This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/KtlV2YYAuDvLLDrwvVONKNyr5wE.roa File: KtlV2YYAuDvLLDrwvVONKNyr5wE.roa (raw, json) Hash identifier: X0ZKW+Jh+LXjVGRNpAiX4HmMGVTvfeCbPgs0XOICV8s= Subject key identifier: 2A:D9:55:D9:86:00:B8:3B:CB:2C:3A:F0:BD:53:8D:28:DC:AB:E7:01 Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4 Certificate serial: 019A63A7932A8AC20AE30C71252E750125B5 Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/KtlV2YYAuDvLLDrwvVONKNyr5wE.roa Signing time: Sat 08 Nov 2025 13:28:37 +0000 ROA not before: Sat 08 Nov 2025 13:28:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 211522 IP address blocks: 77.105.146.0/24 maxlen: 24 77.105.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:63:a7:93:2a:8a:c2:0a:e3:0c:71:25:2e:75:01:25:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4 Validity Not Before: Nov 8 13:28:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=2ad955d98600b83bcb2c3af0bd538d28dcabe701 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ed:db:ad:55:3a:a4:04:32:b0:8f:58:dc:3b: d1:09:08:75:f3:2f:e2:78:a8:b5:d2:c4:b5:2f:81: 79:6f:9f:48:d2:d0:00:61:35:8a:7a:cb:6e:d1:4f: 72:87:2e:db:79:e4:97:9a:dc:38:7f:2a:bf:e3:c1: d3:9b:2b:75:2f:32:76:3b:a7:e8:0b:5d:24:a5:2b: 17:ed:07:13:13:d9:44:67:17:11:1c:26:59:14:c6: f0:dc:c3:20:70:a0:5e:b1:a4:9a:64:ac:5f:a1:4d: d6:3d:6c:cc:1e:5c:9b:39:9e:4c:81:58:17:34:2a: 9a:c0:b0:eb:c2:32:0a:81:83:4d:cc:fd:db:5c:4a: 8d:e1:e6:4b:44:21:d8:81:70:ae:98:a6:aa:0c:0e: 81:e5:e9:c3:e1:bb:5b:cf:56:be:6e:f2:07:9e:71: ac:7a:b0:5a:ef:a1:29:bc:36:49:17:23:9e:3d:8b: 13:d2:89:d1:3f:a1:1c:55:0a:20:2a:b7:f1:68:d6: 06:fd:67:e9:b8:53:67:49:26:35:ff:d8:19:32:81: 89:c4:f2:15:e1:75:9f:e3:1d:05:73:20:50:2e:77: e7:80:22:28:8d:48:b2:fa:14:26:66:73:98:bc:78: 44:fe:60:fd:26:f0:33:d5:35:4c:b1:bc:a2:ac:25: 74:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D9:55:D9:86:00:B8:3B:CB:2C:3A:F0:BD:53:8D:28:DC:AB:E7:01 X509v3 Authority Key Identifier: keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/KtlV2YYAuDvLLDrwvVONKNyr5wE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.105.146.0/24 77.105.166.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:f3:bd:dd:9f:09:06:fe:97:37:9a:f9:25:d3:ee:92:4a:da: 5f:e9:7f:4c:0c:8d:4a:78:c6:5e:b5:73:c5:f4:dd:f6:c7:38: b5:5f:4b:d0:26:55:7b:75:f1:b2:c3:1a:28:07:ce:23:df:12: bc:e5:a6:5b:5f:08:53:a2:8a:59:c7:84:24:92:3e:0b:2c:a3: fb:f5:1c:b7:55:53:0d:60:cf:bc:a0:59:e7:ef:c7:af:93:c3: a0:2a:96:83:ba:03:60:60:ef:c1:83:b9:36:08:65:b9:42:a6: bc:aa:93:d9:c3:10:64:a3:88:4a:bc:8f:b9:81:e5:f1:05:3b: 2e:18:95:2e:cb:ef:82:99:7c:a0:c5:19:67:ee:ed:fe:66:6e: 07:d5:1f:2d:66:7a:b1:c0:1f:5d:f4:2c:0e:c8:fc:79:50:87: 91:af:a6:b4:08:6c:73:9c:b9:ac:e7:3b:a3:e0:ae:cc:a5:bd: b3:58:68:aa:24:63:69:65:a4:13:be:d5:88:c5:18:c0:ad:8e: 2a:1f:ce:51:7c:69:d5:86:47:af:72:c7:93:f5:80:1e:9a:eb: 6b:c4:f9:c7:a3:25:2b:c4:c8:15:9d:59:89:09:7e:70:e6:bf: 1e:57:93:e1:ac:25:88:34:32:33:d3:b9:a4:e2:81:da:eb:aa: dd:1b:a0:c7 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZpjp5MqisIK4wxxJS51ASW1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhNzBjNDQxZmI4OTJiOGM5ODE2NTM0ODg1MDY5ZmNkMzMw MGM5YTQwHhcNMjUxMTA4MTMyODM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYWQ5NTVkOTg2MDBiODNiY2IyYzNhZjBiZDUzOGQyOGRjYWJlNzAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1u3brVU6pAQysI9Y3DvRCQh18y/i eKi10sS1L4F5b59I0tAAYTWKestu0U9yhy7beeSXmtw4fyq/48HTmyt1LzJ2O6fo C10kpSsX7QcTE9lEZxcRHCZZFMbw3MMgcKBesaSaZKxfoU3WPWzMHlybOZ5MgVgX NCqawLDrwjIKgYNNzP3bXEqN4eZLRCHYgXCumKaqDA6B5enD4btbz1a+bvIHnnGs erBa76EpvDZJFyOePYsT0onRP6EcVQogKrfxaNYG/WfpuFNnSSY1/9gZMoGJxPIV 4XWf4x0FcyBQLnfngCIojUiy+hQmZnOYvHhE/mD9JvAz1TVMsbyirCV0oQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCrZVdmGALg7yyw68L1TjSjcq+cBMB8GA1UdIwQY MBaAFNpwxEH7iSuMmBZTSIUGn80zAMmkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9lNTNkZTUtMWI1Zi00NDY3LWE2OGMt MTVmYzBiNjhmODQ0LzEvS3RsVjJZWUF1RHZMTERyd3ZWT05LTnlyNXdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9lNTNkZTUtMWI1Zi00NDY3LWE2OGMtMTVmYzBiNjhmODQ0 LzEvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATWmSAwQA TWmmMA0GCSqGSIb3DQEBCwUAA4IBAQB7873dnwkG/pc3mvkl0+6SStpf6X9MDI1K eMZetXPF9N32xzi1X0vQJlV7dfGywxooB84j3xK85aZbXwhToopZx4Qkkj4LLKP7 9Ry3VVMNYM+8oFnn78evk8OgKpaDugNgYO/Bg7k2CGW5Qqa8qpPZwxBko4hKvI+5 geXxBTsuGJUuy++CmXygxRln7u3+Zm4H1R8tZnqxwB9d9CwOyPx5UIeRr6a0CGxz nLms5zuj4K7Mpb2zWGiqJGNpZaQTvtWIxRjArY4qH85RfGnVhkevcseT9YAemutr xPnHoyUrxMgVnVmJCX5w5r8eV5PhrCWINDIz07mk4oHa66rdG6DH -----END CERTIFICATE-----Generated at Sun Dec 7 17:48:35 2025 by rpki-client