This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/lQvYusY5Bl_PfdoUcvrPOL-wcCs.roa File: lQvYusY5Bl_PfdoUcvrPOL-wcCs.roa (raw, json) Hash identifier: VFB6axYvb982LJ/mO7LbOHRpnlHtYSLfSLTa1NlOXm8= Subject key identifier: 95:0B:D8:BA:C6:39:06:5F:CF:7D:DA:14:72:FA:CF:38:BF:B0:70:2B Certificate issuer: /CN=bcc63f010c540bcd4554344bfb9a59a2edbabc29 Certificate serial: 019B43D19E937615D06F029FAF3C4A337033 Authority key identifier: BC:C6:3F:01:0C:54:0B:CD:45:54:34:4B:FB:9A:59:A2:ED:BA:BC:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vMY_AQxUC81FVDRL-5pZou26vCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/lQvYusY5Bl_PfdoUcvrPOL-wcCs.roa Signing time: Mon 22 Dec 2025 02:09:29 +0000 ROA not before: Mon 22 Dec 2025 02:09:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 60144 IP address blocks: 45.138.36.0/22 maxlen: 32 45.150.76.0/22 maxlen: 32 91.215.156.0/22 maxlen: 32 146.19.105.0/24 maxlen: 32 185.27.236.0/24 maxlen: 32 185.27.237.0/24 maxlen: 32 185.27.238.0/24 maxlen: 32 185.27.239.0/24 maxlen: 32 185.53.8.0/22 maxlen: 32 185.56.28.0/22 maxlen: 32 185.234.218.0/24 maxlen: 32 192.162.136.0/22 maxlen: 32 2a02:5060::/32 maxlen: 128 2a07:f9c0::/29 maxlen: 128 2a07:f9c0:fefe::/48 maxlen: 128 2a12:1680::/29 maxlen: 128 2a12:8f00::/29 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/vMY_AQxUC81FVDRL-5pZou26vCk.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/vMY_AQxUC81FVDRL-5pZou26vCk.mft rsync://rpki.ripe.net/repository/DEFAULT/vMY_AQxUC81FVDRL-5pZou26vCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 20:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:d1:9e:93:76:15:d0:6f:02:9f:af:3c:4a:33:70:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bcc63f010c540bcd4554344bfb9a59a2edbabc29 Validity Not Before: Dec 22 02:09:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=950bd8bac639065fcf7dda1472facf38bfb0702b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:62:24:74:08:19:94:9e:1f:88:56:78:d5:57: 19:c9:09:f2:3d:c2:c3:d4:9a:c0:48:be:7e:61:b6: 26:86:6b:06:47:02:52:1e:a6:70:33:42:1e:29:e5: f2:1b:c1:a7:b6:5c:29:24:6f:49:4a:c8:52:b2:46: 2d:1c:d9:ec:ab:38:7a:17:e6:d2:7a:01:b0:54:00: 0f:5b:51:23:3e:51:4a:e9:af:7f:f7:13:b9:84:2c: 38:74:3a:9d:58:bc:7c:26:3b:e0:c5:ae:49:f3:c2: 5a:30:08:dc:43:58:53:b8:d1:e4:34:6d:cc:d6:02: 73:c6:89:32:bd:71:8c:02:23:e1:91:68:8f:75:02: 22:5c:43:ac:df:d7:c5:6b:31:fa:61:88:bf:0c:82: 07:86:7b:24:94:17:3d:fc:c8:f4:7a:e1:14:17:af: 34:c4:16:db:36:6b:27:3e:2d:19:16:40:29:44:04: 31:6e:1c:b6:11:b0:19:c4:58:ff:ce:6d:20:17:33: 77:62:8c:7f:81:49:55:be:05:46:05:c1:76:9d:11: ee:cc:92:ac:7e:39:c6:d7:fb:2d:14:c4:d2:71:95: fc:49:b4:ba:5c:60:61:56:44:91:9d:21:aa:d0:69: e7:36:7f:56:13:ac:c0:e4:51:62:f0:2a:be:84:b5: 09:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0B:D8:BA:C6:39:06:5F:CF:7D:DA:14:72:FA:CF:38:BF:B0:70:2B X509v3 Authority Key Identifier: keyid:BC:C6:3F:01:0C:54:0B:CD:45:54:34:4B:FB:9A:59:A2:ED:BA:BC:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vMY_AQxUC81FVDRL-5pZou26vCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/lQvYusY5Bl_PfdoUcvrPOL-wcCs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a29c67-f24d-4979-b2af-cc41c4a3198d/1/vMY_AQxUC81FVDRL-5pZou26vCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.138.36.0/22 45.150.76.0/22 91.215.156.0/22 146.19.105.0/24 185.27.236.0/22 185.53.8.0/22 185.56.28.0/22 185.234.218.0/24 192.162.136.0/22 IPv6: 2a02:5060::/32 2a07:f9c0::/29 2a12:1680::/29 2a12:8f00::/29 Signature Algorithm: sha256WithRSAEncryption 1b:21:78:4a:f9:4b:88:d3:a1:7c:53:57:a8:c9:2d:39:84:bc: 57:48:d9:7e:ef:b8:a3:1a:32:8f:59:dd:b5:ce:a0:21:03:33: 62:7a:c6:5b:9d:5b:84:a2:39:8b:c4:19:4f:b7:7e:48:e9:e3: 35:93:79:e8:d4:ae:b4:5e:90:9b:1f:b0:3d:ee:4e:54:39:e7: c3:bc:e9:ef:b9:e5:12:61:4a:d3:62:5e:fa:99:b0:d2:1c:28: 24:be:11:3c:d3:93:58:39:42:32:0d:34:4a:9c:dd:64:9a:87: de:56:59:b1:e3:22:dc:06:1a:10:0f:03:38:19:da:0d:f5:51: ca:d6:0f:39:a6:24:00:26:14:a3:93:62:c0:a6:61:b8:92:b8: 89:fe:ef:1d:42:3b:27:45:be:24:eb:bc:7f:77:fa:e7:03:d5: f2:cf:9c:8e:cc:c0:b9:80:43:a5:ba:2f:f5:62:0a:91:6c:57: 29:21:ca:39:82:87:5e:64:b3:0a:a3:e9:40:f3:2b:d7:ed:1a: 8f:0a:72:4b:5b:8e:df:0f:aa:5e:ac:55:d5:ca:bd:fd:a9:28: 39:d0:6d:7f:b6:a1:06:ab:ae:dc:64:dd:6b:99:df:14:de:a7: 79:f4:d6:67:aa:c1:e3:46:86:0d:37:e4:8d:86:82:f2:6a:a9: dd:29:fc:fe -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgISAZtD0Z6TdhXQbwKfrzxKM3AzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjYzYzZjAxMGM1NDBiY2Q0NTU0MzQ0YmZiOWE1OWEyZWRi YWJjMjkwHhcNMjUxMjIyMDIwOTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NTBiZDhiYWM2MzkwNjVmY2Y3ZGRhMTQ3MmZhY2YzOGJmYjA3MDJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2IkdAgZlJ4fiFZ41VcZyQnyPcLD 1JrASL5+YbYmhmsGRwJSHqZwM0IeKeXyG8GntlwpJG9JSshSskYtHNnsqzh6F+bS egGwVAAPW1EjPlFK6a9/9xO5hCw4dDqdWLx8Jjvgxa5J88JaMAjcQ1hTuNHkNG3M 1gJzxokyvXGMAiPhkWiPdQIiXEOs39fFazH6YYi/DIIHhnsklBc9/Mj0euEUF680 xBbbNmsnPi0ZFkApRAQxbhy2EbAZxFj/zm0gFzN3Yox/gUlVvgVGBcF2nRHuzJKs fjnG1/stFMTScZX8SbS6XGBhVkSRnSGq0GnnNn9WE6zA5FFi8Cq+hLUJQQIDAQAB o4ICXTCCAlkwHQYDVR0OBBYEFJUL2LrGOQZfz33aFHL6zzi/sHArMB8GA1UdIwQY MBaAFLzGPwEMVAvNRVQ0S/uaWaLturwpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdk1ZX0FReFVDODFGVkRSTC01cFpvdTI2dkNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9hMjljNjctZjI0ZC00OTc5LWIyYWYt Y2M0MWM0YTMxOThkLzEvbFF2WXVzWTVCbF9QZmRvVWN2clBPTC13Y0NzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy9hMjljNjctZjI0ZC00OTc5LWIyYWYtY2M0MWM0YTMxOThk LzEvdk1ZX0FReFVDODFGVkRSTC01cFpvdTI2dkNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjA8BAIAATA2AwQCLYokAwQC LZZMAwQCW9ecAwQAkhNpAwQCuRvsAwQCuTUIAwQCuTgcAwQAueraAwQCwKKIMCIE AgACMBwDBQAqAlBgAwUDKgf5wAMFAyoSFoADBQMqEo8AMA0GCSqGSIb3DQEBCwUA A4IBAQAbIXhK+UuI06F8U1eoyS05hLxXSNl+77ijGjKPWd21zqAhAzNiesZbnVuE ojmLxBlPt35I6eM1k3no1K60XpCbH7A97k5UOefDvOnvueUSYUrTYl76mbDSHCgk vhE805NYOUIyDTRKnN1kmofeVlmx4yLcBhoQDwM4GdoN9VHK1g85piQAJhSjk2LA pmG4kriJ/u8dQjsnRb4k67x/d/rnA9Xyz5yOzMC5gEOlui/1YgqRbFcpIco5gode ZLMKo+lA8yvX7RqPCnJLW47fD6perFXVyr39qSg50G1/tqEGq67cZN1rmd8U3qd5 9NZnqsHjRoYNN+SNhoLyaqndKfz+ -----END CERTIFICATE-----Generated at Tue Dec 23 02:01:57 2025 by rpki-client