This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/b487ab-5e31-4117-ada8-a5d3cb918206/1/96vIwkHilvFUiWBW4PufPiXs8Xc.roa File: 96vIwkHilvFUiWBW4PufPiXs8Xc.roa (raw, json) Hash identifier: 4z0rz62JRZZ2Fr+WLR7zv9wYSLzC1Er1yBLihUvuTTQ= Subject key identifier: F7:AB:C8:C2:41:E2:96:F1:54:89:60:56:E0:FB:9F:3E:25:EC:F1:77 Certificate issuer: /CN=a2893a4b284acb5d8a4164289045492109511688 Certificate serial: 019ABA664482E8AFC1153AA2C4872B1ADDDB Authority key identifier: A2:89:3A:4B:28:4A:CB:5D:8A:41:64:28:90:45:49:21:09:51:16:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ook6SyhKy12KQWQokEVJIQlRFog.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/b487ab-5e31-4117-ada8-a5d3cb918206/1/96vIwkHilvFUiWBW4PufPiXs8Xc.roa Signing time: Tue 25 Nov 2025 09:44:15 +0000 ROA not before: Tue 25 Nov 2025 09:44:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9009 IP address blocks: 45.67.101.0/24 maxlen: 24 45.67.102.0/24 maxlen: 24 45.67.103.0/24 maxlen: 24 45.87.168.0/22 maxlen: 24 95.214.136.0/22 maxlen: 24 185.25.156.0/22 maxlen: 24 185.25.157.0/24 maxlen: 24 185.25.158.0/24 maxlen: 24 185.25.159.0/24 maxlen: 24 185.175.160.0/22 maxlen: 24 185.182.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/b487ab-5e31-4117-ada8-a5d3cb918206/1/ook6SyhKy12KQWQokEVJIQlRFog.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/b487ab-5e31-4117-ada8-a5d3cb918206/1/ook6SyhKy12KQWQokEVJIQlRFog.mft rsync://rpki.ripe.net/repository/DEFAULT/ook6SyhKy12KQWQokEVJIQlRFog.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 06:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ba:66:44:82:e8:af:c1:15:3a:a2:c4:87:2b:1a:dd:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2893a4b284acb5d8a4164289045492109511688 Validity Not Before: Nov 25 09:44:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=f7abc8c241e296f154896056e0fb9f3e25ecf177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:25:1d:03:fa:be:9a:53:4f:41:cd:d1:ae:d2: 71:1a:cc:de:84:ab:2e:22:d0:44:75:1e:8c:46:e8: d6:1f:07:62:1a:2e:74:c4:d1:52:66:e3:42:67:f2: b5:62:93:44:d3:c4:d3:7a:10:e8:90:1c:0b:3e:91: 64:d6:b7:4f:fc:6e:9d:5c:3c:af:22:f7:06:df:e5: dc:1b:5f:a3:d6:a9:fb:a0:cf:5c:22:91:81:0f:82: 2c:3e:43:9f:d6:7b:5e:33:f1:cc:a1:3f:9c:01:d7: 5e:0c:1f:06:ee:ab:ed:ab:4b:30:dd:eb:f8:3c:dc: a6:1f:53:4b:80:82:e5:44:1e:4b:13:09:db:dd:bc: 27:3b:a2:49:11:77:73:43:a4:9d:32:04:3c:ad:c4: dc:22:e3:87:61:e9:36:0d:fa:0d:f9:40:41:f6:ec: c7:1a:1e:66:a6:c3:a5:7c:87:37:63:15:ed:a3:f2: b4:10:ba:b5:c7:30:a3:f0:d9:c5:78:27:9c:d7:b5: 1b:29:35:bd:a6:4a:28:d2:81:67:a1:ee:2c:9c:2e: 8e:ac:78:d8:1d:26:b2:7a:a6:0c:c1:a8:ff:90:2e: 01:4d:9f:d8:53:d1:e2:7e:88:32:72:c1:7c:0e:4c: f7:29:96:e6:af:3a:f3:27:c6:5c:cf:a1:3c:07:f7: 3a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:AB:C8:C2:41:E2:96:F1:54:89:60:56:E0:FB:9F:3E:25:EC:F1:77 X509v3 Authority Key Identifier: keyid:A2:89:3A:4B:28:4A:CB:5D:8A:41:64:28:90:45:49:21:09:51:16:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ook6SyhKy12KQWQokEVJIQlRFog.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/b487ab-5e31-4117-ada8-a5d3cb918206/1/96vIwkHilvFUiWBW4PufPiXs8Xc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/b487ab-5e31-4117-ada8-a5d3cb918206/1/ook6SyhKy12KQWQokEVJIQlRFog.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.67.101.0-45.67.103.255 45.87.168.0/22 95.214.136.0/22 185.25.156.0/22 185.175.160.0/22 185.182.240.0/22 Signature Algorithm: sha256WithRSAEncryption 60:29:dc:da:3a:d3:a4:a5:e3:1c:6e:b1:06:62:a4:a7:15:cc: 2a:9f:a6:f9:69:d3:91:ad:8a:c1:cd:eb:f5:a8:c7:bd:b1:2d: 11:07:05:48:fe:17:c9:5b:d5:6b:b7:96:bc:fb:8f:15:cf:74: 5a:d9:7c:d0:f4:33:5f:0f:9f:13:51:be:d1:fb:27:07:29:14: 48:7e:43:43:7d:a3:dd:fd:c9:f6:e6:e7:29:dc:1a:fe:5b:29: 37:35:e2:6b:2b:ea:b2:7e:22:7c:9a:16:1f:a3:5d:4b:17:40: 8c:2b:80:83:4e:12:3e:2d:3a:87:f0:99:d6:c7:f4:1e:1c:7b: 3c:2d:3c:dd:64:03:a7:fa:f3:87:2c:34:4e:cc:be:2e:0b:87: c4:18:bf:ed:98:f7:6f:ba:fa:bc:f2:29:60:06:f9:36:c0:9e: e4:00:1a:02:d2:13:9b:1a:d5:f6:95:e7:0b:78:30:5a:14:52: 9e:cf:c6:33:17:af:73:1e:d3:a3:cf:e4:55:76:cb:86:60:57: ff:15:01:48:d2:e8:14:f4:fa:d7:49:1c:d6:ff:97:19:e6:d3: 63:fe:64:21:80:98:f5:02:b8:a6:ae:78:37:97:e2:21:1d:a8: 46:35:f7:85:8c:40:58:ac:f4:5a:8e:a5:a1:ba:d1:e4:1d:43: 8d:d3:7f:53 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZq6ZkSC6K/BFTqixIcrGt3bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyODkzYTRiMjg0YWNiNWQ4YTQxNjQyODkwNDU0OTIxMDk1 MTE2ODgwHhcNMjUxMTI1MDk0NDE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmN2FiYzhjMjQxZTI5NmYxNTQ4OTYwNTZlMGZiOWYzZTI1ZWNmMTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoiUdA/q+mlNPQc3RrtJxGszehKsu ItBEdR6MRujWHwdiGi50xNFSZuNCZ/K1YpNE08TTehDokBwLPpFk1rdP/G6dXDyv IvcG3+XcG1+j1qn7oM9cIpGBD4IsPkOf1nteM/HMoT+cAddeDB8G7qvtq0sw3ev4 PNymH1NLgILlRB5LEwnb3bwnO6JJEXdzQ6SdMgQ8rcTcIuOHYek2DfoN+UBB9uzH Gh5mpsOlfIc3YxXto/K0ELq1xzCj8NnFeCec17UbKTW9pkoo0oFnoe4snC6OrHjY HSayeqYMwaj/kC4BTZ/YU9HifogycsF8Dkz3KZbmrzrzJ8Zcz6E8B/c6MQIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFPeryMJB4pbxVIlgVuD7nz4l7PF3MB8GA1UdIwQY MBaAFKKJOksoSstdikFkKJBFSSEJURaIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb29rNlN5aEt5MTJLUVdRb2tFVkpJUWxSRm9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iNDg3YWItNWUzMS00MTE3LWFkYTgt YTVkM2NiOTE4MjA2LzEvOTZ2SXdrSGlsdkZVaVdCVzRQdWZQaVhzOFhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9iNDg3YWItNWUzMS00MTE3LWFkYTgtYTVkM2NiOTE4MjA2 LzEvb29rNlN5aEt5MTJLUVdRb2tFVkpJUWxSRm9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsMAwDBAAtQ2UD BAMtQ2ADBAItV6gDBAJf1ogDBAK5GZwDBAK5r6ADBAK5tvAwDQYJKoZIhvcNAQEL BQADggEBAGAp3No606Sl4xxusQZipKcVzCqfpvlp05GtisHN6/Wox72xLREHBUj+ F8lb1Wu3lrz7jxXPdFrZfND0M18PnxNRvtH7JwcpFEh+Q0N9o939yfbm5yncGv5b KTc14msr6rJ+InyaFh+jXUsXQIwrgINOEj4tOofwmdbH9B4cezwtPN1kA6f684cs NE7Mvi4Lh8QYv+2Y92+6+rzyKWAG+TbAnuQAGgLSE5sa1faV5wt4MFoUUp7PxjMX r3Me06PP5FV2y4ZgV/8VAUjS6BT0+tdJHNb/lxnm02P+ZCGAmPUCuKaueDeX4iEd qEY194WMQFis9FqOpaG60eQdQ43Tf1M= -----END CERTIFICATE-----Generated at Wed Dec 3 11:45:24 2025 by rpki-client