This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/0ef58a-566f-48bc-b7da-8055ec10ff0a/1/XwcmvCdfYih2y5WbBoBCn2IfFV8.roa File: XwcmvCdfYih2y5WbBoBCn2IfFV8.roa (raw, json) Hash identifier: f+XB0GSqJ+7PsH+7sWsNx0utGPF06ZO3iKtvMRIKXy4= Subject key identifier: 5F:07:26:BC:27:5F:62:28:76:CB:95:9B:06:80:42:9F:62:1F:15:5F Certificate issuer: /CN=208f8bf8d012a25cccee2106803d7064320ed0f0 Certificate serial: 019ADF36496425EADEAB01F24C82960D33DD Authority key identifier: 20:8F:8B:F8:D0:12:A2:5C:CC:EE:21:06:80:3D:70:64:32:0E:D0:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/II-L-NASolzM7iEGgD1wZDIO0PA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/0ef58a-566f-48bc-b7da-8055ec10ff0a/1/XwcmvCdfYih2y5WbBoBCn2IfFV8.roa Signing time: Tue 02 Dec 2025 13:17:48 +0000 ROA not before: Tue 02 Dec 2025 13:17:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 213686 IP address blocks: 185.184.172.0/22 maxlen: 22 185.184.172.0/23 maxlen: 23 185.184.172.0/24 maxlen: 24 185.184.173.0/24 maxlen: 24 185.184.174.0/23 maxlen: 23 185.184.174.0/24 maxlen: 24 185.184.175.0/24 maxlen: 24 185.191.252.0/22 maxlen: 22 185.191.252.0/23 maxlen: 23 185.191.252.0/24 maxlen: 24 185.191.253.0/24 maxlen: 24 185.191.254.0/23 maxlen: 23 185.191.254.0/24 maxlen: 24 185.191.255.0/24 maxlen: 24 185.236.244.0/22 maxlen: 22 185.236.244.0/23 maxlen: 23 185.236.244.0/24 maxlen: 24 185.236.245.0/24 maxlen: 24 185.236.246.0/23 maxlen: 23 185.236.246.0/24 maxlen: 24 185.236.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/0ef58a-566f-48bc-b7da-8055ec10ff0a/1/II-L-NASolzM7iEGgD1wZDIO0PA.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/0ef58a-566f-48bc-b7da-8055ec10ff0a/1/II-L-NASolzM7iEGgD1wZDIO0PA.mft rsync://rpki.ripe.net/repository/DEFAULT/II-L-NASolzM7iEGgD1wZDIO0PA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 13:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:df:36:49:64:25:ea:de:ab:01:f2:4c:82:96:0d:33:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=208f8bf8d012a25cccee2106803d7064320ed0f0 Validity Not Before: Dec 2 13:17:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=5f0726bc275f622876cb959b0680429f621f155f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:63:b6:ca:cc:2b:f5:a0:d7:cd:d0:1c:4f:8d: 30:91:4b:53:80:2e:fe:3b:1e:c3:90:21:44:89:1a: 7f:8d:79:8c:72:cf:1b:94:70:2d:fa:98:19:66:83: 32:93:f2:e9:74:4b:ce:c4:45:1c:47:c1:52:d8:4f: 9d:8b:84:d0:33:c3:2a:5e:7c:5d:38:cc:b9:ff:22: 7f:3f:9d:dd:f2:03:e1:7c:01:a8:87:c5:c8:7d:5f: 9a:fb:67:c8:8c:4d:07:d0:60:f4:1f:35:1a:5b:8c: 63:17:43:d7:51:45:67:0b:18:36:e5:a4:72:f0:9b: 21:84:bc:fe:fb:1f:31:0d:ee:92:d6:11:2a:2c:29: 5e:95:c7:b5:c8:da:dc:80:6c:ee:e0:dd:08:3b:d3: 85:da:b2:bc:1b:08:7f:2a:b9:e3:14:06:f1:7a:7a: c9:34:c3:cd:6f:39:01:63:f4:e8:0c:0e:a4:97:11: 26:61:60:be:34:7c:6b:d6:ff:a4:31:9b:36:99:48: 3e:93:8d:32:99:b3:5c:7d:10:5c:68:ed:9e:0e:74: c8:00:cd:0a:d4:8c:0c:1b:b7:c1:d1:9a:30:a5:1e: 36:68:64:d8:c6:20:db:8e:c7:c0:ae:d9:6d:16:e6: 66:fb:5f:b3:19:b3:3e:6f:4a:80:42:e0:92:a2:e5: f8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:07:26:BC:27:5F:62:28:76:CB:95:9B:06:80:42:9F:62:1F:15:5F X509v3 Authority Key Identifier: keyid:20:8F:8B:F8:D0:12:A2:5C:CC:EE:21:06:80:3D:70:64:32:0E:D0:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/II-L-NASolzM7iEGgD1wZDIO0PA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/0ef58a-566f-48bc-b7da-8055ec10ff0a/1/XwcmvCdfYih2y5WbBoBCn2IfFV8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/0ef58a-566f-48bc-b7da-8055ec10ff0a/1/II-L-NASolzM7iEGgD1wZDIO0PA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.184.172.0/22 185.191.252.0/22 185.236.244.0/22 Signature Algorithm: sha256WithRSAEncryption 53:d1:02:15:84:1c:86:76:22:e9:12:75:a9:2b:59:08:46:ef: 9b:97:c5:7a:f6:f4:d4:d6:fe:dc:a0:ba:d1:bb:47:2a:4e:4c: ee:37:a0:47:8d:b9:1d:da:8b:14:28:5a:4f:a6:50:47:70:6b: ed:9e:1d:14:d0:47:5f:ea:af:c9:01:fd:1b:9e:bc:ab:a6:07: d4:b9:c7:18:39:f9:94:61:06:95:e6:88:6d:cf:fb:5e:e9:37: 2b:f4:45:00:4a:2a:d6:93:d9:d0:5d:2f:10:75:73:ed:f9:e2: a9:12:58:61:28:d1:f6:f8:e0:ce:79:2a:4c:db:9c:64:67:38: c2:86:bc:62:c6:84:a0:9a:7f:80:5b:85:89:4d:3d:fc:24:3f: 47:43:a2:5f:57:65:19:98:00:53:88:98:86:ff:96:65:bd:8e: 7a:43:0d:cf:50:c8:c3:ad:46:e5:da:3a:6d:d5:97:4b:87:fd: a1:e2:b0:32:cf:15:96:d8:e1:16:35:ea:93:ab:2c:f7:03:6d: 51:27:64:45:7a:af:04:b5:d8:2d:b8:aa:97:c6:48:d8:b6:63: ef:3b:dd:2e:52:0f:22:d8:ba:33:77:39:51:59:71:71:22:01: a8:87:57:da:8f:ee:7c:fe:91:96:5f:8a:81:4c:96:80:52:22: 23:fa:8f:e0 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZrfNklkJereqwHyTIKWDTPdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwOGY4YmY4ZDAxMmEyNWNjY2VlMjEwNjgwM2Q3MDY0MzIw ZWQwZjAwHhcNMjUxMjAyMTMxNzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjA3MjZiYzI3NWY2MjI4NzZjYjk1OWIwNjgwNDI5ZjYyMWYxNTVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWO2yswr9aDXzdAcT40wkUtTgC7+ Ox7DkCFEiRp/jXmMcs8blHAt+pgZZoMyk/LpdEvOxEUcR8FS2E+di4TQM8MqXnxd OMy5/yJ/P53d8gPhfAGoh8XIfV+a+2fIjE0H0GD0HzUaW4xjF0PXUUVnCxg25aRy 8JshhLz++x8xDe6S1hEqLClelce1yNrcgGzu4N0IO9OF2rK8Gwh/KrnjFAbxenrJ NMPNbzkBY/ToDA6klxEmYWC+NHxr1v+kMZs2mUg+k40ymbNcfRBcaO2eDnTIAM0K 1IwMG7fB0ZowpR42aGTYxiDbjsfArtltFuZm+1+zGbM+b0qAQuCSouX4/QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFF8HJrwnX2IodsuVmwaAQp9iHxVfMB8GA1UdIwQY MBaAFCCPi/jQEqJczO4hBoA9cGQyDtDwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUktTC1OQVNvbHpNN2lFR2dEMXdaRElPMFBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8wZWY1OGEtNTY2Zi00OGJjLWI3ZGEt ODA1NWVjMTBmZjBhLzEvWHdjbXZDZGZZaWgyeTVXYkJvQkNuMklmRlY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi8wZWY1OGEtNTY2Zi00OGJjLWI3ZGEtODA1NWVjMTBmZjBh LzEvSUktTC1OQVNvbHpNN2lFR2dEMXdaRElPMFBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCubisAwQC ub/8AwQCuez0MA0GCSqGSIb3DQEBCwUAA4IBAQBT0QIVhByGdiLpEnWpK1kIRu+b l8V69vTU1v7coLrRu0cqTkzuN6BHjbkd2osUKFpPplBHcGvtnh0U0Edf6q/JAf0b nryrpgfUuccYOfmUYQaV5ohtz/te6Tcr9EUASirWk9nQXS8QdXPt+eKpElhhKNH2 +ODOeSpM25xkZzjChrxixoSgmn+AW4WJTT38JD9HQ6JfV2UZmABTiJiG/5ZlvY56 Qw3PUMjDrUbl2jpt1ZdLh/2h4rAyzxWW2OEWNeqTqyz3A21RJ2RFeq8EtdgtuKqX xkjYtmPvO90uUg8i2LozdzlRWXFxIgGoh1faj+58/pGWX4qBTJaAUiIj+o/g -----END CERTIFICATE-----Generated at Thu Dec 11 17:35:37 2025 by rpki-client