This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/D63vMWGTBpK2Lp8FekEBLhWE_ss.roa File: D63vMWGTBpK2Lp8FekEBLhWE_ss.roa (raw, json) Hash identifier: +BHW6+riOJPbCJp/t2pChGdyGEz4ngzAxaBZR4o4T4g= Subject key identifier: 0F:AD:EF:31:61:93:06:92:B6:2E:9F:05:7A:41:01:2E:15:84:FE:CB Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019A1C6AA8ED4BB01E7121F01E92417BDD4D Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/D63vMWGTBpK2Lp8FekEBLhWE_ss.roa Signing time: Sat 25 Oct 2025 17:29:03 +0000 ROA not before: Sat 25 Oct 2025 17:29:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9009 IP address blocks: 163.5.74.0/24 maxlen: 24 163.5.83.0/24 maxlen: 24 163.5.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 03:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:1c:6a:a8:ed:4b:b0:1e:71:21:f0:1e:92:41:7b:dd:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Oct 25 17:29:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=0fadef3161930692b62e9f057a41012e1584fecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:75:5a:3e:51:eb:51:cb:3e:b9:94:1f:c7:83: 55:3f:a7:a8:1b:c3:f9:3f:64:6b:d8:41:3f:44:7e: 52:d1:3b:3a:8b:76:9f:a8:50:5d:46:c9:db:6d:43: 44:7c:3c:86:e2:c2:14:46:57:9c:6e:c3:c1:7a:98: 1a:c9:92:a8:e5:08:dc:a6:6f:65:a1:e3:38:a9:1c: 49:43:fc:50:51:a9:0f:60:0d:b9:9f:92:ad:f5:7b: f1:fd:99:bb:a8:c9:ba:8d:78:d1:bf:aa:00:b8:79: ef:03:a7:a2:27:76:88:75:a3:6d:ae:07:90:29:9d: dc:09:d2:c2:e1:e6:ad:91:a7:a4:39:b8:8f:b8:44: e4:0f:56:28:49:13:29:b5:9f:b1:4f:61:6d:df:9d: f9:3f:43:20:29:40:93:9b:8b:e3:13:0e:cd:62:47: fb:82:0a:28:7a:82:03:80:67:f8:f6:c3:b2:6f:ed: b3:59:0d:31:bd:92:9a:e1:d9:c5:e6:c6:6b:84:ed: eb:20:92:4b:a1:52:0d:b3:b4:5c:64:1f:41:f0:d5: 5b:ef:bc:0d:08:f3:0e:42:37:97:85:04:81:83:8c: f5:9e:4c:6b:58:23:06:f9:4f:5b:80:f1:e1:ca:8b: 82:2f:5a:ba:8e:1f:87:45:11:cb:c4:f1:2c:90:77: b1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:AD:EF:31:61:93:06:92:B6:2E:9F:05:7A:41:01:2E:15:84:FE:CB X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/D63vMWGTBpK2Lp8FekEBLhWE_ss.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.74.0/24 163.5.83.0/24 163.5.151.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:8f:26:a5:80:70:ee:ea:9f:5e:65:08:4b:2b:e4:7f:52:6f: b5:fe:dc:dd:f2:5b:76:71:8b:07:f9:61:36:7b:25:81:a8:fb: a2:57:46:e2:22:bc:d9:30:71:9d:06:e6:21:7d:b2:2b:44:de: f9:fd:b3:01:99:fb:18:a5:6f:e5:6a:55:ea:42:87:81:2b:b1: 23:f5:60:aa:fc:65:f5:91:50:f9:34:bd:1f:fa:21:40:8c:28: 05:b4:7f:18:20:b8:88:24:d2:28:63:e1:d0:be:59:4a:e3:01: 4f:03:c4:66:ca:83:49:60:1f:bf:07:97:46:6e:a9:80:b4:fe: 9e:0a:29:7a:6e:69:8c:60:b1:02:ca:da:81:d9:0c:17:58:06: 61:93:55:46:e1:12:02:a2:4b:78:ea:95:1c:73:9e:ba:cc:56: 32:78:07:62:6e:fd:5c:31:3b:22:05:73:28:6e:0b:08:28:a8: 06:95:71:a5:ae:06:b4:b6:3e:37:13:49:18:cd:8f:1f:48:65: 25:e6:d4:0d:2a:ca:45:38:d4:8c:af:c8:f9:6b:55:a9:a5:24: 8b:de:e7:ed:75:63:90:b5:f0:fd:72:3e:54:2c:c1:c8:6e:c3: 90:0b:28:30:7b:ba:b1:50:31:23:5e:8d:66:fd:31:35:d4:e7: 4f:b2:18:26 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZocaqjtS7AecSHwHpJBe91NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjUxMDI1MTcyOTAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZmFkZWYzMTYxOTMwNjkyYjYyZTlmMDU3YTQxMDEyZTE1ODRmZWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnVaPlHrUcs+uZQfx4NVP6eoG8P5 P2Rr2EE/RH5S0Ts6i3afqFBdRsnbbUNEfDyG4sIURlecbsPBepgayZKo5Qjcpm9l oeM4qRxJQ/xQUakPYA25n5Kt9Xvx/Zm7qMm6jXjRv6oAuHnvA6eiJ3aIdaNtrgeQ KZ3cCdLC4eatkaekObiPuETkD1YoSRMptZ+xT2Ft3535P0MgKUCTm4vjEw7NYkf7 ggooeoIDgGf49sOyb+2zWQ0xvZKa4dnF5sZrhO3rIJJLoVINs7RcZB9B8NVb77wN CPMOQjeXhQSBg4z1nkxrWCMG+U9bgPHhyouCL1q6jh+HRRHLxPEskHexGQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFA+t7zFhkwaSti6fBXpBAS4VhP7LMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvRDYzdk1XR1RCcEsyTHA4RmVrRUJMaFdFX3NzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAowVKAwQA owVTAwQAowWXMA0GCSqGSIb3DQEBCwUAA4IBAQAfjyalgHDu6p9eZQhLK+R/Um+1 /tzd8lt2cYsH+WE2eyWBqPuiV0biIrzZMHGdBuYhfbIrRN75/bMBmfsYpW/lalXq QoeBK7Ej9WCq/GX1kVD5NL0f+iFAjCgFtH8YILiIJNIoY+HQvllK4wFPA8RmyoNJ YB+/B5dGbqmAtP6eCil6bmmMYLECytqB2QwXWAZhk1VG4RICokt46pUcc566zFYy eAdibv1cMTsiBXMobgsIKKgGlXGlrga0tj43E0kYzY8fSGUl5tQNKspFONSMr8j5 a1WppSSL3uftdWOQtfD9cj5ULMHIbsOQCygwe7qxUDEjXo1m/TE11OdPshgm -----END CERTIFICATE-----Generated at Wed Dec 3 11:45:34 2025 by rpki-client