This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/Pdb04hzMTIPuqcR_Uc3THHEtZMY.roa File: Pdb04hzMTIPuqcR_Uc3THHEtZMY.roa (raw, json) Hash identifier: n/7jnHkHS2FQk1mOPB4j5YN3TCard/n6urQ/YCg/LxI= Subject key identifier: 3D:D6:F4:E2:1C:CC:4C:83:EE:A9:C4:7F:51:CD:D3:1C:71:2D:64:C6 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019A9B1816F6AFA13228468AD1880B572F0A Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/Pdb04hzMTIPuqcR_Uc3THHEtZMY.roa Signing time: Wed 19 Nov 2025 07:50:38 +0000 ROA not before: Wed 19 Nov 2025 07:50:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215730 IP address blocks: 185.125.50.0/24 maxlen: 24 2a0e:d600::/32 maxlen: 32 2a0e:d604:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9b:18:16:f6:af:a1:32:28:46:8a:d1:88:0b:57:2f:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Nov 19 07:50:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3dd6f4e21ccc4c83eea9c47f51cdd31c712d64c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:94:a2:c8:6a:c5:99:96:59:88:57:05:54:62: ab:11:6e:1b:57:89:69:d8:ab:4c:0e:61:e5:a3:05: ec:f9:e0:b9:9c:50:22:79:4e:b7:e1:74:c7:55:e8: c5:4a:6a:18:4e:22:74:44:fe:d7:84:d8:a8:61:fe: 96:4f:a3:ae:1e:03:9f:18:bd:16:5f:9a:c5:b2:12: 57:a6:7e:1d:73:7a:a4:e2:77:c0:df:18:c2:17:a6: bc:01:e0:3a:83:18:8e:27:32:20:38:3e:1e:b7:a5: 42:92:6d:7c:b9:29:82:e2:47:3d:0a:ff:be:9e:ef: 74:6b:71:94:ca:85:a0:26:32:14:2b:f3:be:31:be: 30:fe:a8:d6:ab:d2:bc:d9:b3:a4:94:6e:3d:24:c0: 01:57:e0:56:a0:90:8f:bd:64:ed:d4:7c:6d:34:97: b4:d4:12:84:70:4c:c0:42:f1:a1:30:b5:bf:cf:96: 9d:a6:ee:ea:66:1b:c6:65:b4:cc:75:08:d2:f2:5b: c2:d9:69:e5:a2:7c:6d:9a:7d:d5:eb:d6:30:17:95: 2a:90:7f:f3:7a:ab:cd:fe:99:dd:97:8f:ae:92:ca: ca:94:c4:fb:f7:80:1f:77:a5:4f:7b:b6:c2:da:97: 96:20:8f:5b:02:15:8a:1d:05:bd:12:99:0a:3a:0e: 48:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D6:F4:E2:1C:CC:4C:83:EE:A9:C4:7F:51:CD:D3:1C:71:2D:64:C6 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/Pdb04hzMTIPuqcR_Uc3THHEtZMY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.125.50.0/24 IPv6: 2a0e:d600::/32 2a0e:d604:1::/48 Signature Algorithm: sha256WithRSAEncryption c9:8b:21:43:a3:aa:4d:b2:f6:14:c2:42:8b:4d:ee:64:59:4f: f3:3a:61:99:31:a6:b4:11:65:28:63:31:4e:90:74:fa:ab:59: cd:4d:64:2f:33:35:82:42:3b:99:5a:c3:a0:63:26:1a:4f:4e: f1:db:9a:86:2e:80:c3:9a:97:b0:f5:a3:98:dd:25:25:31:fa: 6a:eb:16:3c:e3:5e:c9:9c:67:37:c9:98:8e:2e:ee:1f:06:d1: 57:90:f6:40:c2:f8:14:33:be:e4:b8:62:29:d7:79:4a:01:50: 99:0d:ac:48:95:61:8c:56:e1:c8:c5:e9:c2:83:6c:79:e8:cc: 1f:c2:5a:d6:4b:0a:1a:2e:2d:f2:3f:9c:91:b3:6c:49:04:fe: f3:69:cd:ef:f3:8d:b7:5e:98:a9:d5:f2:51:e9:3d:aa:6b:28: b3:aa:56:93:06:79:7d:45:39:bc:b1:b8:0a:04:ff:13:49:1a: 14:66:28:3f:8a:dc:49:a8:a8:c8:d8:f7:fb:ad:67:93:38:46: b1:33:01:39:fa:b0:2e:30:ec:74:c3:7d:61:75:ee:e4:c9:06: 7a:76:40:38:6e:6b:75:0a:f2:d0:bf:f2:30:e9:08:b8:11:98: 41:51:52:55:b6:82:05:9f:64:1b:11:3d:9c:af:20:bb:39:b8: 04:27:3c:e1 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZqbGBb2r6EyKEaK0YgLVy8KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjUxMTE5MDc1MDM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZGQ2ZjRlMjFjY2M0YzgzZWVhOWM0N2Y1MWNkZDMxYzcxMmQ2NGM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZSiyGrFmZZZiFcFVGKrEW4bV4lp 2KtMDmHlowXs+eC5nFAieU634XTHVejFSmoYTiJ0RP7XhNioYf6WT6OuHgOfGL0W X5rFshJXpn4dc3qk4nfA3xjCF6a8AeA6gxiOJzIgOD4et6VCkm18uSmC4kc9Cv++ nu90a3GUyoWgJjIUK/O+Mb4w/qjWq9K82bOklG49JMABV+BWoJCPvWTt1HxtNJe0 1BKEcEzAQvGhMLW/z5adpu7qZhvGZbTMdQjS8lvC2Wnlonxtmn3V69YwF5UqkH/z eqvN/pndl4+uksrKlMT794Afd6VPe7bC2peWII9bAhWKHQW9EpkKOg5ICwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFD3W9OIczEyD7qnEf1HN0xxxLWTGMB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvUGRiMDRoek1USVB1cWNSX1VjM1RISEV0Wk1ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAMBAIAATAGAwQAuX0yMBYE AgACMBADBQAqDtYAAwcAKg7WBAABMA0GCSqGSIb3DQEBCwUAA4IBAQDJiyFDo6pN svYUwkKLTe5kWU/zOmGZMaa0EWUoYzFOkHT6q1nNTWQvMzWCQjuZWsOgYyYaT07x 25qGLoDDmpew9aOY3SUlMfpq6xY8417JnGc3yZiOLu4fBtFXkPZAwvgUM77kuGIp 13lKAVCZDaxIlWGMVuHIxenCg2x56MwfwlrWSwoaLi3yP5yRs2xJBP7zac3v8423 Xpip1fJR6T2qayizqlaTBnl9RTm8sbgKBP8TSRoUZig/itxJqKjI2Pf7rWeTOEax MwE5+rAuMOx0w31hde7kyQZ6dkA4bmt1CvLQv/Iw6Qi4EZhBUVJVtoIFn2QbET2c ryC7ObgEJzzh -----END CERTIFICATE-----Generated at Fri Dec 5 21:32:24 2025 by rpki-client