This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/JyWaH8R7Bb18Hp5FODhCm0Qm4yk.roa File: JyWaH8R7Bb18Hp5FODhCm0Qm4yk.roa (raw, json) Hash identifier: 3YUqJIFeG4oViBaCgEnkhKEkkHy1Sj0m4RpDsg9NjFo= Subject key identifier: 27:25:9A:1F:C4:7B:05:BD:7C:1E:9E:45:38:38:42:9B:44:26:E3:29 Certificate issuer: /CN=49596cecc21dd02677a727ef37f0689546ea5097 Certificate serial: 019ABD674E2251535EF92D09CBDBE4F65DD1 Authority key identifier: 49:59:6C:EC:C2:1D:D0:26:77:A7:27:EF:37:F0:68:95:46:EA:50:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/JyWaH8R7Bb18Hp5FODhCm0Qm4yk.roa Signing time: Tue 25 Nov 2025 23:44:15 +0000 ROA not before: Tue 25 Nov 2025 23:44:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 5390 IP address blocks: 83.118.224.0/22 maxlen: 24 83.119.0.0/19 maxlen: 24 83.119.0.0/21 maxlen: 24 83.119.8.0/21 maxlen: 24 83.119.14.0/24 maxlen: 24 83.119.16.0/20 maxlen: 24 85.148.0.0/15 maxlen: 16 85.148.0.0/16 maxlen: 17 85.149.0.0/17 maxlen: 18 2a02:2500::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/SVls7MId0CZ3pyfvN_BolUbqUJc.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/SVls7MId0CZ3pyfvN_BolUbqUJc.mft rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 20:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:bd:67:4e:22:51:53:5e:f9:2d:09:cb:db:e4:f6:5d:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49596cecc21dd02677a727ef37f0689546ea5097 Validity Not Before: Nov 25 23:44:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=27259a1fc47b05bd7c1e9e453838429b4426e329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:65:02:e4:9a:57:a5:25:9d:4d:e5:0a:97:8d: 50:79:ed:de:6c:c9:92:a7:d4:8e:f4:3e:e4:12:5a: 97:4c:5b:02:be:85:2f:89:60:9a:9a:4d:3a:9b:fd: bd:f0:e9:46:58:f7:ac:23:ca:48:13:71:2b:9b:e8: ba:4d:2e:8c:8a:4f:9f:37:1b:ec:56:ab:2b:0c:71: 6d:b8:a3:72:27:23:95:57:91:c1:87:7a:69:9b:d4: df:a9:3d:c6:28:2b:b2:37:a9:1a:a0:93:dc:e2:d7: e3:1e:6a:1b:ee:49:3b:e9:5a:4c:f9:c1:73:0b:46: 4f:53:ae:41:74:71:5c:c4:b8:b4:7f:08:92:45:04: f4:2a:c1:f7:9e:fb:3f:1f:42:00:3e:ff:87:fe:a6: 8d:ef:d3:98:db:47:89:b5:67:19:eb:a8:25:f4:95: 41:7e:b2:b4:6f:b5:73:c8:f9:12:cb:50:97:24:c3: cd:01:cb:f6:76:49:4f:3d:c9:19:f6:8f:2a:e8:75: 61:e2:bd:e1:06:b7:c0:04:5b:3c:06:6f:ab:3b:df: 78:65:bf:2d:7c:78:de:30:70:93:ac:6c:86:1f:50: ae:47:df:af:05:66:71:9a:cd:f6:b1:7b:bc:46:23: 7c:32:c6:bb:4d:81:12:98:3c:98:51:72:34:90:27: bd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:25:9A:1F:C4:7B:05:BD:7C:1E:9E:45:38:38:42:9B:44:26:E3:29 X509v3 Authority Key Identifier: keyid:49:59:6C:EC:C2:1D:D0:26:77:A7:27:EF:37:F0:68:95:46:EA:50:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/JyWaH8R7Bb18Hp5FODhCm0Qm4yk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/SVls7MId0CZ3pyfvN_BolUbqUJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.118.224.0/22 83.119.0.0/19 85.148.0.0/15 IPv6: 2a02:2500::/32 Signature Algorithm: sha256WithRSAEncryption 8d:13:41:18:49:98:c0:87:81:e7:29:87:3b:07:c2:65:12:35: 86:b1:a0:3b:81:e8:17:49:0d:e1:ca:12:da:f2:83:39:0e:e8: d7:51:5c:80:9b:cf:27:14:03:d3:6a:91:d6:b7:93:b7:ab:34: c9:3b:8c:f6:f5:ea:62:8c:09:f3:a0:af:36:8b:b2:48:8c:23: db:a5:30:4c:94:85:6c:6f:97:b4:71:69:d6:f7:5a:b6:f3:f5: e3:bc:0b:36:aa:82:d2:92:a3:da:38:eb:52:3d:47:3a:c9:4b: 30:00:3c:a5:be:ee:7a:17:f8:d8:f2:71:ba:a2:bf:7e:f8:14: 76:0d:e2:d6:bb:04:99:61:07:c0:42:26:06:da:ec:42:d3:fa: 76:22:6d:a7:35:c4:c3:24:03:a8:ca:ec:ea:1b:a5:ad:86:9d: 24:7c:49:a0:77:68:8d:c7:38:ff:83:85:7d:a9:48:3d:02:af: 1f:20:b0:bf:aa:40:5a:5c:df:2a:80:7c:87:3a:d9:60:3d:c6: 57:e3:f4:44:e0:f6:e4:49:92:12:da:5b:2c:dd:b7:c9:c5:17: 61:53:eb:b5:ce:cc:e0:de:f5:87:15:8e:ff:3c:12:a7:ea:4a: 4c:02:db:b2:4c:03:27:c2:84:c2:95:d9:c4:6a:96:c1:5e:59: a4:43:48:74 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZq9Z04iUVNe+S0Jy9vk9l3RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5NTk2Y2VjYzIxZGQwMjY3N2E3MjdlZjM3ZjA2ODk1NDZl YTUwOTcwHhcNMjUxMTI1MjM0NDE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNzI1OWExZmM0N2IwNWJkN2MxZTllNDUzODM4NDI5YjQ0MjZlMzI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWUC5JpXpSWdTeUKl41Qee3ebMmS p9SO9D7kElqXTFsCvoUviWCamk06m/298OlGWPesI8pIE3Erm+i6TS6Mik+fNxvs VqsrDHFtuKNyJyOVV5HBh3ppm9TfqT3GKCuyN6kaoJPc4tfjHmob7kk76VpM+cFz C0ZPU65BdHFcxLi0fwiSRQT0KsH3nvs/H0IAPv+H/qaN79OY20eJtWcZ66gl9JVB frK0b7VzyPkSy1CXJMPNAcv2dklPPckZ9o8q6HVh4r3hBrfABFs8Bm+rO994Zb8t fHjeMHCTrGyGH1CuR9+vBWZxms32sXu8RiN8Msa7TYESmDyYUXI0kCe93QIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFCclmh/EewW9fB6eRTg4QptEJuMpMB8GA1UdIwQY MBaAFElZbOzCHdAmd6cn7zfwaJVG6lCXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1ZsczdNSWQwQ1ozcHlmdk5fQm9sVWJxVUpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9lN2JkMDEtNDMyZi00YmY5LTgwYzUt ODk3ZDAwOTc3ZmYyLzEvSnlXYUg4UjdCYjE4SHA1Rk9EaENtMFFtNHlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9lN2JkMDEtNDMyZi00YmY5LTgwYzUtODk3ZDAwOTc3ZmYy LzEvU1ZsczdNSWQwQ1ozcHlmdk5fQm9sVWJxVUpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAXBAIAATARAwQCU3bgAwQF U3cAAwMBVZQwDQQCAAIwBwMFACoCJQAwDQYJKoZIhvcNAQELBQADggEBAI0TQRhJ mMCHgecphzsHwmUSNYaxoDuB6BdJDeHKEtrygzkO6NdRXICbzycUA9Nqkda3k7er NMk7jPb16mKMCfOgrzaLskiMI9ulMEyUhWxvl7Rxadb3Wrbz9eO8CzaqgtKSo9o4 61I9RzrJSzAAPKW+7noX+Njycbqiv374FHYN4ta7BJlhB8BCJgba7ELT+nYibac1 xMMkA6jK7Oobpa2GnSR8SaB3aI3HOP+DhX2pSD0Crx8gsL+qQFpc3yqAfIc62WA9 xlfj9ETg9uRJkhLaWyzdt8nFF2FT67XOzODe9YcVjv88EqfqSkwC27JMAyfChMKV 2cRqlsFeWaRDSHQ= -----END CERTIFICATE-----Generated at Sun Dec 7 00:35:41 2025 by rpki-client