This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/vl_eyV2QECefR2S6FNYu1djoP18.roa File: vl_eyV2QECefR2S6FNYu1djoP18.roa (raw, json) Hash identifier: GGUiQ9AFAQloqBJPOxq5mVWIqAHEGqLL9j5HglTjQWg= Subject key identifier: BE:5F:DE:C9:5D:90:10:27:9F:47:64:BA:14:D6:2E:D5:D8:E8:3F:5F Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Certificate serial: 019AEB1937E28FFA2565699CE5106051A70C Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/vl_eyV2QECefR2S6FNYu1djoP18.roa Signing time: Thu 04 Dec 2025 20:41:29 +0000 ROA not before: Thu 04 Dec 2025 20:41:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38136 IP address blocks: 5.34.216.0/21 maxlen: 24 5.226.48.0/22 maxlen: 24 45.137.180.0/22 maxlen: 24 155.254.120.0/21 maxlen: 24 178.236.36.0/22 maxlen: 24 185.36.192.0/22 maxlen: 24 185.220.236.0/22 maxlen: 24 185.248.184.0/22 maxlen: 24 188.253.4.0/22 maxlen: 24 188.253.12.0/22 maxlen: 24 188.253.112.0/21 maxlen: 24 188.253.120.0/21 maxlen: 24 212.87.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.mft rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:eb:19:37:e2:8f:fa:25:65:69:9c:e5:10:60:51:a7:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Validity Not Before: Dec 4 20:41:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=be5fdec95d9010279f4764ba14d62ed5d8e83f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c0:7a:d2:da:46:3e:be:8e:56:c9:9d:04:c2: 44:0d:08:2e:f1:8a:4c:a2:fa:58:12:a1:5f:58:4c: 74:18:c8:84:bc:fa:f3:2b:13:a5:c3:fc:a8:18:cf: 24:2a:09:ab:0c:ab:7d:1c:49:22:ab:5d:b4:fe:1b: f6:7c:17:7a:b3:ae:80:89:18:8d:51:73:e2:e9:8e: 61:54:0e:c8:09:59:c1:74:13:5f:a1:39:28:ff:4b: 50:bb:6a:4f:9f:af:d6:e9:d9:f1:a9:42:ec:53:17: 7f:b3:11:18:29:a7:0a:f9:ee:7b:4a:e6:70:14:13: 3c:d0:ac:fa:64:6d:2f:6e:49:f1:0c:96:bc:34:b7: ee:76:1e:37:70:41:f7:10:47:c2:a2:4a:9e:ca:80: 7d:5f:a4:83:81:32:c4:5f:e4:24:28:42:71:7b:24: 9e:4c:2d:fa:f1:27:d8:95:d3:0d:cc:c3:7a:9f:04: 79:90:6e:b2:f0:d7:c5:4f:96:12:c7:e2:df:bc:6a: ab:90:9d:e2:25:15:db:bf:d9:c1:f2:e9:b4:c3:a8: ee:4f:76:84:82:6d:a3:d6:f8:1f:66:8b:a8:43:95: 0b:20:ee:96:70:95:99:d3:c0:52:0a:9b:56:32:d7: 0a:a6:c2:af:57:ba:0c:df:f6:2b:47:7b:5b:b6:f6: 5f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5F:DE:C9:5D:90:10:27:9F:47:64:BA:14:D6:2E:D5:D8:E8:3F:5F X509v3 Authority Key Identifier: keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/vl_eyV2QECefR2S6FNYu1djoP18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.34.216.0/21 5.226.48.0/22 45.137.180.0/22 155.254.120.0/21 178.236.36.0/22 185.36.192.0/22 185.220.236.0/22 185.248.184.0/22 188.253.4.0/22 188.253.12.0/22 188.253.112.0/20 212.87.192.0/22 Signature Algorithm: sha256WithRSAEncryption 51:f2:1e:fa:a6:35:ea:27:89:d2:dd:e9:1c:cd:dc:f8:00:6f: 2c:b2:db:d2:0c:75:86:78:ea:29:6f:75:ce:cc:b5:29:5d:f1: ce:88:47:ff:08:6d:ff:a3:7a:2c:05:9c:db:35:dd:1b:93:54: 01:14:fe:13:33:be:36:b2:3c:66:f5:e3:6a:18:42:4c:49:c1: f2:8b:f9:9d:f0:5d:66:0f:08:a7:9b:6e:2e:1b:b7:b6:c8:1c: 96:16:c0:70:13:3b:55:3a:bc:7d:c7:2d:95:35:28:f8:f7:fc: 02:d1:03:b6:aa:b2:c6:5c:7e:ec:47:d2:32:39:ee:b2:e7:2a: 83:ab:6c:f6:d2:b2:5f:1f:39:22:a7:03:8b:ab:aa:84:9a:ed: dc:b0:5c:2c:d0:28:5b:35:75:d1:9c:30:0c:4a:67:85:ea:a9: 82:0f:06:d7:2d:d3:17:0e:7b:fd:dc:cc:53:39:8e:f7:88:c7: d9:da:6d:58:c4:4f:0b:c0:ee:89:f2:a1:76:c1:ab:8e:34:0d: d1:59:d9:95:8e:01:1c:3f:ef:20:05:48:8a:bc:14:35:1e:44: 75:29:be:b9:2e:5f:6e:ac:cd:2c:75:44:8d:e1:1a:ef:e9:6d: dc:12:9d:59:ff:be:a2:b6:11:29:2d:85:2f:4f:71:5f:dd:4e: d4:b8:2e:86 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgISAZrrGTfij/olZWmc5RBgUacMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2 NWE0NzgwHhcNMjUxMjA0MjA0MTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTVmZGVjOTVkOTAxMDI3OWY0NzY0YmExNGQ2MmVkNWQ4ZTgzZjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcB60tpGPr6OVsmdBMJEDQgu8YpM ovpYEqFfWEx0GMiEvPrzKxOlw/yoGM8kKgmrDKt9HEkiq120/hv2fBd6s66AiRiN UXPi6Y5hVA7ICVnBdBNfoTko/0tQu2pPn6/W6dnxqULsUxd/sxEYKacK+e57SuZw FBM80Kz6ZG0vbknxDJa8NLfudh43cEH3EEfCokqeyoB9X6SDgTLEX+QkKEJxeySe TC368SfYldMNzMN6nwR5kG6y8NfFT5YSx+LfvGqrkJ3iJRXbv9nB8um0w6juT3aE gm2j1vgfZouoQ5ULIO6WcJWZ08BSCptWMtcKpsKvV7oM3/YrR3tbtvZfXQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFL5f3sldkBAnn0dkuhTWLtXY6D9fMB8GA1UdIwQY MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt ZmUwNjU5MTc2YTU2LzEvdmxfZXlWMlFFQ2VmUjJTNkZOWXUxZGpvUDE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2 LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQDBSLYAwQC BeIwAwQCLYm0AwQDm/54AwQCsuwkAwQCuSTAAwQCudzsAwQCufi4AwQCvP0EAwQC vP0MAwQEvP1wAwQC1FfAMA0GCSqGSIb3DQEBCwUAA4IBAQBR8h76pjXqJ4nS3ekc zdz4AG8sstvSDHWGeOopb3XOzLUpXfHOiEf/CG3/o3osBZzbNd0bk1QBFP4TM742 sjxm9eNqGEJMScHyi/md8F1mDwinm24uG7e2yByWFsBwEztVOrx9xy2VNSj49/wC 0QO2qrLGXH7sR9IyOe6y5yqDq2z20rJfHzkipwOLq6qEmu3csFws0ChbNXXRnDAM SmeF6qmCDwbXLdMXDnv93MxTOY73iMfZ2m1YxE8LwO6J8qF2wauONA3RWdmVjgEc P+8gBUiKvBQ1HkR1Kb65Ll9urM0sdUSN4Rrv6W3cEp1Z/76ithEpLYUvT3Ff3U7U uC6G -----END CERTIFICATE-----Generated at Fri Dec 5 19:01:28 2025 by rpki-client