This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qhHXfBbrY_LVZXwMAytB9i-kzHA.roa File: qhHXfBbrY_LVZXwMAytB9i-kzHA.roa (raw, json) Hash identifier: 8JCaB9Scu/rCrDiKguOGKtOTCtlt/PkM/LKbWKXSlDo= Subject key identifier: AA:11:D7:7C:16:EB:63:F2:D5:65:7C:0C:03:2B:41:F6:2F:A4:CC:70 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B665821709E09B3E392ED8C6A9D36AB12 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qhHXfBbrY_LVZXwMAytB9i-kzHA.roa Signing time: Sun 28 Dec 2025 19:03:30 +0000 ROA not before: Sun 28 Dec 2025 19:03:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 50053 IP address blocks: 45.90.236.0/24 maxlen: 24 185.121.13.0/24 maxlen: 24 185.121.14.0/24 maxlen: 24 185.196.41.0/24 maxlen: 24 185.202.207.0/24 maxlen: 24 185.218.17.0/24 maxlen: 24 185.218.19.0/24 maxlen: 24 185.232.204.0/24 maxlen: 24 185.236.24.0/24 maxlen: 24 185.239.141.0/24 maxlen: 24 185.239.142.0/24 maxlen: 24 185.250.181.0/24 maxlen: 24 185.254.158.0/24 maxlen: 24 193.17.182.0/24 maxlen: 24 194.48.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 04:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:66:58:21:70:9e:09:b3:e3:92:ed:8c:6a:9d:36:ab:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Dec 28 19:03:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=aa11d77c16eb63f2d5657c0c032b41f62fa4cc70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:0b:ec:9e:68:69:08:46:4d:6b:7c:c2:20:1e: 6c:71:d9:18:43:b9:b0:2c:b0:00:86:f8:67:64:69: 19:8c:f7:6b:3e:e8:3f:c1:90:c2:f7:8e:af:d4:49: 50:d6:76:94:b1:d4:d3:e7:1c:d8:d7:e9:24:38:9d: 73:11:f5:73:b8:82:88:23:a6:bb:45:19:e0:c3:ad: 2b:0f:93:e9:ce:63:33:08:4b:e2:36:12:28:22:4b: 04:81:ae:bf:03:e9:94:ba:0b:7d:7d:24:e5:44:21: a7:7f:b9:c7:ec:9f:d0:fb:26:c2:ff:ee:e5:cd:99: 96:a8:af:0f:37:06:2a:ab:37:e4:1d:36:7c:ad:8b: f6:c3:03:4c:ce:dc:77:0a:e2:99:1c:34:db:cc:9c: 41:61:6d:75:b8:3b:eb:e3:10:ff:d8:be:b0:99:10: 81:7a:16:e4:77:8d:49:a5:49:90:e9:1f:32:04:b4: 8d:60:b7:9f:73:14:7d:8c:e6:20:ce:17:de:61:33: f0:d4:c8:20:49:90:7f:47:3d:a2:ad:57:41:f1:bb: 52:9d:65:9f:11:6b:70:55:e0:9d:32:fc:eb:b2:d9: c6:8c:a8:e0:87:d3:24:70:9a:18:48:0e:55:89:3d: 47:bd:bc:3b:7d:8f:03:6a:75:ef:78:fa:e8:f6:c1: f5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:11:D7:7C:16:EB:63:F2:D5:65:7C:0C:03:2B:41:F6:2F:A4:CC:70 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qhHXfBbrY_LVZXwMAytB9i-kzHA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.90.236.0/24 185.121.13.0-185.121.14.255 185.196.41.0/24 185.202.207.0/24 185.218.17.0/24 185.218.19.0/24 185.232.204.0/24 185.236.24.0/24 185.239.141.0-185.239.142.255 185.250.181.0/24 185.254.158.0/24 193.17.182.0/24 194.48.140.0/23 Signature Algorithm: sha256WithRSAEncryption 37:02:7f:49:33:27:31:22:da:14:63:e4:58:1d:38:b1:7c:a5: 9e:f4:69:e0:aa:77:33:50:1a:a1:c1:a2:35:67:e9:1b:73:95: 39:8d:59:a6:2b:ae:fb:bf:c8:20:a6:d9:0d:64:ab:e4:d2:92: c9:ee:65:47:e6:c5:78:42:70:6a:a9:07:2c:a4:95:fa:46:34: 9e:d2:62:42:22:b7:41:a7:60:6d:29:2b:c6:46:13:b8:84:24: 8f:e4:cc:3d:5d:56:06:fc:29:01:31:6d:50:37:a9:3e:7d:a0: a3:29:4b:51:81:4b:67:0e:49:6c:5e:8b:7b:70:3e:93:86:8f: 8e:11:11:63:e8:7d:3a:6e:e3:ce:82:1b:2d:5c:87:1c:0f:e7: 76:48:8b:70:29:71:21:1d:8c:d7:4a:7b:2b:f0:62:b8:3d:70: dd:da:79:f6:55:77:2a:3b:70:7b:d5:ad:e9:29:df:29:c5:33: 14:82:21:13:90:94:b6:36:cb:1c:87:af:eb:db:ad:f7:d1:0a: b2:5a:5e:da:97:11:80:0a:ff:a0:2d:d7:78:8e:fd:e5:0d:23: a4:81:2e:ee:1b:5d:7a:87:02:e2:39:dd:80:ae:d1:1c:30:02: 7f:86:02:d7:33:b1:5b:05:2c:b9:03:4e:fe:3f:18:14:ae:ef: 05:08:e7:ef -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgISAZtmWCFwngmz45LtjGqdNqsSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjUxMjI4MTkwMzMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTExZDc3YzE2ZWI2M2YyZDU2NTdjMGMwMzJiNDFmNjJmYTRjYzcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkgvsnmhpCEZNa3zCIB5scdkYQ7mw LLAAhvhnZGkZjPdrPug/wZDC946v1ElQ1naUsdTT5xzY1+kkOJ1zEfVzuIKII6a7 RRngw60rD5PpzmMzCEviNhIoIksEga6/A+mUugt9fSTlRCGnf7nH7J/Q+ybC/+7l zZmWqK8PNwYqqzfkHTZ8rYv2wwNMztx3CuKZHDTbzJxBYW11uDvr4xD/2L6wmRCB ehbkd41JpUmQ6R8yBLSNYLefcxR9jOYgzhfeYTPw1MggSZB/Rz2irVdB8btSnWWf EWtwVeCdMvzrstnGjKjgh9MkcJoYSA5ViT1Hvbw7fY8DanXvePro9sH1LwIDAQAB o4ICYTCCAl0wHQYDVR0OBBYEFKoR13wW62Py1WV8DAMrQfYvpMxwMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvcWhIWGZCYnJZX0xWWlh3TUF5dEI5aS1rekhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHcGCCsGAQUFBwEHAQH/BGgwZjBkBAIAATBeAwQALVrsMAwD BAC5eQ0DBAC5eQ4DBAC5xCkDBAC5ys8DBAC52hEDBAC52hMDBAC56MwDBAC57Bgw DAMEALnvjQMEALnvjgMEALn6tQMEALn+ngMEAMERtgMEAcIwjDANBgkqhkiG9w0B AQsFAAOCAQEANwJ/STMnMSLaFGPkWB04sXylnvRp4Kp3M1AaocGiNWfpG3OVOY1Z piuu+7/IIKbZDWSr5NKSye5lR+bFeEJwaqkHLKSV+kY0ntJiQiK3QadgbSkrxkYT uIQkj+TMPV1WBvwpATFtUDepPn2goylLUYFLZw5JbF6Le3A+k4aPjhERY+h9Om7j zoIbLVyHHA/ndkiLcClxIR2M10p7K/BiuD1w3dp59lV3Kjtwe9Wt6SnfKcUzFIIh E5CUtjbLHIev69ut99EKslpe2pcRgAr/oC3XeI795Q0jpIEu7htdeocC4jndgK7R HDACf4YC1zOxWwUsuQNO/j8YFK7vBQjn7w== -----END CERTIFICATE-----Generated at Mon Dec 29 07:55:35 2025 by rpki-client