This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/cL9o4GuWlQI5Jp_C_fwb0s2JxFc.roa File: cL9o4GuWlQI5Jp_C_fwb0s2JxFc.roa (raw, json) Hash identifier: EGZ2zAscFqf8bI9cv9mUeoawUBpW+5SAwrpBt9I6NF4= Subject key identifier: 70:BF:68:E0:6B:96:95:02:39:26:9F:C2:FD:FC:1B:D2:CD:89:C4:57 Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7 Certificate serial: 019AC0B1997A7191F09F32491724558C15F6 Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/cL9o4GuWlQI5Jp_C_fwb0s2JxFc.roa Signing time: Wed 26 Nov 2025 15:04:15 +0000 ROA not before: Wed 26 Nov 2025 15:04:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55154 IP address blocks: 31.170.55.0/24 maxlen: 24 37.49.145.0/24 maxlen: 24 94.74.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.mft rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 06:57:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c0:b1:99:7a:71:91:f0:9f:32:49:17:24:55:8c:15:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7 Validity Not Before: Nov 26 15:04:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=70bf68e06b96950239269fc2fdfc1bd2cd89c457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:bc:d1:10:6c:ec:04:8d:52:24:d1:e3:f7: 0a:a3:95:a7:ae:27:93:b6:71:55:a0:02:a7:e0:79: f8:f8:fd:39:1f:01:00:19:4f:19:36:0c:31:ab:12: bc:a4:ff:9a:8f:1a:3c:fb:12:e6:47:cc:58:44:f4: dc:d1:0b:48:56:e4:5d:bb:aa:64:f4:1f:53:e5:8e: 07:cb:d8:a6:82:f6:34:75:5b:17:f0:de:34:5b:9f: 00:96:09:de:07:6f:d1:83:84:0a:e2:5d:38:ca:68: 72:64:c7:21:ba:dc:d3:4e:ab:a2:da:f0:d2:6c:bc: 51:62:e7:e1:b2:56:38:c6:28:ea:b8:6c:67:e6:31: 4e:16:ec:6f:f4:25:2d:18:4a:c4:02:12:23:4d:42: e3:8d:d7:c3:ee:e5:94:78:03:09:b6:c5:d5:d9:c1: f6:8a:ac:d3:a7:7d:6e:f5:5b:83:c9:06:e1:86:5b: c6:fd:11:77:0f:49:21:b2:cf:6a:be:ef:20:98:e7: b0:8d:70:b5:aa:64:7b:88:fa:d9:f7:cc:10:a9:f0: fc:db:d7:e8:88:f2:46:d7:e1:8e:2e:01:0a:6a:40: 5b:26:d5:04:42:d8:92:b5:b3:5a:5a:1c:f0:dc:9f: 47:52:48:16:8e:69:31:ff:2f:97:6c:0c:d8:6f:bc: be:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:BF:68:E0:6B:96:95:02:39:26:9F:C2:FD:FC:1B:D2:CD:89:C4:57 X509v3 Authority Key Identifier: keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/cL9o4GuWlQI5Jp_C_fwb0s2JxFc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.170.55.0/24 37.49.145.0/24 94.74.173.0/24 Signature Algorithm: sha256WithRSAEncryption 44:46:71:94:1a:e1:ba:76:0e:47:5a:7f:bf:e7:12:72:7a:43: e3:9a:d3:51:10:26:03:48:9f:68:65:f4:15:40:2c:4c:d4:78: 2a:20:20:68:0f:89:1e:91:04:b2:ae:a7:03:0b:68:78:ae:6b: 00:3b:b9:5a:0b:2b:01:ca:9b:75:88:36:0d:51:58:1e:b2:fc: bc:9a:22:56:99:a9:dd:2f:ec:15:6d:f5:be:01:71:21:a3:48: 44:d9:f6:5b:e9:6a:c6:6e:a3:3d:83:7d:70:80:be:be:26:a6: 49:3c:c5:84:ce:ef:49:2d:9f:aa:ed:12:43:c0:01:b4:2e:ef: 6a:00:29:da:fb:f7:db:d0:a5:27:e2:5f:d0:1c:5f:65:9e:29: 20:ce:76:26:f5:50:bf:89:de:f2:f2:fd:2a:e3:1d:60:07:73: ad:fa:56:3c:fb:2a:47:19:9c:2a:af:54:85:bc:e1:1d:10:33: ee:78:c6:c9:d4:4a:80:37:bc:d1:bb:de:a3:44:3c:ef:6d:46: dc:52:4e:30:96:54:d0:7c:fe:59:ab:47:88:57:be:e3:da:59: 3b:f9:16:ba:d6:4c:23:c2:37:07:29:fd:58:2d:37:e6:04:80: 42:2f:f9:21:99:5a:1f:a8:61:3a:1b:41:f2:e1:d2:b6:0c:d1: c0:c6:18:d0 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZrAsZl6cZHwnzJJFyRVjBX2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2MDQ3NWViZTdmMDdkNzQxNTNjYjFjY2EzMzhjMTZkODAx ZjQ1ZjcwHhcNMjUxMTI2MTUwNDE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MGJmNjhlMDZiOTY5NTAyMzkyNjlmYzJmZGZjMWJkMmNkODljNDU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwra80RBs7ASNUiTR4/cKo5WnrieT tnFVoAKn4Hn4+P05HwEAGU8ZNgwxqxK8pP+ajxo8+xLmR8xYRPTc0QtIVuRdu6pk 9B9T5Y4Hy9imgvY0dVsX8N40W58AlgneB2/Rg4QK4l04ymhyZMchutzTTqui2vDS bLxRYufhslY4xijquGxn5jFOFuxv9CUtGErEAhIjTULjjdfD7uWUeAMJtsXV2cH2 iqzTp31u9VuDyQbhhlvG/RF3D0khss9qvu8gmOewjXC1qmR7iPrZ98wQqfD829fo iPJG1+GOLgEKakBbJtUEQtiStbNaWhzw3J9HUkgWjmkx/y+XbAzYb7y+5QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFHC/aOBrlpUCOSafwv38G9LNicRXMB8GA1UdIwQY MBaAFNYEdevn8H10FTyxzKM4wW2AH0X3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2Mt NDk2ZjhlYmIyZDYxLzEvY0w5bzRHdVdsUUk1SnBfQ19md2IwczJKeEZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2MtNDk2ZjhlYmIyZDYx LzEvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAH6o3AwQA JTGRAwQAXkqtMA0GCSqGSIb3DQEBCwUAA4IBAQBERnGUGuG6dg5HWn+/5xJyekPj mtNRECYDSJ9oZfQVQCxM1HgqICBoD4kekQSyrqcDC2h4rmsAO7laCysBypt1iDYN UVgesvy8miJWmandL+wVbfW+AXEho0hE2fZb6WrGbqM9g31wgL6+JqZJPMWEzu9J LZ+q7RJDwAG0Lu9qACna+/fb0KUn4l/QHF9lnikgznYm9VC/id7y8v0q4x1gB3Ot +lY8+ypHGZwqr1SFvOEdEDPueMbJ1EqAN7zRu96jRDzvbUbcUk4wllTQfP5Zq0eI V77j2lk7+Ra61kwjwjcHKf1YLTfmBIBCL/khmVofqGE6G0Hy4dK2DNHAxhjQ -----END CERTIFICATE-----Generated at Sat Dec 6 16:17:15 2025 by rpki-client