This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/aTw98tVwVX8T_UJAPSh_4MGuSTQ.roa File: aTw98tVwVX8T_UJAPSh_4MGuSTQ.roa (raw, json) Hash identifier: YtXRzfRY5hPsNNXGwmH1K5108ImxUaqxN3A8UBW6QHE= Subject key identifier: 69:3C:3D:F2:D5:70:55:7F:13:FD:42:40:3D:28:7F:E0:C1:AE:49:34 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B46F66189FEC88B0F66250B221B0AD807 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/aTw98tVwVX8T_UJAPSh_4MGuSTQ.roa Signing time: Mon 22 Dec 2025 16:48:30 +0000 ROA not before: Mon 22 Dec 2025 16:48:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 266539 IP address blocks: 217.60.12.0/24 maxlen: 24 217.60.14.0/24 maxlen: 24 217.60.26.0/24 maxlen: 24 217.60.184.0/23 maxlen: 24 217.60.193.0/24 maxlen: 24 217.60.198.0/24 maxlen: 24 217.60.242.0/24 maxlen: 24 217.60.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:f6:61:89:fe:c8:8b:0f:66:25:0b:22:1b:0a:d8:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Dec 22 16:48:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=693c3df2d570557f13fd42403d287fe0c1ae4934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:50:7d:76:c2:ee:9e:83:05:af:05:c5:a5:f0: 54:03:17:4a:ed:61:dd:d8:96:09:53:1b:07:a8:22: 1a:83:3b:75:16:6b:fd:95:7a:c6:aa:61:e8:a2:9a: 9e:c8:c2:7f:12:e8:99:2c:c2:a9:3f:77:d6:00:9f: b2:d1:65:fa:08:7c:90:5d:07:3f:10:f1:fb:9c:b9: 71:66:f7:1e:19:77:73:28:44:17:d6:f2:02:a4:c3: 8f:e8:14:90:43:ad:66:b0:04:d1:67:0d:05:02:40: 6c:0f:e8:04:97:2f:20:a3:0d:bb:e3:e0:77:7b:82: 57:27:1f:cb:f6:27:30:e5:4b:23:64:5f:90:b1:70: 42:43:b2:c4:66:09:97:45:e7:e9:8d:95:29:92:53: 5b:2c:a4:08:9f:d7:a1:b6:5b:cd:47:ab:54:b4:04: d7:f8:d3:a9:1e:3f:22:df:f4:47:5c:ae:de:03:2a: 5c:68:a9:9e:31:2a:0e:3d:78:8d:74:0a:67:aa:af: 1d:a7:f4:cc:41:86:fb:ed:fb:67:c4:60:49:48:85: 3f:60:19:b9:4b:ca:74:3c:fc:00:35:b4:ac:ca:96: 38:5b:64:57:39:6b:a6:55:81:ab:db:de:82:88:54: 56:88:37:c7:21:1a:b2:f2:a2:43:a0:81:ff:a1:b8: 04:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:3C:3D:F2:D5:70:55:7F:13:FD:42:40:3D:28:7F:E0:C1:AE:49:34 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/aTw98tVwVX8T_UJAPSh_4MGuSTQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.60.12.0/24 217.60.14.0/24 217.60.26.0/24 217.60.184.0/23 217.60.193.0/24 217.60.198.0/24 217.60.242.0/24 217.60.250.0/24 Signature Algorithm: sha256WithRSAEncryption 58:17:79:5a:4c:40:b7:f2:2d:e7:9a:1e:92:e8:a1:f7:25:9e: 43:3c:f8:2d:2f:11:19:54:2e:2a:75:b8:f0:65:6c:50:d7:19: 8d:ad:8f:7c:70:51:68:9c:d9:98:fd:2e:24:e7:d3:45:2d:ba: 5b:9c:6b:6c:c8:14:bf:c3:4e:58:04:cf:28:77:d0:1d:fd:cb: 2f:5e:37:72:48:19:0a:79:96:ce:61:0e:81:fc:81:54:13:0c: 79:a9:c3:58:93:cb:22:7c:90:9c:9c:6c:60:08:a8:7a:d8:b7: 59:e4:1c:07:d2:26:f4:f3:db:b7:59:4e:8b:f7:e4:41:59:3b: 9a:46:66:86:ae:fd:5c:e7:bb:9f:45:4f:91:80:27:c2:85:ce: fe:5a:f0:11:ef:61:3f:22:8c:c3:80:5e:26:b6:4f:7d:4b:08: 53:08:e6:ad:87:b2:aa:a4:3e:c9:ef:49:1c:02:90:72:b1:13: 32:85:14:ef:a8:0c:4a:af:cb:dc:77:5b:69:78:b0:72:71:34: 7b:da:7e:d8:bf:b2:db:81:02:62:a4:83:f8:80:07:cf:dc:ab: e6:3c:ba:78:93:de:71:9b:33:0f:43:bf:08:c5:38:78:91:f3: 51:01:60:47:71:f1:3c:9f:72:df:ab:3b:b9:59:97:e8:53:97: 9b:d4:10:e0 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZtG9mGJ/siLD2YlCyIbCtgHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjUxMjIyMTY0ODMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTNjM2RmMmQ1NzA1NTdmMTNmZDQyNDAzZDI4N2ZlMGMxYWU0OTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxlB9dsLunoMFrwXFpfBUAxdK7WHd 2JYJUxsHqCIagzt1Fmv9lXrGqmHoopqeyMJ/EuiZLMKpP3fWAJ+y0WX6CHyQXQc/ EPH7nLlxZvceGXdzKEQX1vICpMOP6BSQQ61msATRZw0FAkBsD+gEly8gow274+B3 e4JXJx/L9icw5UsjZF+QsXBCQ7LEZgmXRefpjZUpklNbLKQIn9ehtlvNR6tUtATX +NOpHj8i3/RHXK7eAypcaKmeMSoOPXiNdApnqq8dp/TMQYb77ftnxGBJSIU/YBm5 S8p0PPwANbSsypY4W2RXOWumVYGr296CiFRWiDfHIRqy8qJDoIH/obgEXwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFGk8PfLVcFV/E/1CQD0of+DBrkk0MB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvYVR3OTh0VndWWDhUX1VKQVBTaF80TUd1U1RRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQA2TwMAwQA 2TwOAwQA2TwaAwQB2Ty4AwQA2TzBAwQA2TzGAwQA2TzyAwQA2Tz6MA0GCSqGSIb3 DQEBCwUAA4IBAQBYF3laTEC38i3nmh6S6KH3JZ5DPPgtLxEZVC4qdbjwZWxQ1xmN rY98cFFonNmY/S4k59NFLbpbnGtsyBS/w05YBM8od9Ad/csvXjdySBkKeZbOYQ6B /IFUEwx5qcNYk8sifJCcnGxgCKh62LdZ5BwH0ib089u3WU6L9+RBWTuaRmaGrv1c 57ufRU+RgCfChc7+WvAR72E/IozDgF4mtk99SwhTCOath7KqpD7J70kcApBysRMy hRTvqAxKr8vcd1tpeLBycTR72n7Yv7LbgQJipIP4gAfP3KvmPLp4k95xmzMPQ78I xTh4kfNRAWBHcfE8n3Lfqzu5WZfoU5eb1BDg -----END CERTIFICATE-----Generated at Tue Dec 23 09:12:37 2025 by rpki-client