This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/R27Ys4tdk1dsua9Wj3x9dydBecY.roa File: R27Ys4tdk1dsua9Wj3x9dydBecY.roa (raw, json) Hash identifier: UIHAnpmWiQo69KuTG5bm0hSlODVuPvHPX466b96XgAY= Subject key identifier: 47:6E:D8:B3:8B:5D:93:57:6C:B9:AF:56:8F:7C:7D:77:27:41:79:C6 Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9 Certificate serial: 019A7013325F62AF421741A9E3AF0840C08D Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/R27Ys4tdk1dsua9Wj3x9dydBecY.roa Signing time: Mon 10 Nov 2025 23:21:37 +0000 ROA not before: Mon 10 Nov 2025 23:21:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 6079 IP address blocks: 159.197.224.0/19 maxlen: 24 161.8.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.mft rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 09:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:70:13:32:5f:62:af:42:17:41:a9:e3:af:08:40:c0:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9 Validity Not Before: Nov 10 23:21:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=476ed8b38b5d93576cb9af568f7c7d77274179c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:10:ef:25:96:30:c6:21:66:b1:92:8d:6b:33: 04:a6:62:25:88:ab:32:d9:71:8d:ef:45:40:11:74: 68:92:9d:5c:e1:28:6e:ea:3f:ef:79:7a:4c:a4:85: c0:28:ff:a0:05:77:eb:64:78:e6:ff:e5:87:83:9b: 74:f4:58:1b:11:b0:96:6f:1f:93:28:c8:fb:3d:c7: 6a:07:c8:fb:4c:d5:14:36:cc:6e:42:e6:2e:d3:b4: 7d:e0:41:23:35:8d:5b:cf:27:ab:50:3a:0f:0f:b7: 73:f5:58:3b:cb:c3:89:e2:00:27:86:70:76:1b:58: 22:9a:20:97:6d:69:60:a4:26:80:06:cb:39:48:c2: ba:0c:7a:57:07:bd:1b:b7:8d:77:25:80:ff:ed:84: d7:b9:0f:f9:a1:a4:01:5d:95:ee:ac:57:82:55:b9: a1:42:58:77:81:92:b5:4d:09:99:87:15:ea:c6:87: 6f:f7:70:f5:0b:c7:6b:f0:92:95:cc:cc:ec:7a:3d: a8:55:82:16:b2:37:2f:86:ca:b5:61:ad:73:d1:ac: 57:9e:df:cb:6a:23:bd:75:c1:54:e4:16:ee:81:5e: 02:95:71:14:bf:30:3c:a0:09:6b:ed:7b:fb:84:2b: 2b:aa:27:ab:0c:8c:16:3a:7d:3b:81:13:9d:0c:c7: 6c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:6E:D8:B3:8B:5D:93:57:6C:B9:AF:56:8F:7C:7D:77:27:41:79:C6 X509v3 Authority Key Identifier: keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/R27Ys4tdk1dsua9Wj3x9dydBecY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.197.224.0/19 161.8.128.0/19 Signature Algorithm: sha256WithRSAEncryption 29:c9:99:68:ea:90:71:2d:58:09:df:0e:7d:82:3a:4e:0a:83: 45:de:29:d8:3b:28:f5:b7:e2:dc:b5:d6:a7:50:3c:5c:72:3b: 5c:c5:78:a4:de:c6:18:8a:3b:39:b3:f3:c9:4a:58:20:0f:4f: 5c:68:e8:d9:84:13:0a:a3:ec:c3:27:c5:65:de:39:17:89:f9: 0a:4a:b4:0a:8a:0a:1a:bb:4e:81:9b:6c:e8:a3:4e:d1:9c:31: 06:4e:01:fa:a2:f3:a4:74:72:d4:93:72:30:cf:7a:e5:4a:45: 40:09:b3:1b:0f:d1:f2:be:50:82:26:29:8a:8c:b5:de:20:46: 48:7c:c5:75:e6:e8:05:37:5e:1b:a8:a2:ba:7c:36:5a:44:e1: f8:ed:4f:a6:9e:6d:22:9b:0d:3e:73:bb:c6:f0:3d:8d:f5:6b: e2:cb:25:64:28:63:1a:43:36:7d:f3:32:66:56:e0:e5:17:42: ef:37:49:86:48:55:fc:89:a9:4f:73:11:fe:a9:11:ac:14:4e: 9b:68:35:70:87:84:0e:d3:e3:34:80:22:13:a9:af:9d:b4:d2: 94:d0:15:f3:37:f5:8b:d4:78:56:ea:60:74:f7:25:d3:6c:8d: fd:5e:f0:bb:94:e9:17:cf:cb:14:15:d8:a8:57:2a:e6:2e:f9: e2:d6:29:66 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZpwEzJfYq9CF0Gp468IQMCNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkZDk1NGQzYzc3YzljNGUzN2VlYmY3NTNkODZmM2RjZjA5 MWQ0YTkwHhcNMjUxMTEwMjMyMTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NzZlZDhiMzhiNWQ5MzU3NmNiOWFmNTY4ZjdjN2Q3NzI3NDE3OWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBDvJZYwxiFmsZKNazMEpmIliKsy 2XGN70VAEXRokp1c4Shu6j/veXpMpIXAKP+gBXfrZHjm/+WHg5t09FgbEbCWbx+T KMj7PcdqB8j7TNUUNsxuQuYu07R94EEjNY1bzyerUDoPD7dz9Vg7y8OJ4gAnhnB2 G1gimiCXbWlgpCaABss5SMK6DHpXB70bt413JYD/7YTXuQ/5oaQBXZXurFeCVbmh Qlh3gZK1TQmZhxXqxodv93D1C8dr8JKVzMzsej2oVYIWsjcvhsq1Ya1z0axXnt/L aiO9dcFU5BbugV4ClXEUvzA8oAlr7Xv7hCsrqierDIwWOn07gROdDMdspQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEdu2LOLXZNXbLmvVo98fXcnQXnGMB8GA1UdIwQY MBaAFE3ZVNPHfJxON+6/dT2G89zwkdSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGRsVTA4ZDhuRTQzN3I5MVBZYnozUENSMUtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83YTJhOTktMTQ2Yy00NzgxLWEzMDIt ZWI3YWFhNjgyOGJlLzEvUjI3WXM0dGRrMWRzdWE5V2ozeDlkeWRCZWNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC83YTJhOTktMTQ2Yy00NzgxLWEzMDItZWI3YWFhNjgyOGJl LzEvVGRsVTA4ZDhuRTQzN3I5MVBZYnozUENSMUtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFn8XgAwQF oQiAMA0GCSqGSIb3DQEBCwUAA4IBAQApyZlo6pBxLVgJ3w59gjpOCoNF3inYOyj1 t+LctdanUDxccjtcxXik3sYYijs5s/PJSlggD09caOjZhBMKo+zDJ8Vl3jkXifkK SrQKigoau06Bm2zoo07RnDEGTgH6ovOkdHLUk3Iwz3rlSkVACbMbD9HyvlCCJimK jLXeIEZIfMV15ugFN14bqKK6fDZaROH47U+mnm0imw0+c7vG8D2N9WviyyVkKGMa QzZ98zJmVuDlF0LvN0mGSFX8ialPcxH+qRGsFE6baDVwh4QO0+M0gCITqa+dtNKU 0BXzN/WL1HhW6mB09yXTbI39XvC7lOkXz8sUFdioVyrmLvni1ilm -----END CERTIFICATE-----Generated at Fri Dec 5 12:24:48 2025 by rpki-client