This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/w4sQ-71lZuSTSGMIL2mtW2hKCfg.roa File: w4sQ-71lZuSTSGMIL2mtW2hKCfg.roa (raw, json) Hash identifier: A66cpVbQZX9Pnnc+JnyXqFJDZvlZw7RjQuo8GwzvgpU= Subject key identifier: C3:8B:10:FB:BD:65:66:E4:93:48:63:08:2F:69:AD:5B:68:4A:09:F8 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019A565A33A5912DE174335E9A7050ADB6B6 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/w4sQ-71lZuSTSGMIL2mtW2hKCfg.roa Signing time: Wed 05 Nov 2025 23:29:03 +0000 ROA not before: Wed 05 Nov 2025 23:29:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212743 IP address blocks: 144.31.12.0/24 maxlen: 24 144.31.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:56:5a:33:a5:91:2d:e1:74:33:5e:9a:70:50:ad:b6:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Nov 5 23:29:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=c38b10fbbd6566e4934863082f69ad5b684a09f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:37:4b:a5:9c:57:33:bc:72:b8:17:00:f2:dd: 5f:f2:3b:af:fd:8b:a3:c2:7b:7c:9b:ca:f4:d5:e7: f8:ce:ee:2e:c2:ad:d1:30:c7:b0:a1:2d:4a:7e:ec: 1e:c5:9f:c5:c4:38:41:de:21:96:89:84:8c:6b:06: ae:c0:57:06:23:8d:ec:61:a5:6f:57:7f:46:ac:c8: 88:38:cc:70:89:9c:48:1b:70:8f:13:eb:05:f0:d2: 88:46:1a:ff:11:b7:ca:90:c5:1d:8e:df:a0:10:64: 00:ea:cd:46:dd:2c:02:22:69:49:c4:b0:4c:ad:86: 59:98:71:d7:fe:3b:74:68:7a:d9:54:3f:41:8a:db: 98:92:b6:64:62:33:a7:d6:26:16:93:c3:f2:4b:08: 46:fd:de:8b:f7:c9:3a:b8:bb:3a:af:6d:b5:ce:0f: 9c:56:71:a4:26:0e:d1:ca:74:e8:92:c6:ab:8b:f7: 56:cc:45:19:a3:b0:1d:e8:1f:8e:2e:0c:45:42:9c: ee:7d:3a:a2:d8:e9:56:53:78:74:9f:46:b1:c3:78: 27:86:aa:b8:9d:c0:8b:80:a2:75:ca:bd:12:a4:20: 08:84:bf:de:a1:ae:eb:e1:8a:0d:d7:8a:ea:8d:f7: 08:2b:e1:9b:79:ae:ad:5e:cd:03:b1:b2:60:86:4a: 85:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8B:10:FB:BD:65:66:E4:93:48:63:08:2F:69:AD:5B:68:4A:09:F8 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/w4sQ-71lZuSTSGMIL2mtW2hKCfg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.31.12.0/24 144.31.191.0/24 Signature Algorithm: sha256WithRSAEncryption a7:b5:6b:65:b0:13:9d:c3:3e:1b:2d:95:09:c9:e5:4e:31:01: b2:9f:27:65:51:5b:eb:a8:33:40:99:13:a3:20:2d:0a:d9:a8: 7d:8a:9b:da:4d:56:13:f7:ee:33:5c:fe:6c:f8:42:65:23:6a: fd:2f:b1:7e:4e:23:08:8a:6b:bd:20:42:09:77:bc:cf:7b:bd: fe:21:e2:e3:ef:85:54:c4:ef:39:0d:22:cf:8a:65:a3:a3:93: aa:d5:a2:50:47:d0:c5:77:fe:27:1d:f6:b7:5f:bf:dc:a6:07: 50:05:46:e0:19:ae:0f:aa:25:cc:a4:8a:d8:62:3b:94:eb:f9: a7:6e:69:bc:34:08:5e:7a:78:7c:f2:46:5f:c9:ae:31:2c:25: 07:43:57:b2:73:92:d6:cb:2f:a7:c7:27:7f:8c:cd:47:79:2c: 4a:55:eb:b8:ff:b9:72:3f:1f:75:c3:d2:f8:ae:33:a0:c3:1d: 09:f5:0f:25:57:15:e7:4e:ac:af:1e:d6:83:64:88:42:db:4b: 05:2b:71:bd:1b:88:e0:ae:16:28:19:9e:f1:df:0d:e7:d9:47: 4e:e8:92:25:8b:bc:43:ca:1c:5e:14:7e:e2:9c:8a:81:36:c0: e0:de:12:fe:0d:7f:9e:c6:23:b4:a6:c0:3d:f2:f5:5e:7e:da: c5:b0:c2:c5 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZpWWjOlkS3hdDNemnBQrba2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjUxMTA1MjMyOTAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMzhiMTBmYmJkNjU2NmU0OTM0ODYzMDgyZjY5YWQ1YjY4NGEwOWY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjzdLpZxXM7xyuBcA8t1f8juv/Yuj wnt8m8r01ef4zu4uwq3RMMewoS1KfuwexZ/FxDhB3iGWiYSMawauwFcGI43sYaVv V39GrMiIOMxwiZxIG3CPE+sF8NKIRhr/EbfKkMUdjt+gEGQA6s1G3SwCImlJxLBM rYZZmHHX/jt0aHrZVD9BituYkrZkYjOn1iYWk8PySwhG/d6L98k6uLs6r221zg+c VnGkJg7RynToksari/dWzEUZo7Ad6B+OLgxFQpzufTqi2OlWU3h0n0axw3gnhqq4 ncCLgKJ1yr0SpCAIhL/eoa7r4YoN14rqjfcIK+Gbea6tXs0DsbJghkqFBwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMOLEPu9ZWbkk0hjCC9prVtoSgn4MB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvdzRzUS03MWxadVNUU0dNSUwybXRXMmhLQ2ZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAkB8MAwQA kB+/MA0GCSqGSIb3DQEBCwUAA4IBAQCntWtlsBOdwz4bLZUJyeVOMQGynydlUVvr qDNAmROjIC0K2ah9ipvaTVYT9+4zXP5s+EJlI2r9L7F+TiMIimu9IEIJd7zPe73+ IeLj74VUxO85DSLPimWjo5Oq1aJQR9DFd/4nHfa3X7/cpgdQBUbgGa4PqiXMpIrY YjuU6/mnbmm8NAheenh88kZfya4xLCUHQ1eyc5LWyy+nxyd/jM1HeSxKVeu4/7ly Px91w9L4rjOgwx0J9Q8lVxXnTqyvHtaDZIhC20sFK3G9G4jgrhYoGZ7x3w3n2UdO 6JIli7xDyhxeFH7inIqBNsDg3hL+DX+exiO0psA98vVeftrFsMLF -----END CERTIFICATE-----Generated at Fri Dec 5 17:52:19 2025 by rpki-client