This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/485305-4c23-4f37-854b-a9d3eef06c67/1/NpfRtoVnz3NxGuD-uEbggfqrJTM.roa File: NpfRtoVnz3NxGuD-uEbggfqrJTM.roa (raw, json) Hash identifier: tIkhKB+ig4LtT1LifK/STgZvceUuRWeXKrf22HpiIlA= Subject key identifier: 36:97:D1:B6:85:67:CF:73:71:1A:E0:FE:B8:46:E0:81:FA:AB:25:33 Certificate issuer: /CN=58a26c2bc503a7c68128d2ae1ab4cd37deb99325 Certificate serial: 019A72437FD8AB19284060FABB30E1E99EFE Authority key identifier: 58:A2:6C:2B:C5:03:A7:C6:81:28:D2:AE:1A:B4:CD:37:DE:B9:93:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKJsK8UDp8aBKNKuGrTNN965kyU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/485305-4c23-4f37-854b-a9d3eef06c67/1/NpfRtoVnz3NxGuD-uEbggfqrJTM.roa Signing time: Tue 11 Nov 2025 09:33:37 +0000 ROA not before: Tue 11 Nov 2025 09:33:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 44517 IP address blocks: 62.68.67.0/24 maxlen: 24 2a12:c340::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/485305-4c23-4f37-854b-a9d3eef06c67/1/WKJsK8UDp8aBKNKuGrTNN965kyU.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/485305-4c23-4f37-854b-a9d3eef06c67/1/WKJsK8UDp8aBKNKuGrTNN965kyU.mft rsync://rpki.ripe.net/repository/DEFAULT/WKJsK8UDp8aBKNKuGrTNN965kyU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:72:43:7f:d8:ab:19:28:40:60:fa:bb:30:e1:e9:9e:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58a26c2bc503a7c68128d2ae1ab4cd37deb99325 Validity Not Before: Nov 11 09:33:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3697d1b68567cf73711ae0feb846e081faab2533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:54:e2:54:97:5f:01:7d:b8:bb:64:05:79:f0: 76:e5:e1:6a:ce:a7:73:da:d2:b3:e8:ba:27:1f:10: 3d:49:9a:88:1d:cf:71:19:77:43:f5:c8:d6:ad:4b: 2e:77:2b:08:ce:17:64:41:8c:2f:ad:7f:a0:c1:61: 53:4d:ab:87:48:95:d9:44:87:32:83:b3:85:8c:ae: 66:76:6a:52:61:95:4e:00:c2:8e:6f:31:22:a1:00: 5a:64:08:4a:cb:1a:8b:20:63:1a:f9:13:72:1f:7c: 49:ce:23:12:7b:96:4d:df:fb:fc:cf:c6:b0:44:ef: 90:22:bf:3b:11:a6:da:5f:e7:7b:05:74:1c:f7:1c: 22:0f:6d:98:15:93:52:3e:87:d1:c7:55:0b:6b:09: c7:f1:c4:8a:a5:53:ce:08:be:cd:dc:bf:2a:6b:a1: 12:2d:bf:ca:76:b1:8c:d5:3d:b2:de:38:77:43:c2: 6c:7f:55:d6:97:ca:43:64:12:c5:a3:ac:b7:76:c9: ca:6c:b9:77:76:f8:49:48:ff:99:9d:80:97:fb:8b: 10:a7:8e:d7:a6:3e:41:cf:94:45:3b:30:38:c5:24: 68:86:eb:ac:27:37:1d:fd:20:b3:b8:bc:64:01:f4: bc:c2:06:d5:62:22:1e:73:da:8a:1b:be:61:ab:68: d8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:97:D1:B6:85:67:CF:73:71:1A:E0:FE:B8:46:E0:81:FA:AB:25:33 X509v3 Authority Key Identifier: keyid:58:A2:6C:2B:C5:03:A7:C6:81:28:D2:AE:1A:B4:CD:37:DE:B9:93:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKJsK8UDp8aBKNKuGrTNN965kyU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/485305-4c23-4f37-854b-a9d3eef06c67/1/NpfRtoVnz3NxGuD-uEbggfqrJTM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/485305-4c23-4f37-854b-a9d3eef06c67/1/WKJsK8UDp8aBKNKuGrTNN965kyU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.68.67.0/24 IPv6: 2a12:c340::/29 Signature Algorithm: sha256WithRSAEncryption 00:f2:92:5a:df:61:f3:b4:86:76:ee:22:73:5e:83:33:fd:f1: e5:1b:29:41:e5:36:9e:b3:7b:55:7c:57:24:7e:8f:c8:3e:85: fe:73:96:55:0d:02:14:bd:19:be:e1:9c:31:16:d8:44:00:5f: 62:47:21:04:f0:83:58:9f:6f:bc:33:2f:96:38:8f:61:a7:0a: b3:fb:6c:86:b1:d2:22:a0:10:e0:62:91:69:d0:c3:0f:a4:27: d5:33:ef:42:71:20:b7:81:8a:87:fb:bd:98:fa:6b:b8:84:aa: 40:ed:da:bb:15:d0:19:6b:62:11:2d:40:52:46:49:ea:d6:bc: 60:65:a5:b3:0a:6b:22:20:9a:85:f9:39:80:08:06:bb:33:7e: 93:0b:0d:71:9b:82:87:78:58:2a:d3:da:17:2f:db:1a:02:e2: 23:3b:45:ff:f2:6c:28:d0:f2:c8:38:69:1d:fa:89:e3:86:62: ff:1d:b6:9d:87:6a:12:bd:76:9c:59:de:b9:65:43:f3:e4:fd: 57:68:39:38:32:99:17:25:1e:24:0f:b3:29:f2:59:be:58:3b: da:77:d3:91:e2:b2:50:f9:e1:40:b0:a2:39:a0:c7:c2:d7:86: a7:43:49:4e:5d:f3:52:f1:1a:0d:99:7c:a1:28:81:b0:f9:6a: 2e:0b:72:b3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZpyQ3/YqxkoQGD6uzDh6Z7+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YTI2YzJiYzUwM2E3YzY4MTI4ZDJhZTFhYjRjZDM3ZGVi OTkzMjUwHhcNMjUxMTExMDkzMzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNjk3ZDFiNjg1NjdjZjczNzExYWUwZmViODQ2ZTA4MWZhYWIyNTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1FTiVJdfAX24u2QFefB25eFqzqdz 2tKz6LonHxA9SZqIHc9xGXdD9cjWrUsudysIzhdkQYwvrX+gwWFTTauHSJXZRIcy g7OFjK5mdmpSYZVOAMKObzEioQBaZAhKyxqLIGMa+RNyH3xJziMSe5ZN3/v8z8aw RO+QIr87EabaX+d7BXQc9xwiD22YFZNSPofRx1ULawnH8cSKpVPOCL7N3L8qa6ES Lb/KdrGM1T2y3jh3Q8Jsf1XWl8pDZBLFo6y3dsnKbLl3dvhJSP+ZnYCX+4sQp47X pj5Bz5RFOzA4xSRohuusJzcd/SCzuLxkAfS8wgbVYiIec9qKG75hq2jYkwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDaX0baFZ89zcRrg/rhG4IH6qyUzMB8GA1UdIwQY MBaAFFiibCvFA6fGgSjSrhq0zTfeuZMlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0tKc0s4VURwOGFCS05LdUdyVE5OOTY1a3lVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy80ODUzMDUtNGMyMy00ZjM3LTg1NGIt YTlkM2VlZjA2YzY3LzEvTnBmUnRvVm56M054R3VELXVFYmdnZnFySlRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy80ODUzMDUtNGMyMy00ZjM3LTg1NGItYTlkM2VlZjA2YzY3 LzEvV0tKc0s4VURwOGFCS05LdUdyVE5OOTY1a3lVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAPkRDMA0E AgACMAcDBQMqEsNAMA0GCSqGSIb3DQEBCwUAA4IBAQAA8pJa32HztIZ27iJzXoMz /fHlGylB5Taes3tVfFckfo/IPoX+c5ZVDQIUvRm+4ZwxFthEAF9iRyEE8INYn2+8 My+WOI9hpwqz+2yGsdIioBDgYpFp0MMPpCfVM+9CcSC3gYqH+72Y+mu4hKpA7dq7 FdAZa2IRLUBSRknq1rxgZaWzCmsiIJqF+TmACAa7M36TCw1xm4KHeFgq09oXL9sa AuIjO0X/8mwo0PLIOGkd+onjhmL/Hbadh2oSvXacWd65ZUPz5P1XaDk4MpkXJR4k D7Mp8lm+WDvad9OR4rJQ+eFAsKI5oMfC14anQ0lOXfNS8RoNmXyhKIGw+WouC3Kz -----END CERTIFICATE-----Generated at Sun Dec 14 11:44:29 2025 by rpki-client