This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/PV2mCkS-UgVkDARZVBwroYA25_s.roa File: PV2mCkS-UgVkDARZVBwroYA25_s.roa (raw, json) Hash identifier: IURPukZTcQABJnfofXQZ8uQ6EdE7QIiPt7LuWjaU7ck= Subject key identifier: 3D:5D:A6:0A:44:BE:52:05:64:0C:04:59:54:1C:2B:A1:80:36:E7:FB Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40 Certificate serial: 019A96D11B342A3492260F5E61AFF7A4B643 Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/PV2mCkS-UgVkDARZVBwroYA25_s.roa Signing time: Tue 18 Nov 2025 11:54:37 +0000 ROA not before: Tue 18 Nov 2025 11:54:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 208905 IP address blocks: 213.137.92.0/24 maxlen: 24 213.137.93.0/24 maxlen: 24 213.137.94.0/24 maxlen: 24 213.137.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.mft rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:96:d1:1b:34:2a:34:92:26:0f:5e:61:af:f7:a4:b6:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40 Validity Not Before: Nov 18 11:54:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3d5da60a44be5205640c0459541c2ba18036e7fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f5:e9:d3:1e:b3:32:48:0f:73:b0:09:99:45: 97:31:9f:84:cb:14:bd:fa:2b:be:14:d6:31:46:e6: f6:86:e1:49:c8:4e:41:e6:98:00:73:e3:7f:55:29: 7e:c8:4a:3a:e7:f2:89:03:ef:4d:7d:72:b6:3d:ba: 26:4e:94:dc:f1:5f:d8:5b:eb:88:82:c9:65:dd:b0: 15:15:f3:18:e0:80:db:c6:ba:13:36:55:ca:64:76: 08:5b:31:fd:c7:7d:29:29:e2:dc:42:6d:95:c5:2f: 7a:ec:95:f2:1e:1e:cb:99:11:b9:3e:c6:3b:75:e2: dc:6b:5b:c8:44:6c:1f:cc:bf:b9:d8:c5:fb:87:c4: 2f:57:f4:3e:75:49:aa:0b:a2:89:c8:85:c7:6e:1b: ec:db:84:ea:35:8b:fb:55:6a:a8:0d:7a:76:af:ea: fc:0f:bf:3a:1b:60:bc:75:7a:e6:2e:5c:c7:b9:92: c9:f8:ae:76:6b:93:0c:30:98:92:5a:50:7a:16:c8: db:a3:28:fe:1f:9a:94:ee:f9:db:57:26:31:77:01: 4e:3a:7a:c1:f1:57:9a:1e:19:78:54:3d:1c:91:10: 9a:41:05:c5:b0:d7:57:c0:06:97:b7:99:97:8b:d2: 41:0a:08:a5:ae:eb:95:fe:39:1f:d8:ce:b6:0a:42: 8d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:5D:A6:0A:44:BE:52:05:64:0C:04:59:54:1C:2B:A1:80:36:E7:FB X509v3 Authority Key Identifier: keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/PV2mCkS-UgVkDARZVBwroYA25_s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.137.92.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:ef:53:a9:29:94:46:ca:a1:db:74:e9:26:c7:e4:6d:6b:1d: a4:d4:e5:08:03:d1:b9:da:8e:08:2f:b8:58:93:3b:74:f0:38: af:1f:26:c2:e3:94:46:06:99:92:37:82:a7:6a:04:d8:0b:f1: cb:59:be:22:89:20:6a:77:a7:03:91:41:ef:2a:2e:e7:15:92: b2:a5:be:25:7d:f3:a3:dd:cb:32:ed:a1:fc:c5:f9:fa:69:d9: 59:58:7b:fd:78:3c:07:28:00:96:c7:88:af:62:79:09:cb:31: ed:5b:af:f4:c6:ed:38:6f:fd:c6:0e:60:7c:0c:83:d5:54:19: be:8d:22:c7:b1:c2:4e:c5:a2:41:85:08:ea:41:9b:12:dd:ad: 56:a6:81:27:d2:de:86:f4:e5:9f:a0:33:83:8d:d2:51:b0:7a: eb:09:bc:cd:6c:f7:ee:e1:76:66:08:67:a6:9c:9b:2a:4a:a5: 21:c6:16:7c:e9:22:59:f2:2a:9b:18:b4:5b:37:84:44:ba:b1: a0:31:34:2b:01:5c:a1:66:2e:c5:c8:83:ba:36:74:2b:7f:b2: 48:29:09:9a:74:ba:c3:e3:bd:2f:72:9d:a6:c4:0e:97:1b:ac: 1f:23:0a:59:f8:73:fc:38:58:a3:cf:a2:78:dd:5d:fa:94:c5: 8d:91:08:8c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZqW0Rs0KjSSJg9eYa/3pLZDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZjliMTZhZGYyZmQzMTk4ODg1OTkyMmI0NDU3NDgxZGQ3 ZWVmNDAwHhcNMjUxMTE4MTE1NDM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDVkYTYwYTQ0YmU1MjA1NjQwYzA0NTk1NDFjMmJhMTgwMzZlN2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0PXp0x6zMkgPc7AJmUWXMZ+EyxS9 +iu+FNYxRub2huFJyE5B5pgAc+N/VSl+yEo65/KJA+9NfXK2PbomTpTc8V/YW+uI gsll3bAVFfMY4IDbxroTNlXKZHYIWzH9x30pKeLcQm2VxS967JXyHh7LmRG5PsY7 deLca1vIRGwfzL+52MX7h8QvV/Q+dUmqC6KJyIXHbhvs24TqNYv7VWqoDXp2r+r8 D786G2C8dXrmLlzHuZLJ+K52a5MMMJiSWlB6Fsjboyj+H5qU7vnbVyYxdwFOOnrB 8VeaHhl4VD0ckRCaQQXFsNdXwAaXt5mXi9JBCgilruuV/jkf2M62CkKNcQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD1dpgpEvlIFZAwEWVQcK6GANuf7MB8GA1UdIwQY MBaAFHD5sWrfL9MZiIWZIrRFdIHdfu9AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUt YmM2ZGI3MjQ4YWRkLzEvUFYybUNrUy1VZ1ZrREFSWlZCd3JvWUEyNV9zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUtYmM2ZGI3MjQ4YWRk LzEvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1YlcMA0G CSqGSIb3DQEBCwUAA4IBAQB671OpKZRGyqHbdOkmx+Rtax2k1OUIA9G52o4IL7hY kzt08DivHybC45RGBpmSN4KnagTYC/HLWb4iiSBqd6cDkUHvKi7nFZKypb4lffOj 3csy7aH8xfn6adlZWHv9eDwHKACWx4ivYnkJyzHtW6/0xu04b/3GDmB8DIPVVBm+ jSLHscJOxaJBhQjqQZsS3a1WpoEn0t6G9OWfoDODjdJRsHrrCbzNbPfu4XZmCGem nJsqSqUhxhZ86SJZ8iqbGLRbN4REurGgMTQrAVyhZi7FyIO6NnQrf7JIKQmadLrD 470vcp2mxA6XG6wfIwpZ+HP8OFijz6J43V36lMWNkQiM -----END CERTIFICATE-----Generated at Fri Dec 5 17:19:35 2025 by rpki-client