This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/uAr7LJuc0WHfmtdJGkFm3Fwxv4M.roa File: uAr7LJuc0WHfmtdJGkFm3Fwxv4M.roa (raw, json) Hash identifier: k4rPGbEsi/m1WilHo5wRiur2Qm4rDWx8kkkbJA3nMTU= Subject key identifier: B8:0A:FB:2C:9B:9C:D1:61:DF:9A:D7:49:1A:41:66:DC:5C:31:BF:83 Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9 Certificate serial: 019AEB426B21585361692DBDD09FFF37B300 Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/uAr7LJuc0WHfmtdJGkFm3Fwxv4M.roa Signing time: Thu 04 Dec 2025 21:26:29 +0000 ROA not before: Thu 04 Dec 2025 21:26:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 213541 IP address blocks: 45.43.166.0/24 maxlen: 24 104.222.180.0/24 maxlen: 24 104.222.181.0/24 maxlen: 24 104.222.182.0/24 maxlen: 24 104.222.183.0/24 maxlen: 24 104.233.56.0/24 maxlen: 24 104.233.58.0/24 maxlen: 24 104.238.6.0/24 maxlen: 24 104.239.8.0/24 maxlen: 24 104.239.12.0/24 maxlen: 24 104.239.14.0/24 maxlen: 24 104.239.15.0/24 maxlen: 24 104.239.29.0/24 maxlen: 24 104.239.58.0/24 maxlen: 24 104.239.59.0/24 maxlen: 24 104.239.66.0/24 maxlen: 24 104.239.83.0/24 maxlen: 24 104.239.100.0/24 maxlen: 24 104.239.127.0/24 maxlen: 24 104.249.8.0/24 maxlen: 24 104.249.10.0/24 maxlen: 24 104.249.11.0/24 maxlen: 24 104.249.19.0/24 maxlen: 24 104.249.20.0/24 maxlen: 24 104.249.22.0/24 maxlen: 24 104.249.42.0/24 maxlen: 24 104.249.43.0/24 maxlen: 24 104.249.44.0/24 maxlen: 24 104.249.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.mft rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:eb:42:6b:21:58:53:61:69:2d:bd:d0:9f:ff:37:b3:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9 Validity Not Before: Dec 4 21:26:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=b80afb2c9b9cd161df9ad7491a4166dc5c31bf83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:28:f9:72:ee:b7:32:0f:a3:21:4e:fc:e4:95: a0:b6:d1:34:2a:22:20:9a:97:08:79:cc:34:5f:a6: e0:fe:c2:a8:c7:e5:53:81:13:49:7e:93:eb:a1:e8: 3b:f3:bb:7f:c7:a2:a5:66:86:3c:1e:4c:cf:c7:99: 7e:e5:86:9d:10:22:93:3e:d1:80:58:0e:60:da:be: d0:e0:2b:5e:9b:db:2a:8b:3b:fc:5d:62:d6:4d:09: a7:a5:89:72:21:ea:59:d0:f7:22:9d:46:98:ec:df: 44:cd:1a:51:97:01:e6:5a:63:0e:b9:a7:14:39:87: a6:77:f2:4e:1e:de:13:52:0e:41:71:b7:ce:62:02: 53:3c:e5:0d:86:48:7e:d7:7c:31:d3:af:43:bb:d1: 97:f5:38:e7:1d:8b:9f:93:d7:86:04:95:b3:dd:45: 8f:1a:1e:a7:a1:c8:6b:85:dd:01:3b:ab:85:83:0b: 35:af:0b:b9:47:7f:43:2a:3b:9a:4d:09:23:25:b1: 39:bb:57:62:28:5b:99:20:28:59:c8:0c:41:c5:bc: 24:26:9b:88:49:bc:39:40:30:04:9e:b5:9c:a2:9a: ef:b1:b4:6a:1a:86:3d:9d:55:41:69:9b:19:4b:a0: a9:ab:ce:79:2c:90:6b:bf:b2:d7:9b:f5:d4:e1:c0: e0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:0A:FB:2C:9B:9C:D1:61:DF:9A:D7:49:1A:41:66:DC:5C:31:BF:83 X509v3 Authority Key Identifier: keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/uAr7LJuc0WHfmtdJGkFm3Fwxv4M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.43.166.0/24 104.222.180.0/22 104.233.56.0/24 104.233.58.0/24 104.238.6.0/24 104.239.8.0/24 104.239.12.0/24 104.239.14.0/23 104.239.29.0/24 104.239.58.0/23 104.239.66.0/24 104.239.83.0/24 104.239.100.0/24 104.239.127.0/24 104.249.8.0/24 104.249.10.0/23 104.249.19.0-104.249.20.255 104.249.22.0/24 104.249.42.0-104.249.45.255 Signature Algorithm: sha256WithRSAEncryption 7d:83:d3:ea:57:93:8f:2f:30:31:ce:aa:cb:19:e6:8e:ad:5b: 19:da:fe:6d:56:d1:9d:40:b6:b5:ac:e3:0f:e2:8c:54:8c:63: ec:d4:d6:96:7d:9e:45:78:6f:13:98:16:27:4a:62:92:fd:78: 31:ac:0c:9b:04:fc:60:6d:41:ca:75:8d:12:bb:81:bb:ca:d6: 2f:eb:4c:54:e6:3c:5a:f5:d2:eb:6e:c0:07:c0:37:02:d5:3f: e7:65:47:f0:40:9f:f5:e3:08:4c:4e:07:4a:16:48:0e:70:20: ee:86:7b:86:50:3c:24:07:02:6b:a9:5a:2c:d3:ac:d7:f0:48: d6:3a:49:f6:58:af:00:7b:8b:be:a9:c5:93:22:ac:2b:c9:79: f3:86:5d:93:bd:50:14:d2:d8:0b:4c:24:77:06:94:77:88:c2: 47:69:01:27:0e:98:7c:20:fd:ee:8f:2f:8e:f1:33:2f:bd:14: 89:42:03:95:08:a0:16:4d:64:d5:6e:77:17:85:08:21:19:7f: 04:43:68:9d:e3:d6:37:ba:85:ad:8a:54:11:59:1f:b2:59:03: c8:f5:aa:4c:1b:cc:85:97:7c:46:c8:aa:3e:cb:59:f4:cc:f9: d6:04:c6:71:a5:eb:41:65:89:9a:33:d8:19:9d:d5:d3:f6:bd: 07:6a:89:3e -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgISAZrrQmshWFNhaS290J//N7MAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNTgxZTY3M2Q4MGY3NDc0OTM2YjIxMzM3ZWFmY2MxYmRj Mzg1ZTkwHhcNMjUxMjA0MjEyNjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODBhZmIyYzliOWNkMTYxZGY5YWQ3NDkxYTQxNjZkYzVjMzFiZjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Sj5cu63Mg+jIU785JWgttE0KiIg mpcIecw0X6bg/sKox+VTgRNJfpProeg787t/x6KlZoY8HkzPx5l+5YadECKTPtGA WA5g2r7Q4Ctem9sqizv8XWLWTQmnpYlyIepZ0PcinUaY7N9EzRpRlwHmWmMOuacU OYemd/JOHt4TUg5BcbfOYgJTPOUNhkh+13wx069Du9GX9TjnHYufk9eGBJWz3UWP Gh6nochrhd0BO6uFgws1rwu5R39DKjuaTQkjJbE5u1diKFuZIChZyAxBxbwkJpuI Sbw5QDAEnrWcoprvsbRqGoY9nVVBaZsZS6Cpq855LJBrv7LXm/XU4cDgLQIDAQAB o4ICijCCAoYwHQYDVR0OBBYEFLgK+yybnNFh35rXSRpBZtxcMb+DMB8GA1UdIwQY MBaAFGBYHmc9gPdHSTayEzfq/MG9w4XpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYt ZmIwNzk1NWYzYWFhLzEvdUFyN0xKdWMwV0hmbXRkSkdrRm0zRnd4djRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYtZmIwNzk1NWYzYWFh LzEvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGfBggrBgEFBQcBBwEB/wSBjzCBjDCBiQQCAAEwgYIDBAAt K6YDBAJo3rQDBABo6TgDBABo6ToDBABo7gYDBABo7wgDBABo7wwDBAFo7w4DBABo 7x0DBAFo7zoDBABo70IDBABo71MDBABo72QDBABo738DBABo+QgDBAFo+QowDAME AGj5EwMEAGj5FAMEAGj5FjAMAwQBaPkqAwQBaPksMA0GCSqGSIb3DQEBCwUAA4IB AQB9g9PqV5OPLzAxzqrLGeaOrVsZ2v5tVtGdQLa1rOMP4oxUjGPs1NaWfZ5FeG8T mBYnSmKS/XgxrAybBPxgbUHKdY0Su4G7ytYv60xU5jxa9dLrbsAHwDcC1T/nZUfw QJ/14whMTgdKFkgOcCDuhnuGUDwkBwJrqVos06zX8EjWOkn2WK8Ae4u+qcWTIqwr yXnzhl2TvVAU0tgLTCR3BpR3iMJHaQEnDph8IP3ujy+O8TMvvRSJQgOVCKAWTWTV bncXhQghGX8EQ2id49Y3uoWtilQRWR+yWQPI9apMG8yFl3xGyKo+y1n0zPnWBMZx petBZYmaM9gZndXT9r0Haok+ -----END CERTIFICATE-----Generated at Sat Dec 6 16:34:14 2025 by rpki-client