This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/8ggPPkcTtwpIduaFZ2ucNmOC18E.roa File: 8ggPPkcTtwpIduaFZ2ucNmOC18E.roa (raw, json) Hash identifier: Xv8NACdtijEIpq02xKtXJiaJWlriVPKXLxQsvd28ePU= Subject key identifier: F2:08:0F:3E:47:13:B7:0A:48:76:E6:85:67:6B:9C:36:63:82:D7:C1 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 019B26BBA32DF447FBCA4D7F7863E21F5F90 Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/8ggPPkcTtwpIduaFZ2ucNmOC18E.roa Signing time: Tue 16 Dec 2025 10:36:29 +0000 ROA not before: Tue 16 Dec 2025 10:36:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 45.155.253.0/24 maxlen: 24 45.157.209.0/24 maxlen: 24 176.125.250.0/24 maxlen: 24 176.125.251.0/24 maxlen: 24 185.199.212.0/23 maxlen: 23 185.199.213.0/24 maxlen: 24 185.199.214.0/23 maxlen: 24 185.221.26.0/24 maxlen: 24 185.225.168.0/24 maxlen: 24 185.225.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:bb:a3:2d:f4:47:fb:ca:4d:7f:78:63:e2:1f:5f:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Dec 16 10:36:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=f2080f3e4713b70a4876e685676b9c366382d7c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7a:c7:6b:c6:64:ff:d5:1a:a3:e6:cb:ac:20: a6:b4:64:6d:be:9a:06:1e:f2:6d:cc:97:32:90:7d: ce:47:84:fb:ef:93:05:27:ee:48:49:1f:59:4d:10: 53:c4:da:14:03:73:d8:37:1a:d4:b4:60:64:aa:44: aa:5a:7f:ee:dc:ca:c1:74:4b:5c:d7:3c:95:d2:d2: b4:30:f1:2d:3b:76:04:60:aa:b2:5a:ac:65:b9:84: 97:a1:87:29:d2:99:7e:88:e2:e0:9a:71:7d:74:74: 3c:d5:00:c8:e0:bb:54:0f:57:a3:39:df:f5:b0:a3: dc:8c:a5:63:ba:14:6e:d2:69:9d:ea:a8:8b:d3:5b: a2:8b:b4:18:21:f8:07:88:4f:2b:fa:2d:15:7b:95: 69:f4:15:86:6a:f5:25:13:f5:53:b6:11:bb:f8:2e: 2e:37:61:34:d6:5b:53:e5:d5:5f:5c:1d:d6:80:b4: 6e:71:cf:82:eb:51:37:3d:a4:e0:cb:29:55:9a:08: ee:c0:34:87:ea:88:e4:40:99:d1:e6:d6:eb:76:ba: e8:8f:3a:4e:20:75:fb:f4:e3:1e:b5:66:d7:1c:e4: a8:53:d7:4f:33:a1:6a:b0:0b:30:43:24:68:7e:16: b6:97:45:ae:cd:58:05:a9:9c:85:bc:b3:54:46:39: 6f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:08:0F:3E:47:13:B7:0A:48:76:E6:85:67:6B:9C:36:63:82:D7:C1 X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/8ggPPkcTtwpIduaFZ2ucNmOC18E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.155.253.0/24 45.157.209.0/24 176.125.250.0/23 185.199.212.0/22 185.221.26.0/24 185.225.168.0/23 Signature Algorithm: sha256WithRSAEncryption 56:5c:21:4f:d4:60:32:e4:c0:ac:a7:7c:7f:7b:12:b8:76:ff: 3d:55:e0:78:b9:07:92:fe:6c:e1:1a:6c:a1:20:d9:64:8b:fc: 03:b1:cd:00:70:5c:ca:1a:2a:9a:c9:64:f9:cc:21:d1:aa:66: f5:43:95:03:db:0c:97:18:9d:29:c8:27:99:cc:60:af:2d:b2: 51:1c:1a:38:86:e7:61:05:a3:85:7b:ac:c2:80:d1:b9:b2:af: fa:ac:1f:a9:21:9e:ce:6a:ca:89:d2:0e:cf:be:d3:df:92:ad: 3c:85:87:c8:6f:5d:8d:16:23:f0:70:e2:57:22:81:64:eb:c2: bb:97:be:ca:bd:9c:2a:5c:8d:ba:24:b0:28:f5:f9:61:57:b9: 76:10:d3:0a:c8:ae:42:7b:8b:23:d6:b2:b4:e8:ad:93:66:1d: c9:4e:ef:8a:ac:0a:1c:11:f7:01:a7:92:d9:08:db:73:cf:ce: 1c:4b:4e:ac:b2:9d:a5:ba:32:6f:8f:1a:d8:b0:39:4e:38:95: f1:92:b9:e5:39:0b:fe:c8:e9:ff:bc:0e:cd:a3:90:28:8f:9d: 20:73:d7:10:e6:e8:f2:58:cd:0f:1c:2e:33:1d:fe:e9:7c:68: 5d:9a:cb:6e:27:fa:4f:6f:65:fe:c5:ed:c6:5b:34:47:92:ba: 3d:5f:31:02 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZsmu6Mt9Ef7yk1/eGPiH1+QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjUxMjE2MTAzNjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMjA4MGYzZTQ3MTNiNzBhNDg3NmU2ODU2NzZiOWMzNjYzODJkN2MxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnrHa8Zk/9Uao+bLrCCmtGRtvpoG HvJtzJcykH3OR4T775MFJ+5ISR9ZTRBTxNoUA3PYNxrUtGBkqkSqWn/u3MrBdEtc 1zyV0tK0MPEtO3YEYKqyWqxluYSXoYcp0pl+iOLgmnF9dHQ81QDI4LtUD1ejOd/1 sKPcjKVjuhRu0mmd6qiL01uii7QYIfgHiE8r+i0Ve5Vp9BWGavUlE/VTthG7+C4u N2E01ltT5dVfXB3WgLRucc+C61E3PaTgyylVmgjuwDSH6ojkQJnR5tbrdrrojzpO IHX79OMetWbXHOSoU9dPM6FqsAswQyRofha2l0WuzVgFqZyFvLNURjlv1QIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFPIIDz5HE7cKSHbmhWdrnDZjgtfBMB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEvOGdnUFBrY1R0d3BJZHVhRloydWNObU9DMThFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQALZv9AwQA LZ3RAwQBsH36AwQCucfUAwQAud0aAwQBueGoMA0GCSqGSIb3DQEBCwUAA4IBAQBW XCFP1GAy5MCsp3x/exK4dv89VeB4uQeS/mzhGmyhINlki/wDsc0AcFzKGiqayWT5 zCHRqmb1Q5UD2wyXGJ0pyCeZzGCvLbJRHBo4hudhBaOFe6zCgNG5sq/6rB+pIZ7O asqJ0g7PvtPfkq08hYfIb12NFiPwcOJXIoFk68K7l77KvZwqXI26JLAo9flhV7l2 ENMKyK5Ce4sj1rK06K2TZh3JTu+KrAocEfcBp5LZCNtzz84cS06ssp2lujJvjxrY sDlOOJXxkrnlOQv+yOn/vA7No5Aoj50gc9cQ5ujyWM0PHC4zHf7pfGhdmstuJ/pP b2X+xe3GWzRHkro9XzEC -----END CERTIFICATE-----Generated at Wed Dec 17 18:07:07 2025 by rpki-client