This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/iHsZnsUV10oNGdkpwXAmd_Hij34.roa File: iHsZnsUV10oNGdkpwXAmd_Hij34.roa (raw, json) Hash identifier: YtziydB8sxT3Tyuvtc75519uFBQHrWBD/57mPBQV+Gk= Subject key identifier: 88:7B:19:9E:C5:15:D7:4A:0D:19:D9:29:C1:70:26:77:F1:E2:8F:7E Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Certificate serial: 019AF50B286A130615F1094E820D9A24A22F Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/iHsZnsUV10oNGdkpwXAmd_Hij34.roa Signing time: Sat 06 Dec 2025 19:02:20 +0000 ROA not before: Sat 06 Dec 2025 19:02:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 216397 IP address blocks: 89.251.10.0/24 maxlen: 24 2a05:ec80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.mft rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:28:6a:13:06:15:f1:09:4e:82:0d:9a:24:a2:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Validity Not Before: Dec 6 19:02:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=887b199ec515d74a0d19d929c1702677f1e28f7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:28:4b:22:9f:1b:25:b9:f3:f8:95:4d:6e:06: f2:15:84:36:36:a5:2c:f7:51:38:7e:e4:8d:06:ce: e7:56:b0:df:5f:b2:13:5a:18:c2:60:26:eb:0b:0f: 85:f8:ea:f7:7d:dd:9f:7c:73:bf:93:20:27:45:32: ea:cf:94:81:6e:a4:81:1c:7e:a5:b2:3b:79:9e:ba: 64:fb:24:01:16:29:2f:22:bf:69:b3:44:e0:39:3c: e0:6b:15:6b:b0:cb:3b:a8:a0:97:62:ce:05:34:ba: 74:ae:8f:c6:09:6b:e5:9c:8a:d7:96:02:e9:36:77: e0:51:f3:2e:e1:ea:e2:45:80:5e:68:4f:73:60:b1: ac:a4:76:11:da:eb:05:df:74:e1:76:04:8a:f5:ad: c5:d9:36:f0:39:4b:22:a5:50:40:b2:ba:e9:fa:6b: de:b1:5e:42:2c:e4:7b:a1:ce:0c:65:98:de:f9:1a: eb:94:38:34:5c:0e:63:ec:e2:38:97:66:a6:2a:1c: fd:5a:59:e7:d3:6a:53:96:ee:06:bb:76:c1:dc:c2: 11:4b:ab:8a:08:be:f4:c0:f7:c2:d8:29:76:e4:85: 0c:3f:20:87:bc:bf:40:d8:1a:78:75:70:e7:4f:a7: d2:6b:18:86:56:c6:55:98:7a:ee:43:00:3e:35:f5: 79:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:7B:19:9E:C5:15:D7:4A:0D:19:D9:29:C1:70:26:77:F1:E2:8F:7E X509v3 Authority Key Identifier: keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/iHsZnsUV10oNGdkpwXAmd_Hij34.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.251.10.0/24 IPv6: 2a05:ec80::/48 Signature Algorithm: sha256WithRSAEncryption 98:da:03:66:99:d6:ad:a6:f0:5c:2e:12:e1:e2:c0:4b:ef:f9: b7:51:05:78:a3:8b:c5:e3:05:4d:ba:2f:cd:33:30:68:51:06: 1a:dd:c1:a8:4f:cd:c6:11:5e:99:46:a6:1d:c8:ca:e0:84:1c: 78:c1:86:be:bf:57:52:4b:d7:72:59:9f:39:82:5c:c8:b7:e1: a3:68:c1:20:23:2b:97:d5:e1:15:bc:7a:05:05:c8:c8:81:2b: 3b:91:8b:35:43:c5:e4:22:4b:9d:2c:71:b1:ff:08:f6:85:15: d7:1c:f8:e8:38:cf:ac:e5:c6:e1:a7:97:c7:88:05:12:b6:10: 3d:a6:41:ab:16:02:8b:4f:c2:7f:38:78:d9:8c:dd:a2:06:b8: 50:cb:7d:44:63:23:f1:82:b5:d4:31:1b:96:ca:55:6f:ad:26: 6f:55:95:f4:63:1c:84:40:f8:35:3f:36:6c:52:72:44:16:d7: 77:8a:21:8a:ba:2b:57:af:03:b6:e8:8a:aa:a1:04:62:1c:9d: 8b:e8:16:a6:ce:7b:f5:a0:26:14:ce:db:2e:7b:e5:84:8d:61: 1a:2a:f5:2f:bf:ad:0a:32:3c:99:53:7e:ac:e8:31:4f:d7:44: c7:bf:85:a9:ee:2b:20:a2:d5:e0:c2:52:32:0a:46:e5:60:e1: 27:a5:e2:b4 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZr1CyhqEwYV8QlOgg2aJKIvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2 NWE0NzgwHhcNMjUxMjA2MTkwMjIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODdiMTk5ZWM1MTVkNzRhMGQxOWQ5MjljMTcwMjY3N2YxZTI4ZjdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyhLIp8bJbnz+JVNbgbyFYQ2NqUs 91E4fuSNBs7nVrDfX7ITWhjCYCbrCw+F+Or3fd2ffHO/kyAnRTLqz5SBbqSBHH6l sjt5nrpk+yQBFikvIr9ps0TgOTzgaxVrsMs7qKCXYs4FNLp0ro/GCWvlnIrXlgLp NnfgUfMu4eriRYBeaE9zYLGspHYR2usF33ThdgSK9a3F2TbwOUsipVBAsrrp+mve sV5CLOR7oc4MZZje+RrrlDg0XA5j7OI4l2amKhz9Wlnn02pTlu4Gu3bB3MIRS6uK CL70wPfC2Cl25IUMPyCHvL9A2Bp4dXDnT6fSaxiGVsZVmHruQwA+NfV5HQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIh7GZ7FFddKDRnZKcFwJnfx4o9+MB8GA1UdIwQY MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt ZmUwNjU5MTc2YTU2LzEvaUhzWm5zVVYxMG9OR2RrcHdYQW1kX0hpajM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2 LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAWfsKMA8E AgACMAkDBwAqBeyAAAAwDQYJKoZIhvcNAQELBQADggEBAJjaA2aZ1q2m8FwuEuHi wEvv+bdRBXiji8XjBU26L80zMGhRBhrdwahPzcYRXplGph3IyuCEHHjBhr6/V1JL 13JZnzmCXMi34aNowSAjK5fV4RW8egUFyMiBKzuRizVDxeQiS50scbH/CPaFFdcc +Og4z6zlxuGnl8eIBRK2ED2mQasWAotPwn84eNmM3aIGuFDLfURjI/GCtdQxG5bK VW+tJm9VlfRjHIRA+DU/NmxSckQW13eKIYq6K1evA7boiqqhBGIcnYvoFqbOe/Wg JhTO2y575YSNYRoq9S+/rQoyPJlTfqzoMU/XRMe/hanuKyCi1eDCUjIKRuVg4Sel 4rQ= -----END CERTIFICATE-----Generated at Sun Dec 7 16:56:35 2025 by rpki-client