This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/R4uofUKNIfA-EK3vLkMBZ3WxvjE.roa File: R4uofUKNIfA-EK3vLkMBZ3WxvjE.roa (raw, json) Hash identifier: DbC4wJZ3KqVchUixZoNjVtbHMAmB3a7ChJfc9pXD6fY= Subject key identifier: 47:8B:A8:7D:42:8D:21:F0:3E:10:AD:EF:2E:43:01:67:75:B1:BE:31 Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1 Certificate serial: 019A9D8EDFD542285EE20CD23B71029CC4C9 Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/R4uofUKNIfA-EK3vLkMBZ3WxvjE.roa Signing time: Wed 19 Nov 2025 19:19:37 +0000 ROA not before: Wed 19 Nov 2025 19:19:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 5650 IP address blocks: 89.125.40.0/21 maxlen: 21 167.17.32.0/21 maxlen: 21 167.17.41.0/24 maxlen: 24 167.17.42.0/23 maxlen: 23 167.17.44.0/23 maxlen: 23 167.17.46.0/24 maxlen: 24 206.245.136.0/21 maxlen: 21 206.245.144.0/21 maxlen: 21 208.123.184.0/24 maxlen: 24 208.123.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9d:8e:df:d5:42:28:5e:e2:0c:d2:3b:71:02:9c:c4:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1 Validity Not Before: Nov 19 19:19:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=478ba87d428d21f03e10adef2e43016775b1be31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:24:ef:cf:93:d9:c5:36:8d:f0:63:8d:2a:60: f9:76:14:85:42:1e:29:61:94:28:26:4f:5e:6e:4c: 4f:b4:b2:c6:36:93:ee:8b:61:43:30:6c:cd:17:43: 24:cb:eb:38:8a:a8:78:de:c8:89:49:09:7b:a3:1f: d8:3b:49:a0:04:fd:c0:27:de:46:bf:0d:bd:b5:bd: 72:f8:74:d4:73:6b:8a:b6:31:be:d8:da:e4:e3:2c: f4:2a:7b:12:7b:f2:5c:f5:71:38:22:e5:89:dc:81: 09:0e:8c:22:3b:fd:3e:3f:3d:f8:b7:21:e7:4a:8d: 09:57:82:67:ea:ad:f2:50:74:2f:46:dc:5d:58:f5: 03:dc:e7:e4:56:d7:47:0b:67:b4:57:5d:72:89:45: d4:5a:a6:37:90:46:4c:5e:cd:c1:ff:f1:4b:3f:ff: 20:3d:78:07:a8:bb:f4:90:68:81:76:c9:a7:c9:f8: 43:e5:61:c6:1e:17:20:17:dd:97:e9:00:bd:bb:ac: 92:64:38:2d:3b:a7:f5:0f:ab:00:40:86:c2:a0:06: ea:88:44:81:20:00:d6:9e:97:be:fe:8e:12:90:ea: bc:5c:0d:98:5e:89:39:e7:3a:d5:75:19:3c:14:46: 33:29:34:55:00:dd:21:65:0e:2e:6b:fe:2b:7e:e7: a5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:8B:A8:7D:42:8D:21:F0:3E:10:AD:EF:2E:43:01:67:75:B1:BE:31 X509v3 Authority Key Identifier: keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/R4uofUKNIfA-EK3vLkMBZ3WxvjE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.125.40.0/21 167.17.32.0/21 167.17.41.0-167.17.46.255 206.245.136.0-206.245.151.255 208.123.184.0/24 208.123.186.0/24 Signature Algorithm: sha256WithRSAEncryption 31:41:65:2f:29:1c:40:d8:a2:19:96:ae:d8:8d:2b:da:c4:8a: 14:64:31:78:db:b3:a0:fa:47:40:88:a6:c5:7e:e3:53:ee:55: cc:30:9d:9f:80:63:86:1d:a3:a4:d9:ac:f6:1d:54:ba:79:f8: 32:5a:95:43:47:b5:d1:f0:7c:90:91:7c:6e:82:cd:f3:4f:ce: 8a:f2:e3:39:c9:32:0a:93:d3:9a:4f:07:12:56:ae:4d:4f:7c: be:cc:15:9e:e0:a8:17:e4:af:9d:a3:1d:11:0f:85:aa:66:5f: 40:0d:fe:8e:e3:ef:ea:41:6b:4b:6c:a8:83:cf:24:0d:00:83: 3f:8b:e8:35:54:9a:7d:75:53:bc:3d:fe:06:e5:3b:c4:d7:42: 8e:c7:f5:f3:6d:f9:25:47:e0:73:be:c5:42:7e:ab:50:82:23: ea:0d:be:b3:e7:a1:7c:f6:9c:4c:88:0d:a3:fc:e2:52:9f:37: c0:b4:dc:72:bf:60:bc:b4:59:f7:5c:c6:97:15:c8:d9:ae:ed: 52:4c:46:26:70:22:41:70:52:79:d9:71:04:c9:03:34:35:9d: c7:3c:13:3e:06:92:86:8d:71:00:08:60:bb:8e:8b:e3:5f:57: b2:da:e2:3c:34:45:d9:e7:d5:c3:d2:b3:ee:1f:51:9b:64:a0: 32:e1:3e:e3 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZqdjt/VQihe4gzSO3ECnMTJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm Y2ZlZDEwHhcNMjUxMTE5MTkxOTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NzhiYTg3ZDQyOGQyMWYwM2UxMGFkZWYyZTQzMDE2Nzc1YjFiZTMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAziTvz5PZxTaN8GONKmD5dhSFQh4p YZQoJk9ebkxPtLLGNpPui2FDMGzNF0Mky+s4iqh43siJSQl7ox/YO0mgBP3AJ95G vw29tb1y+HTUc2uKtjG+2Nrk4yz0KnsSe/Jc9XE4IuWJ3IEJDowiO/0+Pz34tyHn So0JV4Jn6q3yUHQvRtxdWPUD3OfkVtdHC2e0V11yiUXUWqY3kEZMXs3B//FLP/8g PXgHqLv0kGiBdsmnyfhD5WHGHhcgF92X6QC9u6ySZDgtO6f1D6sAQIbCoAbqiESB IADWnpe+/o4SkOq8XA2YXok55zrVdRk8FEYzKTRVAN0hZQ4ua/4rfuel2QIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFEeLqH1CjSHwPhCt7y5DAWd1sb4xMB8GA1UdIwQY MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt ZTU4MzlmNDNlNTgzLzEvUjR1b2ZVS05JZkEtRUszdkxrTUJaM1d4dmpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAATA0AwQDWX0oAwQD pxEgMAwDBACnESkDBACnES4wDAMEA871iAMEA871kAMEANB7uAMEANB7ujANBgkq hkiG9w0BAQsFAAOCAQEAMUFlLykcQNiiGZau2I0r2sSKFGQxeNuzoPpHQIimxX7j U+5VzDCdn4Bjhh2jpNms9h1Uunn4MlqVQ0e10fB8kJF8boLN80/OivLjOckyCpPT mk8HElauTU98vswVnuCoF+SvnaMdEQ+FqmZfQA3+juPv6kFrS2yog88kDQCDP4vo NVSafXVTvD3+BuU7xNdCjsf18235JUfgc77FQn6rUIIj6g2+s+ehfPacTIgNo/zi Up83wLTccr9gvLRZ91zGlxXI2a7tUkxGJnAiQXBSedlxBMkDNDWdxzwTPgaSho1x AAhgu46L419XstriPDRF2efVw9Kz7h9Rm2SgMuE+4w== -----END CERTIFICATE-----Generated at Thu Dec 4 07:38:20 2025 by rpki-client