This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/sBswLDnyePuF7Wb4bNeFEX6khaA.roa File: sBswLDnyePuF7Wb4bNeFEX6khaA.roa (raw, json) Hash identifier: q527iz5VwNMqqpTHR8opQ9UxQkOaCpJMBwKrLwpuxmM= Subject key identifier: B0:1B:30:2C:39:F2:78:FB:85:ED:66:F8:6C:D7:85:11:7E:A4:85:A0 Certificate issuer: /CN=c64fa0ad8987149f05534724b45a2f4d5ebf475d Certificate serial: 019A73BBC969D2037DCF4E581760755D3044 Authority key identifier: C6:4F:A0:AD:89:87:14:9F:05:53:47:24:B4:5A:2F:4D:5E:BF:47:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/sBswLDnyePuF7Wb4bNeFEX6khaA.roa Signing time: Tue 11 Nov 2025 16:24:37 +0000 ROA not before: Tue 11 Nov 2025 16:24:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215250 IP address blocks: 45.91.12.0/24 maxlen: 24 2a06:d1c3::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/xk-grYmHFJ8FU0cktFovTV6_R10.crl rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/xk-grYmHFJ8FU0cktFovTV6_R10.mft rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:73:bb:c9:69:d2:03:7d:cf:4e:58:17:60:75:5d:30:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c64fa0ad8987149f05534724b45a2f4d5ebf475d Validity Not Before: Nov 11 16:24:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=b01b302c39f278fb85ed66f86cd785117ea485a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9d:ec:09:9a:c5:49:e7:ac:50:82:d2:b9:41: 02:94:88:a2:43:6f:6d:36:e1:a0:90:1f:92:39:a0: 9f:46:4c:7a:9e:4b:ef:54:8d:eb:60:78:e4:97:e0: 7a:57:83:55:30:5f:60:64:22:97:fa:f4:d2:3a:8c: 61:06:46:5a:80:ca:08:b4:85:fe:52:5e:01:25:f3: 49:80:ca:9f:fd:1f:6c:38:16:96:66:51:78:f9:69: ce:c5:7c:90:b7:ca:0b:c0:12:dd:c6:89:77:ff:b8: d2:15:7f:fb:78:07:1c:77:6d:40:18:46:38:b8:cf: 76:64:b2:d1:77:06:53:65:14:4b:1e:59:47:71:0a: 09:8e:cb:53:6d:5b:f6:37:7a:c8:24:f8:2b:7b:b6: 3d:71:6d:cf:1d:c4:5b:15:5e:28:49:04:b1:2e:39: 15:5c:b7:e2:f3:28:71:cd:dd:0f:6d:af:c4:0c:00: 75:02:4b:d4:f3:a4:ea:b2:9a:7b:16:6e:17:ef:b2: 5a:a2:0e:b1:65:32:d1:0d:6e:3d:6e:03:ac:2b:06: 94:5e:63:c8:bd:d1:c0:a3:07:75:9b:25:a9:15:2d: 58:7c:33:f4:b2:6f:e9:87:88:88:aa:d8:db:b4:33: 63:39:e0:3d:9c:89:a2:59:6c:75:9e:fc:83:14:41: 32:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:1B:30:2C:39:F2:78:FB:85:ED:66:F8:6C:D7:85:11:7E:A4:85:A0 X509v3 Authority Key Identifier: keyid:C6:4F:A0:AD:89:87:14:9F:05:53:47:24:B4:5A:2F:4D:5E:BF:47:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/sBswLDnyePuF7Wb4bNeFEX6khaA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/xk-grYmHFJ8FU0cktFovTV6_R10.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.91.12.0/24 IPv6: 2a06:d1c3::/32 Signature Algorithm: sha256WithRSAEncryption 08:4b:46:b5:32:1e:dd:66:fc:1a:88:ae:c2:2f:a3:ab:c7:9f: da:06:d1:88:ce:ae:a7:62:e3:97:15:10:a5:63:b0:59:a3:59: bf:d9:fe:2c:7f:9d:49:5a:01:35:bb:1d:2a:66:15:04:63:e0: 3b:d9:55:9c:33:1b:c1:94:a5:84:88:11:ad:11:e2:2e:1c:70: 5a:2f:67:20:08:3d:37:3a:a9:94:4f:5a:fc:79:77:0e:98:6e: 6d:c0:ca:66:b9:27:20:b6:82:68:ea:c9:1b:34:23:4a:b3:0f: f9:37:94:3e:85:35:1b:21:90:a6:09:ac:cf:ae:0c:c0:91:0b: 5e:d8:a8:d4:15:f3:97:aa:33:bb:67:fa:7b:cb:e6:a1:1d:8d: e7:df:0c:5e:9d:60:20:7d:58:6d:74:ee:3e:03:c2:7c:26:3e: fe:96:dd:2e:03:b5:5a:2d:df:e9:38:44:7d:b1:ec:12:a5:62: 17:83:4b:78:1b:ad:af:2c:a7:76:c4:68:66:3a:3e:b3:d8:4b: a2:97:ac:52:40:1d:f5:fa:e7:1e:b1:f6:62:f5:e7:54:18:d4: 86:13:9c:b8:70:4f:26:d8:dd:a2:46:ba:2f:9e:3e:6c:7d:d3: b5:7a:53:bf:58:a9:79:10:1a:2f:d3:b1:bb:79:92:7f:2f:80: 97:61:90:da -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZpzu8lp0gN9z05YF2B1XTBEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NGZhMGFkODk4NzE0OWYwNTUzNDcyNGI0NWEyZjRkNWVi ZjQ3NWQwHhcNMjUxMTExMTYyNDM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDFiMzAyYzM5ZjI3OGZiODVlZDY2Zjg2Y2Q3ODUxMTdlYTQ4NWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3p3sCZrFSeesUILSuUEClIiiQ29t NuGgkB+SOaCfRkx6nkvvVI3rYHjkl+B6V4NVMF9gZCKX+vTSOoxhBkZagMoItIX+ Ul4BJfNJgMqf/R9sOBaWZlF4+WnOxXyQt8oLwBLdxol3/7jSFX/7eAccd21AGEY4 uM92ZLLRdwZTZRRLHllHcQoJjstTbVv2N3rIJPgre7Y9cW3PHcRbFV4oSQSxLjkV XLfi8yhxzd0Pba/EDAB1AkvU86Tqspp7Fm4X77Jaog6xZTLRDW49bgOsKwaUXmPI vdHAowd1myWpFS1YfDP0sm/ph4iIqtjbtDNjOeA9nImiWWx1nvyDFEEylQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLAbMCw58nj7he1m+GzXhRF+pIWgMB8GA1UdIwQY MBaAFMZPoK2JhxSfBVNHJLRaL01ev0ddMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGstZ3JZbUhGSjhGVTBja3RGb3ZUVjZfUjEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8yNDAxNWYtMDkxYy00YzVkLWI1YzEt YmNmNzcwMjY5MzlkLzEvc0Jzd0xEbnllUHVGN1diNGJOZUZFWDZraGFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8yNDAxNWYtMDkxYy00YzVkLWI1YzEtYmNmNzcwMjY5Mzlk LzEveGstZ3JZbUhGSjhGVTBja3RGb3ZUVjZfUjEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALVsMMA0E AgACMAcDBQAqBtHDMA0GCSqGSIb3DQEBCwUAA4IBAQAIS0a1Mh7dZvwaiK7CL6Or x5/aBtGIzq6nYuOXFRClY7BZo1m/2f4sf51JWgE1ux0qZhUEY+A72VWcMxvBlKWE iBGtEeIuHHBaL2cgCD03OqmUT1r8eXcOmG5twMpmuScgtoJo6skbNCNKsw/5N5Q+ hTUbIZCmCazPrgzAkQte2KjUFfOXqjO7Z/p7y+ahHY3n3wxenWAgfVhtdO4+A8J8 Jj7+lt0uA7VaLd/pOER9sewSpWIXg0t4G62vLKd2xGhmOj6z2Euil6xSQB31+uce sfZi9edUGNSGE5y4cE8m2N2iRrovnj5sfdO1elO/WKl5EBov07G7eZJ/L4CXYZDa -----END CERTIFICATE-----Generated at Sat Dec 6 05:42:13 2025 by rpki-client