This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/h4PDpP0M0yOGU1mpUArUtI5Idr8.roa File: h4PDpP0M0yOGU1mpUArUtI5Idr8.roa (raw, json) Hash identifier: YVprxIKiaEXVzIvOMSOvD2ydRXyvhQlAyDHVx3fQ/Zc= Subject key identifier: 87:83:C3:A4:FD:0C:D3:23:86:53:59:A9:50:0A:D4:B4:8E:48:76:BF Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664 Certificate serial: 019B048EDB0F85A23DA748DF26A53F28F37C Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/h4PDpP0M0yOGU1mpUArUtI5Idr8.roa Signing time: Tue 09 Dec 2025 19:20:29 +0000 ROA not before: Tue 09 Dec 2025 19:20:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 45.85.244.0/23 maxlen: 24 45.85.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.mft rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 14:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:04:8e:db:0f:85:a2:3d:a7:48:df:26:a5:3f:28:f3:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664 Validity Not Before: Dec 9 19:20:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=8783c3a4fd0cd323865359a9500ad4b48e4876bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:2a:00:7c:5b:21:d7:76:96:1b:87:7f:d2:1e: d0:5b:f1:c2:f7:61:9e:4d:dd:c9:5c:af:0e:68:24: 53:d4:29:70:43:5d:9e:12:00:3e:c9:77:97:10:0a: a5:b4:32:2c:a4:44:86:9a:20:a6:b0:45:5a:fa:65: 5f:df:51:e6:e2:2a:5e:82:78:52:cd:fd:f7:63:32: 87:45:94:74:a5:27:72:2d:d4:6e:90:b8:c3:19:8a: df:29:0a:57:f3:d0:3f:27:42:40:26:f3:f1:4f:3f: c8:ed:8c:1b:86:a7:8d:ad:5d:0e:9d:c2:ca:3a:54: 4d:70:55:7f:97:6e:ad:19:44:4f:13:11:12:28:74: e2:d3:5e:32:84:8f:bf:b3:c0:df:c5:22:1f:e4:63: a7:73:d6:f2:31:ba:b4:42:b8:0b:b1:b6:11:f7:bf: 92:07:db:48:8d:eb:36:ea:93:bd:89:92:53:f3:3c: e0:2b:bd:d8:01:29:ea:8a:54:e6:08:e0:06:be:a5: ac:c6:73:71:ae:64:36:04:6f:c1:39:ff:9f:12:79: 46:30:a7:b5:b1:7e:ca:b5:73:74:60:d7:92:46:f9: ed:3f:95:59:e9:8e:bd:12:72:ca:51:02:ca:7b:e1: 4f:c3:e8:a9:f4:41:0f:2a:3c:2a:8a:38:48:0a:9d: 7e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:83:C3:A4:FD:0C:D3:23:86:53:59:A9:50:0A:D4:B4:8E:48:76:BF X509v3 Authority Key Identifier: keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/h4PDpP0M0yOGU1mpUArUtI5Idr8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.85.244.0-45.85.246.255 Signature Algorithm: sha256WithRSAEncryption 52:56:a1:4a:ac:82:b9:b3:6c:cb:6b:9b:ae:07:74:5a:31:dc: 7d:87:dd:0b:f9:ce:7e:f0:9c:22:41:2c:38:8a:93:72:d7:fa: 84:e7:4e:73:c7:ef:8d:79:5d:74:20:48:51:81:99:39:e2:7e: 4f:4f:5b:64:30:85:ea:a1:96:8f:bb:91:f5:0a:06:fd:f7:f5: 12:61:f4:09:51:dd:2e:ff:0e:ca:ef:de:e7:df:ba:64:9f:b5: 3a:9d:b7:7c:a4:e8:a0:c1:3f:df:8f:10:f3:dc:75:94:7a:26: d1:04:59:a7:e3:d1:15:86:94:14:92:b2:83:63:6c:f6:37:c4: 4d:ae:c5:e8:29:03:36:98:a7:8c:e7:d7:51:dd:8a:a0:63:a7: 45:4b:b4:06:b2:bd:2f:36:66:42:ec:8e:37:07:73:42:08:83: 8a:46:67:3c:fc:31:46:4d:1c:e2:0a:72:ab:3e:7e:ff:a2:be: b8:97:b8:4d:a6:15:1f:a9:9a:96:a8:d8:53:d6:d6:c5:24:aa: df:af:87:a6:14:58:76:f8:74:4d:a1:b3:04:ce:24:c4:9f:18: 7e:a5:b5:2a:68:7a:6f:bb:cc:ae:c6:6b:45:bb:28:ed:d4:fc: 7a:f3:8e:80:a9:0f:b2:a4:d6:83:d3:67:91:d0:b2:de:93:a5: 53:1d:fb:af -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZsEjtsPhaI9p0jfJqU/KPN8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkMjk5OTA0MmM1ZTIwMDZiZDVhZWI3YTA1ZGUxZTk2YTVl NzM2NjQwHhcNMjUxMjA5MTkyMDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzgzYzNhNGZkMGNkMzIzODY1MzU5YTk1MDBhZDRiNDhlNDg3NmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjioAfFsh13aWG4d/0h7QW/HC92Ge Td3JXK8OaCRT1ClwQ12eEgA+yXeXEAqltDIspESGmiCmsEVa+mVf31Hm4ipegnhS zf33YzKHRZR0pSdyLdRukLjDGYrfKQpX89A/J0JAJvPxTz/I7YwbhqeNrV0OncLK OlRNcFV/l26tGURPExESKHTi014yhI+/s8DfxSIf5GOnc9byMbq0QrgLsbYR97+S B9tIjes26pO9iZJT8zzgK73YASnqilTmCOAGvqWsxnNxrmQ2BG/BOf+fEnlGMKe1 sX7KtXN0YNeSRvntP5VZ6Y69EnLKUQLKe+FPw+ip9EEPKjwqijhICp1+MwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFIeDw6T9DNMjhlNZqVAK1LSOSHa/MB8GA1UdIwQY MBaAFA0pmQQsXiAGvVrregXeHpal5zZkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUt OGMxNTM5NjViYWM5LzEvaDRQRHBQME0weU9HVTFtcFVBclV0STVJZHI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUtOGMxNTM5NjViYWM5 LzEvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAItVfQD BAAtVfYwDQYJKoZIhvcNAQELBQADggEBAFJWoUqsgrmzbMtrm64HdFox3H2H3Qv5 zn7wnCJBLDiKk3LX+oTnTnPH7415XXQgSFGBmTnifk9PW2Qwheqhlo+7kfUKBv33 9RJh9AlR3S7/Dsrv3uffumSftTqdt3yk6KDBP9+PEPPcdZR6JtEEWafj0RWGlBSS soNjbPY3xE2uxegpAzaYp4zn11HdiqBjp0VLtAayvS82ZkLsjjcHc0IIg4pGZzz8 MUZNHOIKcqs+fv+ivriXuE2mFR+pmpao2FPW1sUkqt+vh6YUWHb4dE2hswTOJMSf GH6ltSpoem+7zK7Ga0W7KO3U/HrzjoCpD7Kk1oPTZ5HQst6TpVMd+68= -----END CERTIFICATE-----Generated at Mon Dec 15 17:02:38 2025 by rpki-client