This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/EN200_fHuS3Y54Exmp7fn74_RLI.roa File: EN200_fHuS3Y54Exmp7fn74_RLI.roa (raw, json) Hash identifier: BVm8C5g07MheS5G/dZUeBM8M5KiLFd4oRI2mTZ8pE+o= Subject key identifier: 10:DD:B4:D3:F7:C7:B9:2D:D8:E7:81:31:9A:9E:DF:9F:BE:3F:44:B2 Certificate issuer: /CN=b607604501de3609768c5ba7c4cca9c56b61f9d5 Certificate serial: 019AB69BD09B85CDCF66D37962F75980CF17 Authority key identifier: B6:07:60:45:01:DE:36:09:76:8C:5B:A7:C4:CC:A9:C5:6B:61:F9:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgdgRQHeNgl2jFunxMypxWth-dU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/EN200_fHuS3Y54Exmp7fn74_RLI.roa Signing time: Mon 24 Nov 2025 16:04:16 +0000 ROA not before: Mon 24 Nov 2025 16:04:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 51396 IP address blocks: 2a05:b0c6:a200::/39 maxlen: 39 2a05:b0c7:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/tgdgRQHeNgl2jFunxMypxWth-dU.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/tgdgRQHeNgl2jFunxMypxWth-dU.mft rsync://rpki.ripe.net/repository/DEFAULT/tgdgRQHeNgl2jFunxMypxWth-dU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 29 Nov 2025 01:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b6:9b:d0:9b:85:cd:cf:66:d3:79:62:f7:59:80:cf:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b607604501de3609768c5ba7c4cca9c56b61f9d5 Validity Not Before: Nov 24 16:04:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=10ddb4d3f7c7b92dd8e781319a9edf9fbe3f44b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:11:bd:3b:bf:70:c6:5e:d3:1c:f0:e3:a4:ec: 87:9f:41:50:68:de:ca:9a:5a:f3:9a:9e:9e:07:06: ca:f4:69:7c:ee:b4:ab:d7:14:d9:1c:be:cc:8a:fc: 66:b5:86:25:13:c5:1b:81:a2:92:18:8a:03:7a:b6: 35:21:2b:f6:c9:ed:ae:9e:d4:05:93:61:6c:07:39: 71:ed:1b:cb:bb:a9:9a:fe:aa:1c:1d:a6:15:6d:2e: cb:8b:53:d1:6c:ed:f0:af:07:48:0b:d8:9b:17:22: 80:bc:89:9e:15:d1:9d:9f:a9:34:75:6b:d4:eb:a2: d6:1c:c3:2b:10:8f:b7:27:a0:a3:22:25:86:00:95: f6:a3:8b:c4:7a:6d:0a:8a:3e:5a:7c:13:16:92:c5: b4:5d:c6:fe:79:c5:f7:2d:7d:e9:19:ed:3f:1a:7d: 21:00:47:1b:c0:c0:bc:23:fd:ae:a8:ce:84:fd:c7: 8c:17:07:30:af:12:e7:16:b2:33:05:5a:bf:98:6b: 39:4c:61:48:c4:3a:9d:ee:02:a5:cc:a5:bf:42:f2: 04:a1:31:c9:bf:de:a4:04:d3:f1:5e:c9:c6:d7:2b: 67:66:5d:f8:08:9d:9f:c9:54:80:c5:6e:a0:b8:5d: 9b:59:f6:34:66:6e:65:75:3e:e7:78:80:fb:83:dc: d7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:DD:B4:D3:F7:C7:B9:2D:D8:E7:81:31:9A:9E:DF:9F:BE:3F:44:B2 X509v3 Authority Key Identifier: keyid:B6:07:60:45:01:DE:36:09:76:8C:5B:A7:C4:CC:A9:C5:6B:61:F9:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgdgRQHeNgl2jFunxMypxWth-dU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/EN200_fHuS3Y54Exmp7fn74_RLI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/tgdgRQHeNgl2jFunxMypxWth-dU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:b0c6:a200::/39 2a05:b0c7:6000::/36 Signature Algorithm: sha256WithRSAEncryption 24:1b:31:99:f1:85:0b:f3:c9:ac:9a:29:33:cb:b6:52:2d:6f: 44:ec:c9:f6:04:0e:4e:72:1b:e7:ce:4c:bf:8e:42:83:aa:86: 1c:7e:6a:2b:1b:89:fe:ca:4d:13:79:d8:dc:19:bd:b9:6c:f0: 2d:a7:82:16:5a:45:7b:7b:18:07:97:c4:1c:09:ad:e3:e5:9f: 35:85:a6:2f:8d:ae:3b:46:23:78:5c:87:90:01:05:b1:70:b9: 1b:2a:fa:d6:d1:c2:74:56:aa:b9:1c:ce:d5:be:36:d2:07:22: 6c:0a:52:dc:bb:3f:2c:2e:21:7a:a0:44:46:fc:0b:3d:2c:ca: 2a:94:d9:10:37:f1:6b:06:ad:92:0b:82:fd:70:07:33:76:9b: 3f:ab:3c:e4:d3:f8:77:65:31:0d:d0:5c:10:5c:5b:4b:86:31: cf:82:67:b8:4a:8f:12:79:c0:0f:25:94:e1:56:73:42:bb:89: c3:a8:ec:47:be:cd:f2:94:cc:af:8a:cb:b4:b2:f8:74:ea:78: 87:f2:9b:6a:06:67:0a:41:95:dd:4b:ce:47:cc:4d:69:b1:67: 20:40:31:e0:fb:c1:8d:2f:21:26:c0:9c:bf:b2:fa:b0:9b:e8: a4:d8:89:43:aa:72:08:87:1e:96:4c:2a:1e:f8:aa:88:ab:c2: 5d:eb:ba:ad -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZq2m9Cbhc3PZtN5YvdZgM8XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2MDc2MDQ1MDFkZTM2MDk3NjhjNWJhN2M0Y2NhOWM1NmI2 MWY5ZDUwHhcNMjUxMTI0MTYwNDE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMGRkYjRkM2Y3YzdiOTJkZDhlNzgxMzE5YTllZGY5ZmJlM2Y0NGIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRG9O79wxl7THPDjpOyHn0FQaN7K mlrzmp6eBwbK9Gl87rSr1xTZHL7MivxmtYYlE8UbgaKSGIoDerY1ISv2ye2untQF k2FsBzlx7RvLu6ma/qocHaYVbS7Li1PRbO3wrwdIC9ibFyKAvImeFdGdn6k0dWvU 66LWHMMrEI+3J6CjIiWGAJX2o4vEem0Kij5afBMWksW0Xcb+ecX3LX3pGe0/Gn0h AEcbwMC8I/2uqM6E/ceMFwcwrxLnFrIzBVq/mGs5TGFIxDqd7gKlzKW/QvIEoTHJ v96kBNPxXsnG1ytnZl34CJ2fyVSAxW6guF2bWfY0Zm5ldT7neID7g9zXmwIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFBDdtNP3x7kt2OeBMZqe35++P0SyMB8GA1UdIwQY MBaAFLYHYEUB3jYJdoxbp8TMqcVrYfnVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGdkZ1JRSGVOZ2wyakZ1bnhNeXB4V3RoLWRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9kMGY2MTktYjJkMy00NDIyLWE2MTgt YjlkZDUxMDgyNjU1LzEvRU4yMDBfZkh1UzNZNTRFeG1wN2ZuNzRfUkxJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9kMGY2MTktYjJkMy00NDIyLWE2MTgtYjlkZDUxMDgyNjU1 LzEvdGdkZ1JRSGVOZ2wyakZ1bnhNeXB4V3RoLWRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYBKgWwxqID BgQqBbDHYDANBgkqhkiG9w0BAQsFAAOCAQEAJBsxmfGFC/PJrJopM8u2Ui1vROzJ 9gQOTnIb585Mv45Cg6qGHH5qKxuJ/spNE3nY3Bm9uWzwLaeCFlpFe3sYB5fEHAmt 4+WfNYWmL42uO0YjeFyHkAEFsXC5Gyr61tHCdFaquRzO1b420gcibApS3Ls/LC4h eqBERvwLPSzKKpTZEDfxawatkguC/XAHM3abP6s85NP4d2UxDdBcEFxbS4Yxz4Jn uEqPEnnADyWU4VZzQruJw6jsR77N8pTMr4rLtLL4dOp4h/KbagZnCkGV3UvOR8xN abFnIEAx4PvBjS8hJsCcv7L6sJvopNiJQ6pyCIcelkwqHviqiKvCXeu6rQ== -----END CERTIFICATE-----Generated at Fri Nov 28 07:25:24 2025 by rpki-client