This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/R14JRNPcrfV0rrLdubWUIPUSays.roa File: R14JRNPcrfV0rrLdubWUIPUSays.roa (raw, json) Hash identifier: L2tnewN6o1+2heeeXuy5U+OiRrBHj2luH4JTHLPaOKE= Subject key identifier: 47:5E:09:44:D3:DC:AD:F5:74:AE:B2:DD:B9:B5:94:20:F5:12:6B:2B Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3 Certificate serial: 019A96FDF77A12E240B67F13D74CF416A0B0 Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/R14JRNPcrfV0rrLdubWUIPUSays.roa Signing time: Tue 18 Nov 2025 12:43:37 +0000 ROA not before: Tue 18 Nov 2025 12:43:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 217.173.144.0/23 maxlen: 23 217.173.146.0/23 maxlen: 24 217.173.148.0/22 maxlen: 22 217.173.157.0/24 maxlen: 24 217.173.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 15:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:96:fd:f7:7a:12:e2:40:b6:7f:13:d7:4c:f4:16:a0:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3 Validity Not Before: Nov 18 12:43:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=475e0944d3dcadf574aeb2ddb9b59420f5126b2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:08:58:08:9e:95:de:69:6c:b4:5a:11:de:f2: 4a:38:e5:88:cb:ab:21:64:c1:15:b6:6f:dc:29:fa: 74:46:42:9f:9e:5a:fe:25:e6:67:ee:5e:74:26:f6: 11:09:3c:7f:8a:8c:66:26:a7:75:32:35:13:6b:af: 6d:9b:4f:76:0b:46:0d:a0:d5:32:87:97:66:76:a9: c1:75:7a:d2:8f:60:78:6d:ad:ca:f4:f7:8b:dc:bd: 09:49:4b:99:f0:d0:45:58:06:85:a6:45:a6:eb:5d: ec:15:08:cf:e1:dd:c3:b7:e0:2d:a0:5c:2c:48:c7: 09:31:ad:83:14:2c:b8:ee:f2:ff:ec:83:90:3e:5b: 4e:aa:66:1b:1b:f3:d2:80:69:6a:bd:3d:2d:f6:8c: 74:c9:eb:82:59:d8:c8:c8:1d:e1:92:be:42:e5:90: f6:ba:33:49:0d:a1:2b:07:e2:d3:32:05:85:99:5a: ef:c9:91:01:0e:5a:33:84:dd:47:f6:0d:36:b5:fd: e5:f3:ec:84:2d:4c:15:1a:e5:b4:9f:2b:32:51:73: 3f:6d:4c:18:70:bf:81:a2:99:b2:b4:46:42:47:40: b9:34:98:8c:70:12:ad:dd:13:6b:5f:67:05:30:bf: 83:5d:80:91:c1:bb:66:56:8e:35:30:22:d8:11:e1: 33:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5E:09:44:D3:DC:AD:F5:74:AE:B2:DD:B9:B5:94:20:F5:12:6B:2B X509v3 Authority Key Identifier: keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/R14JRNPcrfV0rrLdubWUIPUSays.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.173.144.0/21 217.173.157.0/24 217.173.159.0/24 Signature Algorithm: sha256WithRSAEncryption a9:31:91:39:3f:aa:75:c0:43:0a:1a:dc:42:7d:3d:9f:4b:91: a3:51:1a:43:d4:e1:02:ee:38:d6:0c:27:fe:56:3d:61:e3:1a: ee:dd:4c:50:0b:e0:c2:5d:02:4a:a6:7a:8a:f1:7c:ab:de:28: 30:67:91:07:6a:a8:4e:11:14:0f:e5:5b:7c:bd:dc:81:d9:ea: df:9e:93:54:92:16:5d:96:07:c8:7c:3c:03:5e:78:f4:e7:72: c1:93:c1:0b:36:a7:a1:8f:5b:8f:76:cb:f8:95:07:8b:d3:36: 71:50:c3:ae:2e:b5:f7:fc:b3:02:d5:0c:1f:18:91:d4:80:8e: 27:b2:e9:49:d4:40:80:49:f6:f4:e6:36:9e:d6:36:e0:b1:8a: 65:b3:e5:b7:9d:cf:62:1c:75:d9:0f:3c:92:d1:e1:b5:ee:f2: 04:73:f4:17:77:cb:6d:27:3e:e4:f1:7e:b7:4e:e6:45:69:87: 20:8a:09:e9:95:d1:ec:81:82:e5:fd:55:5e:23:87:f9:ee:0f: 59:77:21:7f:c7:02:76:eb:e1:43:99:02:68:2b:55:f6:c7:fa: 41:af:09:04:0b:7e:c9:e1:84:66:28:7e:2a:35:7e:18:89:2f: 0a:2e:dd:52:f9:56:ac:85:92:5a:0c:bf:fa:7f:4b:d6:13:dd: 2b:2e:a4:55 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZqW/fd6EuJAtn8T10z0FqCwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NDcwYWYwZDg5ZDc4NWJhMThiYTYxN2RjMDllM2Y3MmM1 OTk2ZjMwHhcNMjUxMTE4MTI0MzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NzVlMDk0NGQzZGNhZGY1NzRhZWIyZGRiOWI1OTQyMGY1MTI2YjJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AhYCJ6V3mlstFoR3vJKOOWIy6sh ZMEVtm/cKfp0RkKfnlr+JeZn7l50JvYRCTx/ioxmJqd1MjUTa69tm092C0YNoNUy h5dmdqnBdXrSj2B4ba3K9PeL3L0JSUuZ8NBFWAaFpkWm613sFQjP4d3Dt+AtoFws SMcJMa2DFCy47vL/7IOQPltOqmYbG/PSgGlqvT0t9ox0yeuCWdjIyB3hkr5C5ZD2 ujNJDaErB+LTMgWFmVrvyZEBDlozhN1H9g02tf3l8+yELUwVGuW0nysyUXM/bUwY cL+BopmytEZCR0C5NJiMcBKt3RNrX2cFML+DXYCRwbtmVo41MCLYEeEzXQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFEdeCUTT3K31dK6y3bm1lCD1EmsrMB8GA1UdIwQY MBaAFIRHCvDYnXhboYumF9wJ4/csWZbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDIt ZTc2ZTNlMjkzZTAyLzEvUjE0SlJOUGNyZlYwcnJMZHViV1VJUFVTYXlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDItZTc2ZTNlMjkzZTAy LzEvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQD2a2QAwQA 2a2dAwQA2a2fMA0GCSqGSIb3DQEBCwUAA4IBAQCpMZE5P6p1wEMKGtxCfT2fS5Gj URpD1OEC7jjWDCf+Vj1h4xru3UxQC+DCXQJKpnqK8Xyr3igwZ5EHaqhOERQP5Vt8 vdyB2erfnpNUkhZdlgfIfDwDXnj053LBk8ELNqehj1uPdsv4lQeL0zZxUMOuLrX3 /LMC1QwfGJHUgI4nsulJ1ECASfb05jae1jbgsYpls+W3nc9iHHXZDzyS0eG17vIE c/QXd8ttJz7k8X63TuZFaYcgignpldHsgYLl/VVeI4f57g9ZdyF/xwJ26+FDmQJo K1X2x/pBrwkEC37J4YRmKH4qNX4YiS8KLt1S+VashZJaDL/6f0vWE90rLqRV -----END CERTIFICATE-----Generated at Thu Dec 4 22:52:56 2025 by rpki-client