This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/pKvjwRUlHi2ipoRbHuJZKjovPsA.roa File: pKvjwRUlHi2ipoRbHuJZKjovPsA.roa (raw, json) Hash identifier: tADGhzzcq52xmuNgy60XvYvU5fuD40EAiCENEdVP0Dc= Subject key identifier: A4:AB:E3:C1:15:25:1E:2D:A2:A6:84:5B:1E:E2:59:2A:3A:2F:3E:C0 Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10 Certificate serial: 019AE832690CFEF29B2EAA9276525F2F1509 Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/pKvjwRUlHi2ipoRbHuJZKjovPsA.roa Signing time: Thu 04 Dec 2025 07:10:09 +0000 ROA not before: Thu 04 Dec 2025 07:10:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 77.242.146.0/23 maxlen: 24 88.151.56.0/23 maxlen: 24 88.151.61.0/24 maxlen: 24 88.209.198.0/24 maxlen: 24 88.209.201.0/24 maxlen: 24 88.209.227.0/24 maxlen: 24 88.209.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 10:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e8:32:69:0c:fe:f2:9b:2e:aa:92:76:52:5f:2f:15:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10 Validity Not Before: Dec 4 07:10:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=a4abe3c115251e2da2a6845b1ee2592a3a2f3ec0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ea:50:f9:5a:13:73:5e:0f:f2:a9:f7:c5:7a: c8:14:4b:39:46:6b:90:25:29:b6:d8:6a:54:7c:0b: c3:dd:65:09:b4:0e:17:9f:f0:9f:63:26:d2:9b:d2: 79:cf:f6:e7:34:3a:83:af:b5:1e:8e:bf:62:47:6e: cd:47:9c:e8:ac:1a:6b:3a:cf:7c:ee:80:7e:24:fa: 04:a8:ad:67:b4:75:76:a7:24:3f:62:15:25:c2:1d: 46:67:93:4b:a3:25:5c:37:8f:df:77:2a:7f:06:6a: 4c:4a:ec:f3:06:4a:03:3d:aa:b3:6e:76:84:7d:26: d9:eb:82:9d:c7:72:49:37:d0:d0:3e:cd:47:ea:fd: 3a:f3:7d:1c:fb:be:6f:4c:b3:6b:7b:d9:44:ee:21: 0f:c5:e7:a2:4c:03:e2:16:ae:ee:10:54:29:aa:ac: ca:ab:78:cf:1a:99:45:0d:3b:0c:de:de:2c:60:d1: ff:4d:1a:b4:f6:6e:9b:6b:29:f7:bc:ec:0c:d3:3f: f7:bd:55:f3:87:40:66:8a:8e:dd:1c:7a:37:25:b9: d1:59:82:e4:b0:1d:9d:77:d8:4f:27:85:6d:3f:18: 74:2a:2d:5a:53:b0:35:48:35:41:71:8f:bb:2e:6b: 08:59:da:6d:c7:26:7c:cf:9b:de:c8:54:17:70:76: e0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:AB:E3:C1:15:25:1E:2D:A2:A6:84:5B:1E:E2:59:2A:3A:2F:3E:C0 X509v3 Authority Key Identifier: keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/pKvjwRUlHi2ipoRbHuJZKjovPsA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.242.146.0/23 88.151.56.0/23 88.151.61.0/24 88.209.198.0/24 88.209.201.0/24 88.209.227.0/24 88.209.232.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:d6:80:3a:83:52:7a:e6:bc:b4:ea:02:25:0f:65:3a:97:ae: 31:2b:91:5d:d5:23:cb:86:c6:de:76:9d:18:64:48:77:79:73: a4:52:e2:7d:fa:2e:c8:37:3a:97:d1:59:1a:38:ed:4b:bb:94: 94:74:74:2d:2a:cf:c6:90:ca:30:a4:26:0e:5a:47:4f:18:9e: 42:80:cd:3a:7d:19:5d:e9:f8:7d:4f:0f:81:27:52:3b:3c:33: 66:c6:f8:bb:f9:a9:4b:5e:d3:16:ad:aa:16:23:ea:e0:0a:53: 1e:49:55:0a:44:fa:b7:00:35:33:57:41:33:ef:95:9a:4e:c9: 90:51:26:7c:25:72:cc:5e:8b:91:6a:40:cd:b4:c4:c6:d1:97: 85:a6:af:a4:37:4e:24:b5:ba:f5:f9:ad:7f:7b:86:0b:4e:cb: ce:4d:4b:d0:12:3b:c2:35:f5:34:90:d0:de:65:93:40:6f:d9: d3:d4:02:a1:a8:e0:67:bd:52:fe:a5:82:1c:43:1f:03:5d:de: 59:30:1b:3f:ba:66:08:1a:95:c5:b1:64:b5:60:cf:2f:14:4b: aa:d3:63:b0:8c:94:2c:f3:12:b2:3b:28:c9:e4:d0:5c:7f:e8: 9e:c6:10:1d:73:8b:d5:3c:8c:36:25:db:89:91:9e:a7:96:bf: e4:09:f6:a3 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZroMmkM/vKbLqqSdlJfLxUJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx MWRhMTAwHhcNMjUxMjA0MDcxMDA5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNGFiZTNjMTE1MjUxZTJkYTJhNjg0NWIxZWUyNTkyYTNhMmYzZWMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtepQ+VoTc14P8qn3xXrIFEs5RmuQ JSm22GpUfAvD3WUJtA4Xn/CfYybSm9J5z/bnNDqDr7Uejr9iR27NR5zorBprOs98 7oB+JPoEqK1ntHV2pyQ/YhUlwh1GZ5NLoyVcN4/fdyp/BmpMSuzzBkoDPaqzbnaE fSbZ64Kdx3JJN9DQPs1H6v06830c+75vTLNre9lE7iEPxeeiTAPiFq7uEFQpqqzK q3jPGplFDTsM3t4sYNH/TRq09m6bayn3vOwM0z/3vVXzh0Bmio7dHHo3JbnRWYLk sB2dd9hPJ4VtPxh0Ki1aU7A1SDVBcY+7LmsIWdptxyZ8z5veyFQXcHbgewIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFKSr48EVJR4toqaEWx7iWSo6Lz7AMB8GA1UdIwQY MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt N2U0ZDZmNmY2ZTY2LzEvcEt2andSVWxIaTJpcG9SYkh1SlpLam92UHNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2 LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBTfKSAwQB WJc4AwQAWJc9AwQAWNHGAwQAWNHJAwQAWNHjAwQCWNHoMA0GCSqGSIb3DQEBCwUA A4IBAQAd1oA6g1J65ry06gIlD2U6l64xK5Fd1SPLhsbedp0YZEh3eXOkUuJ9+i7I NzqX0VkaOO1Lu5SUdHQtKs/GkMowpCYOWkdPGJ5CgM06fRld6fh9Tw+BJ1I7PDNm xvi7+alLXtMWraoWI+rgClMeSVUKRPq3ADUzV0Ez75WaTsmQUSZ8JXLMXouRakDN tMTG0ZeFpq+kN04ktbr1+a1/e4YLTsvOTUvQEjvCNfU0kNDeZZNAb9nT1AKhqOBn vVL+pYIcQx8DXd5ZMBs/umYIGpXFsWS1YM8vFEuq02OwjJQs8xKyOyjJ5NBcf+ie xhAdc4vVPIw2JduJkZ6nlr/kCfaj -----END CERTIFICATE-----Generated at Fri Dec 5 14:07:41 2025 by rpki-client