This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/djsXiV_MDgBZat5PqBCtj3kWXEM.roa File: djsXiV_MDgBZat5PqBCtj3kWXEM.roa (raw, json) Hash identifier: N2oVEfCu/dQJFLePOBgtDKaIHs9rDj/ozGui80/5Rz8= Subject key identifier: 76:3B:17:89:5F:CC:0E:00:59:6A:DE:4F:A8:10:AD:8F:79:16:5C:43 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B05959E169B9BAEE4454EE6AD1FA7142A Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/djsXiV_MDgBZat5PqBCtj3kWXEM.roa Signing time: Wed 10 Dec 2025 00:07:29 +0000 ROA not before: Wed 10 Dec 2025 00:07:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 213372 IP address blocks: 150.241.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:05:95:9e:16:9b:9b:ae:e4:45:4e:e6:ad:1f:a7:14:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Dec 10 00:07:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=763b17895fcc0e00596ade4fa810ad8f79165c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f5:fc:30:20:5b:9f:69:45:57:24:31:5f:b4: cc:c5:1c:8e:86:b9:18:24:8d:6a:10:89:3b:a5:19: fa:2c:9b:d9:b4:26:85:04:41:85:8e:43:34:2b:7c: 7c:83:97:96:84:36:16:54:2f:11:07:5a:9d:91:b0: 8c:99:4a:21:27:70:e9:be:dd:ea:2e:30:35:42:12: cf:a5:36:66:52:46:10:4c:0b:00:2a:db:65:c6:b7: 68:0f:0e:33:69:1f:8f:d0:ee:28:b7:37:1b:d1:14: ea:90:eb:9e:82:06:65:d1:94:dc:90:98:8c:2e:a4: 44:03:9f:8d:ba:ac:27:80:a8:ab:a4:18:aa:0e:f2: cb:f9:78:99:be:04:f8:5a:ba:fd:cf:13:25:e3:76: 1c:e8:2d:bc:74:7a:4d:d8:1c:57:6c:db:0b:34:08: 76:92:4a:f4:e4:7c:bd:40:81:e6:b0:4e:af:94:b0: 57:96:f6:8a:e0:07:1f:a8:cd:79:ab:79:08:c2:17: 5e:65:89:ff:ff:a7:06:96:0f:5e:4e:ff:c3:4b:cf: f5:1f:3f:7b:ec:6c:e0:5e:15:bf:bc:92:e0:d1:a2: 94:12:71:af:52:5e:d3:eb:30:9d:8c:70:33:fb:59: d3:ee:35:66:3c:86:3c:72:9c:30:c3:67:a1:62:aa: 24:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:3B:17:89:5F:CC:0E:00:59:6A:DE:4F:A8:10:AD:8F:79:16:5C:43 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/djsXiV_MDgBZat5PqBCtj3kWXEM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.241.67.0/24 Signature Algorithm: sha256WithRSAEncryption 54:46:4e:2d:60:5a:39:00:71:50:2e:5c:ae:ba:06:a4:da:08: 3f:1d:87:6a:2a:c4:85:64:e3:2d:3e:b8:6c:3c:18:90:65:37: 13:be:d4:d6:7b:21:6e:04:7a:f6:3b:08:85:f0:d2:c5:43:fd: 50:44:32:e0:a2:a8:57:44:80:c5:9c:0b:97:4c:ee:c9:68:94: b4:39:64:cb:eb:54:a9:e8:fa:5a:f1:5b:17:96:30:66:38:d2: 67:c3:3e:27:a3:56:ac:88:76:70:e7:93:ce:30:4f:75:fb:ec: 5b:f9:6e:23:a3:20:85:15:d8:2c:d0:a1:d0:8b:e8:69:19:43: 8f:6f:e5:b7:cc:65:3a:0c:9e:7c:0d:ac:3e:f8:bc:90:e2:9d: 38:20:04:bf:6c:9b:8e:7d:1c:64:09:26:82:64:a5:a7:c3:d5: 13:a6:95:26:98:b9:7b:00:6b:93:f9:c9:40:05:72:14:e2:87: 1d:3d:c4:f6:68:c4:03:3e:dd:7d:5b:ed:04:aa:01:0d:bf:a2: fe:fb:38:18:17:71:df:0b:7d:1c:fd:d6:95:1a:07:fd:41:19: 62:c1:a5:77:25:8f:f1:a1:d3:2f:b5:34:ad:3e:75:a6:a5:ea: 4c:b4:e5:ae:d8:ad:0c:90:dd:fd:2f:2b:78:09:48:11:57:55: 8a:6a:39:28 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsFlZ4Wm5uu5EVO5q0fpxQqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjUxMjEwMDAwNzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjNiMTc4OTVmY2MwZTAwNTk2YWRlNGZhODEwYWQ4Zjc5MTY1YzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/X8MCBbn2lFVyQxX7TMxRyOhrkY JI1qEIk7pRn6LJvZtCaFBEGFjkM0K3x8g5eWhDYWVC8RB1qdkbCMmUohJ3Dpvt3q LjA1QhLPpTZmUkYQTAsAKttlxrdoDw4zaR+P0O4otzcb0RTqkOueggZl0ZTckJiM LqREA5+NuqwngKirpBiqDvLL+XiZvgT4Wrr9zxMl43Yc6C28dHpN2BxXbNsLNAh2 kkr05Hy9QIHmsE6vlLBXlvaK4AcfqM15q3kIwhdeZYn//6cGlg9eTv/DS8/1Hz97 7GzgXhW/vJLg0aKUEnGvUl7T6zCdjHAz+1nT7jVmPIY8cpwww2ehYqokmwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHY7F4lfzA4AWWreT6gQrY95FlxDMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvZGpzWGlWX01EZ0JaYXQ1UHFCQ3RqM2tXWEVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlvFDMA0G CSqGSIb3DQEBCwUAA4IBAQBURk4tYFo5AHFQLlyuugak2gg/HYdqKsSFZOMtPrhs PBiQZTcTvtTWeyFuBHr2OwiF8NLFQ/1QRDLgoqhXRIDFnAuXTO7JaJS0OWTL61Sp 6Ppa8VsXljBmONJnwz4no1asiHZw55POME91++xb+W4joyCFFdgs0KHQi+hpGUOP b+W3zGU6DJ58Daw++LyQ4p04IAS/bJuOfRxkCSaCZKWnw9UTppUmmLl7AGuT+clA BXIU4ocdPcT2aMQDPt19W+0EqgENv6L++zgYF3HfC30c/daVGgf9QRliwaV3JY/x odMvtTStPnWmpepMtOWu2K0MkN39Lyt4CUgRV1WKajko -----END CERTIFICATE-----Generated at Fri Dec 19 23:29:20 2025 by rpki-client