This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/EH2JM55t2QALSKUuq7X_L3yWhWE.roa File: EH2JM55t2QALSKUuq7X_L3yWhWE.roa (raw, json) Hash identifier: w38dnacN2eEwix0z9D0lm25d9HpFIyG2OCHOwRaN6Sg= Subject key identifier: 10:7D:89:33:9E:6D:D9:00:0B:48:A5:2E:AB:B5:FF:2F:7C:96:85:61 Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1 Certificate serial: 019A9D8EE0820E196618D33C68F944C8370B Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/EH2JM55t2QALSKUuq7X_L3yWhWE.roa Signing time: Wed 19 Nov 2025 19:19:37 +0000 ROA not before: Wed 19 Nov 2025 19:19:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 13347 IP address blocks: 89.125.40.0/21 maxlen: 21 167.17.32.0/21 maxlen: 21 167.17.41.0/24 maxlen: 24 167.17.42.0/23 maxlen: 23 167.17.44.0/23 maxlen: 23 167.17.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9d:8e:e0:82:0e:19:66:18:d3:3c:68:f9:44:c8:37:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1 Validity Not Before: Nov 19 19:19:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=107d89339e6dd9000b48a52eabb5ff2f7c968561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:51:9e:ee:c6:74:af:ec:db:1a:d8:bd:c4:c7: 21:68:cb:70:c7:6a:e7:32:0a:19:31:c3:44:0d:ab: 15:0e:e2:6e:8c:51:cf:57:d3:fb:3e:49:c2:d9:64: 2f:3b:d5:6f:61:4d:8e:15:bc:33:b3:88:d2:30:42: dd:21:5d:db:66:a8:1c:d8:f8:b8:2f:d1:34:51:28: b2:2e:66:c1:02:81:30:58:b9:52:3b:a6:2d:3d:3b: 02:73:96:f4:69:31:ca:9d:20:1f:c0:af:5b:31:9d: 9c:ab:62:06:70:98:32:14:97:c8:7e:25:d4:e3:73: b7:29:d6:cf:77:17:d5:f7:4c:b9:6c:e8:23:3b:47: 31:2e:a4:da:79:24:5e:01:76:02:a7:3e:9d:75:d8: d2:9c:75:f8:f3:2a:0e:f6:d0:b8:3e:08:60:1b:24: 6a:5c:d5:87:bf:38:b6:fc:fe:60:bc:d4:e7:c1:b8: b3:9d:d8:e2:98:32:a6:84:51:0b:c7:33:ce:5f:93: 9f:0f:48:cd:61:a5:f8:b9:e6:24:d6:6d:a7:78:8d: 6e:77:db:a5:3f:ec:4e:e7:0b:2d:d5:01:fc:2a:dd: 03:94:dc:4d:2d:18:6f:23:6c:f5:a8:33:7c:d9:b3: 79:35:19:0b:4a:c9:96:08:b1:75:f4:22:42:40:e3: 50:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:7D:89:33:9E:6D:D9:00:0B:48:A5:2E:AB:B5:FF:2F:7C:96:85:61 X509v3 Authority Key Identifier: keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/EH2JM55t2QALSKUuq7X_L3yWhWE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.125.40.0/21 167.17.32.0/21 167.17.41.0-167.17.46.255 Signature Algorithm: sha256WithRSAEncryption 3e:da:21:4a:fb:eb:4e:47:e8:8c:94:da:0b:29:4b:b4:9e:7b: 63:90:e5:6b:19:04:e6:09:70:bc:35:6c:c7:0a:14:bc:0f:74: 5d:ae:61:f5:3a:94:cc:12:f5:e4:a1:c8:2d:6c:b5:ee:ca:2a: 2a:ec:52:27:4b:a7:fb:82:ae:8e:82:c2:a1:b4:a3:32:0c:a7: 6b:9e:5c:1a:80:99:75:c9:1e:ab:45:7a:9f:06:4a:f3:c8:35: bb:6e:b0:3f:a3:b9:1b:f9:e2:fa:ab:40:55:1f:f5:44:9e:18: 4d:3a:31:b6:5e:38:d2:7f:7b:ad:e8:85:94:e6:ad:9f:27:1b: cf:ec:1b:ce:60:af:be:87:79:4d:99:fa:87:c6:a6:7d:9d:69: 12:ea:07:ad:39:94:dc:a4:20:bb:46:d6:36:e3:a4:99:4c:bc: 34:d3:9a:e8:8d:51:a5:b5:a7:8e:9a:f0:b6:d2:18:88:da:7e: 47:72:c8:01:f7:32:6d:41:ae:de:b1:71:97:3b:6f:36:7e:a4: 8c:b3:66:57:d3:75:95:b6:bd:33:86:f9:55:50:3d:ca:d0:38: dc:c4:4a:5d:cd:05:64:d4:12:76:2a:a0:e0:13:53:7b:46:3f: 3d:05:39:ef:81:66:d4:2c:e8:a0:a7:09:1c:7a:ff:b8:54:38: 55:11:39:94 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZqdjuCCDhlmGNM8aPlEyDcLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm Y2ZlZDEwHhcNMjUxMTE5MTkxOTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMDdkODkzMzllNmRkOTAwMGI0OGE1MmVhYmI1ZmYyZjdjOTY4NTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1Ge7sZ0r+zbGti9xMchaMtwx2rn MgoZMcNEDasVDuJujFHPV9P7PknC2WQvO9VvYU2OFbwzs4jSMELdIV3bZqgc2Pi4 L9E0USiyLmbBAoEwWLlSO6YtPTsCc5b0aTHKnSAfwK9bMZ2cq2IGcJgyFJfIfiXU 43O3KdbPdxfV90y5bOgjO0cxLqTaeSReAXYCpz6dddjSnHX48yoO9tC4PghgGyRq XNWHvzi2/P5gvNTnwbizndjimDKmhFELxzPOX5OfD0jNYaX4ueYk1m2neI1ud9ul P+xO5wst1QH8Kt0DlNxNLRhvI2z1qDN82bN5NRkLSsmWCLF19CJCQONQYQIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFBB9iTOebdkAC0ilLqu1/y98loVhMB8GA1UdIwQY MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt ZTU4MzlmNDNlNTgzLzEvRUgySk01NXQyUUFMU0tVdXE3WF9MM3lXaFdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQDWX0oAwQD pxEgMAwDBACnESkDBACnES4wDQYJKoZIhvcNAQELBQADggEBAD7aIUr7605H6IyU 2gspS7See2OQ5WsZBOYJcLw1bMcKFLwPdF2uYfU6lMwS9eShyC1ste7KKirsUidL p/uCro6CwqG0ozIMp2ueXBqAmXXJHqtFep8GSvPINbtusD+juRv54vqrQFUf9USe GE06MbZeONJ/e63ohZTmrZ8nG8/sG85gr76HeU2Z+ofGpn2daRLqB605lNykILtG 1jbjpJlMvDTTmuiNUaW1p46a8LbSGIjafkdyyAH3Mm1Brt6xcZc7bzZ+pIyzZlfT dZW2vTOG+VVQPcrQONzESl3NBWTUEnYqoOATU3tGPz0FOe+BZtQs6KCnCRx6/7hU OFUROZQ= -----END CERTIFICATE-----Generated at Fri Dec 5 07:56:51 2025 by rpki-client