This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/34tuGvL2WwtSDHlgFvOATwmC_QQ.roa File: 34tuGvL2WwtSDHlgFvOATwmC_QQ.roa (raw, json) Hash identifier: 4Iunlcz+hm1SWwn+DGWUCB1PDc+fb4SkjTrFhTesA1U= Subject key identifier: DF:8B:6E:1A:F2:F6:5B:0B:52:0C:79:60:16:F3:80:4F:09:82:FD:04 Certificate issuer: /CN=797000d67c8deb6262e009a9aff422a1038f4489 Certificate serial: 019B36E891F41726580DA031FF0C9F2BE7B2 Authority key identifier: 79:70:00:D6:7C:8D:EB:62:62:E0:09:A9:AF:F4:22:A1:03:8F:44:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXAA1nyN62Ji4Ampr_QioQOPRIk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/34tuGvL2WwtSDHlgFvOATwmC_QQ.roa Signing time: Fri 19 Dec 2025 13:59:29 +0000 ROA not before: Fri 19 Dec 2025 13:59:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 208559 IP address blocks: 2.57.160.0/23 maxlen: 23 2a09:ce40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/eXAA1nyN62Ji4Ampr_QioQOPRIk.crl rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/eXAA1nyN62Ji4Ampr_QioQOPRIk.mft rsync://rpki.ripe.net/repository/DEFAULT/eXAA1nyN62Ji4Ampr_QioQOPRIk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:e8:91:f4:17:26:58:0d:a0:31:ff:0c:9f:2b:e7:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=797000d67c8deb6262e009a9aff422a1038f4489 Validity Not Before: Dec 19 13:59:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=df8b6e1af2f65b0b520c796016f3804f0982fd04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4d:0b:9a:36:0b:0e:59:31:ca:7a:3d:61:bf: 89:87:f6:98:60:ad:46:07:81:60:db:54:d5:60:b4: 95:0b:36:63:30:01:40:c4:a2:03:77:c6:92:c8:41: 60:8d:ca:18:64:21:82:17:c1:89:21:63:71:7f:cd: e8:26:3c:e0:91:c4:59:5c:cf:c4:73:6e:3c:68:a5: 31:61:5c:96:77:da:88:31:65:7d:c2:44:0d:e6:07: bb:bf:21:dc:bb:fc:c0:e6:5c:08:da:7e:5d:f3:21: 0c:3e:00:5b:c4:d2:a2:4e:15:03:f1:19:fb:2f:a3: e7:b0:24:13:77:4a:89:34:34:a1:b1:e5:3b:7b:62: 72:b8:1d:d9:94:49:e5:08:cc:b9:dd:12:ec:1f:9b: ff:e4:e2:5f:89:f5:13:d4:00:d5:64:bb:4a:57:33: d2:2b:dd:e1:e6:29:25:ab:0f:b3:c5:79:dd:b5:74: 26:fb:98:78:1e:f3:3c:1c:41:b5:dc:27:62:a7:3a: 07:cc:fe:44:81:0a:bc:04:59:55:a3:28:ed:da:07: 4a:2b:22:b5:09:1f:46:ea:a6:6e:fb:71:e2:91:b0: b5:64:e0:d1:e3:66:04:b7:7b:ad:75:04:9d:82:95: 62:7a:98:fd:a8:9e:aa:97:d0:ec:39:9e:f8:fb:cd: 36:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:8B:6E:1A:F2:F6:5B:0B:52:0C:79:60:16:F3:80:4F:09:82:FD:04 X509v3 Authority Key Identifier: keyid:79:70:00:D6:7C:8D:EB:62:62:E0:09:A9:AF:F4:22:A1:03:8F:44:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXAA1nyN62Ji4Ampr_QioQOPRIk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/34tuGvL2WwtSDHlgFvOATwmC_QQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/e2cdac-8901-4052-9554-bae9d2b29601/1/eXAA1nyN62Ji4Ampr_QioQOPRIk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.160.0/23 IPv6: 2a09:ce40::/29 Signature Algorithm: sha256WithRSAEncryption 10:96:1d:30:8f:14:b1:ad:0f:4a:7f:cb:e4:7b:15:b4:8e:0e: 01:33:c4:cf:1f:ee:c6:b6:db:89:6b:22:3e:01:a8:ec:b6:86: 4a:9b:5f:99:d4:24:91:21:c2:3b:5a:bf:55:5c:0f:dd:80:f7: fe:18:1f:2c:2d:54:22:2a:cd:2b:36:70:88:61:09:1e:cf:9e: 8a:bd:39:0e:27:b3:85:1a:0d:4c:b8:57:83:cd:4b:c8:06:cc: 07:75:c8:ae:4a:a2:d0:cb:17:54:1e:c4:83:ff:f0:e3:da:09: f3:16:b6:f4:42:19:25:d2:38:68:37:09:64:96:ff:30:a5:1a: 7c:a4:cc:8c:82:8d:0b:24:93:41:04:0a:a0:3d:f6:ff:6a:72: 57:9a:d8:65:24:22:c6:44:1d:e0:ae:2c:53:28:fa:05:71:3b: ac:c4:db:bb:18:74:30:3e:8d:61:79:3a:01:1e:22:3d:37:76: b0:03:0e:20:ef:09:37:88:23:0a:c7:01:c6:56:38:7a:ec:f5: db:91:12:eb:7d:97:e0:2b:4a:2c:69:38:64:de:6f:23:e5:2c: c3:ff:e2:ab:41:35:90:03:97:9a:f4:99:e8:0d:16:b3:a9:1e: 37:9b:7f:c5:b5:8c:fc:75:64:e2:94:ec:90:3f:67:e9:ec:24: a0:8b:02:3a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZs26JH0FyZYDaAx/wyfK+eyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5NzAwMGQ2N2M4ZGViNjI2MmUwMDlhOWFmZjQyMmExMDM4 ZjQ0ODkwHhcNMjUxMjE5MTM1OTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjhiNmUxYWYyZjY1YjBiNTIwYzc5NjAxNmYzODA0ZjA5ODJmZDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArE0LmjYLDlkxyno9Yb+Jh/aYYK1G B4Fg21TVYLSVCzZjMAFAxKIDd8aSyEFgjcoYZCGCF8GJIWNxf83oJjzgkcRZXM/E c248aKUxYVyWd9qIMWV9wkQN5ge7vyHcu/zA5lwI2n5d8yEMPgBbxNKiThUD8Rn7 L6PnsCQTd0qJNDShseU7e2JyuB3ZlEnlCMy53RLsH5v/5OJfifUT1ADVZLtKVzPS K93h5iklqw+zxXndtXQm+5h4HvM8HEG13CdipzoHzP5EgQq8BFlVoyjt2gdKKyK1 CR9G6qZu+3HikbC1ZODR42YEt3utdQSdgpViepj9qJ6ql9DsOZ74+802yQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFN+Lbhry9lsLUgx5YBbzgE8Jgv0EMB8GA1UdIwQY MBaAFHlwANZ8jetiYuAJqa/0IqEDj0SJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVhBQTFueU42MkppNEFtcHJfUWlvUU9QUklrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9lMmNkYWMtODkwMS00MDUyLTk1NTQt YmFlOWQyYjI5NjAxLzEvMzR0dUd2TDJXd3RTREhsZ0Z2T0FUd21DX1FRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni9lMmNkYWMtODkwMS00MDUyLTk1NTQtYmFlOWQyYjI5NjAx LzEvZVhBQTFueU42MkppNEFtcHJfUWlvUU9QUklrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBAjmgMA0E AgACMAcDBQMqCc5AMA0GCSqGSIb3DQEBCwUAA4IBAQAQlh0wjxSxrQ9Kf8vkexW0 jg4BM8TPH+7GttuJayI+AajstoZKm1+Z1CSRIcI7Wr9VXA/dgPf+GB8sLVQiKs0r NnCIYQkez56KvTkOJ7OFGg1MuFeDzUvIBswHdciuSqLQyxdUHsSD//Dj2gnzFrb0 Qhkl0jhoNwlklv8wpRp8pMyMgo0LJJNBBAqgPfb/anJXmthlJCLGRB3grixTKPoF cTusxNu7GHQwPo1heToBHiI9N3awAw4g7wk3iCMKxwHGVjh67PXbkRLrfZfgK0os aThk3m8j5SzD/+KrQTWQA5ea9JnoDRazqR43m3/FtYz8dWTilOyQP2fp7CSgiwI6 -----END CERTIFICATE-----Generated at Mon Dec 22 05:45:41 2025 by rpki-client