This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/jSdqY5ZN2ncZbKI3YS29PBrPdwg.roa File: jSdqY5ZN2ncZbKI3YS29PBrPdwg.roa (raw, json) Hash identifier: z8L5AEScpqgd3m0xWH8wHo+HCERAu0Q8K5naRTjHZic= Subject key identifier: 8D:27:6A:63:96:4D:DA:77:19:6C:A2:37:61:2D:BD:3C:1A:CF:77:08 Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Certificate serial: 019ADFBB0B178B2776C6885F8E253C8C669F Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/jSdqY5ZN2ncZbKI3YS29PBrPdwg.roa Signing time: Tue 02 Dec 2025 15:42:48 +0000 ROA not before: Tue 02 Dec 2025 15:42:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 52468 IP address blocks: 45.10.107.0/24 maxlen: 24 45.130.160.0/24 maxlen: 24 45.130.161.0/24 maxlen: 24 45.150.85.0/24 maxlen: 24 45.150.86.0/24 maxlen: 24 45.150.87.0/24 maxlen: 24 46.29.28.0/24 maxlen: 24 94.125.137.0/24 maxlen: 24 201.77.48.0/24 maxlen: 24 201.77.53.0/24 maxlen: 24 201.77.55.0/24 maxlen: 24 217.76.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 00:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:df:bb:0b:17:8b:27:76:c6:88:5f:8e:25:3c:8c:66:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Validity Not Before: Dec 2 15:42:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=8d276a63964dda77196ca237612dbd3c1acf7708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:75:6e:12:2b:9a:ef:8f:a6:0f:0f:f5:20: eb:ab:25:4f:74:03:86:4c:52:e3:3e:89:fa:97:87: 00:79:5a:59:86:bb:f0:1c:63:4e:d7:c4:5a:6f:35: f1:e2:e1:9b:91:c8:f7:8e:cc:9a:bf:bf:20:9f:61: 0a:60:24:8b:1b:c2:53:e6:1b:fc:fb:f1:ab:c6:49: d2:aa:0b:53:d5:9a:62:f9:85:c2:a1:8d:0a:d7:39: 5a:f2:40:2b:24:d1:b2:89:19:02:8d:64:d5:5a:5f: c0:60:9a:cc:9d:da:75:71:0d:1e:a5:21:62:69:fc: 80:c7:7e:30:e9:91:8e:17:57:f3:60:e9:6a:2d:5d: 42:db:01:04:2e:12:fe:55:2f:63:f5:e4:18:6f:71: 01:e5:49:71:e3:70:f8:ea:2c:82:18:ba:40:05:8c: 9d:2a:3a:e8:80:fb:cc:96:81:48:44:17:cc:b0:da: 5a:db:07:47:2f:d7:42:dc:84:38:fb:f8:62:3e:73: 0e:da:bc:38:69:a8:4a:b4:23:64:80:e7:d7:da:8e: b2:7b:bc:9c:94:0b:a5:16:00:86:9b:cb:a8:24:74: e5:7d:2b:45:51:25:c3:3a:cf:f8:1d:05:f2:d3:8e: ad:62:f2:fd:04:24:af:74:a3:68:89:f5:06:5f:ad: 92:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:27:6A:63:96:4D:DA:77:19:6C:A2:37:61:2D:BD:3C:1A:CF:77:08 X509v3 Authority Key Identifier: keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/jSdqY5ZN2ncZbKI3YS29PBrPdwg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.10.107.0/24 45.130.160.0/23 45.150.85.0-45.150.87.255 46.29.28.0/24 94.125.137.0/24 201.77.48.0/24 201.77.53.0/24 201.77.55.0/24 217.76.240.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:2b:8c:ab:69:57:b2:22:86:d1:f9:5c:a1:92:70:82:59:73: bc:30:19:d1:51:09:af:e7:b9:71:bc:eb:c0:4c:db:91:dd:9b: 39:f5:7e:0e:76:a3:6b:1c:a2:ae:0c:50:f5:5a:b2:ff:bb:1c: da:45:05:6a:76:93:c3:56:51:0a:ed:7c:8f:86:6a:3b:c2:7b: 02:d2:40:90:a6:7c:4d:39:1b:40:15:bc:cb:20:44:f8:07:6c: 98:8e:a2:60:7d:f2:94:a5:df:8e:01:15:cb:6f:3b:b3:bf:2f: 67:c2:6d:12:03:9e:3c:e7:ba:1e:1b:d3:32:7b:aa:e5:d3:49: c4:52:32:46:94:72:c2:f7:25:3e:6c:ff:09:d2:1d:51:e9:08: c5:4a:bf:b9:0b:5d:62:61:cf:71:d7:9f:a4:fa:da:2d:17:e1: 15:47:40:35:03:ba:78:46:de:0d:14:8d:9c:d4:1a:30:f9:19: 17:59:50:86:fa:19:7c:75:15:e2:80:0e:8f:0f:fe:91:c4:79: eb:8d:a9:ac:2b:88:9e:db:eb:8c:20:56:86:18:a9:1f:4e:6b: 2e:f1:9f:03:17:9d:ed:e8:ab:0c:37:d0:d1:f3:9d:18:35:77: e1:e0:d2:e6:58:96:fc:87:fb:bb:9a:fd:40:0a:ba:60:eb:d0: ba:7d:91:89 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISAZrfuwsXiyd2xohfjiU8jGafMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy N2E0NjcwHhcNMjUxMjAyMTU0MjQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDI3NmE2Mzk2NGRkYTc3MTk2Y2EyMzc2MTJkYmQzYzFhY2Y3NzA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvU11bhIrmu+Ppg8P9SDrqyVPdAOG TFLjPon6l4cAeVpZhrvwHGNO18RabzXx4uGbkcj3jsyav78gn2EKYCSLG8JT5hv8 +/GrxknSqgtT1Zpi+YXCoY0K1zla8kArJNGyiRkCjWTVWl/AYJrMndp1cQ0epSFi afyAx34w6ZGOF1fzYOlqLV1C2wEELhL+VS9j9eQYb3EB5Ulx43D46iyCGLpABYyd KjrogPvMloFIRBfMsNpa2wdHL9dC3IQ4+/hiPnMO2rw4aahKtCNkgOfX2o6ye7yc lAulFgCGm8uoJHTlfStFUSXDOs/4HQXy046tYvL9BCSvdKNoifUGX62SVwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFI0namOWTdp3GWyiN2EtvTwaz3cIMB8GA1UdIwQY MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt Y2Q3ZTA2Y2JiNTMxLzEvalNkcVk1Wk4ybmNaYktJM1lTMjlQQnJQZHdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+AwQALQprAwQB LYKgMAwDBAAtllUDBAMtllADBAAuHRwDBABefYkDBADJTTADBADJTTUDBADJTTcD BADZTPAwDQYJKoZIhvcNAQELBQADggEBAJorjKtpV7IihtH5XKGScIJZc7wwGdFR Ca/nuXG868BM25Hdmzn1fg52o2scoq4MUPVasv+7HNpFBWp2k8NWUQrtfI+GajvC ewLSQJCmfE05G0AVvMsgRPgHbJiOomB98pSl344BFctvO7O/L2fCbRIDnjznuh4b 0zJ7quXTScRSMkaUcsL3JT5s/wnSHVHpCMVKv7kLXWJhz3HXn6T62i0X4RVHQDUD unhG3g0UjZzUGjD5GRdZUIb6GXx1FeKADo8P/pHEeeuNqawriJ7b64wgVoYYqR9O ay7xnwMXne3oqww30NHznRg1d+Hg0uZYlvyH+7ua/UAKumDr0Lp9kYk= -----END CERTIFICATE-----Generated at Wed Dec 3 08:31:09 2025 by rpki-client