This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/0b67cFjccuLfaFx5kcfLElmDABE.roa File: 0b67cFjccuLfaFx5kcfLElmDABE.roa (raw, json) Hash identifier: pna/ScAGCfyswyUhLI+/KPCJ5maIz/yUcEnYG+sb5fA= Subject key identifier: D1:BE:BB:70:58:DC:72:E2:DF:68:5C:79:91:C7:CB:12:59:83:00:11 Certificate issuer: /CN=e92c415d1775ae9993e900a7536b46ab144a9aa2 Certificate serial: 019A50C5FA3D5472393EC838FE4581E12CF7 Authority key identifier: E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/0b67cFjccuLfaFx5kcfLElmDABE.roa Signing time: Tue 04 Nov 2025 21:29:03 +0000 ROA not before: Tue 04 Nov 2025 21:29:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 200845 IP address blocks: 89.29.255.0/24 maxlen: 24 176.57.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.mft rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:50:c5:fa:3d:54:72:39:3e:c8:38:fe:45:81:e1:2c:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e92c415d1775ae9993e900a7536b46ab144a9aa2 Validity Not Before: Nov 4 21:29:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=d1bebb7058dc72e2df685c7991c7cb1259830011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:dd:8e:57:af:e9:4f:07:b2:45:6f:62:23:7c: 0c:1e:69:dd:d3:72:cc:a2:a3:c0:ea:4e:ed:b1:02: fa:8f:92:52:96:de:5d:02:06:e9:6d:e6:9e:39:a3: dd:b0:14:3d:84:4c:ac:b4:e0:bc:56:e1:2e:32:fc: 72:51:a3:2e:c9:45:d9:b4:c4:8a:9d:94:05:e7:30: 3a:61:e7:dc:16:c1:4a:45:44:12:36:15:2d:d3:33: 52:f6:41:d6:52:67:5b:e3:5b:38:61:f6:d0:f6:12: 72:36:8a:31:22:b5:09:ce:b0:c5:b1:2b:e4:34:45: 0b:11:e4:f8:00:77:ab:e9:d1:bd:c1:81:b9:47:c1: ad:4d:a2:bd:6b:a4:b9:06:23:04:d6:57:54:de:06: 48:e3:6d:64:c8:0b:ac:3d:e8:7b:02:55:88:57:a1: f4:5b:a4:b1:fa:c1:87:91:dd:a7:43:0a:4a:a1:41: 58:10:3b:d4:ea:46:a4:e3:ef:9d:26:d7:f4:0a:75: 4a:c2:e2:e7:69:16:ad:7f:e4:a1:95:36:0f:75:01: 48:a0:5f:9e:84:c9:e1:52:59:5d:2a:de:0f:30:47: 6d:49:63:44:c7:19:f1:66:41:0e:99:c6:3a:b6:1a: f9:03:68:30:79:23:99:5b:30:7e:d7:f6:68:2e:dc: 0b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:BE:BB:70:58:DC:72:E2:DF:68:5C:79:91:C7:CB:12:59:83:00:11 X509v3 Authority Key Identifier: keyid:E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/0b67cFjccuLfaFx5kcfLElmDABE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.29.255.0/24 176.57.96.0/24 Signature Algorithm: sha256WithRSAEncryption b9:47:f3:0c:4c:01:e6:c4:42:f9:b8:c3:87:63:5c:18:35:f7: a4:75:3e:7f:02:1d:55:59:4b:9c:2a:8e:d5:8f:87:9a:b1:da: 91:9e:0a:a5:0e:ed:6c:d7:bc:92:5a:64:9f:77:cd:61:5d:82: 6b:da:dc:38:26:7b:71:d9:7e:1a:b4:93:fb:a5:e6:d5:84:4f: 10:51:5c:d1:0d:3b:31:8c:88:cc:4d:74:86:b7:b3:15:44:c0: b5:46:4c:4e:32:bc:a8:b6:1d:68:b9:e6:83:b4:94:33:7e:33: 31:f7:39:cf:2a:4b:1c:be:1b:28:3a:f1:fd:89:e8:6b:92:59: 3d:67:48:e6:7c:6e:57:20:ed:26:1a:0a:6d:67:1e:f9:c3:bf: 94:d9:b2:b5:33:81:0b:94:e9:3b:0e:39:18:a8:e8:9b:33:9a: 7e:ac:2f:4a:8e:be:c1:68:03:21:90:d5:b7:8d:da:b1:ea:65: 80:18:e5:50:2f:f9:0f:cf:e8:7d:20:5e:39:38:19:af:95:60: 77:65:ad:df:57:d3:bc:0a:25:5a:5c:10:cf:48:d7:b1:cd:bf: b8:1d:da:d0:6b:5a:af:2a:c0:18:0c:a0:1a:ae:49:2c:4e:67: 65:2f:aa:07:e0:d7:93:9d:f9:d2:2c:5e:dd:78:cf:0d:97:2c: ae:0d:61:bb -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZpQxfo9VHI5Psg4/kWB4Sz3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5MmM0MTVkMTc3NWFlOTk5M2U5MDBhNzUzNmI0NmFiMTQ0 YTlhYTIwHhcNMjUxMTA0MjEyOTAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMWJlYmI3MDU4ZGM3MmUyZGY2ODVjNzk5MWM3Y2IxMjU5ODMwMDExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAod2OV6/pTweyRW9iI3wMHmnd03LM oqPA6k7tsQL6j5JSlt5dAgbpbeaeOaPdsBQ9hEystOC8VuEuMvxyUaMuyUXZtMSK nZQF5zA6YefcFsFKRUQSNhUt0zNS9kHWUmdb41s4YfbQ9hJyNooxIrUJzrDFsSvk NEULEeT4AHer6dG9wYG5R8GtTaK9a6S5BiME1ldU3gZI421kyAusPeh7AlWIV6H0 W6Sx+sGHkd2nQwpKoUFYEDvU6kak4++dJtf0CnVKwuLnaRatf+ShlTYPdQFIoF+e hMnhUlldKt4PMEdtSWNExxnxZkEOmcY6thr5A2gweSOZWzB+1/ZoLtwLYQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNG+u3BY3HLi32hceZHHyxJZgwARMB8GA1UdIwQY MBaAFOksQV0Xda6Zk+kAp1NrRqsUSpqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlN4QlhSZDFycG1UNlFDblUydEdxeFJLbXFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wODk4YmUtYjAzNy00MjlmLWI1MDQt MWQ5MzRhMDQ4NDc0LzEvMGI2N2NGamNjdUxmYUZ4NWtjZkxFbG1EQUJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8wODk4YmUtYjAzNy00MjlmLWI1MDQtMWQ5MzRhMDQ4NDc0 LzEvNlN4QlhSZDFycG1UNlFDblUydEdxeFJLbXFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWR3/AwQA sDlgMA0GCSqGSIb3DQEBCwUAA4IBAQC5R/MMTAHmxEL5uMOHY1wYNfekdT5/Ah1V WUucKo7Vj4easdqRngqlDu1s17ySWmSfd81hXYJr2tw4Jntx2X4atJP7pebVhE8Q UVzRDTsxjIjMTXSGt7MVRMC1RkxOMryoth1oueaDtJQzfjMx9znPKkscvhsoOvH9 iehrklk9Z0jmfG5XIO0mGgptZx75w7+U2bK1M4ELlOk7DjkYqOibM5p+rC9Kjr7B aAMhkNW3jdqx6mWAGOVQL/kPz+h9IF45OBmvlWB3Za3fV9O8CiVaXBDPSNexzb+4 HdrQa1qvKsAYDKAarkksTmdlL6oH4NeTnfnSLF7deM8NlyyuDWG7 -----END CERTIFICATE-----Generated at Sat Dec 6 14:15:53 2025 by rpki-client