This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/pkgADNAfz09-oaAdnI75ykFSSAo.roa File: pkgADNAfz09-oaAdnI75ykFSSAo.roa (raw, json) Hash identifier: MuieRTuxtPsTfDo1enRicQpjQc/dAw9joMOV5dvGUeE= Subject key identifier: A6:48:00:0C:D0:1F:CF:4F:7E:A1:A0:1D:9C:8E:F9:CA:41:52:48:0A Certificate issuer: /CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe Certificate serial: 019AFF12B3136496CE7DA998264A04B966A3 Authority key identifier: B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/pkgADNAfz09-oaAdnI75ykFSSAo.roa Signing time: Mon 08 Dec 2025 17:46:46 +0000 ROA not before: Mon 08 Dec 2025 17:46:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 10753 IP address blocks: 83.143.168.0/24 maxlen: 24 83.143.169.0/24 maxlen: 24 83.143.170.0/24 maxlen: 24 83.143.172.0/24 maxlen: 24 83.143.173.0/24 maxlen: 24 128.0.40.0/24 maxlen: 24 212.86.96.0/24 maxlen: 24 212.86.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 10:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ff:12:b3:13:64:96:ce:7d:a9:98:26:4a:04:b9:66:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe Validity Not Before: Dec 8 17:46:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=a648000cd01fcf4f7ea1a01d9c8ef9ca4152480a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9a:26:b5:1d:ec:10:22:bf:c6:78:d7:3b:10: 4f:c8:a9:08:15:b1:09:46:80:20:c9:65:33:27:e3: 88:b1:4d:65:29:b7:f9:dc:1d:f0:95:47:1a:75:21: eb:b1:9b:76:66:82:e6:6e:64:3d:17:66:f1:1f:1c: e3:3b:fe:5b:35:15:68:47:95:d4:9e:5d:78:49:79: 15:7d:e3:c4:52:96:72:e3:03:06:35:2b:ee:57:76: cd:6f:fe:51:85:bf:db:cd:3b:4e:a1:97:1e:be:f5: b0:45:18:31:34:74:b7:10:da:18:73:b0:de:75:d3: 7e:7d:50:fe:d6:3d:9a:ea:a5:46:86:77:93:09:8c: 33:d3:5e:1c:61:69:00:63:cf:d6:98:c0:29:86:f1: d3:6a:03:42:a0:0e:7c:8a:52:e1:05:52:43:67:fd: bf:fe:73:04:7b:0b:f2:c0:52:3b:48:a4:3c:4b:20: 6d:b6:6c:fe:b8:a1:e2:59:49:86:07:11:6c:51:81: cc:00:ca:e3:86:be:f2:53:ca:71:5b:0a:83:05:70: c8:8c:fa:27:3d:db:99:c8:86:60:78:51:b8:20:fb: f2:4a:7a:d3:a0:6f:1b:7e:3c:08:36:e4:5e:18:09: 70:02:eb:0b:0b:70:f6:b9:5f:11:c5:5b:07:f1:cb: 5b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:48:00:0C:D0:1F:CF:4F:7E:A1:A0:1D:9C:8E:F9:CA:41:52:48:0A X509v3 Authority Key Identifier: keyid:B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/pkgADNAfz09-oaAdnI75ykFSSAo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.143.168.0-83.143.170.255 83.143.172.0/23 128.0.40.0/24 212.86.96.0/24 212.86.106.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:2b:ab:73:b6:98:4f:46:06:96:10:2f:bc:8c:0d:62:54:cd: 3d:80:8d:b9:06:9a:c5:96:e4:4e:f7:a4:15:cb:6d:b1:f6:0e: 9c:b2:71:0c:7f:9a:5b:2f:a2:9d:07:92:59:56:c7:f3:bd:55: 6d:1b:de:1e:18:48:b6:16:78:e8:1b:da:98:9c:f7:d8:72:d6: 7d:1a:36:19:d6:a6:93:9d:92:1c:4b:62:20:db:82:5f:53:f8: 14:4d:ab:f7:15:93:fb:5e:40:13:fe:0b:11:6c:9b:6e:ec:cc: c3:ac:12:26:6a:36:94:c8:86:be:e9:c4:be:4c:4e:40:14:83: 05:d6:b5:5c:2d:46:e7:c7:6a:3e:24:bb:a4:fb:59:97:48:ce: 97:d0:80:f8:65:61:f6:53:7c:e3:8e:3f:6c:58:4b:64:68:51: e7:4b:04:bc:15:bb:14:63:01:97:af:9a:eb:b7:a4:1b:e2:52: 33:87:03:eb:2d:07:37:b0:1e:71:95:0a:c1:10:1b:93:28:d3: 24:a4:a0:0c:97:c1:d3:33:5d:22:36:f2:ad:da:54:dd:96:9d: 91:1c:65:c0:4e:5e:8d:d0:2e:2e:57:fc:68:df:28:06:3e:fe: 5e:be:6f:54:7d:b3:7d:a1:f4:37:bd:e9:d9:70:58:4a:27:5f: 1c:66:69:ba -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZr/ErMTZJbOfamYJkoEuWajMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0NTk5OTg5OWY3NmQyZTJlNGNjZGZjODE3Zjk4NzljZmFj MDZiYmUwHhcNMjUxMjA4MTc0NjQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNjQ4MDAwY2QwMWZjZjRmN2VhMWEwMWQ5YzhlZjljYTQxNTI0ODBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJomtR3sECK/xnjXOxBPyKkIFbEJ RoAgyWUzJ+OIsU1lKbf53B3wlUcadSHrsZt2ZoLmbmQ9F2bxHxzjO/5bNRVoR5XU nl14SXkVfePEUpZy4wMGNSvuV3bNb/5Rhb/bzTtOoZcevvWwRRgxNHS3ENoYc7De ddN+fVD+1j2a6qVGhneTCYwz014cYWkAY8/WmMAphvHTagNCoA58ilLhBVJDZ/2/ /nMEewvywFI7SKQ8SyBttmz+uKHiWUmGBxFsUYHMAMrjhr7yU8pxWwqDBXDIjPon PduZyIZgeFG4IPvySnrToG8bfjwINuReGAlwAusLC3D2uV8RxVsH8ctbBQIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFKZIAAzQH89PfqGgHZyO+cpBUkgKMB8GA1UdIwQY MBaAFLRZmYmfdtLi5MzfyBf5h5z6wGu+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEZtWmlaOTIwdUxrek5fSUZfbUhuUHJBYTc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9jYjdiMjEtMzM1Yy00MmNhLTg1OWUt NzM0MjhmOWM3YmZmLzEvcGtnQUROQWZ6MDktb2FBZG5JNzV5a0ZTU0FvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9jYjdiMjEtMzM1Yy00MmNhLTg1OWUtNzM0MjhmOWM3YmZm LzEvdEZtWmlaOTIwdUxrek5fSUZfbUhuUHJBYTc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmMAwDBANTj6gD BABTj6oDBAFTj6wDBACAACgDBADUVmADBADUVmowDQYJKoZIhvcNAQELBQADggEB AG8rq3O2mE9GBpYQL7yMDWJUzT2AjbkGmsWW5E73pBXLbbH2DpyycQx/mlsvop0H kllWx/O9VW0b3h4YSLYWeOgb2pic99hy1n0aNhnWppOdkhxLYiDbgl9T+BRNq/cV k/teQBP+CxFsm27szMOsEiZqNpTIhr7pxL5MTkAUgwXWtVwtRufHaj4ku6T7WZdI zpfQgPhlYfZTfOOOP2xYS2RoUedLBLwVuxRjAZevmuu3pBviUjOHA+stBzewHnGV CsEQG5Mo0ySkoAyXwdMzXSI28q3aVN2WnZEcZcBOXo3QLi5X/GjfKAY+/l6+b1R9 s32h9De96dlwWEonXxxmabo= -----END CERTIFICATE-----Generated at Thu Dec 11 16:26:38 2025 by rpki-client