This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/ddcfd9-d419-40dd-a0f0-8e2d212cefef/1/IIOYiI5xrYPdbR4qy_NB1by3k8w.roa File: IIOYiI5xrYPdbR4qy_NB1by3k8w.roa (raw, json) Hash identifier: IMPI0ZFIXgwW+ovabDEnw4q8w52HbQuW+CoCXLtpKLw= Subject key identifier: 20:83:98:88:8E:71:AD:83:DD:6D:1E:2A:CB:F3:41:D5:BC:B7:93:CC Certificate issuer: /CN=d803a2c0cb253cf9b3335f0e35a708d9ae9fc986 Certificate serial: 019A7D960EB753ACCE4A8E236189CA587134 Authority key identifier: D8:03:A2:C0:CB:25:3C:F9:B3:33:5F:0E:35:A7:08:D9:AE:9F:C9:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AOiwMslPPmzM18ONacI2a6fyYY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/ddcfd9-d419-40dd-a0f0-8e2d212cefef/1/IIOYiI5xrYPdbR4qy_NB1by3k8w.roa Signing time: Thu 13 Nov 2025 14:19:37 +0000 ROA not before: Thu 13 Nov 2025 14:19:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 61373 IP address blocks: 185.9.32.0/22 maxlen: 22 185.9.32.0/23 maxlen: 23 185.9.32.0/24 maxlen: 24 185.9.33.0/24 maxlen: 24 185.9.34.0/23 maxlen: 23 185.9.34.0/24 maxlen: 24 185.9.35.0/24 maxlen: 24 185.50.20.0/22 maxlen: 22 185.50.20.0/23 maxlen: 23 185.50.20.0/24 maxlen: 24 185.50.21.0/24 maxlen: 24 185.50.22.0/23 maxlen: 23 185.50.22.0/24 maxlen: 24 185.50.23.0/24 maxlen: 24 185.119.60.0/22 maxlen: 22 185.119.60.0/23 maxlen: 23 185.119.60.0/24 maxlen: 24 185.119.61.0/24 maxlen: 24 185.119.62.0/23 maxlen: 23 185.119.62.0/24 maxlen: 24 185.119.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/ddcfd9-d419-40dd-a0f0-8e2d212cefef/1/2AOiwMslPPmzM18ONacI2a6fyYY.crl rsync://rpki.ripe.net/repository/DEFAULT/27/ddcfd9-d419-40dd-a0f0-8e2d212cefef/1/2AOiwMslPPmzM18ONacI2a6fyYY.mft rsync://rpki.ripe.net/repository/DEFAULT/2AOiwMslPPmzM18ONacI2a6fyYY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:7d:96:0e:b7:53:ac:ce:4a:8e:23:61:89:ca:58:71:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d803a2c0cb253cf9b3335f0e35a708d9ae9fc986 Validity Not Before: Nov 13 14:19:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=208398888e71ad83dd6d1e2acbf341d5bcb793cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fd:be:4a:f3:d4:09:fe:6e:ac:66:a3:32:c4: 47:c5:b4:e2:67:9b:c5:e2:15:79:58:19:64:e5:90: d9:cf:4f:a7:cd:3b:13:3b:2f:1d:a6:81:0a:75:c8: 76:99:76:b8:95:9f:5e:16:cd:77:d1:c7:7a:48:c4: cb:a3:b3:e1:3d:03:91:d4:2b:a4:01:01:ca:28:cc: 29:80:f5:bb:45:ac:69:8e:34:f7:bc:70:a7:7a:06: db:1c:45:20:ca:bd:26:cd:92:99:c3:d9:d4:fc:17: 7d:1a:ed:2b:62:bc:c0:52:78:5e:a3:d7:95:9c:5d: 78:60:62:39:27:9b:81:70:67:f1:b1:e3:06:d8:f7: 38:03:70:ae:44:63:2d:0e:b1:fa:16:5a:76:78:de: b9:34:a1:9e:d2:00:8e:9c:1b:83:41:69:c4:36:f2: d2:0f:03:69:de:dc:87:89:c2:e2:0f:14:21:41:fe: 60:0e:aa:33:49:3f:42:c4:22:1d:16:8d:24:69:54: 4e:2a:aa:e3:09:93:cc:74:84:82:da:59:2d:7d:2a: b2:72:a7:e6:b0:66:14:ad:4c:24:b9:a1:f9:53:52: 74:b0:82:47:88:93:06:9e:4f:42:17:dd:39:05:4c: fe:6f:0b:84:84:a1:0c:4e:e0:62:42:d9:c1:5c:96: 93:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:83:98:88:8E:71:AD:83:DD:6D:1E:2A:CB:F3:41:D5:BC:B7:93:CC X509v3 Authority Key Identifier: keyid:D8:03:A2:C0:CB:25:3C:F9:B3:33:5F:0E:35:A7:08:D9:AE:9F:C9:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AOiwMslPPmzM18ONacI2a6fyYY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/ddcfd9-d419-40dd-a0f0-8e2d212cefef/1/IIOYiI5xrYPdbR4qy_NB1by3k8w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/ddcfd9-d419-40dd-a0f0-8e2d212cefef/1/2AOiwMslPPmzM18ONacI2a6fyYY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.9.32.0/22 185.50.20.0/22 185.119.60.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:9b:33:02:b9:6f:2e:39:9f:f2:9c:9f:13:6d:83:a3:fc:7d: 7e:33:34:37:24:6a:c2:e2:59:ca:2e:87:87:e5:58:de:7a:8b: 1a:48:1a:c6:a3:29:7c:07:50:63:c4:11:7a:71:46:55:5d:53: 2f:51:fa:60:63:20:11:f6:82:7b:d5:81:04:50:64:b8:5a:d1: c0:9d:07:fe:97:d2:9b:87:ea:75:a1:19:81:29:b7:28:ac:29: 24:88:94:3d:2f:b1:1e:8b:c3:2c:a4:3c:f5:f6:d0:1a:43:fb: 1f:cb:3f:5d:e6:36:c6:00:cf:40:ed:c5:11:c0:32:3e:cf:dd: 2f:e6:4d:a8:30:7c:cc:ee:ef:3f:3f:7e:a9:47:2f:71:8d:cd: cd:5d:9f:dc:96:1b:f4:78:02:35:46:56:75:7a:98:67:60:5b: ec:f6:1d:52:22:09:ec:19:4d:0c:33:cb:30:0f:42:5c:31:b0: 95:e6:52:1f:df:44:2c:02:88:9a:62:90:79:cf:77:a9:1f:01: 5e:ca:5c:b7:4d:84:6f:7d:32:e7:9d:62:0d:d1:58:16:aa:04: 12:75:30:ff:66:58:f9:fb:92:04:8b:fc:22:15:d8:f5:8b:c7: a1:a8:20:54:61:cf:b6:c5:56:fd:21:a6:bd:df:24:a8:9e:87: 8a:30:ac:98 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZp9lg63U6zOSo4jYYnKWHE0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MDNhMmMwY2IyNTNjZjliMzMzNWYwZTM1YTcwOGQ5YWU5 ZmM5ODYwHhcNMjUxMTEzMTQxOTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDgzOTg4ODhlNzFhZDgzZGQ2ZDFlMmFjYmYzNDFkNWJjYjc5M2NjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3v2+SvPUCf5urGajMsRHxbTiZ5vF 4hV5WBlk5ZDZz0+nzTsTOy8dpoEKdch2mXa4lZ9eFs130cd6SMTLo7PhPQOR1Cuk AQHKKMwpgPW7RaxpjjT3vHCnegbbHEUgyr0mzZKZw9nU/Bd9Gu0rYrzAUnheo9eV nF14YGI5J5uBcGfxseMG2Pc4A3CuRGMtDrH6Flp2eN65NKGe0gCOnBuDQWnENvLS DwNp3tyHicLiDxQhQf5gDqozST9CxCIdFo0kaVROKqrjCZPMdISC2lktfSqycqfm sGYUrUwkuaH5U1J0sIJHiJMGnk9CF905BUz+bwuEhKEMTuBiQtnBXJaT/QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFCCDmIiOca2D3W0eKsvzQdW8t5PMMB8GA1UdIwQY MBaAFNgDosDLJTz5szNfDjWnCNmun8mGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkFPaXdNc2xQUG16TTE4T05hY0kyYTZmeVlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9kZGNmZDktZDQxOS00MGRkLWEwZjAt OGUyZDIxMmNlZmVmLzEvSUlPWWlJNXhyWVBkYlI0cXlfTkIxYnkzazh3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9kZGNmZDktZDQxOS00MGRkLWEwZjAtOGUyZDIxMmNlZmVm LzEvMkFPaXdNc2xQUG16TTE4T05hY0kyYTZmeVlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCuQkgAwQC uTIUAwQCuXc8MA0GCSqGSIb3DQEBCwUAA4IBAQAumzMCuW8uOZ/ynJ8TbYOj/H1+ MzQ3JGrC4lnKLoeH5VjeeosaSBrGoyl8B1BjxBF6cUZVXVMvUfpgYyAR9oJ71YEE UGS4WtHAnQf+l9Kbh+p1oRmBKbcorCkkiJQ9L7Eei8MspDz19tAaQ/sfyz9d5jbG AM9A7cURwDI+z90v5k2oMHzM7u8/P36pRy9xjc3NXZ/clhv0eAI1RlZ1ephnYFvs 9h1SIgnsGU0MM8swD0JcMbCV5lIf30QsAoiaYpB5z3epHwFeyly3TYRvfTLnnWIN 0VgWqgQSdTD/Zlj5+5IEi/wiFdj1i8ehqCBUYc+2xVb9Iaa93ySonoeKMKyY -----END CERTIFICATE-----Generated at Sat Dec 6 10:50:24 2025 by rpki-client