This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/rZeua0JpgspEzA0ZdwUTq0O1Bcg.roa File: rZeua0JpgspEzA0ZdwUTq0O1Bcg.roa (raw, json) Hash identifier: PzfhSIF2+5kS2/v7NVciQ/Z0mLX/ZqdXk7JgE9AnGhg= Subject key identifier: AD:97:AE:6B:42:69:82:CA:44:CC:0D:19:77:05:13:AB:43:B5:05:C8 Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d Certificate serial: 019A7811673E189C9F8799078780305195FF Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/rZeua0JpgspEzA0ZdwUTq0O1Bcg.roa Signing time: Wed 12 Nov 2025 12:36:37 +0000 ROA not before: Wed 12 Nov 2025 12:36:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 194.153.158.64/26 maxlen: 26 2001:7f8:a9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.mft rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:78:11:67:3e:18:9c:9f:87:99:07:87:80:30:51:95:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d Validity Not Before: Nov 12 12:36:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ad97ae6b426982ca44cc0d19770513ab43b505c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b4:95:80:a5:4b:dc:db:57:a6:c0:65:d9:30: 0c:88:fc:71:83:8f:f2:c6:b7:f9:8b:f7:8c:b3:07: bc:38:65:ec:50:e6:1c:1d:ac:e8:d5:d7:bc:32:ec: 64:c3:5f:de:7f:b0:28:3a:32:13:c1:c2:fa:e1:00: dc:31:3f:84:c3:f5:3c:06:7d:4f:11:4c:7b:88:50: 0c:e2:a8:de:bb:60:3e:19:a0:39:a2:44:e1:25:6e: 95:f5:05:cf:0b:e1:03:a0:56:af:2f:9e:18:9b:1f: 8e:7d:f7:08:f1:e3:94:0c:c3:f3:c4:0d:ce:cc:3e: 6a:77:0a:9c:c0:0e:9b:bd:32:b9:c1:6b:79:2d:68: 61:ff:2f:ed:81:8a:9c:09:c9:a5:bf:59:63:ca:75: 72:a2:d1:1b:52:e6:25:58:60:51:d5:da:74:c2:bc: ec:55:61:68:1e:a3:f1:1b:e8:59:90:ff:66:df:76: 37:56:37:d1:e9:a0:58:98:c2:d7:4e:24:64:02:55: 77:18:63:a5:6d:f7:17:45:51:2f:5c:56:a3:57:de: 43:b7:28:3a:1b:96:e9:75:ee:83:d1:62:d4:84:63: 5d:08:25:09:25:71:36:09:4d:c6:8a:a3:9b:94:52: 44:e5:dd:35:66:b8:96:b0:b0:7f:bd:75:c7:79:83: 25:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:97:AE:6B:42:69:82:CA:44:CC:0D:19:77:05:13:AB:43:B5:05:C8 X509v3 Authority Key Identifier: keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/rZeua0JpgspEzA0ZdwUTq0O1Bcg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.153.158.64/26 IPv6: 2001:7f8:a9::/48 Signature Algorithm: sha256WithRSAEncryption 3e:0d:6a:1d:3e:2f:26:1d:a0:42:d8:62:2c:95:da:d2:36:6d: c6:0a:9e:19:c0:4e:f7:14:b5:07:ce:49:03:6e:56:6f:dc:2a: 68:27:12:bc:70:64:39:2c:a8:d4:f0:84:cf:c8:79:de:d1:41: 2c:30:f9:73:cb:6d:6d:5d:a5:ba:80:6f:74:ac:c0:f2:a5:16: 40:15:85:a0:ca:b6:d3:18:0d:87:c1:e8:05:ba:d9:0b:c0:46: ba:45:db:d2:9d:32:56:47:15:d3:03:0d:66:aa:c6:29:d9:18: c7:f6:aa:42:6a:e6:37:8c:08:a8:1b:9f:83:ae:fa:12:0b:bb: b4:51:61:f9:53:dc:30:51:58:8e:45:85:33:80:cc:92:0b:24: 6c:b8:48:56:9e:2d:f2:3b:7e:e6:5b:02:5d:2a:33:cd:76:fb: 4b:8c:51:90:6d:4c:a6:76:26:be:32:b1:39:db:01:b1:ae:2a: 61:80:45:43:ac:0f:35:fa:70:fc:b9:56:e7:47:e3:1d:22:7f: 94:e8:5e:5c:04:2f:63:08:bd:ad:88:e8:1d:da:01:90:f2:7e: f4:76:5f:df:e1:40:bb:a0:3b:bb:97:74:d7:25:9d:e7:7e:d1: 61:2e:e3:46:48:94:09:cc:c3:e1:53:56:92:f7:98:32:6c:d6: ca:38:ed:bc -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZp4EWc+GJyfh5kHh4AwUZX/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGViMjA0ZjM1ODAwNDc4ODIyNGUyZmIxOGU0ZDVlNzRi ZWJmOGQwHhcNMjUxMTEyMTIzNjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZDk3YWU2YjQyNjk4MmNhNDRjYzBkMTk3NzA1MTNhYjQzYjUwNWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7SVgKVL3NtXpsBl2TAMiPxxg4/y xrf5i/eMswe8OGXsUOYcHazo1de8Muxkw1/ef7AoOjITwcL64QDcMT+Ew/U8Bn1P EUx7iFAM4qjeu2A+GaA5okThJW6V9QXPC+EDoFavL54Ymx+OffcI8eOUDMPzxA3O zD5qdwqcwA6bvTK5wWt5LWhh/y/tgYqcCcmlv1ljynVyotEbUuYlWGBR1dp0wrzs VWFoHqPxG+hZkP9m33Y3VjfR6aBYmMLXTiRkAlV3GGOlbfcXRVEvXFajV95Dtyg6 G5bpde6D0WLUhGNdCCUJJXE2CU3GiqOblFJE5d01ZriWsLB/vXXHeYMldwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFK2XrmtCaYLKRMwNGXcFE6tDtQXIMB8GA1UdIwQY MBaAFPBOsgTzWABHiCJOL7GOTV50vr+NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEU2eUJQTllBRWVJSWs0dnNZNU5YblMtdjQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS85YWI0MmEtZGY5Mi00ZTQyLTllMzMt NWM1ODkyYWZhNDg3LzEvclpldWEwSnBnc3BFekEwWmR3VVRxME8xQmNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS85YWI0MmEtZGY5Mi00ZTQyLTllMzMtNWM1ODkyYWZhNDg3 LzEvOEU2eUJQTllBRWVJSWs0dnNZNU5YblMtdjQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDANBAIAATAHAwUGwpmeQDAP BAIAAjAJAwcAIAEH+ACpMA0GCSqGSIb3DQEBCwUAA4IBAQA+DWodPi8mHaBC2GIs ldrSNm3GCp4ZwE73FLUHzkkDblZv3CpoJxK8cGQ5LKjU8ITPyHne0UEsMPlzy21t XaW6gG90rMDypRZAFYWgyrbTGA2HwegFutkLwEa6RdvSnTJWRxXTAw1mqsYp2RjH 9qpCauY3jAioG5+DrvoSC7u0UWH5U9wwUViORYUzgMySCyRsuEhWni3yO37mWwJd KjPNdvtLjFGQbUymdia+MrE52wGxriphgEVDrA81+nD8uVbnR+MdIn+U6F5cBC9j CL2tiOgd2gGQ8n70dl/f4UC7oDu7l3TXJZ3nftFhLuNGSJQJzMPhU1aS95gybNbK OO28 -----END CERTIFICATE-----Generated at Sat Nov 22 21:34:43 2025 by rpki-client