This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/1d575d-7b22-47c7-a17e-8a136cb0dd5c/1/tDViTLbFVVWzWp648mpw0pgtqtQ.roa File: tDViTLbFVVWzWp648mpw0pgtqtQ.roa (raw, json) Hash identifier: AWegmrkFC3NXllKk74cxCubNxQm6gCshWBp51Ys3Cd4= Subject key identifier: B4:35:62:4C:B6:C5:55:55:B3:5A:9E:B8:F2:6A:70:D2:98:2D:AA:D4 Certificate issuer: /CN=37c48b789cc7ffe7be09444643fdb86bdb573f7d Certificate serial: 019AA0A2CD77F50C9EFCAB74D78D8CD869F0 Authority key identifier: 37:C4:8B:78:9C:C7:FF:E7:BE:09:44:46:43:FD:B8:6B:DB:57:3F:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N8SLeJzH_-e-CURGQ_24a9tXP30.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/1d575d-7b22-47c7-a17e-8a136cb0dd5c/1/tDViTLbFVVWzWp648mpw0pgtqtQ.roa Signing time: Thu 20 Nov 2025 09:40:15 +0000 ROA not before: Thu 20 Nov 2025 09:40:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 202373 IP address blocks: 84.38.76.0/23 maxlen: 23 194.55.96.0/22 maxlen: 22 194.55.96.0/24 maxlen: 24 194.55.97.0/24 maxlen: 24 194.55.98.0/24 maxlen: 24 194.55.99.0/24 maxlen: 24 2a0c:cac0::/29 maxlen: 29 2a0c:cac1::/32 maxlen: 32 2a0c:cac2::/32 maxlen: 32 2a0c:cac6:1000::/36 maxlen: 36 2a0c:cac6:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/1d575d-7b22-47c7-a17e-8a136cb0dd5c/1/N8SLeJzH_-e-CURGQ_24a9tXP30.crl rsync://rpki.ripe.net/repository/DEFAULT/56/1d575d-7b22-47c7-a17e-8a136cb0dd5c/1/N8SLeJzH_-e-CURGQ_24a9tXP30.mft rsync://rpki.ripe.net/repository/DEFAULT/N8SLeJzH_-e-CURGQ_24a9tXP30.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 15:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a0:a2:cd:77:f5:0c:9e:fc:ab:74:d7:8d:8c:d8:69:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37c48b789cc7ffe7be09444643fdb86bdb573f7d Validity Not Before: Nov 20 09:40:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=b435624cb6c55555b35a9eb8f26a70d2982daad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bb:b0:04:1f:c7:88:68:ad:06:95:d7:d0:bc: 5a:16:32:ae:98:af:a3:68:e5:33:35:6e:a9:2d:dd: ad:ff:82:8b:17:d3:2a:be:6a:eb:b9:44:d7:20:c8: ff:54:d1:87:1f:ac:76:b0:7e:fa:36:88:08:3e:a9: a9:76:dc:9b:a9:c7:61:37:d2:4f:cd:b0:ba:8a:53: ce:ba:57:09:aa:5d:94:83:08:04:00:a5:1d:60:37: 60:3a:3e:06:ee:01:dc:f8:70:2b:3c:e8:4a:93:f0: 6d:e5:d7:8a:00:23:5d:bc:aa:95:b2:0e:45:4f:5a: f4:d7:37:6e:e6:4d:43:38:1c:33:3d:fd:fc:72:24: b0:2b:5f:c8:d5:1e:f3:ad:53:85:ea:cf:28:ca:ab: a7:6d:32:39:33:bc:f7:8c:ca:5f:b7:d4:fd:f6:26: 70:a0:b6:f4:8b:5e:f4:92:2b:3f:07:35:10:ee:9c: f6:e7:02:a1:08:8d:51:e4:dd:61:d5:c9:05:a0:e1: 14:3e:5b:bb:3d:b6:b3:e0:45:55:7e:9b:25:03:42: 5b:d3:15:f1:da:f4:9f:ab:54:69:8c:cf:f0:c6:5b: c7:a9:e8:d4:3f:99:d8:9b:72:07:df:92:f1:49:06: cf:8d:2e:b4:49:77:60:f9:ef:95:40:d7:d8:9c:1b: 9b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:35:62:4C:B6:C5:55:55:B3:5A:9E:B8:F2:6A:70:D2:98:2D:AA:D4 X509v3 Authority Key Identifier: keyid:37:C4:8B:78:9C:C7:FF:E7:BE:09:44:46:43:FD:B8:6B:DB:57:3F:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N8SLeJzH_-e-CURGQ_24a9tXP30.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/1d575d-7b22-47c7-a17e-8a136cb0dd5c/1/tDViTLbFVVWzWp648mpw0pgtqtQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/1d575d-7b22-47c7-a17e-8a136cb0dd5c/1/N8SLeJzH_-e-CURGQ_24a9tXP30.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.38.76.0/23 194.55.96.0/22 IPv6: 2a0c:cac0::/29 Signature Algorithm: sha256WithRSAEncryption 2a:11:0e:b3:05:d7:a4:c9:b1:16:59:87:86:d7:11:33:c9:ca: 13:3c:c5:ff:dc:d4:48:0c:39:10:0d:96:42:a9:b1:90:9e:1a: 95:5f:2c:7b:67:e7:18:bc:e0:44:87:b9:49:5e:bc:b5:fe:2b: 20:66:e0:06:f2:9d:4a:e5:ff:35:34:74:b5:c3:ef:93:5f:ae: dc:91:c9:e6:ba:ba:3f:3a:4f:1c:ea:5a:3c:0d:0c:de:cf:e2: 6e:58:39:fe:16:27:8b:61:e0:71:46:e0:66:59:29:ce:40:8d: 57:0e:24:18:aa:38:5f:e0:80:41:18:7c:85:8d:10:19:99:47: 78:ea:b9:61:1d:32:89:97:9a:14:b9:1e:87:db:c0:3c:d4:58: 80:24:fb:ec:8c:99:ff:f8:44:53:83:97:13:5d:7f:32:8f:57: db:54:4a:a6:74:8e:f2:f4:62:c8:6b:9f:5a:fe:06:f4:79:df: 98:84:06:b8:ec:e4:0f:b4:bc:68:85:b2:7e:68:20:2c:cb:6b: 8e:cd:81:17:ec:09:45:a7:bf:13:91:56:4e:6a:45:72:0d:d7: c0:55:51:7d:56:3e:74:ea:4b:ac:2d:c4:53:3a:9c:1b:66:16: bd:b1:9b:7c:99:e6:70:be:40:ed:25:8d:74:5a:71:e5:82:56: da:5f:fb:7f -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZqgos139Qye/Kt0142M2GnwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3YzQ4Yjc4OWNjN2ZmZTdiZTA5NDQ0NjQzZmRiODZiZGI1 NzNmN2QwHhcNMjUxMTIwMDk0MDE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDM1NjI0Y2I2YzU1NTU1YjM1YTllYjhmMjZhNzBkMjk4MmRhYWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7uwBB/HiGitBpXX0LxaFjKumK+j aOUzNW6pLd2t/4KLF9MqvmrruUTXIMj/VNGHH6x2sH76NogIPqmpdtybqcdhN9JP zbC6ilPOulcJql2UgwgEAKUdYDdgOj4G7gHc+HArPOhKk/Bt5deKACNdvKqVsg5F T1r01zdu5k1DOBwzPf38ciSwK1/I1R7zrVOF6s8oyqunbTI5M7z3jMpft9T99iZw oLb0i170kis/BzUQ7pz25wKhCI1R5N1h1ckFoOEUPlu7Pbaz4EVVfpslA0Jb0xXx 2vSfq1RpjM/wxlvHqejUP5nYm3IH35LxSQbPjS60SXdg+e+VQNfYnBub0QIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFLQ1Yky2xVVVs1qeuPJqcNKYLarUMB8GA1UdIwQY MBaAFDfEi3icx//nvglERkP9uGvbVz99MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjhTTGVKekhfLWUtQ1VSR1FfMjRhOXRYUDMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8xZDU3NWQtN2IyMi00N2M3LWExN2Ut OGExMzZjYjBkZDVjLzEvdERWaVRMYkZWVld6V3A2NDhtcHcwcGd0cXRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8xZDU3NWQtN2IyMi00N2M3LWExN2UtOGExMzZjYjBkZDVj LzEvTjhTTGVKekhfLWUtQ1VSR1FfMjRhOXRYUDMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQBVCZMAwQC wjdgMA0EAgACMAcDBQMqDMrAMA0GCSqGSIb3DQEBCwUAA4IBAQAqEQ6zBdekybEW WYeG1xEzycoTPMX/3NRIDDkQDZZCqbGQnhqVXyx7Z+cYvOBEh7lJXry1/isgZuAG 8p1K5f81NHS1w++TX67ckcnmuro/Ok8c6lo8DQzez+JuWDn+FieLYeBxRuBmWSnO QI1XDiQYqjhf4IBBGHyFjRAZmUd46rlhHTKJl5oUuR6H28A81FiAJPvsjJn/+ERT g5cTXX8yj1fbVEqmdI7y9GLIa59a/gb0ed+YhAa47OQPtLxohbJ+aCAsy2uOzYEX 7AlFp78TkVZOakVyDdfAVVF9Vj506kusLcRTOpwbZha9sZt8meZwvkDtJY10WnHl glbaX/t/ -----END CERTIFICATE-----Generated at Sun Dec 7 22:41:07 2025 by rpki-client