This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9cae10-1613-4b9e-bba4-24d42a151c0a/1/6r2Bj1mIQGip_1ctL1k_iWQiYYY.roa File: 6r2Bj1mIQGip_1ctL1k_iWQiYYY.roa (raw, json) Hash identifier: 1qHrwUKa7XCtms4nI+bnhKQKhVNrn1iunF0LD7+2ioo= Subject key identifier: EA:BD:81:8F:59:88:40:68:A9:FF:57:2D:2F:59:3F:89:64:22:61:86 Certificate issuer: /CN=95a8c0090301995564aa2138b430389ef88cd77b Certificate serial: 019A97E76DB1CBD3D2AA9D9F733E3162F8E0 Authority key identifier: 95:A8:C0:09:03:01:99:55:64:AA:21:38:B4:30:38:9E:F8:8C:D7:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lajACQMBmVVkqiE4tDA4nviM13s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9cae10-1613-4b9e-bba4-24d42a151c0a/1/6r2Bj1mIQGip_1ctL1k_iWQiYYY.roa Signing time: Tue 18 Nov 2025 16:58:37 +0000 ROA not before: Tue 18 Nov 2025 16:58:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 44372 IP address blocks: 193.93.152.0/22 maxlen: 24 2a07:3ec0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9cae10-1613-4b9e-bba4-24d42a151c0a/1/lajACQMBmVVkqiE4tDA4nviM13s.crl rsync://rpki.ripe.net/repository/DEFAULT/34/9cae10-1613-4b9e-bba4-24d42a151c0a/1/lajACQMBmVVkqiE4tDA4nviM13s.mft rsync://rpki.ripe.net/repository/DEFAULT/lajACQMBmVVkqiE4tDA4nviM13s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:97:e7:6d:b1:cb:d3:d2:aa:9d:9f:73:3e:31:62:f8:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95a8c0090301995564aa2138b430389ef88cd77b Validity Not Before: Nov 18 16:58:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=eabd818f59884068a9ff572d2f593f8964226186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4f:fd:86:78:80:29:30:c6:cc:c8:9c:47:50: 30:08:04:8c:c2:72:12:25:f9:b8:3a:38:6a:53:e7: 0c:d5:a3:e8:27:21:6c:20:21:f6:0c:7c:58:89:e5: fa:0c:8a:b4:a9:a6:95:6d:bf:ff:d8:b6:b2:85:6a: e9:d8:cb:74:30:b9:86:56:7c:b1:f9:b8:95:29:59: f9:a0:55:74:23:ea:56:8c:8c:37:4d:80:bc:67:c3: 16:1b:3c:8f:0d:8d:27:b0:89:4c:51:0e:91:0b:c0: f9:39:23:e3:34:13:97:50:05:d7:d6:59:5a:6a:b6: a4:86:fa:43:3e:f6:b3:bb:ce:66:61:26:a1:3c:90: 70:fc:51:40:40:13:13:b2:f0:7c:52:48:d4:64:d7: 72:1c:01:a6:76:72:7c:b5:25:83:78:a2:65:28:31: 17:bd:7b:d6:69:37:b4:ff:07:06:19:97:c3:74:b8: ad:fb:8f:04:7c:27:66:60:d0:a3:ec:d3:73:9f:5e: 54:9e:0f:1e:49:7a:6d:3b:9b:c6:8f:ab:4b:8f:e2: 2a:c8:eb:e5:fb:b9:43:61:35:c6:d8:46:de:ee:ff: 01:c7:0a:0d:52:d8:6c:a7:7e:c4:19:a4:b9:25:1b: 5f:32:00:54:4f:15:a4:80:d4:68:23:66:84:9c:d8: 35:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:BD:81:8F:59:88:40:68:A9:FF:57:2D:2F:59:3F:89:64:22:61:86 X509v3 Authority Key Identifier: keyid:95:A8:C0:09:03:01:99:55:64:AA:21:38:B4:30:38:9E:F8:8C:D7:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lajACQMBmVVkqiE4tDA4nviM13s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9cae10-1613-4b9e-bba4-24d42a151c0a/1/6r2Bj1mIQGip_1ctL1k_iWQiYYY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9cae10-1613-4b9e-bba4-24d42a151c0a/1/lajACQMBmVVkqiE4tDA4nviM13s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.93.152.0/22 IPv6: 2a07:3ec0::/29 Signature Algorithm: sha256WithRSAEncryption 5d:5e:cd:c4:cd:0e:87:8a:97:c4:da:e5:e6:61:6b:1d:6d:f5: 33:5c:fd:ca:95:52:be:dc:0e:c2:36:b6:5a:53:37:46:ee:2f: ab:ae:e0:3d:fb:0f:72:19:d8:95:78:60:db:80:f4:d5:e5:3b: 47:47:ff:a7:95:d8:8e:eb:a1:76:65:d1:1a:cf:a4:a4:fc:32: 46:5f:79:66:54:a8:92:7f:e1:e5:ad:e6:29:77:2a:c4:f1:00: e6:75:96:4b:b4:b7:f9:a3:b1:13:14:fe:47:6f:b7:0b:11:8e: 09:fd:ef:57:b6:59:1a:b8:83:fb:a6:ca:7e:34:af:ff:58:c8: e8:37:c8:dc:e3:84:19:51:b4:8e:94:83:ff:4c:a3:5b:71:96: 50:70:e0:d9:42:bf:43:01:61:36:a7:bb:8f:31:bd:e4:01:b1: d5:8a:0e:c8:02:a7:30:75:27:8c:75:c9:97:02:84:c3:8c:93: 52:8c:65:a9:fa:e3:fb:d4:84:ae:72:d7:9f:54:8a:c9:4a:54: 3c:6f:0f:b2:4f:a6:63:12:10:ba:89:eb:68:d6:c5:6d:59:66: 32:2e:c2:5d:f0:1b:0d:bd:a4:fb:82:56:f8:c1:b5:96:9b:56: cd:6a:ee:65:4a:ce:b9:65:5e:f2:fc:ee:19:2b:cb:b2:ff:4c: 6d:3b:06:8a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZqX522xy9PSqp2fcz4xYvjgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1YThjMDA5MDMwMTk5NTU2NGFhMjEzOGI0MzAzODllZjg4 Y2Q3N2IwHhcNMjUxMTE4MTY1ODM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYWJkODE4ZjU5ODg0MDY4YTlmZjU3MmQyZjU5M2Y4OTY0MjI2MTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0/9hniAKTDGzMicR1AwCASMwnIS Jfm4OjhqU+cM1aPoJyFsICH2DHxYieX6DIq0qaaVbb//2LayhWrp2Mt0MLmGVnyx +biVKVn5oFV0I+pWjIw3TYC8Z8MWGzyPDY0nsIlMUQ6RC8D5OSPjNBOXUAXX1lla arakhvpDPvazu85mYSahPJBw/FFAQBMTsvB8UkjUZNdyHAGmdnJ8tSWDeKJlKDEX vXvWaTe0/wcGGZfDdLit+48EfCdmYNCj7NNzn15Ung8eSXptO5vGj6tLj+IqyOvl +7lDYTXG2Ebe7v8BxwoNUthsp37EGaS5JRtfMgBUTxWkgNRoI2aEnNg1JwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFOq9gY9ZiEBoqf9XLS9ZP4lkImGGMB8GA1UdIwQY MBaAFJWowAkDAZlVZKohOLQwOJ74jNd7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGFqQUNRTUJtVlZrcWlFNHREQTRudmlNMTNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85Y2FlMTAtMTYxMy00YjllLWJiYTQt MjRkNDJhMTUxYzBhLzEvNnIyQmoxbUlRR2lwXzFjdEwxa19pV1FpWVlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC85Y2FlMTAtMTYxMy00YjllLWJiYTQtMjRkNDJhMTUxYzBh LzEvbGFqQUNRTUJtVlZrcWlFNHREQTRudmlNMTNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwV2YMA0E AgACMAcDBQMqBz7AMA0GCSqGSIb3DQEBCwUAA4IBAQBdXs3EzQ6HipfE2uXmYWsd bfUzXP3KlVK+3A7CNrZaUzdG7i+rruA9+w9yGdiVeGDbgPTV5TtHR/+nldiO66F2 ZdEaz6Sk/DJGX3lmVKiSf+HlreYpdyrE8QDmdZZLtLf5o7ETFP5Hb7cLEY4J/e9X tlkauIP7psp+NK//WMjoN8jc44QZUbSOlIP/TKNbcZZQcODZQr9DAWE2p7uPMb3k AbHVig7IAqcwdSeMdcmXAoTDjJNSjGWp+uP71ISuctefVIrJSlQ8bw+yT6ZjEhC6 ieto1sVtWWYyLsJd8BsNvaT7glb4wbWWm1bNau5lSs65ZV7y/O4ZK8uy/0xtOwaK -----END CERTIFICATE-----Generated at Sat Dec 6 18:06:52 2025 by rpki-client