This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/24NvRLphuuijyGYe00tLf3BCXjU.roa File: 24NvRLphuuijyGYe00tLf3BCXjU.roa (raw, json) Hash identifier: Ty+Zxr/BmciiQMCsduRDLqdhwBbq5X23a15oFtaFBIs= Subject key identifier: DB:83:6F:44:BA:61:BA:E8:A3:C8:66:1E:D3:4B:4B:7F:70:42:5E:35 Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54 Certificate serial: 019A53DCFE88D43F7E12DDC22446F6316344 Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/24NvRLphuuijyGYe00tLf3BCXjU.roa Signing time: Wed 05 Nov 2025 11:53:03 +0000 ROA not before: Wed 05 Nov 2025 11:53:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215462 IP address blocks: 2a0e:a780::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.mft rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Dec 2025 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:53:dc:fe:88:d4:3f:7e:12:dd:c2:24:46:f6:31:63:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54 Validity Not Before: Nov 5 11:53:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=db836f44ba61bae8a3c8661ed34b4b7f70425e35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e7:85:00:71:06:3b:96:74:a0:e5:18:03:c6: b5:a9:c2:9d:2b:f9:27:cf:d0:95:9b:2e:c7:cf:b2: 18:7c:68:4f:d6:59:c8:fc:31:ca:fa:a7:85:a1:62: ca:0a:33:57:2a:cc:5b:54:b6:43:cc:31:c4:e0:0c: bc:04:8c:92:b6:40:db:17:7c:9c:dc:b4:e8:b2:9f: c7:8c:92:ab:67:8e:75:55:00:2a:29:05:5c:33:5f: 48:01:2b:4d:49:22:13:7a:36:61:62:13:17:d3:25: 33:32:e6:ce:ec:c0:e9:a9:d8:16:5f:97:d8:fb:30: 3c:c6:0c:80:d9:fb:70:52:de:d9:d4:cd:98:fa:6e: 92:44:26:0a:a4:73:84:5f:ba:d3:d8:97:d1:f7:be: 6a:3d:1c:d0:e3:74:78:d9:51:7e:6e:ea:fe:25:11: 20:d1:85:63:51:51:56:56:53:84:23:eb:3f:0a:34: d8:87:60:a7:11:b5:7e:93:26:1a:4e:7e:3b:1e:42: 69:d0:2b:8c:ce:f9:c2:6f:ec:4f:c0:b3:4e:a5:e7: 37:ee:cf:e7:cc:46:7f:ce:23:26:31:cd:b2:c4:6d: e8:62:06:81:f8:14:b3:d4:50:42:6b:79:77:a7:92: 1b:fe:90:a0:7a:c6:6c:61:ea:f5:2a:34:5d:8e:b6: a6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:83:6F:44:BA:61:BA:E8:A3:C8:66:1E:D3:4B:4B:7F:70:42:5E:35 X509v3 Authority Key Identifier: keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/24NvRLphuuijyGYe00tLf3BCXjU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:a780::/29 Signature Algorithm: sha256WithRSAEncryption 48:6d:4b:5b:ae:58:cb:bb:23:28:ed:af:21:43:d6:07:eb:21: 3c:5d:a9:20:a9:93:93:d1:7a:ad:0b:83:f6:88:bc:da:a6:5b: a9:94:1b:2e:ef:f0:09:3a:2f:e9:d8:01:f3:a9:7a:73:90:c5: fd:8b:32:20:87:4c:11:77:a9:9a:33:c5:ab:26:de:82:01:cc: 89:1b:1d:3d:e0:d8:3e:bb:3b:11:37:3f:77:4d:9f:be:ac:d9: 5c:57:5d:dd:9c:2f:d3:40:81:32:7c:9f:37:a6:a0:4a:85:10: 25:49:54:68:9b:1b:87:5a:44:cc:75:76:b9:c8:9a:d9:5d:1e: 72:40:6e:9a:d3:ad:85:2c:61:7b:39:d9:09:0e:9d:01:65:dc: 96:0c:24:d6:14:12:98:d7:be:fc:8f:2c:95:b5:9f:12:0b:46: a9:c4:92:61:61:f9:97:81:9d:1e:4d:50:72:de:b2:68:91:6e: e8:bc:21:05:21:e0:59:ca:3c:86:96:ba:fc:20:52:30:f6:e1: bb:23:3e:7f:e1:fc:00:20:24:64:50:a5:10:4c:96:f7:3d:e8: 6e:2f:3c:84:84:09:f7:84:d5:2e:0a:c5:7e:e6:ee:06:97:48: b2:34:5d:f5:f4:59:3e:fc:0b:d3:d8:49:71:2c:85:59:ff:fb: 74:f0:15:ba -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZpT3P6I1D9+Et3CJEb2MWNEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2Yjk4ZjgzY2NiZGE3YzE5ZjAwNDE1MWM5OGI1N2M1OWQy NjhmNTQwHhcNMjUxMTA1MTE1MzAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjgzNmY0NGJhNjFiYWU4YTNjODY2MWVkMzRiNGI3ZjcwNDI1ZTM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOeFAHEGO5Z0oOUYA8a1qcKdK/kn z9CVmy7Hz7IYfGhP1lnI/DHK+qeFoWLKCjNXKsxbVLZDzDHE4Ay8BIyStkDbF3yc 3LTosp/HjJKrZ451VQAqKQVcM19IAStNSSITejZhYhMX0yUzMubO7MDpqdgWX5fY +zA8xgyA2ftwUt7Z1M2Y+m6SRCYKpHOEX7rT2JfR975qPRzQ43R42VF+bur+JREg 0YVjUVFWVlOEI+s/CjTYh2CnEbV+kyYaTn47HkJp0CuMzvnCb+xPwLNOpec37s/n zEZ/ziMmMc2yxG3oYgaB+BSz1FBCa3l3p5Ib/pCgesZsYer1KjRdjramNQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFNuDb0S6Ybroo8hmHtNLS39wQl41MB8GA1UdIwQY MBaAFFa5j4PMvafBnwBBUcmLV8WdJo9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2Yt N2FhN2ZjMzU5NjU1LzEvMjROdlJMcGh1dWlqeUdZZTAwdExmM0JDWGpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2YtN2FhN2ZjMzU5NjU1 LzEvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg6ngDAN BgkqhkiG9w0BAQsFAAOCAQEASG1LW65Yy7sjKO2vIUPWB+shPF2pIKmTk9F6rQuD 9oi82qZbqZQbLu/wCTov6dgB86l6c5DF/YsyIIdMEXepmjPFqybeggHMiRsdPeDY Prs7ETc/d02fvqzZXFdd3Zwv00CBMnyfN6agSoUQJUlUaJsbh1pEzHV2ucia2V0e ckBumtOthSxheznZCQ6dAWXclgwk1hQSmNe+/I8slbWfEgtGqcSSYWH5l4GdHk1Q ct6yaJFu6LwhBSHgWco8hpa6/CBSMPbhuyM+f+H8ACAkZFClEEyW9z3obi88hIQJ 94TVLgrFfubuBpdIsjRd9fRZPvwL09hJcSyFWf/7dPAVug== -----END CERTIFICATE-----Generated at Mon Dec 1 09:35:15 2025 by rpki-client