This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/xWdPGfUORMQyu6s_IZTLuvQgjEM.roa File: xWdPGfUORMQyu6s_IZTLuvQgjEM.roa (raw, json) Hash identifier: u3ucBkdHsz588P9alUa6oJQ8UkwrPk4NtV/qBLr/KPI= Subject key identifier: C5:67:4F:19:F5:0E:44:C4:32:BB:AB:3F:21:94:CB:BA:F4:20:8C:43 Certificate issuer: /CN=1e95a069669ed5a766eee8ebdc32e39fb148410b Certificate serial: 019B01D191010E0070F33C24BBD926E0903E Authority key identifier: 1E:95:A0:69:66:9E:D5:A7:66:EE:E8:EB:DC:32:E3:9F:B1:48:41:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpWgaWae1adm7ujr3DLjn7FIQQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/xWdPGfUORMQyu6s_IZTLuvQgjEM.roa Signing time: Tue 09 Dec 2025 06:34:29 +0000 ROA not before: Tue 09 Dec 2025 06:34:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 44125 IP address blocks: 45.152.24.0/22 maxlen: 24 185.149.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/HpWgaWae1adm7ujr3DLjn7FIQQs.crl rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/HpWgaWae1adm7ujr3DLjn7FIQQs.mft rsync://rpki.ripe.net/repository/DEFAULT/HpWgaWae1adm7ujr3DLjn7FIQQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:01:d1:91:01:0e:00:70:f3:3c:24:bb:d9:26:e0:90:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e95a069669ed5a766eee8ebdc32e39fb148410b Validity Not Before: Dec 9 06:34:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=c5674f19f50e44c432bbab3f2194cbbaf4208c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:96:23:5b:9b:62:33:8f:22:c8:be:2b:4c:35: e3:91:8d:ed:f2:b6:3a:4f:e5:69:7a:a8:de:e7:a5: 43:a1:3b:be:b8:48:35:c3:5f:72:32:68:46:df:2d: e4:8f:bd:3b:83:31:43:91:06:24:04:25:ce:f0:e0: eb:47:23:2b:3a:16:98:0f:b6:e5:04:19:49:df:f9: f2:98:20:93:56:fa:19:4d:2b:93:99:c8:8e:db:3b: b9:7a:b1:6b:05:07:5d:a2:35:a5:15:c8:74:d8:a4: f8:9d:bb:37:f4:00:ae:3a:3a:b6:04:cd:c0:5b:03: a3:c2:06:4c:bc:17:b8:9a:3a:af:01:09:39:cb:9a: d9:3f:2e:1a:b7:24:0d:38:e2:8e:9b:1e:58:51:8e: 24:ef:ab:2e:b6:85:5c:89:35:57:89:96:37:20:a7: a2:8e:93:96:2f:34:18:c2:08:7e:fb:33:70:27:dc: dc:8c:33:53:b1:6a:7c:0f:50:6c:f0:8a:24:45:86: bc:92:07:48:f7:91:3b:b1:85:5e:43:18:9a:58:7b: f9:a0:ed:d3:70:f2:e6:f0:2d:6f:f1:9d:e6:f0:39: 4f:7f:b4:ba:7d:b1:50:cf:42:ca:52:c2:17:7b:cc: ec:d8:5e:74:d2:3e:22:77:c1:b0:a8:b6:2d:32:35: e9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:67:4F:19:F5:0E:44:C4:32:BB:AB:3F:21:94:CB:BA:F4:20:8C:43 X509v3 Authority Key Identifier: keyid:1E:95:A0:69:66:9E:D5:A7:66:EE:E8:EB:DC:32:E3:9F:B1:48:41:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpWgaWae1adm7ujr3DLjn7FIQQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/xWdPGfUORMQyu6s_IZTLuvQgjEM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/HpWgaWae1adm7ujr3DLjn7FIQQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.152.24.0/22 185.149.196.0/22 Signature Algorithm: sha256WithRSAEncryption 62:9a:d5:1d:73:91:c2:f9:17:30:07:f6:f9:1b:87:35:8b:9c: 9f:f5:84:87:71:39:67:a7:ac:c1:27:d1:cf:0a:24:ce:16:0b: dd:00:74:9e:55:36:8a:e8:e9:da:65:ff:93:1f:2f:c1:d1:09: 03:63:7f:2c:71:e6:28:15:5b:23:45:85:60:37:18:df:f1:94: 23:c6:f0:55:d4:33:f9:ae:b6:4e:21:9e:8f:e5:dd:71:8a:e1: bd:96:05:ab:f9:cc:35:65:7b:f3:d2:d0:05:8c:b0:31:5b:1d: 93:43:c7:92:66:8e:b6:ce:06:f5:d9:0b:59:9c:11:c7:59:e1: a4:ae:b4:e5:a2:1d:94:dd:69:17:be:f0:6e:98:61:88:0f:9b: 3a:3a:41:7e:63:9a:02:37:a6:ec:9f:06:53:2e:54:dc:73:cf: 33:a9:aa:1d:aa:9c:cb:9f:2c:43:80:4b:44:9a:e7:59:a8:ba: 2e:f7:3b:a8:65:2e:0c:ce:d4:25:59:bc:ba:2d:ea:7a:9f:a5: 2c:f7:4f:39:b1:6a:cb:dd:1c:ee:63:78:c9:17:9a:9c:60:89: 94:1b:ee:22:3b:c0:61:49:3f:c3:80:49:7f:49:11:36:c5:e5: f7:db:72:cd:85:7f:8f:e0:85:08:c9:c3:88:db:6e:f7:b5:bf: ae:93:d3:2c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZsB0ZEBDgBw8zwku9km4JA+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlOTVhMDY5NjY5ZWQ1YTc2NmVlZThlYmRjMzJlMzlmYjE0 ODQxMGIwHhcNMjUxMjA5MDYzNDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTY3NGYxOWY1MGU0NGM0MzJiYmFiM2YyMTk0Y2JiYWY0MjA4YzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpYjW5tiM48iyL4rTDXjkY3t8rY6 T+Vpeqje56VDoTu+uEg1w19yMmhG3y3kj707gzFDkQYkBCXO8ODrRyMrOhaYD7bl BBlJ3/nymCCTVvoZTSuTmciO2zu5erFrBQddojWlFch02KT4nbs39ACuOjq2BM3A WwOjwgZMvBe4mjqvAQk5y5rZPy4atyQNOOKOmx5YUY4k76sutoVciTVXiZY3IKei jpOWLzQYwgh++zNwJ9zcjDNTsWp8D1Bs8IokRYa8kgdI95E7sYVeQxiaWHv5oO3T cPLm8C1v8Z3m8DlPf7S6fbFQz0LKUsIXe8zs2F500j4id8GwqLYtMjXp3QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMVnTxn1DkTEMrurPyGUy7r0IIxDMB8GA1UdIwQY MBaAFB6VoGlmntWnZu7o69wy45+xSEELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHBXZ2FXYWUxYWRtN3VqcjNETGpuN0ZJUVFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8xMDc0NTYtZGY1My00MjRkLTkzMjAt OTMzYmZhNTkyYjFkLzEveFdkUEdmVU9STVF5dTZzX0laVEx1dlFnakVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8xMDc0NTYtZGY1My00MjRkLTkzMjAtOTMzYmZhNTkyYjFk LzEvSHBXZ2FXYWUxYWRtN3VqcjNETGpuN0ZJUVFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLZgYAwQC uZXEMA0GCSqGSIb3DQEBCwUAA4IBAQBimtUdc5HC+RcwB/b5G4c1i5yf9YSHcTln p6zBJ9HPCiTOFgvdAHSeVTaK6OnaZf+THy/B0QkDY38sceYoFVsjRYVgNxjf8ZQj xvBV1DP5rrZOIZ6P5d1xiuG9lgWr+cw1ZXvz0tAFjLAxWx2TQ8eSZo62zgb12QtZ nBHHWeGkrrTloh2U3WkXvvBumGGID5s6OkF+Y5oCN6bsnwZTLlTcc88zqaodqpzL nyxDgEtEmudZqLou9zuoZS4MztQlWby6Lep6n6Us9085sWrL3RzuY3jJF5qcYImU G+4iO8BhST/DgEl/SRE2xeX323LNhX+P4IUIycOI2273tb+uk9Ms -----END CERTIFICATE-----Generated at Sun Dec 14 13:48:01 2025 by rpki-client