This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/1-4lbvLwYX-2Vx2HNQhAipBD2-d0.roa File: 1-4lbvLwYX-2Vx2HNQhAipBD2-d0.roa (raw, json) Hash identifier: xZVw0ZJQVTbgSvt59P4TCDggFjAlF6GM4FzhApoIQUU= Subject key identifier: FB:89:5B:BC:BC:18:5F:ED:95:C7:61:CD:42:10:22:A4:10:F6:F9:DD Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Certificate serial: 019A7C8280133FEA34AF2B969F0E16DFB628 Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/1-4lbvLwYX-2Vx2HNQhAipBD2-d0.roa Signing time: Thu 13 Nov 2025 09:18:38 +0000 ROA not before: Thu 13 Nov 2025 09:18:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212238 IP address blocks: 79.99.150.0/23 maxlen: 24 82.152.55.0/24 maxlen: 24 82.153.145.0/24 maxlen: 24 82.163.10.0/23 maxlen: 24 89.213.226.0/24 maxlen: 24 109.176.30.0/24 maxlen: 24 109.176.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 24 Nov 2025 06:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:7c:82:80:13:3f:ea:34:af:2b:96:9f:0e:16:df:b6:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Validity Not Before: Nov 13 09:18:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=fb895bbcbc185fed95c761cd421022a410f6f9dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d0:80:6e:a0:f0:ce:9d:57:da:02:7d:db:b6: fa:2c:6f:48:3c:47:a1:82:85:94:0b:3e:ea:47:b5: 72:f1:61:3e:e7:db:43:12:31:10:1f:cf:78:4e:43: 33:36:16:b2:69:6b:af:2e:e7:2a:b7:69:b9:ea:06: 37:f8:d7:19:91:ee:d4:16:cd:ea:9b:3d:05:bd:3b: c0:6d:fd:67:b7:c0:39:7f:04:d8:62:dc:a9:95:e3: 34:30:91:d2:34:da:b3:f9:a3:fb:26:7b:22:09:65: b6:c6:35:99:22:2b:d2:49:b3:03:04:a9:c0:8b:9d: 5d:90:a6:6a:c2:95:8f:31:43:7a:50:a7:ed:ef:5c: f9:7d:60:16:fc:b8:b2:22:db:4b:bd:0d:32:dc:20: 2f:c9:2c:11:5e:83:cb:19:2f:22:64:3f:7a:f8:57: 80:b1:6b:ac:e0:07:e2:c3:39:39:fa:90:05:73:90: b4:55:bb:28:d9:34:28:fd:47:33:b3:cb:43:db:ab: d5:d3:99:63:86:a6:e5:c9:a7:18:db:2a:97:ed:ac: 79:f0:88:bc:eb:2c:e7:ee:ae:b7:93:f5:63:79:83: 38:76:f9:65:7a:28:58:32:d2:0a:10:96:d2:ad:a2: 24:bf:86:ea:76:a6:99:a2:45:84:b6:eb:82:9b:da: ce:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:89:5B:BC:BC:18:5F:ED:95:C7:61:CD:42:10:22:A4:10:F6:F9:DD X509v3 Authority Key Identifier: keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/1-4lbvLwYX-2Vx2HNQhAipBD2-d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.99.150.0/23 82.152.55.0/24 82.153.145.0/24 82.163.10.0/23 89.213.226.0/24 109.176.30.0/24 109.176.208.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:62:46:49:46:6d:bc:89:ee:c7:c4:58:45:0e:72:c1:5d:c6: bb:13:19:cd:89:48:84:ca:49:34:7b:8f:99:d4:b8:bb:26:0f: f3:58:f1:80:d3:cf:fb:1b:ed:6a:dd:8a:19:e8:c1:36:9f:73: 52:96:84:52:cc:b6:72:ee:37:fb:a6:ea:24:07:a2:67:27:cc: 99:27:a6:1b:e2:9c:46:ba:42:02:e5:2c:d7:70:6f:4c:ba:e7: 60:08:78:17:3a:bb:28:ad:8f:f8:7a:ed:86:61:4b:60:1e:0d: 2c:d0:99:16:b6:e4:61:78:c8:9d:88:06:d2:01:8d:84:d1:8e: 7b:b5:47:0c:e5:84:2e:e0:fe:7d:16:20:eb:0a:15:30:e8:47: bb:5a:df:b1:39:86:52:89:fa:2d:93:01:42:1e:9b:91:77:4d: 2f:1f:6a:c2:1d:d5:fa:49:66:b7:c7:10:1e:d9:34:5d:ab:9c: f8:c2:71:33:01:cf:a6:ae:d7:48:cd:8c:76:4f:6a:63:a1:78: 86:a9:0d:45:36:08:70:6c:b9:78:a0:95:ec:f4:de:0f:0d:5c: 2a:54:a3:b4:4d:73:9b:3a:83:b3:51:b5:c0:51:e4:3b:df:80: f0:19:04:98:e3:1b:2d:c4:0e:46:e4:20:5e:63:2d:8d:d7:05: 1e:e4:94:09 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgISAZp8goATP+o0ryuWnw4W37YoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh NTNiOWIwHhcNMjUxMTEzMDkxODM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjg5NWJiY2JjMTg1ZmVkOTVjNzYxY2Q0MjEwMjJhNDEwZjZmOWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAydCAbqDwzp1X2gJ927b6LG9IPEeh goWUCz7qR7Vy8WE+59tDEjEQH894TkMzNhayaWuvLucqt2m56gY3+NcZke7UFs3q mz0FvTvAbf1nt8A5fwTYYtypleM0MJHSNNqz+aP7JnsiCWW2xjWZIivSSbMDBKnA i51dkKZqwpWPMUN6UKft71z5fWAW/LiyIttLvQ0y3CAvySwRXoPLGS8iZD96+FeA sWus4Afiwzk5+pAFc5C0Vbso2TQo/Uczs8tD26vV05ljhqblyacY2yqX7ax58Ii8 6yzn7q63k/VjeYM4dvlleihYMtIKEJbSraIkv4bqdqaZokWEtuuCm9rO3QIDAQAB o4ICLjCCAiowHQYDVR0OBBYEFPuJW7y8GF/tlcdhzUIQIqQQ9vndMB8GA1UdIwQY MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt NDEyMjhlMzlmZjdjLzEvMS00bGJ2THdZWC0yVngySE5RaEFpcEJEMi1kMC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOGEvNDlkYzAwLTk3ZTItNDYyOC1hZTM5LTQxMjI4ZTM5ZmY3 Yy8xL1A5TU5pbjRTX0h2Mkxnd1NIbnpDSnQ2bE81cy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBDBggrBgEFBQcBBwEB/wQ0MDIwMAQCAAEwKgMEAU9jlgME AFKYNwMEAFKZkQMEAVKjCgMEAFnV4gMEAG2wHgMEAG2w0DANBgkqhkiG9w0BAQsF AAOCAQEAa2JGSUZtvInux8RYRQ5ywV3GuxMZzYlIhMpJNHuPmdS4uyYP81jxgNPP +xvtat2KGejBNp9zUpaEUsy2cu43+6bqJAeiZyfMmSemG+KcRrpCAuUs13BvTLrn YAh4Fzq7KK2P+HrthmFLYB4NLNCZFrbkYXjInYgG0gGNhNGOe7VHDOWELuD+fRYg 6woVMOhHu1rfsTmGUon6LZMBQh6bkXdNLx9qwh3V+klmt8cQHtk0Xauc+MJxMwHP pq7XSM2Mdk9qY6F4hqkNRTYIcGy5eKCV7PTeDw1cKlSjtE1zmzqDs1G1wFHkO9+A 8BkEmOMbLcQORuQgXmMtjdcFHuSUCQ== -----END CERTIFICATE-----Generated at Sun Nov 23 12:07:10 2025 by rpki-client