This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/Y61qcEFC7UHY3oR4PWuHU9DuQw4.roa File: Y61qcEFC7UHY3oR4PWuHU9DuQw4.roa (raw, json) Hash identifier: nZiVzcf4EnknurihRkUREMkpQVHN0LJkiBmCqD91PTc= Subject key identifier: 63:AD:6A:70:41:42:ED:41:D8:DE:84:78:3D:6B:87:53:D0:EE:43:0E Certificate issuer: /CN=37fb004e397ddf04e7d05f3643a036f21836ff10 Certificate serial: 019ABFA2EA5B1E57CB68BBBA1BE96B0ABA5A Authority key identifier: 37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/Y61qcEFC7UHY3oR4PWuHU9DuQw4.roa Signing time: Wed 26 Nov 2025 10:08:36 +0000 ROA not before: Wed 26 Nov 2025 10:08:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 29134 IP address blocks: 37.46.80.0/21 maxlen: 21 62.109.128.0/19 maxlen: 24 130.193.8.0/21 maxlen: 24 171.33.136.0/21 maxlen: 21 185.100.92.0/22 maxlen: 22 185.102.20.0/22 maxlen: 24 185.102.76.0/22 maxlen: 22 213.109.164.0/22 maxlen: 24 217.31.48.0/20 maxlen: 20 2001:1ab0::/32 maxlen: 32 2a00:ca80::/32 maxlen: 32 2a03:b780::/32 maxlen: 32 2a09:ec00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.mft rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:bf:a2:ea:5b:1e:57:cb:68:bb:ba:1b:e9:6b:0a:ba:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37fb004e397ddf04e7d05f3643a036f21836ff10 Validity Not Before: Nov 26 10:08:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=63ad6a704142ed41d8de84783d6b8753d0ee430e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:45:15:c0:0c:03:42:d4:e8:2f:17:64:94:bf: c9:3c:c3:fb:9e:69:8d:12:bb:92:9a:56:b8:70:af: ae:d5:36:cd:ca:fb:ba:d7:7c:72:52:a7:4f:41:cf: a2:1d:04:d3:8e:43:3b:d1:1d:32:77:f5:e0:91:85: eb:ac:24:24:f3:4a:34:87:b5:1e:4d:a7:f8:78:3b: 74:0e:f0:4f:7c:1b:a3:4f:fa:fe:ea:9b:70:4c:80: 48:66:05:10:4a:a2:67:84:94:18:d5:35:9b:b0:5b: 9f:70:b5:37:23:99:12:e4:88:e5:76:6e:1a:3e:a3: 4f:4b:38:17:d5:a4:b8:28:c5:f4:f5:d4:0d:b3:dc: e7:45:ae:f5:93:8c:97:d6:ce:b1:81:a9:b9:53:94: f6:92:d9:e0:ff:10:2b:4d:2b:26:c7:1a:4b:c8:9d: 0d:53:8c:c1:66:08:f6:e7:26:34:26:3e:09:f9:68: 8d:44:77:0f:22:f2:c0:91:fd:a9:dd:e5:72:18:b5: 71:7d:81:ee:eb:3e:4a:af:cd:56:68:06:cf:93:48: 24:68:c9:7b:ff:c2:f4:76:c4:23:c5:9a:2e:2b:49: 05:0b:5b:f3:70:d6:16:7e:90:4b:6f:54:98:4d:a4: 49:87:c7:8b:55:f5:3e:90:5d:12:43:2b:dc:43:d3: 91:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:AD:6A:70:41:42:ED:41:D8:DE:84:78:3D:6B:87:53:D0:EE:43:0E X509v3 Authority Key Identifier: keyid:37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/Y61qcEFC7UHY3oR4PWuHU9DuQw4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.46.80.0/21 62.109.128.0/19 130.193.8.0/21 171.33.136.0/21 185.100.92.0/22 185.102.20.0/22 185.102.76.0/22 213.109.164.0/22 217.31.48.0/20 IPv6: 2001:1ab0::/32 2a00:ca80::/32 2a03:b780::/32 2a09:ec00::/29 Signature Algorithm: sha256WithRSAEncryption 55:8b:b4:12:66:ec:04:17:8b:4f:08:70:fd:8c:3a:f6:ee:79: f5:20:da:d8:d0:45:e0:83:64:16:4d:f6:52:52:1c:24:68:49: 6f:98:be:2a:ab:a8:0f:f7:1c:15:b0:94:9c:38:c2:50:12:70: 47:b0:5c:05:c4:29:8f:4a:ba:a8:64:ca:ea:ad:e5:40:e2:5e: 08:22:e2:41:cd:28:be:d9:50:3c:08:6c:16:f3:54:46:60:9f: 34:97:2d:29:68:1e:63:3f:60:f9:26:cf:91:fd:3d:c9:25:93: db:7f:5b:2e:98:53:60:f1:b8:45:aa:d1:65:bb:07:5b:8f:31: c2:d4:37:4c:9b:0d:96:f1:be:7a:9a:f1:9d:ca:ce:d7:08:1e: 79:94:5c:0d:75:82:e7:de:10:52:2e:55:0e:3c:0f:e4:89:33: 4a:cf:f2:54:7e:15:e8:18:2d:dd:c5:1d:65:a7:5d:19:1a:cc: 43:8f:6f:52:ce:c8:aa:51:e8:8c:dc:78:d0:68:c4:b3:e0:62: c2:8e:6c:81:88:db:f2:90:4f:b0:48:c1:d6:0e:ac:27:aa:4f: 14:cf:fb:1e:c5:22:3a:1a:28:34:ab:83:af:1b:e0:9f:fb:d9: be:3b:3c:ea:6b:cb:20:35:9e:44:c9:58:ab:97:b0:7b:a5:1a: d1:80:11:9b -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgISAZq/oupbHlfLaLu6G+lrCrpaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3ZmIwMDRlMzk3ZGRmMDRlN2QwNWYzNjQzYTAzNmYyMTgz NmZmMTAwHhcNMjUxMTI2MTAwODM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2M2FkNmE3MDQxNDJlZDQxZDhkZTg0NzgzZDZiODc1M2QwZWU0MzBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEUVwAwDQtToLxdklL/JPMP7nmmN EruSmla4cK+u1TbNyvu613xyUqdPQc+iHQTTjkM70R0yd/XgkYXrrCQk80o0h7Ue Taf4eDt0DvBPfBujT/r+6ptwTIBIZgUQSqJnhJQY1TWbsFufcLU3I5kS5Ijldm4a PqNPSzgX1aS4KMX09dQNs9znRa71k4yX1s6xgam5U5T2ktng/xArTSsmxxpLyJ0N U4zBZgj25yY0Jj4J+WiNRHcPIvLAkf2p3eVyGLVxfYHu6z5Kr81WaAbPk0gkaMl7 /8L0dsQjxZouK0kFC1vzcNYWfpBLb1SYTaRJh8eLVfU+kF0SQyvcQ9ORiwIDAQAB o4ICXTCCAlkwHQYDVR0OBBYEFGOtanBBQu1B2N6EeD1rh1PQ7kMOMB8GA1UdIwQY MBaAFDf7AE45fd8E59BfNkOgNvIYNv8QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTl9zQVRqbDkzd1RuMEY4MlE2QTI4aGcyX3hBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS83NDIyOTktZjM0My00MzIxLWIzNTEt YjUzYjY0Y2YwZDk1LzEvWTYxcWNFRkM3VUhZM29SNFBXdUhVOUR1UXc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS83NDIyOTktZjM0My00MzIxLWIzNTEtYjUzYjY0Y2YwZDk1 LzEvTl9zQVRqbDkzd1RuMEY4MlE2QTI4aGcyX3hBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjA8BAIAATA2AwQDJS5QAwQF Pm2AAwQDgsEIAwQDqyGIAwQCuWRcAwQCuWYUAwQCuWZMAwQC1W2kAwQE2R8wMCIE AgACMBwDBQAgARqwAwUAKgDKgAMFACoDt4ADBQMqCewAMA0GCSqGSIb3DQEBCwUA A4IBAQBVi7QSZuwEF4tPCHD9jDr27nn1INrY0EXgg2QWTfZSUhwkaElvmL4qq6gP 9xwVsJScOMJQEnBHsFwFxCmPSrqoZMrqreVA4l4IIuJBzSi+2VA8CGwW81RGYJ80 ly0paB5jP2D5Js+R/T3JJZPbf1sumFNg8bhFqtFluwdbjzHC1DdMmw2W8b56mvGd ys7XCB55lFwNdYLn3hBSLlUOPA/kiTNKz/JUfhXoGC3dxR1lp10ZGsxDj29Szsiq UeiM3HjQaMSz4GLCjmyBiNvykE+wSMHWDqwnqk8Uz/sexSI6Gig0q4OvG+Cf+9m+ Ozzqa8sgNZ5EyVirl7B7pRrRgBGb -----END CERTIFICATE-----Generated at Sat Dec 6 17:19:25 2025 by rpki-client