This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/RPapt_fEKBldpkDtef57KcJ0LKg.roa File: RPapt_fEKBldpkDtef57KcJ0LKg.roa (raw, json) Hash identifier: xC2BG+jebPXI+BWPXWFFIe5JPJRkXTxVVlmrKC+RYeQ= Subject key identifier: 44:F6:A9:B7:F7:C4:28:19:5D:A6:40:ED:79:FE:7B:29:C2:74:2C:A8 Certificate issuer: /CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823 Certificate serial: 019B21093470B5BEA9719BADE7C0DCAB3728 Authority key identifier: 62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/RPapt_fEKBldpkDtef57KcJ0LKg.roa Signing time: Mon 15 Dec 2025 08:03:29 +0000 ROA not before: Mon 15 Dec 2025 08:03:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212238 IP address blocks: 158.173.3.0/24 maxlen: 24 158.173.4.0/24 maxlen: 24 158.173.5.0/24 maxlen: 24 158.173.6.0/24 maxlen: 24 158.173.7.0/24 maxlen: 24 158.173.16.0/24 maxlen: 24 158.173.17.0/24 maxlen: 24 158.173.18.0/24 maxlen: 24 158.173.19.0/24 maxlen: 24 158.173.20.0/24 maxlen: 24 158.173.21.0/24 maxlen: 24 158.173.22.0/24 maxlen: 24 158.173.23.0/24 maxlen: 24 158.173.24.0/24 maxlen: 24 158.173.25.0/24 maxlen: 24 158.173.32.0/24 maxlen: 24 158.173.33.0/24 maxlen: 24 158.173.44.0/24 maxlen: 24 158.173.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.mft rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 14:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:09:34:70:b5:be:a9:71:9b:ad:e7:c0:dc:ab:37:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823 Validity Not Before: Dec 15 08:03:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=44f6a9b7f7c428195da640ed79fe7b29c2742ca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:21:f9:20:38:f0:7c:ab:60:3d:33:0f:f5:0e: 50:6b:d2:44:61:1a:79:8e:de:5d:55:1a:94:f6:8c: 00:86:95:7f:be:b5:3a:25:07:e3:5c:4e:f9:4f:cd: 7a:ea:3c:2d:ef:86:48:0e:0e:39:b0:a1:74:0e:86: 56:fc:5c:af:25:3a:e7:9a:af:20:97:7f:59:6a:d2: 98:cc:2e:eb:09:a6:59:2a:00:ee:e2:41:26:42:9a: 13:44:16:8c:c2:4c:e3:a7:2b:66:91:5c:ae:7b:2d: 6f:e1:1d:ca:6d:90:d3:00:c4:48:cf:fe:ba:17:b7: d9:8b:6e:17:b1:22:c7:35:8f:b4:34:33:6c:9a:9e: 28:a7:24:33:be:af:5b:ce:fe:e8:81:b2:68:a4:52: fb:bf:b1:f3:b2:c6:34:0d:7a:3a:6c:ff:43:86:6b: da:0e:4b:79:f1:48:df:40:d2:70:8b:04:bc:51:08: 02:56:1a:5e:31:02:be:e4:a1:ba:05:d0:53:8c:66: 19:94:86:c4:96:8c:bf:24:80:12:e5:df:9f:16:d7: 09:40:16:60:42:49:75:db:99:4c:33:8d:bc:63:4c: 79:b6:57:3f:a2:e8:b1:98:38:46:00:49:6a:bc:19: 9f:34:73:a5:5a:71:9b:f6:ca:8e:ab:7b:73:76:fa: 8d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:F6:A9:B7:F7:C4:28:19:5D:A6:40:ED:79:FE:7B:29:C2:74:2C:A8 X509v3 Authority Key Identifier: keyid:62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/RPapt_fEKBldpkDtef57KcJ0LKg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.173.3.0-158.173.7.255 158.173.16.0-158.173.25.255 158.173.32.0/23 158.173.44.0/23 Signature Algorithm: sha256WithRSAEncryption 51:4d:ea:a6:5c:fd:fc:6f:61:49:8c:e8:40:52:04:4e:24:c7: d9:bb:51:ec:ae:97:1c:0b:53:36:de:c6:4b:67:ad:41:ef:bd: 4e:35:7d:62:4c:ba:1a:25:85:94:bd:fe:5a:72:52:a3:c5:c7: 82:25:7e:47:03:e3:32:f6:90:99:28:8d:4f:5f:c0:2a:bb:5a: 53:db:60:5b:4a:50:83:4e:92:75:b1:3d:fc:da:83:f5:8a:1b: ce:e1:aa:b6:cf:6e:1e:aa:88:e9:89:88:11:2d:6c:61:a0:76: 1c:2c:95:44:08:b9:6d:30:15:b4:4d:0a:77:c3:71:a4:6e:85: 85:e4:4a:91:3d:2d:69:7a:71:9a:d3:76:ad:0f:51:90:54:6b: db:27:0a:b8:52:ef:17:19:b9:71:73:67:68:2b:28:14:ae:69: db:31:e1:1c:fe:65:b3:25:e6:90:75:06:92:68:c9:ad:7e:75: f5:4e:ab:92:c2:ea:3b:aa:8f:da:c0:c7:e2:04:18:da:98:b9: 4b:cf:6d:8d:9b:2f:8c:d8:81:ce:ef:8d:75:fd:e6:2f:e1:c4: af:96:28:1b:88:84:9d:eb:66:79:00:61:45:21:4e:c6:c4:fa: 52:85:7e:54:e1:83:e8:58:cc:d6:32:ff:d5:a2:8d:35:62:30: a5:35:7e:5b -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZshCTRwtb6pcZut58DcqzcoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyNmEyOGI3YzYzZWY2YWIyMTRhNTJjZmE3YzNlNzhkYjlh NDA4MjMwHhcNMjUxMjE1MDgwMzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NGY2YTliN2Y3YzQyODE5NWRhNjQwZWQ3OWZlN2IyOWMyNzQyY2E4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSH5IDjwfKtgPTMP9Q5Qa9JEYRp5 jt5dVRqU9owAhpV/vrU6JQfjXE75T8166jwt74ZIDg45sKF0DoZW/FyvJTrnmq8g l39ZatKYzC7rCaZZKgDu4kEmQpoTRBaMwkzjpytmkVyuey1v4R3KbZDTAMRIz/66 F7fZi24XsSLHNY+0NDNsmp4opyQzvq9bzv7ogbJopFL7v7HzssY0DXo6bP9Dhmva Dkt58UjfQNJwiwS8UQgCVhpeMQK+5KG6BdBTjGYZlIbEloy/JIAS5d+fFtcJQBZg Qkl125lMM428Y0x5tlc/ouixmDhGAElqvBmfNHOlWnGb9sqOq3tzdvqNIQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFET2qbf3xCgZXaZA7Xn+eynCdCyoMB8GA1UdIwQY MBaAFGJqKLfGPvarIUpSz6fD5425pAgjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWW1vb3Q4WS05cXNoU2xMUHA4UG5qYm1rQ0NNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zYzA3ODUtYjI3My00MDcyLWE2MzUt ZDJjZDI2YjY5ZGYxLzEvUlBhcHRfZkVLQmxkcGtEdGVmNTdLY0owTEtnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8zYzA3ODUtYjI3My00MDcyLWE2MzUtZDJjZDI2YjY5ZGYx LzEvWW1vb3Q4WS05cXNoU2xMUHA4UG5qYm1rQ0NNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoMAwDBACerQMD BAOerQAwDAMEBJ6tEAMEAZ6tGAMEAZ6tIAMEAZ6tLDANBgkqhkiG9w0BAQsFAAOC AQEAUU3qplz9/G9hSYzoQFIETiTH2btR7K6XHAtTNt7GS2etQe+9TjV9Yky6GiWF lL3+WnJSo8XHgiV+RwPjMvaQmSiNT1/AKrtaU9tgW0pQg06SdbE9/NqD9YobzuGq ts9uHqqI6YmIES1sYaB2HCyVRAi5bTAVtE0Kd8NxpG6FheRKkT0taXpxmtN2rQ9R kFRr2ycKuFLvFxm5cXNnaCsoFK5p2zHhHP5lsyXmkHUGkmjJrX519U6rksLqO6qP 2sDH4gQY2pi5S89tjZsvjNiBzu+Ndf3mL+HEr5YoG4iEnetmeQBhRSFOxsT6UoV+ VOGD6FjM1jL/1aKNNWIwpTV+Ww== -----END CERTIFICATE-----Generated at Sat Dec 20 21:44:07 2025 by rpki-client