This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/iivR6R5xj5qQ6ZS8Zc70T4D8J1o.roa File: iivR6R5xj5qQ6ZS8Zc70T4D8J1o.roa (raw, json) Hash identifier: bil+9ETrqZvnnwbkJOOdlV5vmfR5F2Chn7ZEpPZ+wMQ= Subject key identifier: 8A:2B:D1:E9:1E:71:8F:9A:90:E9:94:BC:65:CE:F4:4F:80:FC:27:5A Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e Certificate serial: 019A8D6B1A52864DFAC2A39E85A7B2C88C71 Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/iivR6R5xj5qQ6ZS8Zc70T4D8J1o.roa Signing time: Sun 16 Nov 2025 16:06:37 +0000 ROA not before: Sun 16 Nov 2025 16:06:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 195.96.129.0/24 maxlen: 24 2a0b:8440::/29 maxlen: 29 2a10:a9c0::/29 maxlen: 29 2a13:5040::/29 maxlen: 29 2a13:be40::/29 maxlen: 29 2a13:bec0::/29 maxlen: 29 2a13:cdc0::/29 maxlen: 29 2a13:d140::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.mft rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:8d:6b:1a:52:86:4d:fa:c2:a3:9e:85:a7:b2:c8:8c:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e Validity Not Before: Nov 16 16:06:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=8a2bd1e91e718f9a90e994bc65cef44f80fc275a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:8c:7d:20:e9:5a:de:e5:b4:ba:fb:0f:f8:c7: db:80:79:52:31:64:b3:be:e4:8e:94:95:2a:50:35: 3b:f5:9b:3a:52:4f:ea:b4:75:47:d6:dd:53:a8:a0: e8:6a:82:50:43:05:4e:2c:95:0a:9a:9e:43:e9:23: b6:b1:e6:ed:e3:3b:45:96:71:81:b3:78:08:66:a2: 5c:33:a0:d9:8b:78:ac:07:42:bc:35:e1:ff:8f:74: 5b:aa:13:c5:c0:8e:a6:50:1f:e9:45:1f:4e:5d:23: 22:95:93:d3:a0:28:91:4d:ab:cc:57:65:32:b7:17: 72:af:ac:a1:61:7f:ea:06:fa:3b:cc:37:23:5d:71: 91:65:0f:44:3e:91:f3:6e:a9:0d:90:f9:91:92:09: b3:10:4c:45:2f:54:83:b5:03:1d:d8:17:15:ff:2d: c9:bb:49:7c:b8:7f:42:cb:9c:f8:f9:85:ec:df:de: 17:c2:06:b0:b7:bf:93:61:5c:64:3f:38:da:cf:6e: 90:fe:0b:f8:15:a5:fe:cd:15:76:77:5f:cb:96:1f: 15:d7:08:85:3a:4e:ff:9f:ca:e7:3e:12:2b:ad:f7: d2:48:24:7e:49:ad:cb:5d:0c:14:ba:09:aa:6f:0e: c6:7c:57:19:24:e2:41:c0:7d:ec:03:07:37:f3:d8: ad:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:2B:D1:E9:1E:71:8F:9A:90:E9:94:BC:65:CE:F4:4F:80:FC:27:5A X509v3 Authority Key Identifier: keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/iivR6R5xj5qQ6ZS8Zc70T4D8J1o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.96.129.0/24 IPv6: 2a0b:8440::/29 2a10:a9c0::/29 2a13:5040::/29 2a13:be40::/29 2a13:bec0::/29 2a13:cdc0::/29 2a13:d140::/29 Signature Algorithm: sha256WithRSAEncryption 4d:c6:d2:0d:b8:d4:67:5a:b0:ff:68:12:5e:df:c9:61:a7:f7: 02:23:04:90:4f:92:f2:97:a4:07:1a:bd:e3:a4:a2:14:7b:d9: e2:88:f0:c5:e0:11:c1:81:a3:6c:eb:b2:3b:13:5c:a4:26:a6: 79:52:65:25:32:63:b8:73:0a:63:6e:67:62:b1:aa:da:89:22: c4:96:1f:88:50:55:12:a9:99:02:49:f7:33:57:2d:23:b6:d6: be:7d:d2:1c:17:a3:a9:19:42:1d:12:49:95:ea:f8:38:9b:2f: dd:b6:8b:f7:1c:56:4c:66:a0:9e:52:fd:79:a0:db:b8:e6:41: 7c:3f:1f:a6:42:60:d2:57:0e:72:db:55:a9:08:11:f8:2b:2a: 84:ac:5c:5b:19:5a:11:21:f4:66:b2:82:df:08:a0:89:b8:b3: 69:e8:03:22:00:96:fe:c1:f7:18:dc:e0:a1:f7:1f:47:ce:1b: 2e:fb:36:ef:e8:55:a6:50:3e:13:05:f8:29:da:f8:aa:7b:b5: 00:1b:40:e0:1e:56:b9:71:a0:0b:f8:e5:07:f4:c3:23:c2:45: b5:43:02:b9:32:60:9c:f7:60:05:79:b4:25:fc:32:5e:77:5d: da:7b:9e:8f:29:6a:0e:05:7b:ac:10:88:9a:20:11:66:e5:5f: 70:e8:aa:bb -----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgISAZqNaxpShk36wqOehaeyyIxxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YWQ2MGRhNTI2NzFlOTA4M2NmMzk4NjRlY2EyYWEyMzI0 MWJlOWUwHhcNMjUxMTE2MTYwNjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTJiZDFlOTFlNzE4ZjlhOTBlOTk0YmM2NWNlZjQ0ZjgwZmMyNzVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlox9IOla3uW0uvsP+MfbgHlSMWSz vuSOlJUqUDU79Zs6Uk/qtHVH1t1TqKDoaoJQQwVOLJUKmp5D6SO2sebt4ztFlnGB s3gIZqJcM6DZi3isB0K8NeH/j3RbqhPFwI6mUB/pRR9OXSMilZPToCiRTavMV2Uy txdyr6yhYX/qBvo7zDcjXXGRZQ9EPpHzbqkNkPmRkgmzEExFL1SDtQMd2BcV/y3J u0l8uH9Cy5z4+YXs394Xwgawt7+TYVxkPzjaz26Q/gv4FaX+zRV2d1/Llh8V1wiF Ok7/n8rnPhIrrffSSCR+Sa3LXQwUugmqbw7GfFcZJOJBwH3sAwc389iteQIDAQAB o4ICQjCCAj4wHQYDVR0OBBYEFIor0ekecY+akOmUvGXO9E+A/CdaMB8GA1UdIwQY MBaAFFitYNpSZx6Qg885hk7KKqIyQb6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDct MTFiM2NmM2ZkNGUxLzEvaWl2UjZSNXhqNXFRNlpTOFpjNzBUNEQ4SjFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDctMTFiM2NmM2ZkNGUx LzEvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFgGCCsGAQUFBwEHAQH/BEkwRzAMBAIAATAGAwQAw2CBMDcE AgACMDEDBQMqC4RAAwUDKhCpwAMFAyoTUEADBQMqE75AAwUDKhO+wAMFAyoTzcAD BQMqE9FAMA0GCSqGSIb3DQEBCwUAA4IBAQBNxtINuNRnWrD/aBJe38lhp/cCIwSQ T5Lyl6QHGr3jpKIUe9niiPDF4BHBgaNs67I7E1ykJqZ5UmUlMmO4cwpjbmdisara iSLElh+IUFUSqZkCSfczVy0jtta+fdIcF6OpGUIdEkmV6vg4my/dtov3HFZMZqCe Uv15oNu45kF8Px+mQmDSVw5y21WpCBH4KyqErFxbGVoRIfRmsoLfCKCJuLNp6AMi AJb+wfcY3OCh9x9Hzhsu+zbv6FWmUD4TBfgp2viqe7UAG0DgHla5caAL+OUH9MMj wkW1QwK5MmCc92AFebQl/DJed13ae56PKWoOBXusEIiaIBFm5V9w6Kq7 -----END CERTIFICATE-----Generated at Sat Nov 22 21:36:56 2025 by rpki-client