This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/1-YTs4r6zU-8mdejFRdCllU9534c.roa File: 1-YTs4r6zU-8mdejFRdCllU9534c.roa (raw, json) Hash identifier: 1PeguZ92yFC8iaBTSsGvqpeeYV8duXPcAw7VUiDhRiw= Subject key identifier: F9:84:EC:E2:BE:B3:53:EF:26:75:E8:C5:45:D0:A5:95:4F:79:DF:87 Certificate issuer: /CN=7094a425595e923c4b53b9c000aa8f19ad923f20 Certificate serial: 019A9CC8353230C9E262AD642804180C1526 Authority key identifier: 70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/1-YTs4r6zU-8mdejFRdCllU9534c.roa Signing time: Wed 19 Nov 2025 15:42:37 +0000 ROA not before: Wed 19 Nov 2025 15:42:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212833 IP address blocks: 134.255.215.0/24 maxlen: 24 188.215.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/cJSkJVlekjxLU7nAAKqPGa2SPyA.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/cJSkJVlekjxLU7nAAKqPGa2SPyA.mft rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9c:c8:35:32:30:c9:e2:62:ad:64:28:04:18:0c:15:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7094a425595e923c4b53b9c000aa8f19ad923f20 Validity Not Before: Nov 19 15:42:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=f984ece2beb353ef2675e8c545d0a5954f79df87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ba:73:49:ca:b1:52:f9:5a:2a:a1:c2:d6:de: 53:b2:fd:62:d9:7a:b9:b8:94:80:29:08:04:50:58: 84:a7:17:aa:0c:ba:b3:2e:e4:57:fe:d7:2a:d4:4c: bf:eb:27:65:1b:2b:80:7a:52:c0:e4:c3:9c:8f:9c: 1f:19:a1:f1:e6:92:3b:a2:e6:c9:89:2b:e9:c2:c8: 8f:36:40:b1:96:d1:20:f8:6c:e0:a2:42:8f:75:b9: a5:51:59:bb:35:ad:19:3b:10:1c:58:a6:50:cb:69: 00:65:9f:2b:39:c6:99:ff:7c:e3:9e:1a:1e:c1:26: 30:69:b2:48:4b:ac:6e:e6:18:bd:17:1b:bf:5f:70: de:ff:93:90:e6:20:09:a0:63:13:be:4e:fd:21:63: 12:03:96:8d:d2:d6:8a:b4:5f:e7:0a:db:8e:c1:c2: 54:9a:95:dc:86:82:e7:3a:40:7f:0e:ee:72:7c:3e: fe:52:08:2e:8a:6c:50:dc:4d:13:3c:02:18:b7:89: 60:ac:d2:c3:4f:62:88:56:87:20:e9:59:96:0d:dc: 18:4b:5e:a8:5a:88:45:e4:59:f2:7f:d9:49:55:a8: fa:cc:2b:9a:34:18:7a:c7:83:8f:0f:21:6c:39:16: d3:90:33:ff:b7:b8:49:9c:13:99:74:f1:ea:d3:c4: fe:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:84:EC:E2:BE:B3:53:EF:26:75:E8:C5:45:D0:A5:95:4F:79:DF:87 X509v3 Authority Key Identifier: keyid:70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/1-YTs4r6zU-8mdejFRdCllU9534c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/cJSkJVlekjxLU7nAAKqPGa2SPyA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.255.215.0/24 188.215.224.0/22 Signature Algorithm: sha256WithRSAEncryption af:fd:48:b6:c4:78:64:4d:15:fb:00:29:e1:70:ef:99:10:b6: 0d:ef:ed:30:97:84:c9:86:f9:81:4d:59:ae:16:01:d8:8a:75: bd:b2:6e:3f:0e:66:42:60:80:ea:2d:4c:d8:a9:08:c4:85:86: cb:31:51:76:3e:55:d0:5f:3e:ee:fa:ed:db:51:fe:19:a2:a6: 62:8a:8e:c7:59:af:4c:c7:fd:f4:4a:d6:03:64:94:5a:4d:7a: 16:c6:0c:0d:4d:2f:d9:05:40:99:8a:79:28:1c:26:62:6e:97: 8b:7f:11:85:fa:25:08:44:68:64:e4:74:7c:a0:ac:5f:6e:57: 64:47:cd:4f:17:ad:3b:da:2e:48:93:ef:5f:15:25:c6:07:2e: af:03:ef:e8:67:02:0b:32:68:b6:20:6d:73:d6:3c:15:e2:7e: e6:30:0b:11:7f:85:0f:88:91:73:00:4b:71:74:31:59:12:79: e1:b4:c3:5a:4d:ee:8d:8e:01:b0:cc:bc:37:b5:ac:fc:92:a6: 90:05:72:4f:b1:ff:62:10:ed:c4:2d:93:94:9f:1c:c4:e3:ee: 82:aa:89:f7:b9:1c:7c:93:21:10:2d:05:13:be:3b:bd:cc:c1: 29:85:63:c3:ef:fd:0c:5c:1a:3d:2a:48:58:fb:14:2b:9d:8e: d5:38:89:80 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgISAZqcyDUyMMniYq1kKAQYDBUmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwOTRhNDI1NTk1ZTkyM2M0YjUzYjljMDAwYWE4ZjE5YWQ5 MjNmMjAwHhcNMjUxMTE5MTU0MjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOTg0ZWNlMmJlYjM1M2VmMjY3NWU4YzU0NWQwYTU5NTRmNzlkZjg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7pzScqxUvlaKqHC1t5Tsv1i2Xq5 uJSAKQgEUFiEpxeqDLqzLuRX/tcq1Ey/6ydlGyuAelLA5MOcj5wfGaHx5pI7oubJ iSvpwsiPNkCxltEg+GzgokKPdbmlUVm7Na0ZOxAcWKZQy2kAZZ8rOcaZ/3zjnhoe wSYwabJIS6xu5hi9Fxu/X3De/5OQ5iAJoGMTvk79IWMSA5aN0taKtF/nCtuOwcJU mpXchoLnOkB/Du5yfD7+UgguimxQ3E0TPAIYt4lgrNLDT2KIVocg6VmWDdwYS16o WohF5Fnyf9lJVaj6zCuaNBh6x4OPDyFsORbTkDP/t7hJnBOZdPHq08T+/wIDAQAB o4ICEDCCAgwwHQYDVR0OBBYEFPmE7OK+s1PvJnXoxUXQpZVPed+HMB8GA1UdIwQY MBaAFHCUpCVZXpI8S1O5wACqjxmtkj8gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0pTa0pWbGVranhMVTduQUFLcVBHYTJTUHlBLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS85NjMxNzAtNThiZS00NmJiLWE1ZGUt Nzc3MzczZTYwNTVlLzEvMS1ZVHM0cjZ6VS04bWRlakZSZENsbFU5NTM0Yy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMmEvOTYzMTcwLTU4YmUtNDZiYi1hNWRlLTc3NzM3M2U2MDU1 ZS8xL2NKU2tKVmxla2p4TFU3bkFBS3FQR2EyU1B5QS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAIb/1wME ArzX4DANBgkqhkiG9w0BAQsFAAOCAQEAr/1ItsR4ZE0V+wAp4XDvmRC2De/tMJeE yYb5gU1ZrhYB2Ip1vbJuPw5mQmCA6i1M2KkIxIWGyzFRdj5V0F8+7vrt21H+GaKm YoqOx1mvTMf99ErWA2SUWk16FsYMDU0v2QVAmYp5KBwmYm6Xi38RhfolCERoZOR0 fKCsX25XZEfNTxetO9ouSJPvXxUlxgcurwPv6GcCCzJotiBtc9Y8FeJ+5jALEX+F D4iRcwBLcXQxWRJ54bTDWk3ujY4BsMy8N7Ws/JKmkAVyT7H/YhDtxC2TlJ8cxOPu gqqJ97kcfJMhEC0FE747vczBKYVjw+/9DFwaPSpIWPsUK52O1TiJgA== -----END CERTIFICATE-----Generated at Sat Dec 6 16:36:50 2025 by rpki-client