This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/ImIMpyzmy0FEM_jO2rXeZAmm028.roa File: ImIMpyzmy0FEM_jO2rXeZAmm028.roa (raw, json) Hash identifier: BrRB0TTJOHq5tezchummHGAPB0HvKCmejoR+4CF6inA= Subject key identifier: 22:62:0C:A7:2C:E6:CB:41:44:33:F8:CE:DA:B5:DE:64:09:A6:D3:6F Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c Certificate serial: 019B0281026E26236905DA3C1B5F5D2D3F28 Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/ImIMpyzmy0FEM_jO2rXeZAmm028.roa Signing time: Tue 09 Dec 2025 09:46:07 +0000 ROA not before: Tue 09 Dec 2025 09:46:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 48579 IP address blocks: 88.80.0.0/22 maxlen: 24 88.80.4.0/22 maxlen: 24 88.80.8.0/22 maxlen: 24 88.80.12.0/22 maxlen: 24 91.197.40.0/22 maxlen: 24 185.24.132.0/22 maxlen: 24 185.141.30.0/23 maxlen: 24 212.237.144.0/22 maxlen: 24 212.237.148.0/22 maxlen: 24 217.61.244.0/22 maxlen: 24 2a07:2180::/32 maxlen: 48 2a07:2182::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:02:81:02:6e:26:23:69:05:da:3c:1b:5f:5d:2d:3f:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c Validity Not Before: Dec 9 09:46:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=22620ca72ce6cb414433f8cedab5de6409a6d36f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:37:b0:52:d1:3a:a2:62:1d:1d:91:75:1e:7e: f9:d4:e9:69:8c:c9:33:b5:0e:5a:90:5c:45:ee:70: 3d:2d:71:1c:38:58:11:e5:87:7d:f1:00:ca:16:7b: e9:55:9c:27:75:13:be:e5:a8:ad:d7:de:3d:f5:95: 73:91:54:34:dd:d1:26:1d:b6:b3:a0:c9:98:f2:de: 4f:3a:1a:ea:35:f7:48:74:54:78:a2:a6:c3:9f:6d: d4:a5:46:06:8d:63:b4:1c:c0:ad:bc:7c:e4:fc:d9: a5:c0:f4:35:56:29:3c:9f:bd:ee:ed:98:78:e2:c3: f2:52:18:53:98:1f:fd:c0:15:aa:36:34:b8:1a:63: ec:bc:e8:07:85:f0:66:37:80:74:fe:60:ce:c5:76: d0:ba:53:78:02:30:3e:0f:b2:8d:0c:5d:70:ee:8e: 96:ad:1d:49:d6:e3:b0:3d:24:cd:93:5d:7a:55:89: e2:7b:ee:90:bc:17:e0:7e:a2:93:de:e0:cd:8e:6e: 65:3a:6e:3d:fd:00:0c:9c:5b:4b:49:cf:ae:26:2c: a6:0e:7e:3c:39:ce:20:83:eb:c3:42:86:3d:25:5f: de:2e:16:f8:01:4c:7a:0f:1f:72:c0:85:fa:b5:b2: cd:56:f4:ff:f2:b2:cf:c4:c9:74:a5:25:10:7a:d4: 4a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:62:0C:A7:2C:E6:CB:41:44:33:F8:CE:DA:B5:DE:64:09:A6:D3:6F X509v3 Authority Key Identifier: keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/ImIMpyzmy0FEM_jO2rXeZAmm028.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.80.0.0/20 91.197.40.0/22 185.24.132.0/22 185.141.30.0/23 212.237.144.0/21 217.61.244.0/22 IPv6: 2a07:2180::/32 2a07:2182::/32 Signature Algorithm: sha256WithRSAEncryption 3c:0e:56:5e:40:9b:9f:1f:2d:56:5a:17:95:d0:56:c6:85:24: ce:9b:c2:65:28:f8:22:fc:65:4c:50:15:dc:b8:68:7d:6a:a9: 41:f8:05:e6:f8:3a:19:c8:2d:85:79:a5:17:50:c0:a2:7a:ea: 73:e2:c1:45:90:0a:c6:bd:e2:96:24:48:3b:8d:16:6c:b1:2c: db:92:23:4c:70:ec:81:f6:02:f9:90:93:44:6c:ce:f3:cb:fc: 9f:ac:4f:73:91:38:cd:ad:42:bc:f1:94:35:2b:26:79:de:6e: 16:34:5e:bc:af:1c:0c:b2:57:27:fc:36:df:49:43:a0:95:30: aa:22:85:ef:f7:b8:d5:7a:54:34:f6:ee:9c:16:31:38:e5:6b: e8:8f:88:b9:08:7a:81:f5:2e:03:46:cc:96:92:2b:12:49:98: 40:c3:d7:a8:09:99:0b:27:e4:34:88:a8:b7:0c:44:be:f9:82: 35:e0:56:5a:5c:22:17:d5:81:3f:39:38:c3:55:e8:79:78:fe: 18:db:0d:84:eb:b6:49:75:cd:89:4f:c0:5d:0e:ac:24:1e:e5: 0f:a4:c4:6c:bf:43:98:76:bc:0b:f0:23:d9:01:86:15:17:a4: 8e:46:3c:e7:58:26:6b:e2:b9:d2:f8:66:e7:90:f3:25:e8:4f: 41:8a:8c:c2 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZsCgQJuJiNpBdo8G19dLT8oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0M2I5N2ExZDIxZjYzN2I1NDkxMzBmMDg1N2E2ODFjYzdm Njg4NGMwHhcNMjUxMjA5MDk0NjA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjYyMGNhNzJjZTZjYjQxNDQzM2Y4Y2VkYWI1ZGU2NDA5YTZkMzZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6DewUtE6omIdHZF1Hn751OlpjMkz tQ5akFxF7nA9LXEcOFgR5Yd98QDKFnvpVZwndRO+5ait19499ZVzkVQ03dEmHbaz oMmY8t5POhrqNfdIdFR4oqbDn23UpUYGjWO0HMCtvHzk/NmlwPQ1Vik8n73u7Zh4 4sPyUhhTmB/9wBWqNjS4GmPsvOgHhfBmN4B0/mDOxXbQulN4AjA+D7KNDF1w7o6W rR1J1uOwPSTNk116VYnie+6QvBfgfqKT3uDNjm5lOm49/QAMnFtLSc+uJiymDn48 Oc4gg+vDQoY9JV/eLhb4AUx6Dx9ywIX6tbLNVvT/8rLPxMl0pSUQetRK/QIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFCJiDKcs5stBRDP4ztq13mQJptNvMB8GA1UdIwQY MBaAFLQ7l6HSH2N7VJEw8IV6aBzH9ohMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0Yjkt MDQ2NGU5NDVmMWNjLzEvSW1JTXB5em15MEZFTV9qTzJyWGVaQW1tMDI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0YjktMDQ2NGU5NDVmMWNj LzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAqBAIAATAkAwQEWFAAAwQC W8UoAwQCuRiEAwQBuY0eAwQD1O2QAwQC2T30MBQEAgACMA4DBQAqByGAAwUAKgch gjANBgkqhkiG9w0BAQsFAAOCAQEAPA5WXkCbnx8tVloXldBWxoUkzpvCZSj4Ivxl TFAV3LhofWqpQfgF5vg6GcgthXmlF1DAonrqc+LBRZAKxr3iliRIO40WbLEs25Ij THDsgfYC+ZCTRGzO88v8n6xPc5E4za1CvPGUNSsmed5uFjRevK8cDLJXJ/w230lD oJUwqiKF7/e41XpUNPbunBYxOOVr6I+IuQh6gfUuA0bMlpIrEkmYQMPXqAmZCyfk NIiotwxEvvmCNeBWWlwiF9WBPzk4w1XoeXj+GNsNhOu2SXXNiU/AXQ6sJB7lD6TE bL9DmHa8C/Aj2QGGFRekjkY851gma+K50vhm55DzJehPQYqMwg== -----END CERTIFICATE-----Generated at Fri Dec 19 14:47:44 2025 by rpki-client