Tzo3Qv rkSL74cFJETifvAtIPHOwN2MyK24GzYHyDJoQzDsb6U2EE7rsK+ryHd1GRqv1/do PY4rbYOLA81p6Gddxz8ybAEYwRufczr4fR95g/23sGlq -----END CERTIFICATE-----Generated at Fri Dec 5 17:04:59 2025 by rpki-client