This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/rxulmmTM3aUPLuBlu9rO1gYtU0E.roa File: rxulmmTM3aUPLuBlu9rO1gYtU0E.roa (raw, json) Hash identifier: mlQ5fN4qWCNRmduR+b96aoxJGllKwLF1otEUmt6MRxw= Subject key identifier: AF:1B:A5:9A:64:CC:DD:A5:0F:2E:E0:65:BB:DA:CE:D6:06:2D:53:41 Certificate issuer: /CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72 Certificate serial: 019AE9776B2F7B444A83EBF9C4DD87440378 Authority key identifier: C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/rxulmmTM3aUPLuBlu9rO1gYtU0E.roa Signing time: Thu 04 Dec 2025 13:05:08 +0000 ROA not before: Thu 04 Dec 2025 13:05:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 48678 IP address blocks: 185.250.240.0/24 maxlen: 24 185.250.242.0/24 maxlen: 24 185.250.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.mft rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e9:77:6b:2f:7b:44:4a:83:eb:f9:c4:dd:87:44:03:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72 Validity Not Before: Dec 4 13:05:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=af1ba59a64ccdda50f2ee065bbdaced6062d5341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:49:37:07:43:90:6c:43:01:06:c6:a0:83:fe: 19:5f:0e:c1:8e:69:fe:d8:fd:c0:85:0d:d5:50:2d: 88:aa:9c:62:7c:f9:46:b1:8b:54:bb:cd:66:ff:04: b8:7f:a9:3e:9e:56:e6:43:9c:49:b2:5e:a5:44:ec: 0b:8b:44:62:cc:69:ba:5a:f2:e3:31:f6:f8:20:88: 88:cc:2c:b7:65:3a:67:15:f3:9e:99:21:53:2d:cf: 87:fb:88:73:51:f6:af:7e:2a:26:db:1a:6b:02:bd: 67:5f:2e:22:fa:61:32:85:7e:39:27:fc:d5:98:2f: 09:90:24:04:1d:bb:c9:ea:1f:b0:dc:5b:0e:db:4b: f5:6a:a9:68:17:d7:eb:65:aa:57:66:bc:9f:2f:95: af:5e:9d:70:e8:28:c7:1f:59:7f:ec:d1:56:1c:c5: b4:fa:82:06:bb:8e:cd:cf:ca:fc:63:bf:7b:b3:0c: 96:04:3d:d4:08:41:e8:68:ac:78:5a:b3:e4:1c:24: d0:f4:f7:db:d2:5d:9e:6f:e1:1f:03:5d:21:09:1f: 4a:17:3b:cf:cc:e8:9d:1a:a4:02:a7:05:9a:4f:87: 4e:d4:c7:cd:20:ee:96:20:3f:35:27:e0:da:5c:a8: 0a:db:36:0d:ec:df:08:ca:3b:2b:c1:4e:a6:ef:76: cf:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1B:A5:9A:64:CC:DD:A5:0F:2E:E0:65:BB:DA:CE:D6:06:2D:53:41 X509v3 Authority Key Identifier: keyid:C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/rxulmmTM3aUPLuBlu9rO1gYtU0E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.250.240.0/24 185.250.242.0/23 Signature Algorithm: sha256WithRSAEncryption 96:c0:42:21:9c:35:fe:91:14:ae:e9:8a:f5:42:ae:d6:5d:b1: 77:44:15:08:36:47:e9:51:7b:0a:13:6d:1e:bf:aa:db:c5:aa: 01:70:05:c5:2e:cd:13:8e:e6:2f:aa:f8:0f:56:2f:a4:88:37: cb:15:99:08:ed:b9:f6:8c:f8:12:ed:47:7f:13:8a:dd:7e:cd: a5:a8:40:20:14:20:43:8e:79:43:e1:a8:be:72:f0:9c:11:8c: 34:24:ae:7a:e0:4b:ef:d1:b8:cf:7b:1a:ea:21:c3:16:77:56: f7:52:1d:b4:a2:8a:e9:20:85:92:ba:59:5e:91:78:54:18:df: 1b:69:ab:d8:2c:6e:9f:86:1a:f4:dd:27:6f:54:4f:40:bc:52: 41:cb:da:63:56:ed:ea:6e:b9:4a:00:5f:09:85:c5:de:1b:c9: f1:ce:35:f3:59:18:17:a1:3f:db:59:5b:28:1d:0b:92:26:14: ad:31:bd:94:a8:ee:3c:33:38:54:fb:b9:a6:85:df:4d:03:8f: 67:4e:ce:95:6a:73:63:0b:40:30:97:07:ac:e0:c0:85:13:20: 01:53:30:15:ee:08:3d:82:f2:ad:69:24:24:ae:e1:0c:2d:d6: f4:d6:8b:c9:03:02:88:6e:95:9c:84:ce:f5:07:41:19:2e:fb: a8:2a:4e:a4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZrpd2sve0RKg+v5xN2HRAN4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyZDJhYzFkN2M5ZWNjZjU2NThiODhmMTZmNjEzZDdiM2U4 ZThjNzIwHhcNMjUxMjA0MTMwNTA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjFiYTU5YTY0Y2NkZGE1MGYyZWUwNjViYmRhY2VkNjA2MmQ1MzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA20k3B0OQbEMBBsagg/4ZXw7Bjmn+ 2P3AhQ3VUC2IqpxifPlGsYtUu81m/wS4f6k+nlbmQ5xJsl6lROwLi0RizGm6WvLj Mfb4IIiIzCy3ZTpnFfOemSFTLc+H+4hzUfavfiom2xprAr1nXy4i+mEyhX45J/zV mC8JkCQEHbvJ6h+w3FsO20v1aqloF9frZapXZryfL5WvXp1w6CjHH1l/7NFWHMW0 +oIGu47Nz8r8Y797swyWBD3UCEHoaKx4WrPkHCTQ9Pfb0l2eb+EfA10hCR9KFzvP zOidGqQCpwWaT4dO1MfNIO6WID81J+DaXKgK2zYN7N8IyjsrwU6m73bPNwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFK8bpZpkzN2lDy7gZbvaztYGLVNBMB8GA1UdIwQY MBaAFMLSrB18nsz1ZYuI8W9hPXs+joxyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd3RLc0hYeWV6UFZsaTRqeGIyRTllejZPakhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC84YjFiYzItNTkyNi00YWNlLWIxNmYt MTk3ZmU4MzY1NjQzLzEvcnh1bG1tVE0zYVVQTHVCbHU5ck8xZ1l0VTBFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC84YjFiYzItNTkyNi00YWNlLWIxNmYtMTk3ZmU4MzY1NjQz LzEvd3RLc0hYeWV6UFZsaTRqeGIyRTllejZPakhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAufrwAwQB ufryMA0GCSqGSIb3DQEBCwUAA4IBAQCWwEIhnDX+kRSu6Yr1Qq7WXbF3RBUINkfp UXsKE20ev6rbxaoBcAXFLs0TjuYvqvgPVi+kiDfLFZkI7bn2jPgS7Ud/E4rdfs2l qEAgFCBDjnlD4ai+cvCcEYw0JK564Evv0bjPexrqIcMWd1b3Uh20oorpIIWSulle kXhUGN8baavYLG6fhhr03SdvVE9AvFJBy9pjVu3qbrlKAF8JhcXeG8nxzjXzWRgX oT/bWVsoHQuSJhStMb2UqO48MzhU+7mmhd9NA49nTs6VanNjC0Awlwes4MCFEyAB UzAV7gg9gvKtaSQkruEMLdb01ovJAwKIbpWchM71B0EZLvuoKk6k -----END CERTIFICATE-----Generated at Fri Dec 5 09:28:55 2025 by rpki-client