This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/NQgL0LCgOcL2N3Bg5Tev67yjJBE.roa File: NQgL0LCgOcL2N3Bg5Tev67yjJBE.roa (raw, json) Hash identifier: X0v0B7APWKf/TVdkVkAjoFdNw3uFnqsD0NoGvtjxPQA= Subject key identifier: 35:08:0B:D0:B0:A0:39:C2:F6:37:70:60:E5:37:AF:EB:BC:A3:24:11 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B0CC7A9D525F0524104B3176252532581 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/NQgL0LCgOcL2N3Bg5Tev67yjJBE.roa Signing time: Thu 11 Dec 2025 09:39:30 +0000 ROA not before: Thu 11 Dec 2025 09:39:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 34872 IP address blocks: 45.154.97.0/24 maxlen: 32 45.154.99.0/24 maxlen: 32 62.3.50.0/24 maxlen: 32 194.28.96.0/24 maxlen: 32 194.28.98.0/23 maxlen: 32 2a0c:b640::/32 maxlen: 128 2a0c:b641::/44 maxlen: 128 2a0c:b641:10::/44 maxlen: 128 2a0c:b641:50::/44 maxlen: 128 2a0c:b641:60::/44 maxlen: 128 2a0c:b641:530::/44 maxlen: 128 2a0c:b641:5e0::/44 maxlen: 48 2a0c:b641:660::/44 maxlen: 44 2a0c:b641:6d0::/44 maxlen: 128 2a0c:b641:70f::/48 maxlen: 128 2a0c:b641:730::/44 maxlen: 128 2a0c:b641:820::/44 maxlen: 128 2a0f:8400::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0c:c7:a9:d5:25:f0:52:41:04:b3:17:62:52:53:25:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Dec 11 09:39:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=35080bd0b0a039c2f6377060e537afebbca32411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ba:d4:4e:d2:22:8a:db:f4:58:7f:2e:11:d5: ad:8e:a4:05:18:ad:9f:f8:d1:2d:b0:ee:b7:1f:c9: 29:8c:de:a8:e1:96:0a:f8:e8:46:e4:ce:1b:6a:92: 0f:6a:9d:b0:bd:26:09:bf:4c:58:96:f5:3a:96:12: 07:df:df:30:72:6c:3d:eb:3f:24:d2:e9:19:5e:20: b0:83:b8:cc:db:93:6e:68:dd:eb:4f:f6:d3:d3:87: 4d:cf:86:23:75:13:e3:54:3c:ef:07:63:ba:a8:5a: 25:42:be:c2:6a:14:f0:64:4c:88:c6:d4:ac:62:28: 5e:8f:5a:a3:0b:5b:4d:43:cb:89:00:7d:62:a1:5d: 1a:e6:77:e7:39:05:0a:4d:72:57:f3:5d:f5:70:9e: 8d:b7:9f:b0:30:31:d4:8d:77:db:a6:06:28:47:30: aa:42:d7:f5:e7:1a:4f:c6:07:95:43:0e:f2:ac:16: 95:8b:43:e8:73:4d:cf:68:16:34:35:35:4d:62:89: 46:90:14:5a:0c:da:02:17:e6:e3:a3:03:d5:2d:69: aa:96:46:3d:67:02:d5:16:a5:dd:bd:38:68:d1:6b: e0:6c:2d:28:f1:e7:23:3d:65:f4:97:fc:e4:69:9c: 45:94:dc:e9:38:4c:57:1e:04:b4:18:14:c2:44:b7: b1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:08:0B:D0:B0:A0:39:C2:F6:37:70:60:E5:37:AF:EB:BC:A3:24:11 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/NQgL0LCgOcL2N3Bg5Tev67yjJBE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.154.97.0/24 45.154.99.0/24 62.3.50.0/24 194.28.96.0/24 194.28.98.0/23 IPv6: 2a0c:b640::-2a0c:b641:1f:ffff:ffff:ffff:ffff:ffff 2a0c:b641:50::-2a0c:b641:6f:ffff:ffff:ffff:ffff:ffff 2a0c:b641:530::/44 2a0c:b641:5e0::/44 2a0c:b641:660::/44 2a0c:b641:6d0::/44 2a0c:b641:70f::/48 2a0c:b641:730::/44 2a0c:b641:820::/44 2a0f:8400::/32 Signature Algorithm: sha256WithRSAEncryption 90:81:01:27:a9:0e:48:a1:7f:54:6e:b0:2d:90:d3:ed:72:bd: b3:6c:6b:33:ee:7d:20:e6:0d:51:32:d0:d7:07:5d:63:ee:3b: 2a:86:65:5b:ce:89:8c:e7:96:4d:a1:b2:cb:1c:dc:db:e1:62: 23:97:92:a4:23:f4:7f:05:78:e9:6f:0f:89:20:5d:eb:de:1a: d1:fd:73:52:64:da:5a:fd:2f:b4:4c:1b:c0:89:3a:f1:c3:23: ba:dd:56:22:ef:10:23:9d:f1:40:64:94:fa:7c:da:72:b2:16: 1c:6a:c9:4d:32:43:3f:d9:7b:4f:6c:4e:33:a7:69:e8:58:c1: 6c:4e:47:ee:f3:da:4a:6f:15:30:06:d3:0e:cb:0d:2d:94:be: ac:9b:c5:a6:c6:90:61:a1:c5:2e:b7:b9:7b:9b:16:fe:e1:27: a3:64:44:0a:83:05:09:e8:93:5d:ca:e1:69:75:c7:a8:a7:e1: b4:81:40:3b:c6:6a:f4:40:35:7b:43:49:62:de:80:3a:89:e4: ff:17:11:de:02:c7:ce:c5:83:81:ad:d0:a7:a1:23:18:f4:1b: d3:58:05:26:29:92:6d:c8:2d:42:a6:c8:04:45:41:b4:3c:b8: 1d:ec:7c:30:3b:ca:00:5d:76:b4:6a:8d:05:10:a4:7e:4f:5d: 3b:fd:72:8d -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgISAZsMx6nVJfBSQQSzF2JSUyWBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjUxMjExMDkzOTMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNTA4MGJkMGIwYTAzOWMyZjYzNzcwNjBlNTM3YWZlYmJjYTMyNDExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLrUTtIiitv0WH8uEdWtjqQFGK2f +NEtsO63H8kpjN6o4ZYK+OhG5M4bapIPap2wvSYJv0xYlvU6lhIH398wcmw96z8k 0ukZXiCwg7jM25NuaN3rT/bT04dNz4YjdRPjVDzvB2O6qFolQr7CahTwZEyIxtSs Yihej1qjC1tNQ8uJAH1ioV0a5nfnOQUKTXJX8131cJ6Nt5+wMDHUjXfbpgYoRzCq Qtf15xpPxgeVQw7yrBaVi0Poc03PaBY0NTVNYolGkBRaDNoCF+bjowPVLWmqlkY9 ZwLVFqXdvTho0WvgbC0o8ecjPWX0l/zkaZxFlNzpOExXHgS0GBTCRLexYQIDAQAB o4ICmDCCApQwHQYDVR0OBBYEFDUIC9CwoDnC9jdwYOU3r+u8oyQRMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvTlFnTDBMQ2dPY0wyTjNCZzVUZXY2N3lqSkJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGtBggrBgEFBQcBBwEB/wSBnTCBmjAkBAIAATAeAwQALZph AwQALZpjAwQAPgMyAwQAwhxgAwQBwhxiMHIEAgACMGwwEAMFBioMtkADBwUqDLZB AAAwEgMHBCoMtkEAUAMHBCoMtkEAYAMHBCoMtkEFMAMHBCoMtkEF4AMHBCoMtkEG YAMHBCoMtkEG0AMHACoMtkEHDwMHBCoMtkEHMAMHBCoMtkEIIAMFACoPhAAwDQYJ KoZIhvcNAQELBQADggEBAJCBASepDkihf1RusC2Q0+1yvbNsazPufSDmDVEy0NcH XWPuOyqGZVvOiYznlk2hsssc3NvhYiOXkqQj9H8FeOlvD4kgXeveGtH9c1Jk2lr9 L7RMG8CJOvHDI7rdViLvECOd8UBklPp82nKyFhxqyU0yQz/Ze09sTjOnaehYwWxO R+7z2kpvFTAG0w7LDS2UvqybxabGkGGhxS63uXubFv7hJ6NkRAqDBQnok13K4Wl1 x6in4bSBQDvGavRANXtDSWLegDqJ5P8XEd4Cx87Fg4Gt0KehIxj0G9NYBSYpkm3I LUKmyARFQbQ8uB3sfDA7ygBddrRqjQUQpH5PXTv9co0= -----END CERTIFICATE-----Generated at Sun Dec 14 22:51:06 2025 by rpki-client