This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/0oAcQjp835NmnwXTbZBKvaL56L8.roa File: 0oAcQjp835NmnwXTbZBKvaL56L8.roa (raw, json) Hash identifier: 7IIxRwUDSO+9JirZQMhbFI/0Sx65hV/MzlirpNcv7tc= Subject key identifier: D2:80:1C:42:3A:7C:DF:93:66:9F:05:D3:6D:90:4A:BD:A2:F9:E8:BF Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16 Certificate serial: 019A9B7660B9E1F5CE20FB3A3FD96A5B5AC9 Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/0oAcQjp835NmnwXTbZBKvaL56L8.roa Signing time: Wed 19 Nov 2025 09:33:37 +0000 ROA not before: Wed 19 Nov 2025 09:33:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9304 IP address blocks: 5.172.33.0/24 maxlen: 24 178.254.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.mft rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9b:76:60:b9:e1:f5:ce:20:fb:3a:3f:d9:6a:5b:5a:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16 Validity Not Before: Nov 19 09:33:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=d2801c423a7cdf93669f05d36d904abda2f9e8bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:44:6b:ae:22:8b:1b:51:5d:10:b9:bf:b2:b3: 73:6b:bf:c4:cf:e9:97:83:ef:fd:d0:39:d2:5a:3c: c5:fd:53:e8:3d:2c:f2:b2:58:e8:e5:58:04:71:a7: e7:e2:c7:42:c4:b2:0c:2f:ba:3b:43:af:12:2e:94: 7c:7c:74:e1:27:d6:01:95:10:a1:b1:a2:94:11:33: eb:1f:b2:03:b3:a3:37:1a:3d:fe:26:31:08:a1:06: 90:64:40:5c:88:54:36:78:c4:49:57:cf:ac:26:65: b9:32:dd:8f:f7:73:12:2f:68:72:8d:22:11:2b:3a: 1d:2f:dc:1b:e3:c7:24:d4:f6:5b:47:27:cd:67:a6: 2b:7f:07:23:f8:77:33:36:78:98:c5:9c:13:c3:ac: c2:11:ee:cd:50:f4:06:d0:54:86:59:68:02:eb:0b: f1:58:20:20:f1:ab:b9:6a:13:65:c8:dc:e7:4b:cd: 94:3c:2a:92:23:ed:10:20:ba:70:41:ae:90:d5:cb: ec:8a:f0:d5:42:94:07:ee:b9:7a:99:cb:18:0b:49: e9:4d:c0:28:96:c9:4d:60:79:6a:1c:b1:1c:47:39: 62:6c:3a:fc:b2:9d:c4:b0:d1:49:ae:a6:68:7d:05: 13:c1:92:cf:34:72:70:bc:83:31:2b:fe:3a:cd:55: 6d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:80:1C:42:3A:7C:DF:93:66:9F:05:D3:6D:90:4A:BD:A2:F9:E8:BF X509v3 Authority Key Identifier: keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/0oAcQjp835NmnwXTbZBKvaL56L8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.172.33.0/24 178.254.168.0/24 Signature Algorithm: sha256WithRSAEncryption 06:d6:24:4e:db:11:4a:8d:9e:ac:e9:4e:33:7b:e4:5f:7a:9b: b9:f7:ca:a6:a3:09:46:63:2a:54:b4:46:dd:12:ff:e5:7f:ff: 58:28:20:27:dd:98:76:10:86:e9:1e:e0:67:74:4c:4f:fc:fd: 35:7d:33:fb:32:d2:3e:48:db:ff:f2:7a:8a:45:05:74:19:55: bc:85:5e:af:b5:06:54:07:e9:1e:9f:b1:62:eb:73:df:bf:96: f4:04:9e:32:e2:9e:1b:bf:42:92:b4:94:a4:31:67:38:31:62: 56:e0:75:aa:27:6e:8d:cc:bf:00:b7:71:89:d5:69:a6:3e:03: d8:70:a0:7e:5e:c7:d2:1d:7d:50:10:6c:87:eb:92:63:b9:c2: 9c:8c:ab:d1:c5:5e:2a:e4:e4:c7:22:4b:8f:d3:0f:6d:ea:ce: 67:1c:82:69:a1:74:9a:14:81:b3:03:2b:f3:79:6b:92:fd:24: e8:06:49:cf:05:e8:9f:0c:1e:6e:d9:87:64:f8:6d:b7:53:63: bd:f5:82:81:73:0f:2d:04:40:6a:cb:d4:ff:af:87:6f:bd:40: c8:2f:44:b3:41:b7:a9:c6:c4:97:df:09:58:42:a2:61:49:4a: c2:f9:67:70:40:29:13:38:97:8b:1c:25:01:50:12:3d:33:19: a8:9d:35:8f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZqbdmC54fXOIPs6P9lqW1rJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5NzEzZWYyNTI3N2UxM2RkNzNmNDQxOTZmZGE1Y2VjMGZk OWNlMTYwHhcNMjUxMTE5MDkzMzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjgwMWM0MjNhN2NkZjkzNjY5ZjA1ZDM2ZDkwNGFiZGEyZjllOGJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk0RrriKLG1FdELm/srNza7/Ez+mX g+/90DnSWjzF/VPoPSzysljo5VgEcafn4sdCxLIML7o7Q68SLpR8fHThJ9YBlRCh saKUETPrH7IDs6M3Gj3+JjEIoQaQZEBciFQ2eMRJV8+sJmW5Mt2P93MSL2hyjSIR KzodL9wb48ck1PZbRyfNZ6Yrfwcj+HczNniYxZwTw6zCEe7NUPQG0FSGWWgC6wvx WCAg8au5ahNlyNznS82UPCqSI+0QILpwQa6Q1cvsivDVQpQH7rl6mcsYC0npTcAo lslNYHlqHLEcRzlibDr8sp3EsNFJrqZofQUTwZLPNHJwvIMxK/46zVVtQwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNKAHEI6fN+TZp8F022QSr2i+ei/MB8GA1UdIwQY MBaAFOlxPvJSd+E91z9EGW/aXOwP2c4WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEt MGY2NmMxODg3OTE2LzEvMG9BY1FqcDgzNU5tbndYVGJaQkt2YUw1Nkw4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEtMGY2NmMxODg3OTE2 LzEvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABawhAwQA sv6oMA0GCSqGSIb3DQEBCwUAA4IBAQAG1iRO2xFKjZ6s6U4ze+Rfepu598qmowlG YypUtEbdEv/lf/9YKCAn3Zh2EIbpHuBndExP/P01fTP7MtI+SNv/8nqKRQV0GVW8 hV6vtQZUB+ken7Fi63Pfv5b0BJ4y4p4bv0KStJSkMWc4MWJW4HWqJ26NzL8At3GJ 1WmmPgPYcKB+XsfSHX1QEGyH65JjucKcjKvRxV4q5OTHIkuP0w9t6s5nHIJpoXSa FIGzAyvzeWuS/SToBknPBeifDB5u2Ydk+G23U2O99YKBcw8tBEBqy9T/r4dvvUDI L0SzQbepxsSX3wlYQqJhSUrC+WdwQCkTOJeLHCUBUBI9MxmonTWP -----END CERTIFICATE-----Generated at Thu Dec 4 04:21:27 2025 by rpki-client