This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/HPsj0REG9ntH5p9MtTfoE6PCtOM.roa File: HPsj0REG9ntH5p9MtTfoE6PCtOM.roa (raw, json) Hash identifier: 2c7mCAX4kFN1TjTb3dWtYIPUaSS1csZT+hNK2CXjJ6A= Subject key identifier: 1C:FB:23:D1:11:06:F6:7B:47:E6:9F:4C:B5:37:E8:13:A3:C2:B4:E3 Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8 Certificate serial: 019B26ED3259D64E2601548FC6E82AD539C0 Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/HPsj0REG9ntH5p9MtTfoE6PCtOM.roa Signing time: Tue 16 Dec 2025 11:30:37 +0000 ROA not before: Tue 16 Dec 2025 11:30:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 200195 IP address blocks: 45.89.61.0/24 maxlen: 24 2a0e:4005::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.mft rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 09:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:ed:32:59:d6:4e:26:01:54:8f:c6:e8:2a:d5:39:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8 Validity Not Before: Dec 16 11:30:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=1cfb23d11106f67b47e69f4cb537e813a3c2b4e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a4:25:87:e0:c0:29:0c:85:3a:6d:9b:0b:6a: 46:2b:eb:49:0d:2e:ad:48:df:76:0d:18:e6:6e:30: 45:90:2b:c3:88:1c:b5:ae:a5:75:6a:f0:8c:2e:96: 19:10:8b:92:f3:93:73:ab:b5:c5:ce:05:56:8b:12: ac:4d:6a:39:de:d2:68:c3:7a:07:97:63:73:39:07: 3f:90:0f:94:f3:24:ec:55:cf:df:0d:98:cd:41:48: 55:3e:38:f8:4d:65:83:dd:00:08:05:78:b9:4f:d3: 56:6c:1e:29:13:33:27:99:f9:30:a9:42:73:aa:31: f9:e1:87:85:67:d9:4a:8d:e3:98:7b:be:d6:bd:16: c6:f2:ac:67:cf:16:22:cd:8c:60:a8:da:d7:93:43: 82:f1:54:a3:13:27:0e:09:20:25:f7:9d:bf:b5:84: aa:61:38:dd:fa:bc:d0:b9:74:39:bf:59:fd:bd:03: 02:f3:7b:e3:66:8d:85:2e:78:a8:eb:95:d3:01:77: 65:f2:ae:a8:d3:b7:2c:eb:42:08:82:31:cd:1c:83: 47:0c:91:47:a7:0a:3b:84:aa:2e:b4:b4:60:05:2c: 28:f6:16:39:01:94:b6:a1:38:f2:fd:b6:87:71:58: ba:d6:fd:50:5b:b5:ad:70:f1:13:9e:55:70:5a:43: 15:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:FB:23:D1:11:06:F6:7B:47:E6:9F:4C:B5:37:E8:13:A3:C2:B4:E3 X509v3 Authority Key Identifier: keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/HPsj0REG9ntH5p9MtTfoE6PCtOM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.61.0/24 IPv6: 2a0e:4005::/32 Signature Algorithm: sha256WithRSAEncryption ab:f9:b5:e8:69:3d:a3:cb:6c:8e:e7:a5:72:af:d1:56:95:e8: 6e:76:2c:88:c0:60:ce:c8:8c:cc:b8:d2:ab:21:32:91:60:9a: f7:82:80:49:15:2b:40:54:06:55:e2:ba:7f:66:70:fb:d1:02: 23:50:4c:01:0c:7c:a3:13:0a:cb:b1:60:f5:af:3a:73:98:76: ec:60:52:66:4d:79:c2:2a:c3:57:c8:a2:a8:8e:ac:01:5c:8c: 14:80:23:83:28:97:1b:ea:db:6e:0f:24:be:b5:5b:1c:ea:ac: 24:91:5c:c2:13:60:20:c0:73:ab:6a:62:14:86:1c:98:08:ec: 28:36:01:eb:23:13:ae:70:17:20:94:5e:44:01:b9:74:64:59: 4c:66:58:d9:7b:2b:32:c9:c6:59:f8:e9:04:f8:f9:86:05:e3: eb:64:66:b9:a0:b2:71:73:6a:b1:50:c7:2e:95:a6:06:8e:98: 80:58:15:cd:c1:ce:1e:da:e4:87:45:14:09:86:02:71:4f:33: f2:24:68:26:ca:6b:37:74:5c:5c:82:e7:98:99:84:65:ad:83: ea:60:74:93:b7:fd:4f:8f:f3:8b:86:33:60:8e:e5:61:4d:29: 24:a8:1d:ab:9d:8f:fc:82:c6:f0:3c:89:10:f5:42:00:d8:eb: fb:d0:f4:28 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZsm7TJZ1k4mAVSPxugq1TnAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmODQxMTM1NDVkOTAwMDc2MGY2NjA2MmE0MjIxOTMzYTJl OTU5ZDgwHhcNMjUxMjE2MTEzMDM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2ZiMjNkMTExMDZmNjdiNDdlNjlmNGNiNTM3ZTgxM2EzYzJiNGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KQlh+DAKQyFOm2bC2pGK+tJDS6t SN92DRjmbjBFkCvDiBy1rqV1avCMLpYZEIuS85Nzq7XFzgVWixKsTWo53tJow3oH l2NzOQc/kA+U8yTsVc/fDZjNQUhVPjj4TWWD3QAIBXi5T9NWbB4pEzMnmfkwqUJz qjH54YeFZ9lKjeOYe77WvRbG8qxnzxYizYxgqNrXk0OC8VSjEycOCSAl952/tYSq YTjd+rzQuXQ5v1n9vQMC83vjZo2FLnio65XTAXdl8q6o07cs60IIgjHNHINHDJFH pwo7hKoutLRgBSwo9hY5AZS2oTjy/baHcVi61v1QW7WtcPETnlVwWkMVnQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBz7I9ERBvZ7R+afTLU36BOjwrTjMB8GA1UdIwQY MBaAFL+EETVF2QAHYPZgYqQiGTOi6VnYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEt NGJkNjNhZGM3MzU0LzEvSFBzajBSRUc5bnRINXA5TXRUZm9FNlBDdE9NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEtNGJkNjNhZGM3MzU0 LzEvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALVk9MA0E AgACMAcDBQAqDkAFMA0GCSqGSIb3DQEBCwUAA4IBAQCr+bXoaT2jy2yO56Vyr9FW lehudiyIwGDOyIzMuNKrITKRYJr3goBJFStAVAZV4rp/ZnD70QIjUEwBDHyjEwrL sWD1rzpzmHbsYFJmTXnCKsNXyKKojqwBXIwUgCODKJcb6ttuDyS+tVsc6qwkkVzC E2AgwHOramIUhhyYCOwoNgHrIxOucBcglF5EAbl0ZFlMZljZeysyycZZ+OkE+PmG BePrZGa5oLJxc2qxUMculaYGjpiAWBXNwc4e2uSHRRQJhgJxTzPyJGgmyms3dFxc gueYmYRlrYPqYHSTt/1Pj/OLhjNgjuVhTSkkqB2rnY/8gsbwPIkQ9UIA2Ov70PQo -----END CERTIFICATE-----Generated at Thu Dec 18 17:55:15 2025 by rpki-client