This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YRt6QpyX3DRK6Fo8JGOtBLSboao.roa File: YRt6QpyX3DRK6Fo8JGOtBLSboao.roa (raw, json) Hash identifier: riYzEkq92iYLt5OfsD7gtsnJYK9rIsZmthkXYWiHqPA= Subject key identifier: 61:1B:7A:42:9C:97:DC:34:4A:E8:5A:3C:24:63:AD:04:B4:9B:A1:AA Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019A7744531AD0F15A7FAFA9CA91B8099B73 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YRt6QpyX3DRK6Fo8JGOtBLSboao.roa Signing time: Wed 12 Nov 2025 08:52:37 +0000 ROA not before: Wed 12 Nov 2025 08:52:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 6079 IP address blocks: 163.5.7.0/24 maxlen: 24 163.5.145.0/24 maxlen: 24 163.5.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 09:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:77:44:53:1a:d0:f1:5a:7f:af:a9:ca:91:b8:09:9b:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Nov 12 08:52:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=611b7a429c97dc344ae85a3c2463ad04b49ba1aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c4:d4:d2:35:2a:78:22:09:13:d1:88:af:4b: 3a:56:b1:ed:ce:1c:50:3a:70:14:3d:38:b4:f3:73: 9d:5d:6b:5c:fe:bf:8c:d4:09:de:19:46:ab:1f:0f: 65:c3:36:0f:77:d8:b2:33:6d:d4:28:32:79:be:75: 78:c5:1d:69:91:ad:40:d2:2b:45:9a:f5:1d:fe:fb: 5d:75:f7:fe:8d:73:d4:c8:10:95:a6:e7:16:43:07: ff:6f:c3:1e:73:41:4d:41:52:9b:cd:ad:d3:ae:24: 5b:15:59:aa:fc:73:4c:cb:a9:79:db:a0:35:17:a5: 24:9a:42:38:c9:f7:73:ff:92:e2:07:da:84:f2:20: d4:3b:38:02:eb:bd:9b:fc:09:2b:48:0d:6a:40:f9: dd:c7:a4:9d:e2:4b:85:3a:0d:6d:e6:c1:c3:48:63: 65:a6:61:a7:3f:cf:c2:e8:f2:55:9b:e3:1c:16:8f: 31:ed:ef:9c:84:0f:40:41:1d:e4:83:6b:89:10:90: 02:1c:24:44:70:22:f2:0b:7a:40:a8:ba:54:5d:8c: 6c:6c:c3:17:37:d3:7d:93:0d:6a:1b:e3:35:44:8a: 74:d7:4e:7a:2e:b2:98:9c:ca:6e:41:bd:42:9e:b8: 60:5e:a6:70:e5:46:ec:3f:62:89:eb:68:4d:57:60: 74:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:1B:7A:42:9C:97:DC:34:4A:E8:5A:3C:24:63:AD:04:B4:9B:A1:AA X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YRt6QpyX3DRK6Fo8JGOtBLSboao.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.7.0/24 163.5.145.0/24 163.5.250.0/24 Signature Algorithm: sha256WithRSAEncryption 78:1f:48:95:7f:93:aa:09:04:5d:4a:56:12:ae:91:10:42:10: 6c:d4:2e:66:c9:51:dd:9a:41:15:35:1b:db:06:6e:ae:5c:b0: 5f:4d:a8:7e:f1:c5:75:cc:86:a2:73:d6:21:82:6f:31:e8:67: 31:e0:62:a3:48:02:7c:8f:2c:93:76:d5:60:e0:d4:4f:aa:89: 62:cf:0f:31:31:76:a6:fe:d8:53:a3:04:d6:77:3c:bf:65:ad: 53:f7:9e:e6:cb:d7:b8:f2:37:03:ca:ba:cb:d9:93:16:c0:e7: 99:34:ea:65:80:ca:f4:b0:05:54:40:ad:a9:8a:f0:20:da:9b: b7:d4:68:3a:98:d5:f6:8d:4d:76:8b:4b:cd:cf:c2:b7:b3:1f: 47:ec:71:14:ec:73:28:f7:ce:e7:71:bf:45:ec:93:64:22:8b: ee:71:d4:b9:dc:2b:d2:72:93:09:ad:b1:67:3c:e4:f9:c3:95: a0:a1:8f:a2:a8:5f:b0:b1:83:78:51:a7:9d:3a:88:90:09:26: 80:17:05:81:77:87:75:e7:67:03:e7:b2:3a:d5:1f:24:fe:aa: ad:56:a9:e7:99:fb:35:55:86:f1:ad:2b:5e:9f:27:a8:d0:68: 8f:7b:cd:d0:b0:13:64:92:32:db:77:06:c7:90:89:de:73:22: 89:a2:0e:bd -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZp3RFMa0PFaf6+pypG4CZtzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjUxMTEyMDg1MjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTFiN2E0MjljOTdkYzM0NGFlODVhM2MyNDYzYWQwNGI0OWJhMWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcTU0jUqeCIJE9GIr0s6VrHtzhxQ OnAUPTi083OdXWtc/r+M1AneGUarHw9lwzYPd9iyM23UKDJ5vnV4xR1pka1A0itF mvUd/vtddff+jXPUyBCVpucWQwf/b8Mec0FNQVKbza3TriRbFVmq/HNMy6l526A1 F6UkmkI4yfdz/5LiB9qE8iDUOzgC672b/AkrSA1qQPndx6Sd4kuFOg1t5sHDSGNl pmGnP8/C6PJVm+McFo8x7e+chA9AQR3kg2uJEJACHCREcCLyC3pAqLpUXYxsbMMX N9N9kw1qG+M1RIp01056LrKYnMpuQb1CnrhgXqZw5UbsP2KJ62hNV2B02wIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFGEbekKcl9w0SuhaPCRjrQS0m6GqMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvWVJ0NlFweVgzRFJLNkZvOEpHT3RCTFNib2FvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAowUHAwQA owWRAwQAowX6MA0GCSqGSIb3DQEBCwUAA4IBAQB4H0iVf5OqCQRdSlYSrpEQQhBs 1C5myVHdmkEVNRvbBm6uXLBfTah+8cV1zIaic9Yhgm8x6Gcx4GKjSAJ8jyyTdtVg 4NRPqolizw8xMXam/thTowTWdzy/Za1T957my9e48jcDyrrL2ZMWwOeZNOplgMr0 sAVUQK2pivAg2pu31Gg6mNX2jU12i0vNz8K3sx9H7HEU7HMo987ncb9F7JNkIovu cdS53CvScpMJrbFnPOT5w5WgoY+iqF+wsYN4UaedOoiQCSaAFwWBd4d152cD57I6 1R8k/qqtVqnnmfs1VYbxrStenyeo0GiPe83QsBNkkjLbdwbHkInecyKJog69 -----END CERTIFICATE-----Generated at Fri Dec 5 12:23:25 2025 by rpki-client