This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/SDmpZdju-Wa198tNhoC51A1CwLE.roa File: SDmpZdju-Wa198tNhoC51A1CwLE.roa (raw, json) Hash identifier: yHlVD/0Naj34Bj/e4yK/hsb/lI6nz60e9VOLn3GJPJE= Subject key identifier: 48:39:A9:65:D8:EE:F9:66:B5:F7:CB:4D:86:80:B9:D4:0D:42:C0:B1 Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1 Certificate serial: 019AA2444919C348C5355FEA1B1F4249240E Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/SDmpZdju-Wa198tNhoC51A1CwLE.roa Signing time: Thu 20 Nov 2025 17:16:15 +0000 ROA not before: Thu 20 Nov 2025 17:16:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 205463 IP address blocks: 2.56.108.0/24 maxlen: 24 2.56.109.0/24 maxlen: 24 45.81.113.0/24 maxlen: 24 45.81.115.0/24 maxlen: 24 45.88.136.0/24 maxlen: 24 45.88.137.0/24 maxlen: 24 45.88.139.0/24 maxlen: 24 45.94.170.0/24 maxlen: 24 45.132.181.0/24 maxlen: 24 45.151.3.0/24 maxlen: 24 77.83.37.0/24 maxlen: 24 85.209.120.0/24 maxlen: 24 193.57.41.0/24 maxlen: 24 194.15.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.mft rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 22 Nov 2025 09:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a2:44:49:19:c3:48:c5:35:5f:ea:1b:1f:42:49:24:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1 Validity Not Before: Nov 20 17:16:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4839a965d8eef966b5f7cb4d8680b9d40d42c0b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2f:6a:96:81:0b:ca:63:a1:f9:52:a0:dd:df: 32:64:c6:1f:0d:91:08:e5:22:df:ed:cb:b8:8c:6f: 45:02:85:e2:8f:03:a8:3a:e2:a4:a6:75:de:07:7a: df:fb:08:0a:0d:e2:2f:3e:70:a5:5b:d5:2a:df:c7: 71:57:b0:9e:0a:86:15:69:9e:43:07:b6:19:5a:64: 01:9f:01:cf:05:0a:ba:c7:cb:6a:7a:7d:68:fa:2e: fe:12:3a:ad:b7:bc:c0:ee:f3:b5:76:9d:cf:f7:4d: 3c:32:b2:72:8d:86:66:54:5c:68:3f:48:e8:85:f2: de:0b:61:3f:45:60:93:5d:05:1b:78:40:6d:98:c5: 8e:2f:1b:e4:dd:6f:02:55:e2:33:a2:b0:37:84:57: ea:6a:8f:29:bd:ba:ce:87:29:dc:5a:b2:90:3c:cc: d3:73:ea:f9:23:78:68:87:89:1a:a8:d4:2b:8e:cb: ae:15:4f:62:23:89:f8:74:bb:57:4e:3e:a3:33:90: 54:aa:3e:21:a8:d2:32:77:3f:9a:17:80:d3:cc:78: a5:c2:b1:59:21:31:a4:23:58:d6:fa:1b:8c:3c:d8: e2:af:c7:71:f6:a9:73:81:68:36:b9:f1:4f:94:cd: 34:e9:a1:76:b6:de:75:c5:7c:c5:bb:ba:b6:51:eb: c8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:39:A9:65:D8:EE:F9:66:B5:F7:CB:4D:86:80:B9:D4:0D:42:C0:B1 X509v3 Authority Key Identifier: keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/SDmpZdju-Wa198tNhoC51A1CwLE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.108.0/23 45.81.113.0/24 45.81.115.0/24 45.88.136.0/23 45.88.139.0/24 45.94.170.0/24 45.132.181.0/24 45.151.3.0/24 77.83.37.0/24 85.209.120.0/24 193.57.41.0/24 194.15.52.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:4d:2b:32:c2:e1:e1:b3:ae:a6:ff:b4:8c:bc:d2:73:86:8d: 32:f0:7d:8c:45:bd:82:eb:da:dd:0a:87:e4:d5:99:11:38:7e: ff:2b:70:1b:cd:23:6b:86:33:b2:27:b7:29:0a:51:d0:96:86: 1b:1a:0f:8c:3e:1b:95:f2:4e:db:c8:e0:e0:92:1b:a6:36:12: 21:9b:a9:01:29:fd:be:3b:99:0d:3a:ca:81:29:49:4c:4d:71: b0:b5:ab:7f:7b:5c:9c:a5:50:89:83:57:7b:b9:4e:b4:fe:25: 7d:8f:65:03:e4:7f:13:65:6a:b4:6c:b0:ef:4e:a9:1e:52:7b: 8b:81:25:11:b9:db:97:30:43:b1:f8:69:54:28:7b:ed:57:f9: ad:33:e3:da:df:d0:4b:30:66:a6:a3:c0:df:06:47:52:9d:85: 89:a6:c5:35:e5:d2:18:a1:91:34:b6:39:88:54:96:84:06:b1: 36:3e:4d:98:2b:6d:4b:f2:2f:89:49:97:6a:aa:ea:bb:f2:fe: cc:3f:0f:33:69:37:63:41:cb:ad:21:94:4c:40:19:86:5d:3d: c2:83:cb:a5:ca:30:65:21:3c:ae:81:5e:da:63:9f:ff:63:ba: 8c:de:93:75:6a:e4:33:cd:b6:aa:13:6b:57:3f:53:bd:39:96: 7c:63:46:4b -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgISAZqiREkZw0jFNV/qGx9CSSQOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy YTI4YTEwHhcNMjUxMTIwMTcxNjE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODM5YTk2NWQ4ZWVmOTY2YjVmN2NiNGQ4NjgwYjlkNDBkNDJjMGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6C9qloELymOh+VKg3d8yZMYfDZEI 5SLf7cu4jG9FAoXijwOoOuKkpnXeB3rf+wgKDeIvPnClW9Uq38dxV7CeCoYVaZ5D B7YZWmQBnwHPBQq6x8tqen1o+i7+Ejqtt7zA7vO1dp3P9008MrJyjYZmVFxoP0jo hfLeC2E/RWCTXQUbeEBtmMWOLxvk3W8CVeIzorA3hFfqao8pvbrOhyncWrKQPMzT c+r5I3hoh4kaqNQrjsuuFU9iI4n4dLtXTj6jM5BUqj4hqNIydz+aF4DTzHilwrFZ ITGkI1jW+huMPNjir8dx9qlzgWg2ufFPlM006aF2tt51xXzFu7q2UevIfQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEg5qWXY7vlmtffLTYaAudQNQsCxMB8GA1UdIwQY MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt ZWVmMzUxMWY2YzYwLzEvU0RtcFpkanUtV2ExOTh0TmhvQzUxQTFDd0xFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQBAjhsAwQA LVFxAwQALVFzAwQBLViIAwQALViLAwQALV6qAwQALYS1AwQALZcDAwQATVMlAwQA VdF4AwQAwTkpAwQAwg80MA0GCSqGSIb3DQEBCwUAA4IBAQBMTSsywuHhs66m/7SM vNJzho0y8H2MRb2C69rdCofk1ZkROH7/K3AbzSNrhjOyJ7cpClHQloYbGg+MPhuV 8k7byODgkhumNhIhm6kBKf2+O5kNOsqBKUlMTXGwtat/e1ycpVCJg1d7uU60/iV9 j2UD5H8TZWq0bLDvTqkeUnuLgSURuduXMEOx+GlUKHvtV/mtM+Pa39BLMGamo8Df BkdSnYWJpsU15dIYoZE0tjmIVJaEBrE2Pk2YK21L8i+JSZdqquq78v7MPw8zaTdj QcutIZRMQBmGXT3Cg8ulyjBlITyugV7aY5//Y7qM3pN1auQzzbaqE2tXP1O9OZZ8 Y0ZL -----END CERTIFICATE-----Generated at Fri Nov 21 18:55:02 2025 by rpki-client