This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/CDJht7IkCxl1Fd3V0Jw0C5lDhbA.roa File: CDJht7IkCxl1Fd3V0Jw0C5lDhbA.roa (raw, json) Hash identifier: hC6TckJd7vZ/EVDDKvs8SlMNOJG6j0LoJJkkefT5TcY= Subject key identifier: 08:32:61:B7:B2:24:0B:19:75:15:DD:D5:D0:9C:34:0B:99:43:85:B0 Certificate issuer: /CN=c8d5e37178d8524c72660a1d796165999e586622 Certificate serial: 019A53C4B0EC14AB528601E0C59BADE8FDB0 Authority key identifier: C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/CDJht7IkCxl1Fd3V0Jw0C5lDhbA.roa Signing time: Wed 05 Nov 2025 11:26:30 +0000 ROA not before: Wed 05 Nov 2025 11:26:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 2.57.180.0/22 maxlen: 24 2.59.116.0/24 maxlen: 24 45.12.44.0/22 maxlen: 24 45.15.52.0/22 maxlen: 22 45.67.44.0/22 maxlen: 22 45.86.192.0/22 maxlen: 22 45.95.140.0/22 maxlen: 24 45.130.204.0/22 maxlen: 24 45.136.60.0/22 maxlen: 24 45.145.192.0/22 maxlen: 24 45.151.204.0/22 maxlen: 24 91.225.0.0/24 maxlen: 24 91.227.240.0/23 maxlen: 23 94.142.164.0/22 maxlen: 22 103.82.160.0/22 maxlen: 22 185.39.11.0/24 maxlen: 24 185.57.176.0/22 maxlen: 22 185.157.123.0/24 maxlen: 24 185.232.89.0/24 maxlen: 24 193.3.158.0/24 maxlen: 24 194.99.66.0/23 maxlen: 23 195.244.14.0/23 maxlen: 23 212.52.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/yNXjcXjYUkxyZgodeWFlmZ5YZiI.crl rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/yNXjcXjYUkxyZgodeWFlmZ5YZiI.mft rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:53:c4:b0:ec:14:ab:52:86:01:e0:c5:9b:ad:e8:fd:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8d5e37178d8524c72660a1d796165999e586622 Validity Not Before: Nov 5 11:26:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=083261b7b2240b197515ddd5d09c340b994385b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a7:6c:dd:60:53:82:26:c4:ce:84:30:b4:98: 55:d1:0f:90:b1:a2:3b:e3:69:01:30:34:db:06:fe: 1e:32:46:4e:7f:86:f4:f5:e1:91:cf:dd:5e:f1:f2: ac:00:ec:4e:05:97:96:e4:ac:46:8f:86:53:c0:fb: 81:9c:d0:0c:eb:a6:42:9d:60:e3:98:77:ac:9b:8b: 9b:48:1d:9e:27:5c:7e:f3:f0:33:dd:f8:25:03:6a: 22:29:77:bb:50:7b:15:59:91:df:cf:1a:d4:09:4a: 33:c1:da:2a:3e:d4:a1:63:16:4d:d0:90:f7:eb:9f: 09:51:47:3f:69:e9:25:8c:03:91:ac:72:4e:2c:57: c2:6c:51:ab:fb:92:88:82:22:fb:44:ec:a5:54:d2: ce:ed:78:91:be:c1:0f:13:06:9c:8f:a1:04:8c:fe: f5:f8:f0:9e:d9:80:64:5e:0a:19:82:43:40:54:cc: d1:93:14:2d:45:4b:1a:d0:dd:cd:e3:1a:83:21:05: 37:49:fe:1d:ab:be:b6:19:8a:97:b5:be:59:87:84: 0f:c7:48:e1:73:89:ad:28:d6:c3:14:2a:6b:19:1f: 66:f6:59:45:5c:9c:32:76:07:26:64:65:a3:d0:e2: 57:31:4c:63:9e:85:ce:0e:a5:c0:7c:32:0a:20:04: b6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:32:61:B7:B2:24:0B:19:75:15:DD:D5:D0:9C:34:0B:99:43:85:B0 X509v3 Authority Key Identifier: keyid:C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/CDJht7IkCxl1Fd3V0Jw0C5lDhbA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/yNXjcXjYUkxyZgodeWFlmZ5YZiI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.180.0/22 2.59.116.0/24 45.12.44.0/22 45.15.52.0/22 45.67.44.0/22 45.86.192.0/22 45.95.140.0/22 45.130.204.0/22 45.136.60.0/22 45.145.192.0/22 45.151.204.0/22 91.225.0.0/24 91.227.240.0/23 94.142.164.0/22 103.82.160.0/22 185.39.11.0/24 185.57.176.0/22 185.157.123.0/24 185.232.89.0/24 193.3.158.0/24 194.99.66.0/23 195.244.14.0/23 212.52.3.0/24 Signature Algorithm: sha256WithRSAEncryption 42:ea:39:94:ea:9b:61:0f:72:10:40:4c:25:5b:82:af:37:9f: 3e:91:02:4a:b7:8b:b0:50:62:13:5b:9d:4c:08:05:cb:1a:ae: 51:86:31:e3:8d:71:15:55:7d:f0:8c:57:15:20:e5:d2:e9:b3: ee:d1:37:dc:34:a2:17:08:61:c3:06:98:b7:6d:35:24:a1:18: a6:e4:e4:ed:e5:08:b8:e8:77:3f:43:6c:08:e7:a0:d5:af:89: 53:9b:f6:16:b7:13:b9:f9:05:79:12:ff:1e:22:68:6b:ac:95: 49:12:5a:27:59:7a:7e:66:d6:d3:b9:2a:a1:d5:48:0a:47:88: 54:9d:e7:32:73:1a:e8:70:84:4f:ed:97:b8:fd:a1:f6:e4:53: 16:cf:6c:65:f3:0b:78:b2:ab:3d:95:c2:5c:b4:a3:20:24:93: 0d:64:47:47:e4:9b:c2:36:aa:30:b8:c4:10:a5:2d:de:c8:c4: fd:fe:00:50:b0:8f:5c:fa:a5:50:71:86:6e:c1:75:9e:d7:80: 52:7c:a1:2e:00:64:da:51:de:14:28:34:11:29:fd:f3:4c:1b: b2:bb:62:2d:44:61:ee:3d:42:9b:3b:af:09:f3:ac:ad:fb:18: cc:77:ee:cd:e1:e8:c5:89:25:40:0d:b8:ed:4c:54:71:c7:84: 99:cd:e2:e2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgISAZpTxLDsFKtShgHgxZut6P2wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4ZDVlMzcxNzhkODUyNGM3MjY2MGExZDc5NjE2NTk5OWU1 ODY2MjIwHhcNMjUxMTA1MTEyNjMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODMyNjFiN2IyMjQwYjE5NzUxNWRkZDVkMDljMzQwYjk5NDM4NWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ads3WBTgibEzoQwtJhV0Q+QsaI7 42kBMDTbBv4eMkZOf4b09eGRz91e8fKsAOxOBZeW5KxGj4ZTwPuBnNAM66ZCnWDj mHesm4ubSB2eJ1x+8/Az3fglA2oiKXe7UHsVWZHfzxrUCUozwdoqPtShYxZN0JD3 658JUUc/aekljAORrHJOLFfCbFGr+5KIgiL7ROylVNLO7XiRvsEPEwacj6EEjP71 +PCe2YBkXgoZgkNAVMzRkxQtRUsa0N3N4xqDIQU3Sf4dq762GYqXtb5Zh4QPx0jh c4mtKNbDFCprGR9m9llFXJwydgcmZGWj0OJXMUxjnoXODqXAfDIKIAS2UQIDAQAB o4ICkjCCAo4wHQYDVR0OBBYEFAgyYbeyJAsZdRXd1dCcNAuZQ4WwMB8GA1UdIwQY MBaAFMjV43F42FJMcmYKHXlhZZmeWGYiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveU5YamNYallVa3h5WmdvZGVXRmxtWjVZWmlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9iNTRjYTMtNzNkNS00OTg0LTg3ODIt OWUwYWVkMmZiOGVjLzEvQ0RKaHQ3SWtDeGwxRmQzVjBKdzBDNWxEaGJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZS9iNTRjYTMtNzNkNS00OTg0LTg3ODItOWUwYWVkMmZiOGVj LzEveU5YamNYallVa3h5WmdvZGVXRmxtWjVZWmlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGnBggrBgEFBQcBBwEB/wSBlzCBlDCBkQQCAAEwgYoDBAIC ObQDBAACO3QDBAItDCwDBAItDzQDBAItQywDBAItVsADBAItX4wDBAItgswDBAIt iDwDBAItkcADBAItl8wDBABb4QADBAFb4/ADBAJejqQDBAJnUqADBAC5JwsDBAK5 ObADBAC5nXsDBAC56FkDBADBA54DBAHCY0IDBAHD9A4DBADUNAMwDQYJKoZIhvcN AQELBQADggEBAELqOZTqm2EPchBATCVbgq83nz6RAkq3i7BQYhNbnUwIBcsarlGG MeONcRVVffCMVxUg5dLps+7RN9w0ohcIYcMGmLdtNSShGKbk5O3lCLjodz9DbAjn oNWviVOb9ha3E7n5BXkS/x4iaGuslUkSWidZen5m1tO5KqHVSApHiFSd5zJzGuhw hE/tl7j9ofbkUxbPbGXzC3iyqz2Vwly0oyAkkw1kR0fkm8I2qjC4xBClLd7IxP3+ AFCwj1z6pVBxhm7BdZ7XgFJ8oS4AZNpR3hQoNBEp/fNMG7K7Yi1EYe49Qps7rwnz rK37GMx37s3h6MWJJUANuO1MVHHHhJnN4uI= -----END CERTIFICATE-----Generated at Sat Nov 22 21:34:38 2025 by rpki-client