This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/qOG6O2Te1Ux3CxPlWFWD_6a9Rgc.roa File: qOG6O2Te1Ux3CxPlWFWD_6a9Rgc.roa (raw, json) Hash identifier: KIXE5IXYoEpi7KicobrnzlhjuHGnO16bqwVWIfJH930= Subject key identifier: A8:E1:BA:3B:64:DE:D5:4C:77:0B:13:E5:58:55:83:FF:A6:BD:46:07 Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430 Certificate serial: 019A501F2C7B426A15BB88EB8B3CF793B80A Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/qOG6O2Te1Ux3CxPlWFWD_6a9Rgc.roa Signing time: Tue 04 Nov 2025 18:26:51 +0000 ROA not before: Tue 04 Nov 2025 18:26:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 42337 IP address blocks: 46.38.140.0/24 maxlen: 24 46.38.145.0/24 maxlen: 24 46.38.146.0/24 maxlen: 24 46.38.147.0/24 maxlen: 24 46.38.148.0/24 maxlen: 24 46.38.149.0/24 maxlen: 24 46.38.150.0/24 maxlen: 24 46.38.151.0/24 maxlen: 24 185.29.223.0/24 maxlen: 24 212.80.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.mft rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:50:1f:2c:7b:42:6a:15:bb:88:eb:8b:3c:f7:93:b8:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430 Validity Not Before: Nov 4 18:26:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=a8e1ba3b64ded54c770b13e5585583ffa6bd4607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8e:56:00:7d:38:4b:0b:03:be:4e:b0:54:77: bc:a5:de:13:2e:bd:df:87:de:56:72:3f:82:b5:44: 45:e6:f5:70:86:ab:ca:53:6f:6d:31:60:9d:4d:9e: 93:0b:cf:c0:2e:6b:33:42:9d:5f:57:69:bb:0e:b6: 06:4f:d7:e9:2c:76:ad:1d:96:64:1e:a9:1d:be:33: 96:ba:e5:af:ee:fc:4d:6c:78:ce:ee:fb:c7:09:c8: e7:79:b9:db:ee:6c:50:a5:5e:c2:7e:00:52:79:fe: f1:8c:41:03:d4:c9:b1:0f:6e:c7:09:7b:2b:af:f7: c6:15:9f:02:84:ba:7b:9c:da:bd:b3:ea:d1:3d:cd: fa:0f:5c:76:6c:ed:76:fd:84:de:23:01:20:c9:67: 06:6e:13:c3:5c:7f:51:97:c8:bf:a3:e6:19:eb:ac: 78:8d:77:0b:60:5e:02:36:14:ef:f6:f0:a3:cd:ed: 0b:ed:db:32:7e:cb:86:83:9a:48:e5:db:24:7b:0f: be:8b:ca:af:4d:91:b7:04:cf:58:d3:ab:cc:ea:d0: 0b:4a:13:af:48:73:0a:90:e8:6a:81:bb:e5:b9:e1: 72:ec:02:9f:a3:3f:b0:c2:60:35:17:d8:40:12:97: 3f:33:04:6c:1c:7e:07:12:89:6d:24:80:72:b4:73: 85:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E1:BA:3B:64:DE:D5:4C:77:0B:13:E5:58:55:83:FF:A6:BD:46:07 X509v3 Authority Key Identifier: keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/qOG6O2Te1Ux3CxPlWFWD_6a9Rgc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.38.140.0/24 46.38.145.0-46.38.151.255 185.29.223.0/24 212.80.29.0/24 Signature Algorithm: sha256WithRSAEncryption 59:f6:48:36:d1:b4:5e:10:a3:a6:a0:5c:55:12:af:df:c6:1b: 02:0b:8e:10:13:5f:6b:fc:57:ce:55:e7:0e:74:80:3c:ab:23: 01:e5:7d:9c:09:d9:8b:a2:4b:69:aa:37:9b:f1:aa:63:05:f5: 9d:81:55:aa:fc:01:07:af:6b:c6:73:cf:11:be:81:b2:92:b8: 18:37:84:5f:28:fe:af:04:8c:fd:8b:6b:73:94:cd:48:d1:74: 6b:9f:28:00:92:1c:71:06:50:9c:27:f0:5d:17:27:f7:4a:22: a2:a4:a1:87:83:9a:6a:17:42:79:db:dc:d3:b8:99:a8:4d:4e: 8d:13:5f:43:2a:c7:48:6f:c4:1b:f7:fe:32:80:d1:24:00:20: 13:81:76:b1:8d:52:42:02:c9:64:8e:2e:94:d8:70:18:df:15: 69:9f:f0:9f:52:bc:47:74:55:0c:ee:19:ce:e9:08:17:48:f5: a3:70:e7:64:85:8d:a3:94:c5:52:ce:35:3e:d1:a0:d0:bd:2d: 88:e8:4a:be:74:f0:c9:ef:03:19:b9:86:24:3f:a2:ac:97:a5: ea:1d:56:a3:ff:7a:5d:53:e2:14:89:8e:3f:50:66:40:6a:70: 7b:2b:fe:0f:37:05:3d:74:49:b2:c7:ba:10:e4:1c:66:73:6d: 15:70:04:71 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZpQHyx7QmoVu4jrizz3k7gKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj NWY0MzAwHhcNMjUxMTA0MTgyNjUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhOGUxYmEzYjY0ZGVkNTRjNzcwYjEzZTU1ODU1ODNmZmE2YmQ0NjA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxo5WAH04SwsDvk6wVHe8pd4TLr3f h95Wcj+CtURF5vVwhqvKU29tMWCdTZ6TC8/ALmszQp1fV2m7DrYGT9fpLHatHZZk HqkdvjOWuuWv7vxNbHjO7vvHCcjnebnb7mxQpV7CfgBSef7xjEED1MmxD27HCXsr r/fGFZ8ChLp7nNq9s+rRPc36D1x2bO12/YTeIwEgyWcGbhPDXH9Rl8i/o+YZ66x4 jXcLYF4CNhTv9vCjze0L7dsyfsuGg5pI5dskew++i8qvTZG3BM9Y06vM6tALShOv SHMKkOhqgbvlueFy7AKfoz+wwmA1F9hAEpc/MwRsHH4HEoltJIBytHOFKwIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFKjhujtk3tVMdwsT5VhVg/+mvUYHMB8GA1UdIwQY MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt MmEwOWNjNTNhODA1LzEvcU9HNk8yVGUxVXgzQ3hQbFdGV0RfNmE5UmdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1 LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQALiaMMAwD BAAuJpEDBAMuJpADBAC5Hd8DBADUUB0wDQYJKoZIhvcNAQELBQADggEBAFn2SDbR tF4Qo6agXFUSr9/GGwILjhATX2v8V85V5w50gDyrIwHlfZwJ2YuiS2mqN5vxqmMF 9Z2BVar8AQeva8ZzzxG+gbKSuBg3hF8o/q8EjP2La3OUzUjRdGufKACSHHEGUJwn 8F0XJ/dKIqKkoYeDmmoXQnnb3NO4mahNTo0TX0Mqx0hvxBv3/jKA0SQAIBOBdrGN UkICyWSOLpTYcBjfFWmf8J9SvEd0VQzuGc7pCBdI9aNw52SFjaOUxVLONT7RoNC9 LYjoSr508MnvAxm5hiQ/oqyXpeodVqP/el1T4hSJjj9QZkBqcHsr/g83BT10SbLH uhDkHGZzbRVwBHE= -----END CERTIFICATE-----Generated at Sat Dec 6 16:51:38 2025 by rpki-client