This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/K57zRI93D4Vp1wMJF72FshTwG28.roa File: K57zRI93D4Vp1wMJF72FshTwG28.roa (raw, json) Hash identifier: +61sxRGSjoUvyPkCFintn1yn0/ScQTJViPj1QF7B1mY= Subject key identifier: 2B:9E:F3:44:8F:77:0F:85:69:D7:03:09:17:BD:85:B2:14:F0:1B:6F Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51 Certificate serial: 019A7D876A46951B024C8ED6D4B83D98FCF0 Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/K57zRI93D4Vp1wMJF72FshTwG28.roa Signing time: Thu 13 Nov 2025 14:03:37 +0000 ROA not before: Thu 13 Nov 2025 14:03:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 7029 IP address blocks: 5.249.180.0/22 maxlen: 24 5.249.184.0/22 maxlen: 24 37.19.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.mft rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 20:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:7d:87:6a:46:95:1b:02:4c:8e:d6:d4:b8:3d:98:fc:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51 Validity Not Before: Nov 13 14:03:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=2b9ef3448f770f8569d7030917bd85b214f01b6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f9:a6:96:b7:63:14:e9:3e:dd:f5:68:f1:00: 1f:bc:2f:13:df:19:87:02:9f:06:b0:59:fd:87:30: 9f:b3:11:f5:ec:d4:60:6b:b6:53:51:25:c7:75:11: ec:ba:d9:43:01:b0:b6:89:05:62:7c:57:14:67:50: 33:fb:4b:c3:dc:7e:9f:d5:59:55:b4:a4:28:b1:d9: ef:f3:83:89:c4:5a:2b:b3:92:cf:c4:bb:71:2c:5d: 55:6a:5e:79:d0:f2:16:60:9b:54:0a:0d:01:6d:67: 96:e5:5a:9e:6b:cc:c0:bf:fd:b1:66:99:9d:0d:f7: 14:67:af:93:68:f1:45:93:d5:43:90:57:7b:5e:64: b4:63:06:d3:63:c2:ca:4c:a6:96:cf:19:25:54:d2: c7:9e:ed:6a:b5:2e:b1:81:d1:8e:1c:e4:2c:8a:78: 42:07:fe:0b:ae:61:79:df:e3:8f:a9:ae:83:76:d6: d0:1e:3d:4d:53:ac:8c:21:b9:10:dc:55:95:1d:0d: 18:10:f7:69:87:ea:9f:1a:b6:ce:39:6d:56:03:c7: d0:64:69:f8:b6:97:f6:e6:04:fc:da:f5:cb:38:5a: 40:4b:39:71:bb:1e:87:77:28:d3:5e:b1:bb:8e:8d: 18:ca:9e:1a:f6:85:6c:9b:8f:83:d4:52:04:3b:7e: 7d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:9E:F3:44:8F:77:0F:85:69:D7:03:09:17:BD:85:B2:14:F0:1B:6F X509v3 Authority Key Identifier: keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/K57zRI93D4Vp1wMJF72FshTwG28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.249.180.0-5.249.187.255 37.19.68.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:55:3f:b2:91:4e:c4:d3:bc:1a:31:60:35:ef:2e:96:63:6f: 35:94:45:c1:f3:a8:ac:09:07:85:83:47:fe:10:06:85:bf:dd: 85:b6:6b:e3:3a:e4:c5:8d:77:c3:80:4e:ae:1d:9a:e0:8a:13: 4c:aa:42:b7:de:78:c3:08:65:f8:53:01:15:07:fd:46:11:08: 81:42:7f:f1:a8:cd:1e:37:01:3b:5b:25:e6:6d:9d:4f:b2:5c: b5:51:3b:8b:90:32:91:06:96:17:be:00:d3:76:11:f8:ee:43: 90:e7:84:40:4c:80:1e:67:66:82:27:2b:09:f2:fa:60:e4:85: 02:96:ff:d7:fb:cc:81:4a:bf:ce:73:86:5e:85:7b:bb:eb:1d: 22:75:58:6c:98:8d:e3:d1:9f:1d:aa:91:c0:f5:65:60:7c:8d: d6:39:eb:1d:75:ba:ff:47:40:34:76:6c:36:cf:f9:49:af:66: 39:37:c5:80:a1:b2:48:ba:b1:50:7c:9e:0f:ed:3e:31:f6:cc: 81:34:cc:9e:0d:0b:28:50:4d:49:d0:8d:af:c8:9e:35:d2:38: 21:94:77:56:9c:69:49:61:25:14:2b:b0:31:13:7c:20:82:6a: da:80:95:0d:03:08:2d:a1:d3:3c:f4:1d:96:d1:4b:81:c1:e5: 8c:bb:24:2e -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZp9h2pGlRsCTI7W1Lg9mPzwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlODI5NjNmZjFhYTcwYWIxMGQxZDMzZTg2YjFkNmQ0OTRk NmNlNTEwHhcNMjUxMTEzMTQwMzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYjllZjM0NDhmNzcwZjg1NjlkNzAzMDkxN2JkODViMjE0ZjAxYjZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfmmlrdjFOk+3fVo8QAfvC8T3xmH Ap8GsFn9hzCfsxH17NRga7ZTUSXHdRHsutlDAbC2iQVifFcUZ1Az+0vD3H6f1VlV tKQosdnv84OJxFors5LPxLtxLF1Val550PIWYJtUCg0BbWeW5Vqea8zAv/2xZpmd DfcUZ6+TaPFFk9VDkFd7XmS0YwbTY8LKTKaWzxklVNLHnu1qtS6xgdGOHOQsinhC B/4LrmF53+OPqa6DdtbQHj1NU6yMIbkQ3FWVHQ0YEPdph+qfGrbOOW1WA8fQZGn4 tpf25gT82vXLOFpASzlxux6HdyjTXrG7jo0Yyp4a9oVsm4+D1FIEO359qQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFCue80SPdw+FadcDCRe9hbIU8BtvMB8GA1UdIwQY MBaAFC6Clj/xqnCrENHTPoax1tSU1s5RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQt ZGY2NGYwZTgyMzYwLzEvSzU3elJJOTNENFZwMXdNSkY3MkZzaFR3RzI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQtZGY2NGYwZTgyMzYw LzEvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAIF+bQD BAIF+bgDBAIlE0QwDQYJKoZIhvcNAQELBQADggEBAE5VP7KRTsTTvBoxYDXvLpZj bzWURcHzqKwJB4WDR/4QBoW/3YW2a+M65MWNd8OATq4dmuCKE0yqQrfeeMMIZfhT ARUH/UYRCIFCf/GozR43ATtbJeZtnU+yXLVRO4uQMpEGlhe+ANN2EfjuQ5DnhEBM gB5nZoInKwny+mDkhQKW/9f7zIFKv85zhl6Fe7vrHSJ1WGyYjePRnx2qkcD1ZWB8 jdY56x11uv9HQDR2bDbP+UmvZjk3xYChski6sVB8ng/tPjH2zIE0zJ4NCyhQTUnQ ja/InjXSOCGUd1acaUlhJRQrsDETfCCCatqAlQ0DCC2h0zz0HZbRS4HB5Yy7JC4= -----END CERTIFICATE-----Generated at Thu Dec 4 04:21:36 2025 by rpki-client