This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/pRF3BTbDYUa_ffQyg-2yeeGtUgc.roa File: pRF3BTbDYUa_ffQyg-2yeeGtUgc.roa (raw, json) Hash identifier: JqgKF3wT1++nGHiF2NoLadUCTtZZ7YlbhSHmVbpxh20= Subject key identifier: A5:11:77:05:36:C3:61:46:BF:7D:F4:32:83:ED:B2:79:E1:AD:52:07 Certificate issuer: /CN=e631b080d4ea6fd0616a6e701c7c815d6ff87c00 Certificate serial: 019B229949FA91E389B7DC611A898E8055DB Authority key identifier: E6:31:B0:80:D4:EA:6F:D0:61:6A:6E:70:1C:7C:81:5D:6F:F8:7C:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5jGwgNTqb9Bham5wHHyBXW_4fAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/pRF3BTbDYUa_ffQyg-2yeeGtUgc.roa Signing time: Mon 15 Dec 2025 15:20:29 +0000 ROA not before: Mon 15 Dec 2025 15:20:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 50319 IP address blocks: 5.180.140.0/22 maxlen: 22 91.206.246.0/23 maxlen: 23 185.84.196.0/22 maxlen: 22 185.144.196.0/22 maxlen: 22 185.156.208.0/22 maxlen: 24 193.105.215.0/24 maxlen: 24 194.88.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/5jGwgNTqb9Bham5wHHyBXW_4fAA.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/5jGwgNTqb9Bham5wHHyBXW_4fAA.mft rsync://rpki.ripe.net/repository/DEFAULT/5jGwgNTqb9Bham5wHHyBXW_4fAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 09:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:99:49:fa:91:e3:89:b7:dc:61:1a:89:8e:80:55:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e631b080d4ea6fd0616a6e701c7c815d6ff87c00 Validity Not Before: Dec 15 15:20:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=a511770536c36146bf7df43283edb279e1ad5207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:82:5c:89:3a:4b:5f:50:8c:0e:db:a8:15:de: f9:1f:65:4e:ad:3f:9e:ed:c8:60:8d:45:c6:93:15: 9d:5d:44:77:58:91:cb:2e:b7:83:93:df:eb:ed:2a: 94:6c:ea:f2:58:7d:a7:e0:d3:0e:e6:a6:f3:dd:88: 7a:ef:88:a9:fa:7c:99:31:8c:c1:8e:d2:6b:7a:1c: 6e:73:1d:a0:2c:a6:78:f5:aa:b2:3a:ac:4b:6e:c3: 5d:2f:16:c3:2a:66:75:64:91:f4:8a:c3:00:c3:05: 68:04:a2:a8:d5:60:ff:50:2b:71:44:57:ad:6e:ee: fd:b1:e2:7e:8c:12:3a:64:5d:97:1d:2a:2d:25:3d: 46:eb:3e:a4:47:c6:fa:59:4f:2e:5a:98:3e:08:79: 6f:4a:05:10:bc:98:64:f1:a4:f0:0d:50:07:82:ba: cc:81:31:32:fa:96:4a:fd:8b:3d:7c:7c:50:1e:5b: 58:93:42:1c:4f:e7:89:ca:31:41:15:5c:a0:19:52: c2:bc:d8:88:e7:3b:43:b4:4d:fa:31:f4:44:17:36: 3f:23:b1:9e:ef:a1:3c:09:7b:77:9b:20:5f:8c:2c: 7a:70:f4:02:43:ba:2b:15:54:ef:f8:40:63:53:f6: e2:09:20:46:77:d9:06:69:38:4f:8d:cd:47:8d:3b: d0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:11:77:05:36:C3:61:46:BF:7D:F4:32:83:ED:B2:79:E1:AD:52:07 X509v3 Authority Key Identifier: keyid:E6:31:B0:80:D4:EA:6F:D0:61:6A:6E:70:1C:7C:81:5D:6F:F8:7C:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5jGwgNTqb9Bham5wHHyBXW_4fAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/pRF3BTbDYUa_ffQyg-2yeeGtUgc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/5jGwgNTqb9Bham5wHHyBXW_4fAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.140.0/22 91.206.246.0/23 185.84.196.0/22 185.144.196.0/22 185.156.208.0/22 193.105.215.0/24 194.88.236.0/23 Signature Algorithm: sha256WithRSAEncryption 41:5b:45:21:5d:ca:5c:78:74:8b:7e:0a:c3:b6:10:00:db:5e: 0a:ef:23:51:da:dd:8c:1a:ec:48:55:e7:ba:4a:48:6a:10:98: 0e:50:98:47:c3:51:23:6d:74:09:d6:db:14:6e:8d:53:13:88: b3:65:af:13:17:3a:be:a0:39:79:66:bb:e8:d7:c6:b2:75:c8: 94:3f:cb:b5:91:2c:04:18:0e:2d:ca:f9:e9:d0:0c:c7:c4:9c: 20:29:6e:26:21:6c:cb:20:24:ba:3a:7a:72:62:5b:44:cc:da: c7:40:9e:bd:d4:ae:f7:99:81:58:cf:33:92:fc:5b:aa:69:5d: 4d:0f:82:8c:23:aa:af:fa:d8:c2:d5:ce:d5:ab:64:07:d1:4f: 20:90:74:06:f8:c9:43:0d:d5:b9:32:b3:c7:3b:82:2a:53:b1: 7b:89:d7:b8:6f:6b:f6:46:1b:3b:61:d7:72:39:2e:bd:4b:ec: 3b:26:d7:91:e7:8b:fd:5d:a1:8b:8b:60:33:c6:b9:7e:aa:e1: 69:70:a3:01:25:c2:f7:a2:92:14:1b:33:cd:a4:b7:62:93:42: 30:0b:a3:ed:d3:50:dc:a8:69:d4:1e:48:5f:6b:cb:94:4d:db: 77:60:2f:4f:32:27:01:b7:94:b8:71:c2:55:68:75:1a:22:33: 33:ae:29:e0 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZsimUn6keOJt9xhGomOgFXbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2MzFiMDgwZDRlYTZmZDA2MTZhNmU3MDFjN2M4MTVkNmZm ODdjMDAwHhcNMjUxMjE1MTUyMDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNTExNzcwNTM2YzM2MTQ2YmY3ZGY0MzI4M2VkYjI3OWUxYWQ1MjA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIJciTpLX1CMDtuoFd75H2VOrT+e 7chgjUXGkxWdXUR3WJHLLreDk9/r7SqUbOryWH2n4NMO5qbz3Yh674ip+nyZMYzB jtJrehxucx2gLKZ49aqyOqxLbsNdLxbDKmZ1ZJH0isMAwwVoBKKo1WD/UCtxRFet bu79seJ+jBI6ZF2XHSotJT1G6z6kR8b6WU8uWpg+CHlvSgUQvJhk8aTwDVAHgrrM gTEy+pZK/Ys9fHxQHltYk0IcT+eJyjFBFVygGVLCvNiI5ztDtE36MfREFzY/I7Ge 76E8CXt3myBfjCx6cPQCQ7orFVTv+EBjU/biCSBGd9kGaThPjc1HjTvQIwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFKURdwU2w2FGv330MoPtsnnhrVIHMB8GA1UdIwQY MBaAFOYxsIDU6m/QYWpucBx8gV1v+HwAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWpHd2dOVHFiOUJoYW01d0hIeUJYV180ZkFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9kY2RhZTYtZDY5NS00MjY2LWJhOWIt OTNiM2EzNjk2ZDk2LzEvcFJGM0JUYkRZVWFfZmZReWctMnllZUd0VWdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC9kY2RhZTYtZDY5NS00MjY2LWJhOWItOTNiM2EzNjk2ZDk2 LzEvNWpHd2dOVHFiOUJoYW01d0hIeUJYV180ZkFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQCBbSMAwQB W872AwQCuVTEAwQCuZDEAwQCuZzQAwQAwWnXAwQBwljsMA0GCSqGSIb3DQEBCwUA A4IBAQBBW0UhXcpceHSLfgrDthAA214K7yNR2t2MGuxIVee6SkhqEJgOUJhHw1Ej bXQJ1tsUbo1TE4izZa8TFzq+oDl5Zrvo18aydciUP8u1kSwEGA4tyvnp0AzHxJwg KW4mIWzLICS6OnpyYltEzNrHQJ691K73mYFYzzOS/FuqaV1ND4KMI6qv+tjC1c7V q2QH0U8gkHQG+MlDDdW5MrPHO4IqU7F7ide4b2v2Rhs7YddyOS69S+w7JteR54v9 XaGLi2Azxrl+quFpcKMBJcL3opIUGzPNpLdik0IwC6Pt01DcqGnUHkhfa8uUTdt3 YC9PMicBt5S4ccJVaHUaIjMzring -----END CERTIFICATE-----Generated at Tue Dec 16 12:06:57 2025 by rpki-client