This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/ECg31J0_Ma4dYlbpBJuQEU_bnCk.roa File: ECg31J0_Ma4dYlbpBJuQEU_bnCk.roa (raw, json) Hash identifier: z+4E1KOglkuQA0pgPGCKXnG3RTDwUO+xrk49aIovANY= Subject key identifier: 10:28:37:D4:9D:3F:31:AE:1D:62:56:E9:04:9B:90:11:4F:DB:9C:29 Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e Certificate serial: 019AD9B7208D580CCF039E8745BCFAD60CB5 Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/ECg31J0_Ma4dYlbpBJuQEU_bnCk.roa Signing time: Mon 01 Dec 2025 11:40:48 +0000 ROA not before: Mon 01 Dec 2025 11:40:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 210423 IP address blocks: 84.232.35.0/24 maxlen: 24 84.232.36.0/23 maxlen: 23 84.232.36.0/24 maxlen: 24 84.232.37.0/24 maxlen: 24 84.236.234.0/23 maxlen: 23 95.178.112.0/22 maxlen: 22 95.178.112.0/23 maxlen: 23 95.178.114.0/23 maxlen: 23 217.61.80.0/24 maxlen: 24 217.61.81.0/24 maxlen: 24 217.61.82.0/24 maxlen: 24 217.61.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.mft rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d9:b7:20:8d:58:0c:cf:03:9e:87:45:bc:fa:d6:0c:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e Validity Not Before: Dec 1 11:40:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=102837d49d3f31ae1d6256e9049b90114fdb9c29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b2:a4:76:cd:e2:c9:83:3c:16:b1:7d:24:8b: 0f:32:0f:06:6e:dd:1d:fc:e3:bf:d9:74:7e:cc:f9: 89:a5:f3:dd:55:92:7e:51:7a:ed:5a:dc:68:7e:75: 72:fc:7d:99:7e:e0:f8:5e:19:68:48:f1:ac:61:f1: 1e:76:6b:63:bd:ed:93:8b:db:75:96:0b:48:0f:c1: c8:f3:cd:03:67:61:5d:48:16:05:16:13:8e:03:bd: 9f:fa:75:7e:d9:93:77:f2:0f:db:2b:b1:db:27:9b: 34:9e:d0:1a:a4:cf:1f:fd:9b:41:a5:92:bb:e5:7d: 54:5b:da:36:97:b9:89:72:69:17:3c:9e:7a:76:29: 86:82:55:ba:c4:73:0e:03:ee:f4:1c:62:4e:36:55: 65:bb:ed:16:9c:7b:3c:97:ab:ee:4b:e8:ca:f7:85: b4:ee:f4:e4:b7:24:a8:cb:6c:ab:cf:70:1c:f5:cc: a7:15:a7:00:4a:6e:f8:09:8a:6e:a5:ce:99:90:c7: 1b:69:2a:f5:a9:f4:72:6a:10:0e:e9:0c:5d:3b:dd: 6c:75:ea:58:33:50:66:24:7c:11:f1:dd:ae:4a:48: 84:8b:ba:16:b3:9d:77:ad:96:c7:6a:10:cc:fc:f4: 90:14:73:aa:86:10:d7:ac:96:39:da:ab:21:cf:5d: 02:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:28:37:D4:9D:3F:31:AE:1D:62:56:E9:04:9B:90:11:4F:DB:9C:29 X509v3 Authority Key Identifier: keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/ECg31J0_Ma4dYlbpBJuQEU_bnCk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.232.35.0-84.232.37.255 84.236.234.0/23 95.178.112.0/22 217.61.80.0/22 Signature Algorithm: sha256WithRSAEncryption 46:b5:5d:c7:d0:b1:aa:92:a7:ee:78:57:48:12:5f:27:36:2d: c8:7d:74:0f:2e:27:e1:4e:b7:03:e0:2a:16:4e:d5:e6:7f:ea: e8:5e:70:8f:2d:da:87:64:83:43:28:e9:ad:9d:d4:a3:8b:1c: 9f:cb:70:42:c6:e1:e6:40:c4:ff:68:8f:e3:cb:ad:b0:c2:d1: 45:3f:dc:2f:72:cb:a6:76:25:c8:79:a1:29:63:d4:e4:d8:f4: d7:60:fd:47:53:5b:ca:a5:ff:89:16:9c:22:67:1c:23:bb:cb: 04:eb:56:d6:9d:83:f0:06:ab:37:86:49:d6:0a:b3:2a:68:93: ed:11:33:07:83:cc:48:3b:20:7a:b8:62:82:c8:38:aa:70:dc: 5e:22:8f:d7:ef:e5:05:49:8e:d6:fd:d1:75:b9:6a:d2:45:09: 83:08:b0:e0:3f:d5:70:60:9f:c1:57:e1:dc:79:26:7d:88:24: 75:7c:92:ba:75:38:c6:1e:c2:c0:db:29:ba:5c:e2:4b:95:dd: 45:c2:28:23:73:2d:59:7a:2f:e8:36:ea:a1:f9:aa:39:d7:3b: 04:95:00:f0:19:09:a3:22:75:02:f6:1e:5b:00:85:3a:c3:c1: ea:6f:42:4b:4b:50:a0:5f:1e:a5:c4:7c:37:a7:29:66:74:e7: a2:e8:c7:52 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZrZtyCNWAzPA56HRbz61gy1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYWYxN2IwMDE1ZGJiN2NkOTkyZjI2Y2RmZjAxYzRlMjYy MGI3M2UwHhcNMjUxMjAxMTE0MDQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMDI4MzdkNDlkM2YzMWFlMWQ2MjU2ZTkwNDliOTAxMTRmZGI5YzI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorKkds3iyYM8FrF9JIsPMg8Gbt0d /OO/2XR+zPmJpfPdVZJ+UXrtWtxofnVy/H2ZfuD4XhloSPGsYfEedmtjve2Ti9t1 lgtID8HI880DZ2FdSBYFFhOOA72f+nV+2ZN38g/bK7HbJ5s0ntAapM8f/ZtBpZK7 5X1UW9o2l7mJcmkXPJ56dimGglW6xHMOA+70HGJONlVlu+0WnHs8l6vuS+jK94W0 7vTktySoy2yrz3Ac9cynFacASm74CYpupc6ZkMcbaSr1qfRyahAO6QxdO91sdepY M1BmJHwR8d2uSkiEi7oWs513rZbHahDM/PSQFHOqhhDXrJY52qshz10CEwIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFBAoN9SdPzGuHWJW6QSbkBFP25wpMB8GA1UdIwQY MBaAFNqvF7ABXbt82ZLybN/wHE4mILc+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAt Y2YwNmQxOTgzYmExLzEvRUNnMzFKMF9NYTRkWWxicEJKdVFFVV9ibkNrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAtY2YwNmQxOTgzYmEx LzEvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgMAwDBABU6CMD BAFU6CQDBAFU7OoDBAJfsnADBALZPVAwDQYJKoZIhvcNAQELBQADggEBAEa1XcfQ saqSp+54V0gSXyc2Lch9dA8uJ+FOtwPgKhZO1eZ/6uhecI8t2odkg0Mo6a2d1KOL HJ/LcELG4eZAxP9oj+PLrbDC0UU/3C9yy6Z2Jch5oSlj1OTY9Ndg/UdTW8ql/4kW nCJnHCO7ywTrVtadg/AGqzeGSdYKsypok+0RMweDzEg7IHq4YoLIOKpw3F4ij9fv 5QVJjtb90XW5atJFCYMIsOA/1XBgn8FX4dx5Jn2IJHV8krp1OMYewsDbKbpc4kuV 3UXCKCNzLVl6L+g26qH5qjnXOwSVAPAZCaMidQL2HlsAhTrDwepvQktLUKBfHqXE fDenKWZ056Lox1I= -----END CERTIFICATE-----Generated at Sat Dec 6 21:52:08 2025 by rpki-client