This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/14-JdTDQixyApITNqhdKwPqjoLs.roa File: 14-JdTDQixyApITNqhdKwPqjoLs.roa (raw, json) Hash identifier: jFtHzV+d5bMii6p0qHWnhKbX/FNP5Vm2yJo2XEy8kbg= Subject key identifier: D7:8F:89:75:30:D0:8B:1C:80:A4:84:CD:AA:17:4A:C0:FA:A3:A0:BB Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4 Certificate serial: 019AE2F12EFF05A21D3D0F1EA3FC31E031EA Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/14-JdTDQixyApITNqhdKwPqjoLs.roa Signing time: Wed 03 Dec 2025 06:40:48 +0000 ROA not before: Wed 03 Dec 2025 06:40:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 84.55.8.0/22 maxlen: 24 95.173.49.0/24 maxlen: 24 95.173.54.0/24 maxlen: 24 95.173.57.0/24 maxlen: 24 95.173.58.0/24 maxlen: 24 95.173.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.mft rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 00:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e2:f1:2e:ff:05:a2:1d:3d:0f:1e:a3:fc:31:e0:31:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4 Validity Not Before: Dec 3 06:40:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=d78f897530d08b1c80a484cdaa174ac0faa3a0bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5d:d7:d1:6c:ba:0f:fb:87:d6:ad:8a:80:66: d6:89:d5:8a:7b:d9:ab:61:13:05:4a:a6:ec:e4:07: c4:c6:ad:0f:ba:0f:5f:bc:ce:b8:6c:cd:56:40:15: 9c:6f:40:c6:01:72:b1:20:40:5a:3b:ed:52:0d:a9: 68:18:65:dd:0a:a8:59:be:a2:b0:16:95:23:b9:8d: 78:78:02:e7:e9:aa:3e:31:25:ee:6c:24:94:08:2d: e6:f4:cc:46:4c:f2:22:69:e4:77:2a:d6:68:47:81: f9:f1:79:c7:31:aa:b6:f6:98:73:7f:14:69:16:4d: 23:c3:77:94:98:84:44:3d:73:09:1d:96:5a:ef:c7: eb:a1:fe:fa:77:32:26:0f:94:ff:3d:97:9b:e6:43: d4:3f:1b:38:ee:d5:8d:a6:90:3a:93:08:01:b8:91: f8:93:23:bf:56:0d:b3:4b:c1:14:d6:99:3b:ee:07: fa:d1:5e:34:80:87:5b:4a:3b:0c:d8:67:2a:17:34: c7:8a:69:92:c0:52:e4:f1:10:5b:c8:60:ff:d4:87: c0:c1:8f:64:63:d4:c9:5b:c2:ce:2f:bc:09:f4:5c: fe:bf:bf:bd:ce:f3:36:30:c3:52:53:f0:2a:b7:1e: d9:4d:98:03:ef:f3:b8:59:fe:d5:2c:2d:7b:bc:3c: 13:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8F:89:75:30:D0:8B:1C:80:A4:84:CD:AA:17:4A:C0:FA:A3:A0:BB X509v3 Authority Key Identifier: keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/14-JdTDQixyApITNqhdKwPqjoLs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.55.8.0/22 95.173.49.0/24 95.173.54.0/24 95.173.57.0-95.173.58.255 95.173.60.0/24 Signature Algorithm: sha256WithRSAEncryption 01:cc:66:d4:66:f4:d5:dd:16:ee:a9:74:23:31:e8:ae:c2:9a: 22:34:9c:cb:93:01:53:09:26:89:09:40:f7:8f:2b:1a:91:6b: 8d:1f:dd:7f:62:77:e5:25:0f:30:84:5d:38:17:91:0e:eb:fb: fe:50:68:88:b0:0f:c4:90:61:ac:62:ac:44:21:60:8d:c8:f6: a8:6c:56:9f:95:82:f5:c3:a9:17:a7:f5:d6:4f:c1:c2:2d:14: 25:58:6f:c7:ff:64:15:bc:37:ae:87:3d:b1:ec:61:79:4a:0f: 6c:84:fa:87:4e:d1:38:9e:2c:fd:de:68:44:85:35:4e:cc:30: 3f:5b:6a:1c:a3:2f:4d:c4:9a:87:56:0d:40:b4:db:80:8e:be: ab:05:68:4f:51:89:34:b1:38:f4:e8:5c:32:03:39:c5:53:1f: 1e:36:92:e9:ac:df:1a:86:2c:67:ed:29:be:ca:33:18:97:d2: 10:e7:21:6d:55:dc:79:00:4c:5b:b9:09:ff:ff:2c:45:9b:53: b2:50:79:e7:a6:16:d1:27:08:e3:6a:55:c4:5d:ae:93:ac:16: 71:97:4e:f5:8b:d7:9a:1f:47:62:7a:85:58:66:e6:57:af:a1: 21:43:aa:f2:0d:39:93:d0:d0:65:54:89:1d:03:32:c8:aa:1d: a8:9f:77:b0 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZri8S7/BaIdPQ8eo/wx4DHqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjYxNzU4Y2UzMzA2MjI0NzBhMzlhZThkNmVmNGEyMDQ0 ZjgzYzQwHhcNMjUxMjAzMDY0MDQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzhmODk3NTMwZDA4YjFjODBhNDg0Y2RhYTE3NGFjMGZhYTNhMGJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvF3X0Wy6D/uH1q2KgGbWidWKe9mr YRMFSqbs5AfExq0Pug9fvM64bM1WQBWcb0DGAXKxIEBaO+1SDaloGGXdCqhZvqKw FpUjuY14eALn6ao+MSXubCSUCC3m9MxGTPIiaeR3KtZoR4H58XnHMaq29phzfxRp Fk0jw3eUmIREPXMJHZZa78frof76dzImD5T/PZeb5kPUPxs47tWNppA6kwgBuJH4 kyO/Vg2zS8EU1pk77gf60V40gIdbSjsM2GcqFzTHimmSwFLk8RBbyGD/1IfAwY9k Y9TJW8LOL7wJ9Fz+v7+9zvM2MMNSU/Aqtx7ZTZgD7/O4Wf7VLC17vDwTGQIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFNePiXUw0IscgKSEzaoXSsD6o6C7MB8GA1UdIwQY MBaAFGBmF1jOMwYiRwo5ro1u9KIET4PEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2Ut MWY4NzQ2OTQ1NDgzLzEvMTQtSmRURFFpeHlBcElUTnFoZEt3UHFqb0xzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2UtMWY4NzQ2OTQ1NDgz LzEvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQCVDcIAwQA X60xAwQAX602MAwDBABfrTkDBABfrToDBABfrTwwDQYJKoZIhvcNAQELBQADggEB AAHMZtRm9NXdFu6pdCMx6K7CmiI0nMuTAVMJJokJQPePKxqRa40f3X9id+UlDzCE XTgXkQ7r+/5QaIiwD8SQYaxirEQhYI3I9qhsVp+VgvXDqRen9dZPwcItFCVYb8f/ ZBW8N66HPbHsYXlKD2yE+odO0TieLP3eaESFNU7MMD9bahyjL03EmodWDUC024CO vqsFaE9RiTSxOPToXDIDOcVTHx42kums3xqGLGftKb7KMxiX0hDnIW1V3HkATFu5 Cf//LEWbU7JQeeemFtEnCONqVcRdrpOsFnGXTvWL15ofR2J6hVhm5levoSFDqvIN OZPQ0GVUiR0DMsiqHaifd7A= -----END CERTIFICATE-----Generated at Wed Dec 10 06:40:19 2025 by rpki-client