This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/CRLKSL7jlflKsL6EjE4-moIQmCM.roa File: CRLKSL7jlflKsL6EjE4-moIQmCM.roa (raw, json) Hash identifier: 6+JoZAmESgaN/76bU7Y5WiwYsPPWlXJLt1m1R/AMrUc= Subject key identifier: 09:12:CA:48:BE:E3:95:F9:4A:B0:BE:84:8C:4E:3E:9A:82:10:98:23 Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3 Certificate serial: 019B12F031C0F9E5936D32685865FD76AB54 Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/CRLKSL7jlflKsL6EjE4-moIQmCM.roa Signing time: Fri 12 Dec 2025 14:21:29 +0000 ROA not before: Fri 12 Dec 2025 14:21:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215419 IP address blocks: 195.234.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:f0:31:c0:f9:e5:93:6d:32:68:58:65:fd:76:ab:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3 Validity Not Before: Dec 12 14:21:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=0912ca48bee395f94ab0be848c4e3e9a82109823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4e:f2:3b:5d:ea:ea:39:46:ad:85:72:5a:fe: e4:c3:a3:80:0b:8b:cf:4b:15:7d:a2:c6:67:6b:64: a3:ad:bd:70:83:de:a1:01:6d:47:16:50:47:a5:29: f7:e9:aa:41:68:79:a3:cc:c9:cd:28:e3:29:24:ac: 7d:e3:2c:5a:18:cc:75:e9:8d:c0:04:8b:08:e3:27: e0:7d:72:8c:18:fb:5e:aa:81:ba:d7:5e:d4:0a:8e: 2b:fa:92:13:17:bd:63:a5:42:b6:db:95:6a:c1:9e: b5:92:6b:71:27:12:ea:bb:10:09:91:6c:39:7b:fe: 8d:08:80:f7:35:59:7a:a6:40:11:7e:9b:cc:20:68: c1:39:19:22:8a:6c:81:c1:9d:c6:ff:1a:24:ab:bf: cd:7d:11:1e:43:25:66:d5:07:65:0b:62:ff:11:15: 00:de:2c:d1:d0:31:43:56:17:cc:63:dc:b6:19:30: ac:ff:d4:9c:3f:33:64:73:8e:62:26:92:c2:7c:ab: 32:cc:67:40:bc:83:d1:3e:ad:2c:9d:b8:c2:68:78: de:7f:1d:bb:27:e3:54:93:1b:00:62:72:f9:bf:37: 9f:da:f1:4c:69:e2:50:bf:e3:b7:ea:de:d1:fb:30: 0a:78:91:22:d9:89:8e:00:d1:de:cd:7a:2c:8a:02: 94:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:12:CA:48:BE:E3:95:F9:4A:B0:BE:84:8C:4E:3E:9A:82:10:98:23 X509v3 Authority Key Identifier: keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/CRLKSL7jlflKsL6EjE4-moIQmCM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.234.153.0/24 Signature Algorithm: sha256WithRSAEncryption a0:10:55:ce:95:85:ac:9d:f5:64:10:11:11:e5:d7:87:15:e1: 3a:bb:b2:24:cd:94:21:89:53:66:a4:a7:56:56:df:48:51:80: 81:4c:27:33:37:b6:ab:51:81:d7:27:72:11:fe:fc:5f:b2:23: df:6a:c8:82:1e:2a:58:87:19:a1:6a:f0:13:90:92:a9:94:09: b4:4c:69:c3:d1:56:c9:da:bc:8a:9b:8d:20:41:eb:06:70:8e: d1:8f:78:11:73:21:09:ca:23:3c:2d:78:cb:a4:56:06:e4:59: 85:d6:b0:4d:52:1c:bb:94:ff:9c:08:3e:40:f8:e6:e8:cc:21: 0d:45:29:28:ff:ab:83:92:80:15:86:b2:c1:08:28:0d:35:27: f3:a2:f8:3a:ce:0a:ad:57:a5:e7:2c:9d:66:67:d7:71:ed:bc: 87:72:1f:da:90:2c:d3:9c:fd:3c:d3:59:2e:ab:88:26:e9:41: 99:3d:21:43:e8:32:fa:3d:ee:7e:63:fe:80:10:3e:2d:51:68: 8f:4c:4d:d9:9a:a4:7b:a7:5c:4e:38:d7:8d:5a:cf:41:79:81: 29:e0:a3:a0:37:ef:a2:8e:f0:c3:25:81:30:af:43:59:6e:7b: 5b:04:d2:84:48:0f:e0:1b:9a:4f:52:19:db:dc:d8:b6:93:8e: 83:a0:de:a9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsS8DHA+eWTbTJoWGX9dqtUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5YTNhNWU0MTFkZWFmMjI4NGZmZDAxNTMwYmZiNDFmODE2 Y2JiYTMwHhcNMjUxMjEyMTQyMTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTEyY2E0OGJlZTM5NWY5NGFiMGJlODQ4YzRlM2U5YTgyMTA5ODIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApk7yO13q6jlGrYVyWv7kw6OAC4vP SxV9osZna2Sjrb1wg96hAW1HFlBHpSn36apBaHmjzMnNKOMpJKx94yxaGMx16Y3A BIsI4yfgfXKMGPteqoG6117UCo4r+pITF71jpUK225VqwZ61kmtxJxLquxAJkWw5 e/6NCID3NVl6pkARfpvMIGjBORkiimyBwZ3G/xokq7/NfREeQyVm1QdlC2L/ERUA 3izR0DFDVhfMY9y2GTCs/9ScPzNkc45iJpLCfKsyzGdAvIPRPq0snbjCaHjefx27 J+NUkxsAYnL5vzef2vFMaeJQv+O36t7R+zAKeJEi2YmOANHezXosigKUTQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAkSyki+45X5SrC+hIxOPpqCEJgjMB8GA1UdIwQY MBaAFMmjpeQR3q8ihP/QFTC/tB+BbLujMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWFPbDVCSGVyeUtFXzlBVk1MLTBINEZzdTZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9iOGVhODMtNDc2NS00M2E2LWE1NGYt MjBkMjQ5MDAxMzBhLzEvQ1JMS1NMN2psZmxLc0w2RWpFNC1tb0lRbUNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9iOGVhODMtNDc2NS00M2E2LWE1NGYtMjBkMjQ5MDAxMzBh LzEveWFPbDVCSGVyeUtFXzlBVk1MLTBINEZzdTZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+qZMA0G CSqGSIb3DQEBCwUAA4IBAQCgEFXOlYWsnfVkEBER5deHFeE6u7IkzZQhiVNmpKdW Vt9IUYCBTCczN7arUYHXJ3IR/vxfsiPfasiCHipYhxmhavATkJKplAm0TGnD0VbJ 2ryKm40gQesGcI7Rj3gRcyEJyiM8LXjLpFYG5FmF1rBNUhy7lP+cCD5A+ObozCEN RSko/6uDkoAVhrLBCCgNNSfzovg6zgqtV6XnLJ1mZ9dx7byHch/akCzTnP0801ku q4gm6UGZPSFD6DL6Pe5+Y/6AED4tUWiPTE3ZmqR7p1xOONeNWs9BeYEp4KOgN++i jvDDJYEwr0NZbntbBNKESA/gG5pPUhnb3Ni2k46DoN6p -----END CERTIFICATE-----Generated at Thu Dec 18 00:07:30 2025 by rpki-client