This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/1279fc-1b27-407c-81f4-a7fb36cc2fe3/1/5Od0XxOLXqRNBzSujCFvI1DQ_2U.roa File: 5Od0XxOLXqRNBzSujCFvI1DQ_2U.roa (raw, json) Hash identifier: pV6XWWVsE11w5zGYB+1LqJTS7UdxegBz6SJzFBXmujU= Subject key identifier: E4:E7:74:5F:13:8B:5E:A4:4D:07:34:AE:8C:21:6F:23:50:D0:FF:65 Certificate issuer: /CN=751483655b35a2b847185f689c8fd1601dcc7187 Certificate serial: 019B4C1DA4CCB280FEEB45843A0D0558AF42 Authority key identifier: 75:14:83:65:5B:35:A2:B8:47:18:5F:68:9C:8F:D1:60:1D:CC:71:87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dRSDZVs1orhHGF9onI_RYB3McYc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/1279fc-1b27-407c-81f4-a7fb36cc2fe3/1/5Od0XxOLXqRNBzSujCFvI1DQ_2U.roa Signing time: Tue 23 Dec 2025 16:49:29 +0000 ROA not before: Tue 23 Dec 2025 16:49:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 35171 IP address blocks: 45.143.32.0/22 maxlen: 22 45.143.32.0/24 maxlen: 24 45.143.33.0/24 maxlen: 24 45.143.34.0/24 maxlen: 24 45.143.35.0/24 maxlen: 24 85.118.240.0/21 maxlen: 21 85.118.240.0/24 maxlen: 24 85.118.241.0/24 maxlen: 24 85.118.242.0/24 maxlen: 24 85.118.243.0/24 maxlen: 24 85.118.244.0/24 maxlen: 24 85.118.245.0/24 maxlen: 24 85.118.246.0/24 maxlen: 24 85.118.247.0/24 maxlen: 24 2a11:5f40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/1279fc-1b27-407c-81f4-a7fb36cc2fe3/1/dRSDZVs1orhHGF9onI_RYB3McYc.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/1279fc-1b27-407c-81f4-a7fb36cc2fe3/1/dRSDZVs1orhHGF9onI_RYB3McYc.mft rsync://rpki.ripe.net/repository/DEFAULT/dRSDZVs1orhHGF9onI_RYB3McYc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4c:1d:a4:cc:b2:80:fe:eb:45:84:3a:0d:05:58:af:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=751483655b35a2b847185f689c8fd1601dcc7187 Validity Not Before: Dec 23 16:49:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e4e7745f138b5ea44d0734ae8c216f2350d0ff65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6d:ae:a9:ae:35:ce:9c:d5:d0:5f:16:8b:45: 53:fe:91:66:2c:e2:9f:ba:a3:1c:b3:5c:ab:1f:d0: 15:c4:2d:9e:2d:96:c3:5f:81:7f:5b:56:b9:f6:f7: cc:e0:2e:a2:dc:f7:cb:a1:36:24:75:3e:3a:68:ba: da:83:31:43:00:62:5e:7f:1f:97:c0:cf:3d:36:f3: e4:8c:45:40:1e:e2:5f:94:7a:e2:ad:2e:24:5e:59: 88:c2:96:d5:28:b7:60:0b:ce:a5:2b:ab:4b:85:15: 80:e0:d0:d8:ac:0d:49:38:22:0d:28:c0:c0:0b:81: 14:c9:41:ed:62:84:21:3b:4d:26:0a:1a:5b:40:05: 3f:8b:b0:c6:28:05:39:53:24:ac:07:bf:86:bd:37: 2a:93:b8:db:2e:40:25:ca:69:47:ed:77:c7:8c:9a: 2b:26:c2:ad:fa:c9:a7:1d:ad:84:ce:d5:65:d5:8b: 15:13:bd:09:a3:d4:9a:e4:ea:c3:cd:5d:3e:89:08: a4:97:90:34:47:c2:ed:94:56:e9:d5:e0:40:df:f2: 89:ac:58:bd:74:7d:08:71:48:0f:e2:0e:2b:74:c6: 1e:16:db:ec:ee:c9:63:7c:4f:ce:13:a5:8c:e4:97: 7e:d3:fa:5a:07:6d:d3:54:fe:13:64:02:e2:b3:9c: 98:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E7:74:5F:13:8B:5E:A4:4D:07:34:AE:8C:21:6F:23:50:D0:FF:65 X509v3 Authority Key Identifier: keyid:75:14:83:65:5B:35:A2:B8:47:18:5F:68:9C:8F:D1:60:1D:CC:71:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dRSDZVs1orhHGF9onI_RYB3McYc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1279fc-1b27-407c-81f4-a7fb36cc2fe3/1/5Od0XxOLXqRNBzSujCFvI1DQ_2U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1279fc-1b27-407c-81f4-a7fb36cc2fe3/1/dRSDZVs1orhHGF9onI_RYB3McYc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.32.0/22 85.118.240.0/21 IPv6: 2a11:5f40::/29 Signature Algorithm: sha256WithRSAEncryption 04:bd:5d:04:e9:d5:e4:3c:6c:20:66:6b:c7:57:d6:d0:19:71: 94:ab:cc:4b:b4:87:27:d4:14:7c:52:2a:a4:0b:89:43:2d:21: c5:a5:5d:9e:f2:16:bc:fc:35:50:d7:fd:77:8c:78:e6:0c:a1: c6:8b:6d:51:71:a7:ec:17:bd:05:59:b6:e5:50:7c:a5:f8:dc: 3b:53:67:b4:c6:08:fa:ae:49:ca:44:12:91:6c:3e:67:f8:ee: 83:8c:34:48:81:a3:fb:0f:8c:55:ff:25:34:df:83:8c:94:48: 47:4a:db:e4:c9:21:a3:58:93:ee:42:b9:a8:35:c3:ae:a2:72: 70:3e:b5:73:6d:83:99:95:e1:5c:17:27:9c:05:d5:04:f9:22: 67:eb:fc:86:73:3a:3a:1f:e3:42:23:8a:cf:54:46:04:e4:9d: 32:cb:17:8b:f0:8f:b3:ff:a5:ec:e2:19:ba:da:26:9e:f6:7b: 59:6d:f6:1b:73:8f:fc:1b:56:e4:83:b6:fb:43:20:cd:af:c4: 23:c0:54:3e:1f:bd:f2:61:0b:e2:c5:98:4c:ef:f5:d3:ef:fe: e6:ed:ff:2c:53:a3:b1:eb:6c:59:d5:82:f4:46:75:47:5a:0e: d8:79:bb:d9:fe:c6:cb:0c:d6:51:6b:18:fa:b9:bc:80:84:d1: bc:5f:88:5b -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZtMHaTMsoD+60WEOg0FWK9CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1MTQ4MzY1NWIzNWEyYjg0NzE4NWY2ODljOGZkMTYwMWRj YzcxODcwHhcNMjUxMjIzMTY0OTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNGU3NzQ1ZjEzOGI1ZWE0NGQwNzM0YWU4YzIxNmYyMzUwZDBmZjY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5G2uqa41zpzV0F8Wi0VT/pFmLOKf uqMcs1yrH9AVxC2eLZbDX4F/W1a59vfM4C6i3PfLoTYkdT46aLragzFDAGJefx+X wM89NvPkjEVAHuJflHrirS4kXlmIwpbVKLdgC86lK6tLhRWA4NDYrA1JOCINKMDA C4EUyUHtYoQhO00mChpbQAU/i7DGKAU5UySsB7+GvTcqk7jbLkAlymlH7XfHjJor JsKt+smnHa2EztVl1YsVE70Jo9Sa5OrDzV0+iQikl5A0R8LtlFbp1eBA3/KJrFi9 dH0IcUgP4g4rdMYeFtvs7sljfE/OE6WM5Jd+0/paB23TVP4TZALis5yYaQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFOTndF8Ti16kTQc0rowhbyNQ0P9lMB8GA1UdIwQY MBaAFHUUg2VbNaK4RxhfaJyP0WAdzHGHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFJTRFpWczFvcmhIR0Y5b25JX1JZQjNNY1ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8xMjc5ZmMtMWIyNy00MDdjLTgxZjQt YTdmYjM2Y2MyZmUzLzEvNU9kMFh4T0xYcVJOQnpTdWpDRnZJMURRXzJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8xMjc5ZmMtMWIyNy00MDdjLTgxZjQtYTdmYjM2Y2MyZmUz LzEvZFJTRFpWczFvcmhIR0Y5b25JX1JZQjNNY1ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCLY8gAwQD VXbwMA0EAgACMAcDBQMqEV9AMA0GCSqGSIb3DQEBCwUAA4IBAQAEvV0E6dXkPGwg ZmvHV9bQGXGUq8xLtIcn1BR8UiqkC4lDLSHFpV2e8ha8/DVQ1/13jHjmDKHGi21R cafsF70FWbblUHyl+Nw7U2e0xgj6rknKRBKRbD5n+O6DjDRIgaP7D4xV/yU034OM lEhHStvkySGjWJPuQrmoNcOuonJwPrVzbYOZleFcFyecBdUE+SJn6/yGczo6H+NC I4rPVEYE5J0yyxeL8I+z/6Xs4hm62iae9ntZbfYbc4/8G1bkg7b7QyDNr8QjwFQ+ H73yYQvixZhM7/XT7/7m7f8sU6Ox62xZ1YL0RnVHWg7YebvZ/sbLDNZRaxj6ubyA hNG8X4hb -----END CERTIFICATE-----Generated at Fri Dec 26 17:36:52 2025 by rpki-client