This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/5_mSGmvAMTt3-AGBkpoZYaeDStc.roa File: 5_mSGmvAMTt3-AGBkpoZYaeDStc.roa (raw, json) Hash identifier: H6b6TwYNIPDlS0Uo6tdj5GC2ax2OqT3uEMZ0SLiUr0M= Subject key identifier: E7:F9:92:1A:6B:C0:31:3B:77:F8:01:81:92:9A:19:61:A7:83:4A:D7 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019AF57F92E82D9FD07B11C481EE6AC38CBB Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/5_mSGmvAMTt3-AGBkpoZYaeDStc.roa Signing time: Sat 06 Dec 2025 21:09:29 +0000 ROA not before: Sat 06 Dec 2025 21:09:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215439 IP address blocks: 64.188.64.0/22 maxlen: 24 77.239.125.0/24 maxlen: 24 144.31.14.0/24 maxlen: 24 144.31.30.0/24 maxlen: 24 144.31.95.0/24 maxlen: 24 144.31.164.0/22 maxlen: 24 144.31.207.0/24 maxlen: 24 144.31.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 17:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:7f:92:e8:2d:9f:d0:7b:11:c4:81:ee:6a:c3:8c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Dec 6 21:09:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e7f9921a6bc0313b77f80181929a1961a7834ad7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3f:44:4b:db:0f:a4:47:85:8b:18:34:24:51: e2:83:d6:ef:21:fa:60:cc:24:74:5e:f3:7b:04:a7: c3:1d:07:a7:7a:39:7e:8a:46:91:3c:90:49:39:fe: e2:ba:71:39:8d:3f:5e:bb:65:04:b3:87:45:14:60: 44:23:17:0f:46:ec:2a:16:a7:e0:ba:b3:59:f0:23: 31:c0:8f:3a:1b:e2:e8:21:60:34:ce:d2:8c:14:6c: 7e:6b:3b:49:85:5e:82:81:16:b3:54:08:59:ea:23: 0f:44:d0:06:68:04:53:ce:c8:28:02:bc:17:46:38: c5:4e:a8:29:a5:13:21:28:8b:67:91:8f:26:20:dd: 0f:6b:eb:35:95:21:ae:57:43:da:e5:70:91:8b:c9: f0:d8:b7:16:cb:c0:ac:f2:67:3c:77:f5:c0:70:01: 6c:89:15:98:f0:71:02:6c:8e:3e:d6:7b:3a:f5:ce: 56:c5:7c:e5:96:11:d6:04:e1:cd:d7:c3:08:18:2c: fe:ca:ae:6a:6c:fc:8a:17:96:e7:1b:88:09:ec:f4: 3a:56:ce:5b:5e:f1:75:ea:ca:d5:c0:e9:25:d6:1c: 89:be:b7:3e:f7:19:2b:9d:cd:9d:15:51:ce:72:ea: 3f:fe:c3:67:96:eb:f4:67:af:85:9f:61:8d:a3:ac: 86:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:F9:92:1A:6B:C0:31:3B:77:F8:01:81:92:9A:19:61:A7:83:4A:D7 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/5_mSGmvAMTt3-AGBkpoZYaeDStc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.188.64.0/22 77.239.125.0/24 144.31.14.0/24 144.31.30.0/24 144.31.95.0/24 144.31.164.0/22 144.31.207.0/24 144.31.212.0/24 Signature Algorithm: sha256WithRSAEncryption 05:a0:9a:9b:7e:92:ab:43:85:73:20:19:83:c9:3c:2c:ed:db: a1:ec:42:28:76:55:e7:3e:ca:d2:f4:5d:86:53:fd:a4:d7:4b: 91:e2:cb:21:5f:6f:01:90:5c:c5:66:51:eb:cd:2e:70:c1:93: 22:ac:12:cd:d4:0f:fd:8e:0d:d1:59:77:44:17:e4:63:7d:1b: 68:eb:0c:d6:a3:72:d2:8e:6d:ae:87:b5:25:9d:30:47:5b:4a: f2:6c:ca:06:40:73:9c:c8:30:da:4d:bf:e8:9e:e8:d3:df:5b: 6e:b9:d3:f1:b4:b1:8d:b4:64:99:30:4f:06:cc:7c:06:c8:23: 16:51:3b:5f:88:e2:4d:d3:cc:11:09:dd:e7:61:14:91:16:fe: e0:72:23:96:08:ce:3e:93:24:1d:6b:79:59:a1:08:b4:f2:aa: f7:48:f9:29:41:36:4e:c6:8f:4d:2f:50:97:62:ff:1f:bc:bd: 0c:68:38:36:08:03:9e:43:78:3c:8e:4f:87:80:da:06:cc:df: f7:f4:1f:a7:2f:3a:d2:9f:b1:75:a2:5c:74:12:3c:95:8c:54: 6c:c3:f5:45:3a:63:88:18:f4:1b:b8:15:2d:23:65:ce:ad:f0: 8c:48:64:18:f9:3e:fe:7c:f1:1a:74:0b:8a:9a:a6:32:9a:31: 1d:b2:09:f1 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZr1f5LoLZ/QexHEge5qw4y7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjUxMjA2MjEwOTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlN2Y5OTIxYTZiYzAzMTNiNzdmODAxODE5MjlhMTk2MWE3ODM0YWQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsD9ES9sPpEeFixg0JFHig9bvIfpg zCR0XvN7BKfDHQenejl+ikaRPJBJOf7iunE5jT9eu2UEs4dFFGBEIxcPRuwqFqfg urNZ8CMxwI86G+LoIWA0ztKMFGx+aztJhV6CgRazVAhZ6iMPRNAGaARTzsgoArwX RjjFTqgppRMhKItnkY8mIN0Pa+s1lSGuV0Pa5XCRi8nw2LcWy8Cs8mc8d/XAcAFs iRWY8HECbI4+1ns69c5WxXzllhHWBOHN18MIGCz+yq5qbPyKF5bnG4gJ7PQ6Vs5b XvF16srVwOkl1hyJvrc+9xkrnc2dFVHOcuo//sNnluv0Z6+Fn2GNo6yG4wIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFOf5khprwDE7d/gBgZKaGWGng0rXMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvNV9tU0dtdkFNVHQzLUFHQmtwb1pZYWVEU3RjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCQLxAAwQA Te99AwQAkB8OAwQAkB8eAwQAkB9fAwQCkB+kAwQAkB/PAwQAkB/UMA0GCSqGSIb3 DQEBCwUAA4IBAQAFoJqbfpKrQ4VzIBmDyTws7duh7EIodlXnPsrS9F2GU/2k10uR 4sshX28BkFzFZlHrzS5wwZMirBLN1A/9jg3RWXdEF+RjfRto6wzWo3LSjm2uh7Ul nTBHW0rybMoGQHOcyDDaTb/onujT31tuudPxtLGNtGSZME8GzHwGyCMWUTtfiOJN 08wRCd3nYRSRFv7gciOWCM4+kyQda3lZoQi08qr3SPkpQTZOxo9NL1CXYv8fvL0M aDg2CAOeQ3g8jk+HgNoGzN/39B+nLzrSn7F1olx0EjyVjFRsw/VFOmOIGPQbuBUt I2XOrfCMSGQY+T7+fPEadAuKmqYymjEdsgnx -----END CERTIFICATE-----Generated at Wed Dec 10 20:21:15 2025 by rpki-client