This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/512OgtO23toAccS1qrSPz4Q0748.roa File: 512OgtO23toAccS1qrSPz4Q0748.roa (raw, json) Hash identifier: 23vl8nH0jg5wD4f/LrIElGmzCaF+Q8OuiTjTuwIchnQ= Subject key identifier: E7:5D:8E:82:D3:B6:DE:DA:00:71:C4:B5:AA:B4:8F:CF:84:34:EF:8F Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Certificate serial: 019AFCCEE8BA5AD69D6F307E7AE29F2A7305 Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/512OgtO23toAccS1qrSPz4Q0748.roa Signing time: Mon 08 Dec 2025 07:13:29 +0000 ROA not before: Mon 08 Dec 2025 07:13:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 79.172.200.0/23 maxlen: 24 79.172.201.0/24 maxlen: 24 79.172.204.0/24 maxlen: 24 79.172.219.0/24 maxlen: 24 79.172.250.0/23 maxlen: 24 87.229.8.0/22 maxlen: 22 87.229.80.0/23 maxlen: 24 87.229.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Dec 2025 15:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fc:ce:e8:ba:5a:d6:9d:6f:30:7e:7a:e2:9f:2a:73:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Validity Not Before: Dec 8 07:13:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e75d8e82d3b6deda0071c4b5aab48fcf8434ef8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:1c:de:50:ef:60:27:e1:c2:7b:e4:20:b4:b7: 91:46:76:dc:e1:c8:61:4f:07:ef:58:38:76:02:1f: 37:74:0c:35:8a:9a:70:df:96:84:5e:89:6c:c4:87: 51:e2:e6:49:80:0e:ed:25:14:77:f8:8c:e0:d5:ff: 12:b9:38:02:7e:2b:01:3d:ab:1b:89:2c:97:d7:5b: 83:8f:25:16:73:4c:58:ac:57:a4:bf:0b:55:4d:c6: 33:77:62:9e:66:2d:cf:38:a6:7b:70:9e:6f:4f:ca: 7b:c7:cd:9e:c8:81:a3:b4:5e:2c:5f:9e:0c:88:7c: 86:4f:70:14:98:c7:3f:4d:3e:0f:06:1c:7b:f7:38: 9e:7e:64:de:40:84:17:09:e6:b6:f1:26:22:4c:16: 42:54:69:74:2e:ed:44:14:15:e0:56:1a:17:8f:38: c4:c1:af:c2:c6:2c:54:c0:4f:ca:16:1d:16:0f:79: e0:bd:2b:5e:1c:bb:36:1a:80:84:b7:9b:e1:39:8c: 53:db:9e:03:e2:74:96:3a:8d:d2:27:35:3d:f5:a6: 58:67:22:62:ec:7a:52:da:b8:5b:50:b0:b8:bb:a7: 5c:cf:f7:32:1c:a9:04:0f:0e:e2:84:59:c1:d8:f3: 17:21:49:26:7f:ed:f2:7b:d7:e0:49:69:46:15:de: d0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:5D:8E:82:D3:B6:DE:DA:00:71:C4:B5:AA:B4:8F:CF:84:34:EF:8F X509v3 Authority Key Identifier: keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/512OgtO23toAccS1qrSPz4Q0748.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.172.200.0/23 79.172.204.0/24 79.172.219.0/24 79.172.250.0/23 87.229.8.0/22 87.229.80.0/23 87.229.124.0/23 Signature Algorithm: sha256WithRSAEncryption 41:1e:59:72:00:08:d2:6d:eb:d0:30:b0:81:4f:6f:91:47:ec: 4b:40:8e:e1:25:01:a0:0b:b0:bb:14:7a:10:85:77:1a:47:09: 90:60:e3:44:82:f5:be:34:19:3f:ed:21:e2:df:b0:a1:46:c4: 5a:71:1a:2f:0f:87:54:81:07:78:4c:82:a0:a3:67:a5:45:fd: aa:54:9d:8c:c2:df:35:a7:5f:0c:66:64:e3:bb:53:d5:f5:e1: 34:58:a6:fc:fe:00:75:8b:cf:ca:ea:31:4e:4e:01:23:4e:95: c6:9c:83:4d:e7:d2:4b:6f:c3:56:cd:8a:da:ce:91:71:ba:14: 13:a2:db:b0:ae:8d:78:5a:48:72:c2:23:24:23:da:4a:62:4c: a3:c1:b5:88:29:01:64:3f:6d:4f:4c:64:9f:ef:32:d3:50:8a: 37:db:0f:13:18:8a:ad:94:d8:97:fa:b5:d9:27:e6:ae:25:cb: 3e:76:10:08:6c:ff:5a:85:61:28:73:fb:f2:87:56:3a:7d:d1: 4e:43:0e:f7:a0:f1:64:0d:d0:82:8c:1f:72:5b:9c:97:e3:3f: 66:b0:b1:50:b0:54:b0:b9:91:00:72:ff:8c:c9:93:e4:10:95: 67:ae:83:92:74:e8:20:97:ee:1a:da:8c:c7:fa:4a:bd:01:8e: db:79:18:8c -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZr8zui6WtadbzB+euKfKnMFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2 NDI0OTcwHhcNMjUxMjA4MDcxMzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzVkOGU4MmQzYjZkZWRhMDA3MWM0YjVhYWI0OGZjZjg0MzRlZjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/BzeUO9gJ+HCe+QgtLeRRnbc4chh TwfvWDh2Ah83dAw1ippw35aEXolsxIdR4uZJgA7tJRR3+Izg1f8SuTgCfisBPasb iSyX11uDjyUWc0xYrFekvwtVTcYzd2KeZi3POKZ7cJ5vT8p7x82eyIGjtF4sX54M iHyGT3AUmMc/TT4PBhx79ziefmTeQIQXCea28SYiTBZCVGl0Lu1EFBXgVhoXjzjE wa/CxixUwE/KFh0WD3ngvSteHLs2GoCEt5vhOYxT254D4nSWOo3SJzU99aZYZyJi 7HpS2rhbULC4u6dcz/cyHKkEDw7ihFnB2PMXIUkmf+3ye9fgSWlGFd7QGwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFOddjoLTtt7aAHHEtaq0j8+ENO+PMB8GA1UdIwQY MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt OTU5M2E0ODhhZmNjLzEvNTEyT2d0TzIzdG9BY2NTMXFyU1B6NFEwNzQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBT6zIAwQA T6zMAwQAT6zbAwQBT6z6AwQCV+UIAwQBV+VQAwQBV+V8MA0GCSqGSIb3DQEBCwUA A4IBAQBBHllyAAjSbevQMLCBT2+RR+xLQI7hJQGgC7C7FHoQhXcaRwmQYONEgvW+ NBk/7SHi37ChRsRacRovD4dUgQd4TIKgo2elRf2qVJ2Mwt81p18MZmTju1PV9eE0 WKb8/gB1i8/K6jFOTgEjTpXGnINN59JLb8NWzYrazpFxuhQTotuwro14WkhywiMk I9pKYkyjwbWIKQFkP21PTGSf7zLTUIo32w8TGIqtlNiX+rXZJ+auJcs+dhAIbP9a hWEoc/vyh1Y6fdFOQw73oPFkDdCCjB9yW5yX4z9msLFQsFSwuZEAcv+MyZPkEJVn roOSdOggl+4a2ozH+kq9AY7beRiM -----END CERTIFICATE-----Generated at Tue Dec 9 01:18:55 2025 by rpki-client