This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/5bce46-cc9b-483f-b940-047ba0e62de4/1/PiBF7vMeEaCANhl0WyoDIRsOmrk.roa File: PiBF7vMeEaCANhl0WyoDIRsOmrk.roa (raw, json) Hash identifier: VfGDAA4Ca79LBpavwaOnFjjly+yQmttT8pL6xES0+lo= Subject key identifier: 3E:20:45:EE:F3:1E:11:A0:80:36:19:74:5B:2A:03:21:1B:0E:9A:B9 Certificate issuer: /CN=ef0294479459182459c15d8ca010a8a7f47f80c8 Certificate serial: 019ABC776FD31C93D0AC4DE7289E827FC2A8 Authority key identifier: EF:02:94:47:94:59:18:24:59:C1:5D:8C:A0:10:A8:A7:F4:7F:80:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7wKUR5RZGCRZwV2MoBCop_R_gMg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/5bce46-cc9b-483f-b940-047ba0e62de4/1/PiBF7vMeEaCANhl0WyoDIRsOmrk.roa Signing time: Tue 25 Nov 2025 19:22:15 +0000 ROA not before: Tue 25 Nov 2025 19:22:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 42320 IP address blocks: 77.72.112.0/21 maxlen: 21 77.72.112.0/24 maxlen: 24 77.72.116.0/24 maxlen: 24 77.72.117.0/24 maxlen: 24 77.72.118.0/24 maxlen: 24 77.72.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/5bce46-cc9b-483f-b940-047ba0e62de4/1/7wKUR5RZGCRZwV2MoBCop_R_gMg.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/5bce46-cc9b-483f-b940-047ba0e62de4/1/7wKUR5RZGCRZwV2MoBCop_R_gMg.mft rsync://rpki.ripe.net/repository/DEFAULT/7wKUR5RZGCRZwV2MoBCop_R_gMg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:bc:77:6f:d3:1c:93:d0:ac:4d:e7:28:9e:82:7f:c2:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef0294479459182459c15d8ca010a8a7f47f80c8 Validity Not Before: Nov 25 19:22:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3e2045eef31e11a0803619745b2a03211b0e9ab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:73:fe:f9:f4:a8:6f:38:a8:22:c9:95:06:d6: 7a:d0:aa:6c:17:30:32:48:bd:cb:04:ef:ea:1b:fc: 37:ce:8b:9b:9a:36:e1:2a:58:e1:50:b2:48:70:e9: a1:00:bf:84:21:15:5f:11:1f:cc:70:47:94:bf:85: 89:78:42:f3:30:12:53:43:b1:c7:21:08:60:7b:ff: f0:1d:a3:fa:63:db:d1:bb:be:2c:5e:1d:2d:9d:45: 8c:44:3a:a3:19:65:d6:63:03:23:96:e1:e9:a0:da: df:51:0b:80:54:37:0b:b4:03:5b:67:27:2a:da:8e: 89:ca:05:80:73:a8:a2:cd:a6:7c:65:c4:97:ab:b0: a9:26:cd:82:25:8f:1c:eb:46:44:3c:1d:2c:f7:74: de:73:cf:36:6b:e1:1d:53:ee:51:5f:7f:00:cd:5c: d5:46:6d:09:18:6e:62:0f:7c:d4:04:56:5f:9c:7b: 0c:16:a3:4d:36:e0:9c:cf:3b:1c:5f:9d:ac:9f:fe: cd:56:c2:19:ae:a8:65:71:e9:f6:d0:bc:c9:76:9a: cd:ec:2e:41:e4:7f:93:bc:ab:74:13:01:63:f4:79: e1:0f:03:eb:f9:3c:35:30:26:2f:8c:66:f6:08:95: 0f:1d:57:86:54:b2:9f:a2:91:48:b0:c9:7f:68:fd: a7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:20:45:EE:F3:1E:11:A0:80:36:19:74:5B:2A:03:21:1B:0E:9A:B9 X509v3 Authority Key Identifier: keyid:EF:02:94:47:94:59:18:24:59:C1:5D:8C:A0:10:A8:A7:F4:7F:80:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7wKUR5RZGCRZwV2MoBCop_R_gMg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/5bce46-cc9b-483f-b940-047ba0e62de4/1/PiBF7vMeEaCANhl0WyoDIRsOmrk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/5bce46-cc9b-483f-b940-047ba0e62de4/1/7wKUR5RZGCRZwV2MoBCop_R_gMg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.72.112.0/21 Signature Algorithm: sha256WithRSAEncryption 28:ce:0d:4e:cd:6b:08:85:00:38:15:06:db:73:75:f5:98:6e: b1:49:b7:5a:52:f3:7c:db:46:3f:ae:75:ac:9a:7e:41:92:b6: 97:f6:68:86:0f:43:19:ea:a4:69:d7:0b:6e:09:31:d5:0c:25: fe:89:ed:65:80:c6:2c:d1:02:bb:64:85:42:30:7c:05:8c:86: c4:b4:d2:9a:c8:e6:9c:f0:25:03:53:b3:57:75:c1:ac:5a:75: 3d:49:bb:be:c2:e3:3f:b2:3e:de:66:8e:d3:3d:18:e7:3b:f8: 20:d2:49:ba:2a:01:0e:9d:32:ee:6a:a9:60:c1:3b:39:af:0c: da:88:f4:d7:8d:07:29:58:8e:13:1c:c7:4e:61:e7:8b:2a:04: 35:85:5c:55:16:4c:a6:4c:ed:4b:b5:48:8b:c1:af:8a:9f:2d: 9c:84:5a:55:e2:92:60:df:a5:26:b6:2b:0a:d3:4a:26:bd:aa: 27:e2:18:11:ca:af:67:0a:9c:52:96:6b:6d:24:02:97:a4:5d: f8:8c:13:99:0b:cc:e7:e8:5b:d9:0c:d8:2a:26:ea:3d:d5:89: 1d:ca:b4:aa:6e:40:c5:e5:11:4c:c1:5f:6c:f1:c4:50:ad:58: 3f:69:6e:80:97:22:73:8c:dc:c4:8f:41:ed:59:72:a5:1d:50: 35:39:bb:09 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZq8d2/THJPQrE3nKJ6Cf8KoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmMDI5NDQ3OTQ1OTE4MjQ1OWMxNWQ4Y2EwMTBhOGE3ZjQ3 ZjgwYzgwHhcNMjUxMTI1MTkyMjE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZTIwNDVlZWYzMWUxMWEwODAzNjE5NzQ1YjJhMDMyMTFiMGU5YWI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4XP++fSobzioIsmVBtZ60KpsFzAy SL3LBO/qG/w3zoubmjbhKljhULJIcOmhAL+EIRVfER/McEeUv4WJeELzMBJTQ7HH IQhge//wHaP6Y9vRu74sXh0tnUWMRDqjGWXWYwMjluHpoNrfUQuAVDcLtANbZycq 2o6JygWAc6iizaZ8ZcSXq7CpJs2CJY8c60ZEPB0s93Tec882a+EdU+5RX38AzVzV Rm0JGG5iD3zUBFZfnHsMFqNNNuCczzscX52sn/7NVsIZrqhlcen20LzJdprN7C5B 5H+TvKt0EwFj9HnhDwPr+Tw1MCYvjGb2CJUPHVeGVLKfopFIsMl/aP2nXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD4gRe7zHhGggDYZdFsqAyEbDpq5MB8GA1UdIwQY MBaAFO8ClEeUWRgkWcFdjKAQqKf0f4DIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3dLVVI1UlpHQ1Jad1YyTW9CQ29wX1JfZ01nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS81YmNlNDYtY2M5Yi00ODNmLWI5NDAt MDQ3YmEwZTYyZGU0LzEvUGlCRjd2TWVFYUNBTmhsMFd5b0RJUnNPbXJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS81YmNlNDYtY2M5Yi00ODNmLWI5NDAtMDQ3YmEwZTYyZGU0 LzEvN3dLVVI1UlpHQ1Jad1YyTW9CQ29wX1JfZ01nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDTUhwMA0G CSqGSIb3DQEBCwUAA4IBAQAozg1OzWsIhQA4FQbbc3X1mG6xSbdaUvN820Y/rnWs mn5BkraX9miGD0MZ6qRp1wtuCTHVDCX+ie1lgMYs0QK7ZIVCMHwFjIbEtNKayOac 8CUDU7NXdcGsWnU9Sbu+wuM/sj7eZo7TPRjnO/gg0km6KgEOnTLuaqlgwTs5rwza iPTXjQcpWI4THMdOYeeLKgQ1hVxVFkymTO1LtUiLwa+Kny2chFpV4pJg36UmtisK 00omvaon4hgRyq9nCpxSlmttJAKXpF34jBOZC8zn6FvZDNgqJuo91YkdyrSqbkDF 5RFMwV9s8cRQrVg/aW6AlyJzjNzEj0HtWXKlHVA1ObsJ -----END CERTIFICATE-----Generated at Sat Dec 6 10:02:26 2025 by rpki-client