This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/EYaBNaigUJPNidpEJHqvbrENGdU.roa File: EYaBNaigUJPNidpEJHqvbrENGdU.roa (raw, json) Hash identifier: U/V1xaDA1aKazkypKTjkyan+k6X/djAAeOa2M3QSQJM= Subject key identifier: 11:86:81:35:A8:A0:50:93:CD:89:DA:44:24:7A:AF:6E:B1:0D:19:D5 Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a Certificate serial: 019AB5A84783C5C3E0D74AD161DC42DA0E7A Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/EYaBNaigUJPNidpEJHqvbrENGdU.roa Signing time: Mon 24 Nov 2025 11:38:15 +0000 ROA not before: Mon 24 Nov 2025 11:38:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 202759 IP address blocks: 45.151.72.0/24 maxlen: 24 83.172.139.0/24 maxlen: 24 89.40.104.0/24 maxlen: 24 93.113.98.0/24 maxlen: 24 93.113.214.0/24 maxlen: 24 95.156.206.0/24 maxlen: 24 185.122.185.0/24 maxlen: 24 185.193.49.0/24 maxlen: 24 188.190.18.0/24 maxlen: 24 188.214.32.0/24 maxlen: 24 188.214.36.0/24 maxlen: 24 188.214.37.0/24 maxlen: 24 213.111.179.0/24 maxlen: 24 213.111.181.0/24 maxlen: 24 213.111.189.0/24 maxlen: 24 213.111.190.0/24 maxlen: 24 2a03:f80:372::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.mft rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b5:a8:47:83:c5:c3:e0:d7:4a:d1:61:dc:42:da:0e:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a Validity Not Before: Nov 24 11:38:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=11868135a8a05093cd89da44247aaf6eb10d19d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7d:66:ce:92:e9:95:76:4f:4f:64:e5:af:0d: 6d:2b:dd:87:67:bb:7d:b1:65:23:b1:59:00:5a:a9: ae:51:9e:d0:da:5b:b4:80:94:0d:37:c0:9f:ae:43: e8:d5:a4:e6:a3:c2:98:22:4e:66:55:80:80:4e:cd: 09:00:c9:43:2e:51:26:56:50:b8:ec:49:26:dd:33: 7e:9e:36:38:68:a1:5b:e0:e5:4c:0c:ef:dd:a1:dd: 90:eb:02:6e:f6:fc:1a:5a:9a:c4:10:8e:93:44:74: 41:f6:bf:25:f4:9c:f9:27:a1:5a:d8:84:33:46:f2: be:88:99:3c:25:6d:c9:8e:86:d3:1e:38:25:3f:8b: a4:ae:7f:9e:e1:36:d9:64:28:9c:03:f7:e6:83:66: 76:25:bc:1d:c8:a7:09:b6:53:8c:2c:a1:c9:30:3e: 15:c2:56:a4:4f:aa:ca:62:12:45:5e:63:cc:a0:1e: a2:b6:e4:20:19:04:88:19:35:b0:77:07:61:dc:aa: cd:00:50:ef:8a:f5:f5:a5:3b:44:9d:87:b9:7d:a6: 4c:1c:5b:d2:a5:3a:dd:87:62:67:b6:c6:a5:9e:29: 0e:21:3a:6a:b4:9b:fb:14:9d:ee:07:89:d7:21:e8: 7a:76:6b:e8:d8:2d:f9:36:e0:62:1b:00:b3:b5:c5: f5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:86:81:35:A8:A0:50:93:CD:89:DA:44:24:7A:AF:6E:B1:0D:19:D5 X509v3 Authority Key Identifier: keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/EYaBNaigUJPNidpEJHqvbrENGdU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.151.72.0/24 83.172.139.0/24 89.40.104.0/24 93.113.98.0/24 93.113.214.0/24 95.156.206.0/24 185.122.185.0/24 185.193.49.0/24 188.190.18.0/24 188.214.32.0/24 188.214.36.0/23 213.111.179.0/24 213.111.181.0/24 213.111.189.0-213.111.190.255 IPv6: 2a03:f80:372::/48 Signature Algorithm: sha256WithRSAEncryption 56:73:07:65:8a:17:c5:3a:69:f9:3d:0a:b5:13:ed:fb:40:3e: ba:b1:ef:25:b0:5f:0d:17:fc:ec:65:eb:b5:d3:50:13:11:9d: d3:18:7e:30:2e:a1:81:07:d4:2f:e6:46:70:43:91:c0:d3:71: 3d:d3:94:98:64:a0:c2:56:27:85:02:99:03:4e:a8:ca:df:46: 32:85:fa:c2:5e:3e:d8:05:48:aa:36:9b:c6:e9:42:5a:1c:eb: c1:b2:e2:d4:cc:45:8d:9d:68:5d:44:1a:cf:b5:f3:86:73:8b: 98:03:82:6e:ed:8f:89:8c:d6:0c:56:e2:25:b0:d9:df:8a:e9: 9f:ee:99:d6:5d:1a:06:ea:ec:ab:e1:1d:ba:67:a3:8b:fd:ee: 7f:25:4b:c2:e4:bb:61:bc:36:41:41:cf:9d:98:11:c5:73:9f: ca:23:c6:fe:41:30:9d:42:ee:96:b7:8d:d7:14:7a:f6:10:45: 6c:eb:69:ec:d0:15:09:a5:0c:4a:05:d7:81:dd:df:89:f3:8f: db:ff:bc:4d:77:bc:84:5a:4d:d6:eb:a6:76:9e:b0:a0:ad:0c: 75:06:3f:01:01:46:31:dd:d3:16:28:8e:96:a3:9d:ac:da:84: 29:2d:7b:97:5d:2d:93:7d:2a:98:c9:1c:0a:54:a1:45:e7:3b: e9:d9:68:24 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgISAZq1qEeDxcPg10rRYdxC2g56MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyMTdiNDcyYzg0MWMxZDY4NTUwYTI0ZjE5MzZkMjljYzZj MjhmNmEwHhcNMjUxMTI0MTEzODE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTg2ODEzNWE4YTA1MDkzY2Q4OWRhNDQyNDdhYWY2ZWIxMGQxOWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuX1mzpLplXZPT2Tlrw1tK92HZ7t9 sWUjsVkAWqmuUZ7Q2lu0gJQNN8CfrkPo1aTmo8KYIk5mVYCATs0JAMlDLlEmVlC4 7Ekm3TN+njY4aKFb4OVMDO/dod2Q6wJu9vwaWprEEI6TRHRB9r8l9Jz5J6Fa2IQz RvK+iJk8JW3JjobTHjglP4ukrn+e4TbZZCicA/fmg2Z2JbwdyKcJtlOMLKHJMD4V wlakT6rKYhJFXmPMoB6ituQgGQSIGTWwdwdh3KrNAFDvivX1pTtEnYe5faZMHFvS pTrdh2JntsalnikOITpqtJv7FJ3uB4nXIeh6dmvo2C35NuBiGwCztcX1jwIDAQAB o4ICcTCCAm0wHQYDVR0OBBYEFBGGgTWooFCTzYnaRCR6r26xDRnVMB8GA1UdIwQY MBaAFNIXtHLIQcHWhVCiTxk20pzGwo9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGIt YjM4ZTI2NzdiM2RjLzEvRVlhQk5haWdVSlBOaWRwRUpIcXZickVOR2RVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGItYjM4ZTI2NzdiM2Rj LzEvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGGBggrBgEFBQcBBwEB/wR3MHUwYgQCAAEwXAMEAC2XSAME AFOsiwMEAFkoaAMEAF1xYgMEAF1x1gMEAF+czgMEALl6uQMEALnBMQMEALy+EgME ALzWIAMEAbzWJAMEANVvswMEANVvtTAMAwQA1W+9AwQA1W++MA8EAgACMAkDBwAq Aw+AA3IwDQYJKoZIhvcNAQELBQADggEBAFZzB2WKF8U6afk9CrUT7ftAPrqx7yWw Xw0X/Oxl67XTUBMRndMYfjAuoYEH1C/mRnBDkcDTcT3TlJhkoMJWJ4UCmQNOqMrf RjKF+sJePtgFSKo2m8bpQloc68Gy4tTMRY2daF1EGs+184Zzi5gDgm7tj4mM1gxW 4iWw2d+K6Z/umdZdGgbq7KvhHbpno4v97n8lS8Lku2G8NkFBz52YEcVzn8ojxv5B MJ1C7pa3jdcUevYQRWzraezQFQmlDEoF14Hd34nzj9v/vE13vIRaTdbrpnaesKCt DHUGPwEBRjHd0xYojpajnazahCkte5ddLZN9KpjJHApUoUXnO+nZaCQ= -----END CERTIFICATE-----Generated at Mon Dec 8 09:09:47 2025 by rpki-client