This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/fuqNniF53EjZa2wMbX81BIrOkoo.roa File: fuqNniF53EjZa2wMbX81BIrOkoo.roa (raw, json) Hash identifier: 8WnKdihe0/88v7nySlPpYFoYzJbGTwXt/8PsOPGAGss= Subject key identifier: 7E:EA:8D:9E:21:79:DC:48:D9:6B:6C:0C:6D:7F:35:04:8A:CE:92:8A Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1 Certificate serial: 019A9BA9A71A3ECA6C1A45AFB9B29760237A Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/fuqNniF53EjZa2wMbX81BIrOkoo.roa Signing time: Wed 19 Nov 2025 10:29:38 +0000 ROA not before: Wed 19 Nov 2025 10:29:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 48678 IP address blocks: 2.56.108.0/24 maxlen: 24 2.56.109.0/24 maxlen: 24 5.181.87.0/24 maxlen: 24 45.13.190.0/24 maxlen: 24 45.81.113.0/24 maxlen: 24 45.81.115.0/24 maxlen: 24 45.88.139.0/24 maxlen: 24 45.94.170.0/24 maxlen: 24 45.132.181.0/24 maxlen: 24 45.132.183.0/24 maxlen: 24 45.144.213.0/24 maxlen: 24 85.209.120.0/24 maxlen: 24 193.57.41.0/24 maxlen: 24 194.15.52.0/24 maxlen: 24 195.211.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.mft rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 22 Nov 2025 09:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9b:a9:a7:1a:3e:ca:6c:1a:45:af:b9:b2:97:60:23:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1 Validity Not Before: Nov 19 10:29:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=7eea8d9e2179dc48d96b6c0c6d7f35048ace928a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b2:de:55:ef:22:d8:e6:63:6b:4b:74:41:ad: 09:e4:13:84:3d:31:59:d0:61:7c:f2:bc:66:c3:5b: 89:35:da:4e:1d:dc:ed:db:9c:97:b7:0d:3d:5b:cb: 39:b0:ff:87:97:0a:4e:19:d2:17:f6:5b:34:b3:ce: b7:53:0a:04:a0:b8:c9:3e:db:3a:62:aa:c4:ae:23: f0:ce:a9:e0:16:d8:ae:6d:80:37:60:2d:81:8d:68: 72:89:c0:58:29:62:6e:36:23:a5:1b:1f:c1:90:4c: 1c:a4:45:3b:9d:f2:ce:f4:6f:00:92:ab:a3:f7:ef: 7c:9b:35:bd:2a:40:68:3c:92:4b:d8:8c:60:ee:20: 7c:3a:91:0b:9c:c3:e9:7d:72:dd:c1:c5:4a:17:f3: 21:33:7f:da:12:c6:3c:33:d0:2a:bd:bb:0b:f8:31: a0:2f:f9:c9:e7:c2:f5:fb:fe:c6:b5:bb:c8:00:82: 68:73:b5:15:de:eb:3e:0a:0e:5b:07:c8:c9:58:56: 0d:00:8d:b1:f3:ba:aa:c7:1a:21:31:c2:ed:39:1e: d4:3a:8c:7c:ad:c1:02:5b:3a:87:01:76:45:ed:b5: bf:1e:44:b3:4c:9d:96:70:6d:18:32:29:79:0e:78: 40:d8:3c:1d:73:7e:0c:3f:ca:d7:92:b1:da:1f:33: 37:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:EA:8D:9E:21:79:DC:48:D9:6B:6C:0C:6D:7F:35:04:8A:CE:92:8A X509v3 Authority Key Identifier: keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/fuqNniF53EjZa2wMbX81BIrOkoo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.108.0/23 5.181.87.0/24 45.13.190.0/24 45.81.113.0/24 45.81.115.0/24 45.88.139.0/24 45.94.170.0/24 45.132.181.0/24 45.132.183.0/24 45.144.213.0/24 85.209.120.0/24 193.57.41.0/24 194.15.52.0/24 195.211.188.0/24 Signature Algorithm: sha256WithRSAEncryption 00:18:e5:00:b2:c1:e2:65:b8:0d:f6:00:81:b2:87:d4:d9:11: 05:3f:dd:42:34:8e:16:4e:a8:3f:9b:ee:70:55:a1:fc:bf:dd: df:2e:29:f9:60:0c:32:20:7d:4f:ff:5e:e6:b0:e8:ea:c5:db: 03:0f:94:4a:fb:e6:4d:d6:b9:ac:20:85:83:10:e9:8d:c4:2e: ad:0b:e7:89:0f:c8:03:f6:e8:b5:2e:54:d0:b1:4c:83:69:d9: b9:f9:e5:4b:9f:0f:7e:de:62:45:c4:d4:45:7f:98:97:24:14: 09:e6:f6:e6:9c:59:82:b4:b9:1f:52:a4:b7:e7:76:f9:3b:62: 7c:be:ef:72:24:73:5e:f4:36:1f:23:85:c9:b2:e9:0b:58:dd: 45:ae:94:0c:da:2a:19:31:4c:18:12:b1:d5:6e:71:17:d3:a4: 28:fe:3b:d6:e2:7f:d0:e6:c6:8c:c2:aa:c4:df:db:5c:96:75: 9b:66:f3:d7:73:1a:b3:3f:29:43:aa:b1:b9:91:6c:8b:5f:6d: f6:b0:25:50:bb:c3:df:7c:b2:e3:05:16:d6:c0:39:ea:cd:73: c3:ab:e0:5d:d4:fc:28:79:5d:ca:37:80:40:d7:9c:ff:4c:59: 0f:60:a0:7e:fe:57:b3:ed:23:f8:3d:c7:08:f9:31:62:75:82: eb:23:a8:ad -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAZqbqacaPspsGkWvubKXYCN6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy YTI4YTEwHhcNMjUxMTE5MTAyOTM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZWVhOGQ5ZTIxNzlkYzQ4ZDk2YjZjMGM2ZDdmMzUwNDhhY2U5MjhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLLeVe8i2OZja0t0Qa0J5BOEPTFZ 0GF88rxmw1uJNdpOHdzt25yXtw09W8s5sP+HlwpOGdIX9ls0s863UwoEoLjJPts6 YqrEriPwzqngFtiubYA3YC2BjWhyicBYKWJuNiOlGx/BkEwcpEU7nfLO9G8Akquj 9+98mzW9KkBoPJJL2Ixg7iB8OpELnMPpfXLdwcVKF/MhM3/aEsY8M9AqvbsL+DGg L/nJ58L1+/7GtbvIAIJoc7UV3us+Cg5bB8jJWFYNAI2x87qqxxohMcLtOR7UOox8 rcECWzqHAXZF7bW/HkSzTJ2WcG0YMil5DnhA2Dwdc34MP8rXkrHaHzM3lQIDAQAB o4ICVzCCAlMwHQYDVR0OBBYEFH7qjZ4hedxI2WtsDG1/NQSKzpKKMB8GA1UdIwQY MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt ZWVmMzUxMWY2YzYwLzEvZnVxTm5pRjUzRWpaYTJ3TWJYODFCSXJPa29vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQBAjhsAwQA BbVXAwQALQ2+AwQALVFxAwQALVFzAwQALViLAwQALV6qAwQALYS1AwQALYS3AwQA LZDVAwQAVdF4AwQAwTkpAwQAwg80AwQAw9O8MA0GCSqGSIb3DQEBCwUAA4IBAQAA GOUAssHiZbgN9gCBsofU2REFP91CNI4WTqg/m+5wVaH8v93fLin5YAwyIH1P/17m sOjqxdsDD5RK++ZN1rmsIIWDEOmNxC6tC+eJD8gD9ui1LlTQsUyDadm5+eVLnw9+ 3mJFxNRFf5iXJBQJ5vbmnFmCtLkfUqS353b5O2J8vu9yJHNe9DYfI4XJsukLWN1F rpQM2ioZMUwYErHVbnEX06Qo/jvW4n/Q5saMwqrE39tclnWbZvPXcxqzPylDqrG5 kWyLX232sCVQu8PffLLjBRbWwDnqzXPDq+Bd1PwoeV3KN4BA15z/TFkPYKB+/lez 7SP4PccI+TFidYLrI6it -----END CERTIFICATE-----Generated at Fri Nov 21 18:53:37 2025 by rpki-client