This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/ddqoRCzgKvWpZplX-u0--KNZsjA.roa File: ddqoRCzgKvWpZplX-u0--KNZsjA.roa (raw, json) Hash identifier: Ruunm5Vd/ejGbmItxp3vBKxEyZZDL9zseFTECbDDTSg= Subject key identifier: 75:DA:A8:44:2C:E0:2A:F5:A9:66:99:57:FA:ED:3E:F8:A3:59:B2:30 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B08720A27B7BBA2C810758B5FA9219ECC Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/ddqoRCzgKvWpZplX-u0--KNZsjA.roa Signing time: Wed 10 Dec 2025 13:27:29 +0000 ROA not before: Wed 10 Dec 2025 13:27:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 210644 IP address blocks: 45.142.122.0/24 maxlen: 24 91.103.252.0/23 maxlen: 23 185.106.93.0/24 maxlen: 24 185.106.94.0/24 maxlen: 24 185.112.83.0/24 maxlen: 24 185.125.230.0/24 maxlen: 24 185.174.136.0/24 maxlen: 24 185.174.137.0/24 maxlen: 24 185.217.197.0/24 maxlen: 24 185.229.65.0/24 maxlen: 24 185.229.66.0/24 maxlen: 24 194.67.201.0/24 maxlen: 24 2a0e:d606::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 08:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:72:0a:27:b7:bb:a2:c8:10:75:8b:5f:a9:21:9e:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Dec 10 13:27:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=75daa8442ce02af5a9669957faed3ef8a359b230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5a:5b:a9:7c:91:3e:58:4a:86:01:67:da:32: d3:c3:ed:8a:42:dd:43:50:22:9c:8f:5d:7f:9f:d8: 23:20:21:c7:53:d5:d7:62:b7:32:2f:07:59:86:74: a2:61:e9:58:c0:bf:cf:1e:c2:2d:0a:e6:87:5d:a0: 92:28:ad:b3:73:fa:80:d8:7d:7e:e4:68:1d:db:c0: 22:99:9f:d2:ec:a5:be:26:f6:d6:15:f8:c6:9f:46: 2e:25:12:69:a2:9c:a1:cd:ba:8c:27:2e:7e:f3:e3: 1d:e7:8f:a4:73:3d:e8:f9:7e:09:ed:81:4a:61:9f: d2:5c:e6:11:3e:b0:50:e8:89:13:e4:cd:54:bf:2e: f7:f5:5b:03:04:f6:68:0b:31:d4:ab:29:f3:70:98: 45:d3:68:d4:c6:b0:f4:4b:e4:06:6b:97:a3:d6:f7: ec:e1:88:ed:85:5c:14:57:ca:52:5e:ba:1b:8e:3b: 32:20:92:a3:0f:80:fa:c9:c8:98:b2:0b:96:a0:1f: a3:81:4e:8f:e2:75:a1:db:79:bf:3e:2b:3a:eb:ad: 71:06:18:c9:5f:3e:82:ef:85:f3:f9:d0:11:76:59: 13:ad:d1:c5:92:b3:12:88:d2:cb:8d:1e:4e:b6:73: 19:9f:25:c7:d7:75:49:11:c6:a3:aa:e0:ee:6e:ac: 9c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:DA:A8:44:2C:E0:2A:F5:A9:66:99:57:FA:ED:3E:F8:A3:59:B2:30 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/ddqoRCzgKvWpZplX-u0--KNZsjA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.142.122.0/24 91.103.252.0/23 185.106.93.0-185.106.94.255 185.112.83.0/24 185.125.230.0/24 185.174.136.0/23 185.217.197.0/24 185.229.65.0-185.229.66.255 194.67.201.0/24 IPv6: 2a0e:d606::/48 Signature Algorithm: sha256WithRSAEncryption 13:2d:c6:a8:0c:20:2f:21:50:bf:be:af:02:d9:0c:7c:35:b7: 0c:21:f6:53:4c:f3:75:89:e2:21:df:9d:e5:83:a1:de:73:72: 00:4b:24:6c:55:9e:d7:14:a8:b0:3c:a7:71:a0:2d:20:76:5c: c4:3a:33:1d:8a:52:8d:6f:5c:e1:c6:28:9f:07:72:0b:7d:81: 6f:1e:e9:13:74:a0:f7:c8:87:43:3e:24:a0:1b:ef:37:21:db: 05:4a:da:41:d6:46:5a:45:0b:46:9b:22:1b:3f:b3:44:41:00: 87:d1:68:ba:b4:48:cb:64:dc:d4:cf:b1:2b:b8:44:14:63:97: 8d:ce:ff:7b:68:96:7a:98:bb:28:67:9f:fb:fb:24:20:b1:11: 38:f4:0f:36:f0:35:67:36:7a:45:14:78:da:0a:75:5d:f3:95: d6:fd:19:46:08:52:70:8c:27:b5:b5:bc:84:3e:1b:cb:fa:37: 8a:c1:2e:6f:a6:ae:5e:af:c9:49:45:de:3c:93:35:8a:39:7d: 21:f4:85:7a:24:4a:d5:83:70:9a:f3:f8:04:64:a8:c8:39:fa: e8:e1:f0:6d:da:5e:c2:c4:47:58:ab:32:5b:ab:58:ad:9a:47: 01:77:6c:bb:62:17:ce:41:79:1b:33:a6:1b:36:09:98:66:81: d9:20:1b:c7 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgISAZsIcgont7uiyBB1i1+pIZ7MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjUxMjEwMTMyNzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWRhYTg0NDJjZTAyYWY1YTk2Njk5NTdmYWVkM2VmOGEzNTliMjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslpbqXyRPlhKhgFn2jLTw+2KQt1D UCKcj11/n9gjICHHU9XXYrcyLwdZhnSiYelYwL/PHsItCuaHXaCSKK2zc/qA2H1+ 5Ggd28AimZ/S7KW+JvbWFfjGn0YuJRJpopyhzbqMJy5+8+Md54+kcz3o+X4J7YFK YZ/SXOYRPrBQ6IkT5M1Uvy739VsDBPZoCzHUqynzcJhF02jUxrD0S+QGa5ej1vfs 4YjthVwUV8pSXrobjjsyIJKjD4D6yciYsguWoB+jgU6P4nWh23m/Pis6661xBhjJ Xz6C74Xz+dARdlkTrdHFkrMSiNLLjR5OtnMZnyXH13VJEcajquDubqycXwIDAQAB o4ICWjCCAlYwHQYDVR0OBBYEFHXaqEQs4Cr1qWaZV/rtPvijWbIwMB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvZGRxb1JDemdLdldwWnBsWC11MC0tS05ac2pBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBMBAIAATBGAwQALY56AwQB W2f8MAwDBAC5al0DBAC5al4DBAC5cFMDBAC5feYDBAG5rogDBAC52cUwDAMEALnl QQMEALnlQgMEAMJDyTAPBAIAAjAJAwcAKg7WBgAAMA0GCSqGSIb3DQEBCwUAA4IB AQATLcaoDCAvIVC/vq8C2Qx8NbcMIfZTTPN1ieIh353lg6Hec3IASyRsVZ7XFKiw PKdxoC0gdlzEOjMdilKNb1zhxiifB3ILfYFvHukTdKD3yIdDPiSgG+83IdsFStpB 1kZaRQtGmyIbP7NEQQCH0Wi6tEjLZNzUz7EruEQUY5eNzv97aJZ6mLsoZ5/7+yQg sRE49A828DVnNnpFFHjaCnVd85XW/RlGCFJwjCe1tbyEPhvL+jeKwS5vpq5er8lJ Rd48kzWKOX0h9IV6JErVg3Ca8/gEZKjIOfro4fBt2l7CxEdYqzJbq1itmkcBd2y7 YhfOQXkbM6YbNgmYZoHZIBvH -----END CERTIFICATE-----Generated at Wed Dec 17 15:25:14 2025 by rpki-client