This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Vi5GQ2RSn0kSOJpBZs-2mAbvPFU.roa File: Vi5GQ2RSn0kSOJpBZs-2mAbvPFU.roa (raw, json) Hash identifier: dZ2KCxbBLTbYi83h0kOFmAkzygpeLJcYLflbPZmVCmU= Subject key identifier: 56:2E:46:43:64:52:9F:49:12:38:9A:41:66:CF:B6:98:06:EF:3C:55 Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Certificate serial: 019AC3F1D062BF2A1FE91E7CBB7722C3EBB1 Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Vi5GQ2RSn0kSOJpBZs-2mAbvPFU.roa Signing time: Thu 27 Nov 2025 06:13:15 +0000 ROA not before: Thu 27 Nov 2025 06:13:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 39238 IP address blocks: 89.23.114.0/24 maxlen: 24 2a12:a345::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.mft rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c3:f1:d0:62:bf:2a:1f:e9:1e:7c:bb:77:22:c3:eb:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Validity Not Before: Nov 27 06:13:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=562e464364529f4912389a4166cfb69806ef3c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e2:b4:04:19:ab:5b:4e:df:b2:b7:74:d2:5e: 80:c8:68:3e:c3:9a:67:39:dd:5e:10:a8:b0:70:44: 8f:fe:64:72:6f:48:82:a0:81:76:62:73:72:d6:af: 19:96:20:55:7c:31:a5:0e:ae:4a:ef:e3:40:2b:b2: 9e:39:21:f2:a9:2e:72:2c:6e:a1:d3:51:ea:70:18: da:d2:19:aa:08:5c:76:9a:82:b6:b5:e0:d7:42:a6: d5:73:9b:b9:12:09:d1:0b:91:5e:0c:36:1b:e6:5f: 08:45:88:99:23:92:e6:45:6b:d0:07:62:be:38:e4: 1b:92:20:6b:c7:c1:82:dc:fe:8e:1a:dd:48:8f:2f: f6:66:8a:26:9c:1a:7a:dc:7f:9a:53:fe:6f:fc:52: 1c:86:df:e1:15:e9:4e:e1:2f:a2:ae:40:2e:42:4b: 4e:c8:a3:06:27:ac:21:71:18:d3:cc:8e:d4:45:dc: 9f:68:1a:1c:58:a2:ea:88:77:83:15:a2:94:a7:6b: 91:f0:bf:c8:5b:43:05:ed:d3:8a:9c:de:84:eb:ee: 80:4e:3f:22:98:48:38:a1:db:d5:44:94:7d:c7:9f: 16:62:13:d7:60:c3:02:04:3e:c1:d5:05:45:eb:7a: 23:9f:33:be:07:44:bd:c1:4a:b1:ad:4d:4d:2c:36: 24:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:2E:46:43:64:52:9F:49:12:38:9A:41:66:CF:B6:98:06:EF:3C:55 X509v3 Authority Key Identifier: keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/Vi5GQ2RSn0kSOJpBZs-2mAbvPFU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.23.114.0/24 IPv6: 2a12:a345::/32 Signature Algorithm: sha256WithRSAEncryption 7f:07:69:be:f6:f8:e8:d8:92:74:08:7d:e7:51:ea:d9:f8:1d: 57:3a:e4:db:0f:dc:a0:e8:c3:a5:0c:78:02:67:24:4a:22:87: f2:03:97:7e:ff:03:e2:0c:97:7d:d9:47:f4:f0:d2:11:2c:33: 86:26:97:44:39:7c:a2:1d:ce:27:b1:2a:22:5c:31:88:f6:b4: b4:07:37:2f:5e:e7:2b:b7:4f:b4:2e:11:68:ff:6e:de:4e:f8: 8a:43:5d:f9:fe:aa:fd:2e:6a:09:80:06:8c:03:a7:d9:cc:4e: c2:37:da:c6:1d:b2:e3:69:2b:62:84:76:5c:08:60:b6:47:41: e2:df:fc:12:df:ce:76:58:80:2f:de:96:88:68:01:25:d5:a7: 08:e8:b5:0a:bb:83:52:99:67:6d:ee:2f:92:18:be:a0:21:08: 15:a7:b6:b1:d3:44:75:4f:15:6d:2a:fd:3a:77:07:72:43:39: 05:dc:ec:12:13:1e:26:7c:e6:e3:55:d4:08:de:e0:7b:fd:dd: 18:c3:15:a7:06:70:02:92:19:79:f1:99:b1:e7:74:bd:96:0b: 39:66:0b:70:95:40:8f:88:f6:36:0a:f3:03:23:b3:96:43:2f: 95:00:fe:8d:d1:8f:3c:56:b6:47:e7:d7:2c:ea:f6:37:32:20: 0f:2c:b5:33 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZrD8dBivyof6R58u3ciw+uxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl NWVjZjIwHhcNMjUxMTI3MDYxMzE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NjJlNDY0MzY0NTI5ZjQ5MTIzODlhNDE2NmNmYjY5ODA2ZWYzYzU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAseK0BBmrW07fsrd00l6AyGg+w5pn Od1eEKiwcESP/mRyb0iCoIF2YnNy1q8ZliBVfDGlDq5K7+NAK7KeOSHyqS5yLG6h 01HqcBja0hmqCFx2moK2teDXQqbVc5u5EgnRC5FeDDYb5l8IRYiZI5LmRWvQB2K+ OOQbkiBrx8GC3P6OGt1Ijy/2ZoomnBp63H+aU/5v/FIcht/hFelO4S+irkAuQktO yKMGJ6whcRjTzI7URdyfaBocWKLqiHeDFaKUp2uR8L/IW0MF7dOKnN6E6+6ATj8i mEg4odvVRJR9x58WYhPXYMMCBD7B1QVF63ojnzO+B0S9wUqxrU1NLDYkkQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFFYuRkNkUp9JEjiaQWbPtpgG7zxVMB8GA1UdIwQY MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt MTcxYzM2N2JlNzgyLzEvVmk1R1EyUlNuMGtTT0pwQlpzLTJtQWJ2UEZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAWRdyMA0E AgACMAcDBQAqEqNFMA0GCSqGSIb3DQEBCwUAA4IBAQB/B2m+9vjo2JJ0CH3nUerZ +B1XOuTbD9yg6MOlDHgCZyRKIofyA5d+/wPiDJd92Uf08NIRLDOGJpdEOXyiHc4n sSoiXDGI9rS0BzcvXucrt0+0LhFo/27eTviKQ135/qr9LmoJgAaMA6fZzE7CN9rG HbLjaStihHZcCGC2R0Hi3/wS3852WIAv3paIaAEl1acI6LUKu4NSmWdt7i+SGL6g IQgVp7ax00R1TxVtKv06dwdyQzkF3OwSEx4mfObjVdQI3uB7/d0YwxWnBnACkhl5 8Zmx53S9lgs5ZgtwlUCPiPY2CvMDI7OWQy+VAP6N0Y88VrZH59cs6vY3MiAPLLUz -----END CERTIFICATE-----Generated at Fri Dec 5 08:36:47 2025 by rpki-client