This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/Dm5YScd3hN-X30vyWwpd9nEvmc4.roa File: Dm5YScd3hN-X30vyWwpd9nEvmc4.roa (raw, json) Hash identifier: vtcKOSOsC15effmA9O/KkJoHDTDi9oZ8YT35or202RY= Subject key identifier: 0E:6E:58:49:C7:77:84:DF:97:DF:4B:F2:5B:0A:5D:F6:71:2F:99:CE Certificate issuer: /CN=1cfb6df93375a06c5682c057c0fd2a7306218a54 Certificate serial: 019ADE56E56F59913993C5394FFC11FED3A2 Authority key identifier: 1C:FB:6D:F9:33:75:A0:6C:56:82:C0:57:C0:FD:2A:73:06:21:8A:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HPtt-TN1oGxWgsBXwP0qcwYhilQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/Dm5YScd3hN-X30vyWwpd9nEvmc4.roa Signing time: Tue 02 Dec 2025 09:13:48 +0000 ROA not before: Tue 02 Dec 2025 09:13:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 62138 IP address blocks: 185.45.20.0/22 maxlen: 22 2a01:79a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/HPtt-TN1oGxWgsBXwP0qcwYhilQ.crl rsync://rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/HPtt-TN1oGxWgsBXwP0qcwYhilQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HPtt-TN1oGxWgsBXwP0qcwYhilQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:de:56:e5:6f:59:91:39:93:c5:39:4f:fc:11:fe:d3:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cfb6df93375a06c5682c057c0fd2a7306218a54 Validity Not Before: Dec 2 09:13:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=0e6e5849c77784df97df4bf25b0a5df6712f99ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f1:e6:b8:0b:24:30:0b:1e:e5:75:3f:d2:4c: 68:80:41:a2:a5:a0:b9:20:10:08:59:35:50:27:2f: c7:0e:6f:5b:7c:85:db:57:2d:2b:7e:0d:ed:4f:4b: 08:37:96:79:c3:d1:a6:fb:4d:0f:d6:23:c3:7e:05: f8:4d:c4:de:2d:da:9d:dd:98:44:6b:12:40:3b:f7: 1a:39:5c:d5:35:81:5b:73:30:f9:13:94:b8:10:2e: 7c:e9:28:0a:ff:aa:a7:c5:05:98:38:01:d8:d7:17: a1:11:f2:85:0a:fc:62:2f:d1:eb:b1:87:6e:a6:2c: 31:1b:12:6f:b7:de:6b:7d:5c:13:a6:e0:89:03:bb: 88:8b:23:6e:d2:d1:8c:d1:de:44:f3:d4:98:3a:9d: b7:33:9d:8e:47:33:df:fd:4d:ab:12:eb:92:b4:4a: 9b:87:02:7b:69:89:f2:e1:49:1e:ea:d8:9f:a9:cf: 43:30:40:9b:f6:2b:46:22:bc:bf:9b:80:bb:7e:35: 30:11:37:35:64:70:41:6d:0c:5d:05:1d:31:ed:f4: ef:3e:83:73:5c:b8:76:ec:c8:41:9d:21:87:71:42: 81:aa:eb:e1:dc:2d:c7:a2:a7:8c:01:cb:7f:92:93: 0c:dd:2f:7d:8f:dc:b7:4f:a6:31:fe:fb:c5:e9:c6: 4e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6E:58:49:C7:77:84:DF:97:DF:4B:F2:5B:0A:5D:F6:71:2F:99:CE X509v3 Authority Key Identifier: keyid:1C:FB:6D:F9:33:75:A0:6C:56:82:C0:57:C0:FD:2A:73:06:21:8A:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPtt-TN1oGxWgsBXwP0qcwYhilQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/Dm5YScd3hN-X30vyWwpd9nEvmc4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/HPtt-TN1oGxWgsBXwP0qcwYhilQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.45.20.0/22 IPv6: 2a01:79a0::/32 Signature Algorithm: sha256WithRSAEncryption 22:41:a8:5a:90:0b:2b:21:9e:38:14:78:ca:41:c7:97:b5:d8: a2:ab:f7:62:cb:ed:e9:ab:94:8d:e7:9e:9a:44:dc:59:df:6d: bd:64:52:e8:b2:a7:4e:a4:7f:12:4d:00:4b:51:92:60:f0:f9: ab:94:c9:95:3a:63:79:6a:f4:8e:e9:b8:ea:d5:27:78:dd:db: 79:27:49:1d:ec:ce:c6:e8:d6:24:25:d8:e0:49:36:01:41:f3: f7:ec:c5:04:15:53:d7:ff:9e:a2:3a:c4:3f:1c:6c:88:3a:f9: 70:ea:59:0d:b9:41:09:96:82:61:59:45:75:2a:57:db:53:16: e9:34:60:d6:14:2d:68:63:59:2b:fa:fa:c0:83:48:1e:77:7f: 5e:0c:14:9d:5c:a7:9f:89:d1:a1:07:15:e3:23:78:bf:70:0c: ce:50:c5:14:2b:d6:11:74:d8:f9:57:70:84:58:2c:85:53:1a: 5c:d0:2e:3a:35:f8:eb:37:72:ee:2d:10:d9:41:37:db:50:a1: ce:57:a6:a4:38:0d:2f:01:41:73:35:2f:9f:0b:97:39:b9:08: 7b:26:ff:35:c9:71:bc:48:85:91:77:36:36:73:6c:a6:25:f9: ce:92:a0:5f:4c:e3:a0:94:d1:30:0f:2c:c7:7b:58:96:31:60: da:24:88:68 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZreVuVvWZE5k8U5T/wR/tOiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjZmI2ZGY5MzM3NWEwNmM1NjgyYzA1N2MwZmQyYTczMDYy MThhNTQwHhcNMjUxMjAyMDkxMzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTZlNTg0OWM3Nzc4NGRmOTdkZjRiZjI1YjBhNWRmNjcxMmY5OWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufHmuAskMAse5XU/0kxogEGipaC5 IBAIWTVQJy/HDm9bfIXbVy0rfg3tT0sIN5Z5w9Gm+00P1iPDfgX4TcTeLdqd3ZhE axJAO/caOVzVNYFbczD5E5S4EC586SgK/6qnxQWYOAHY1xehEfKFCvxiL9HrsYdu piwxGxJvt95rfVwTpuCJA7uIiyNu0tGM0d5E89SYOp23M52ORzPf/U2rEuuStEqb hwJ7aYny4Uke6tifqc9DMECb9itGIry/m4C7fjUwETc1ZHBBbQxdBR0x7fTvPoNz XLh27MhBnSGHcUKBquvh3C3HoqeMAct/kpMM3S99j9y3T6Yx/vvF6cZO9wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFA5uWEnHd4Tfl99L8lsKXfZxL5nOMB8GA1UdIwQY MBaAFBz7bfkzdaBsVoLAV8D9KnMGIYpUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFB0dC1UTjFvR3hXZ3NCWHdQMHFjd1loaWxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mYmFkZmYtNzVkNy00Y2JhLTk3MzUt NjZlYzJlYWY2NDZmLzEvRG01WVNjZDNoTi1YMzB2eVd3cGQ5bkV2bWM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mYmFkZmYtNzVkNy00Y2JhLTk3MzUtNjZlYzJlYWY2NDZm LzEvSFB0dC1UTjFvR3hXZ3NCWHdQMHFjd1loaWxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuS0UMA0E AgACMAcDBQAqAXmgMA0GCSqGSIb3DQEBCwUAA4IBAQAiQahakAsrIZ44FHjKQceX tdiiq/diy+3pq5SN556aRNxZ3229ZFLosqdOpH8STQBLUZJg8PmrlMmVOmN5avSO 6bjq1Sd43dt5J0kd7M7G6NYkJdjgSTYBQfP37MUEFVPX/56iOsQ/HGyIOvlw6lkN uUEJloJhWUV1KlfbUxbpNGDWFC1oY1kr+vrAg0ged39eDBSdXKefidGhBxXjI3i/ cAzOUMUUK9YRdNj5V3CEWCyFUxpc0C46NfjrN3LuLRDZQTfbUKHOV6akOA0vAUFz NS+fC5c5uQh7Jv81yXG8SIWRdzY2c2ymJfnOkqBfTOOglNEwDyzHe1iWMWDaJIho -----END CERTIFICATE-----Generated at Sat Dec 6 11:35:00 2025 by rpki-client