This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/XumlVyIVNMGHdK8sasVhYLHqWI0.roa File: XumlVyIVNMGHdK8sasVhYLHqWI0.roa (raw, json) Hash identifier: sNAchm7qC5sJ8lucqaB2EFdUQUEmutQiLKjflZ2MgDg= Subject key identifier: 5E:E9:A5:57:22:15:34:C1:87:74:AF:2C:6A:C5:61:60:B1:EA:58:8D Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65 Certificate serial: 019AC4670269BD0CF9A0856A57FA0CDBE521 Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/XumlVyIVNMGHdK8sasVhYLHqWI0.roa Signing time: Thu 27 Nov 2025 08:21:16 +0000 ROA not before: Thu 27 Nov 2025 08:21:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 48449 IP address blocks: 46.20.105.0/24 maxlen: 24 46.20.110.0/24 maxlen: 24 185.160.193.0/24 maxlen: 24 185.160.194.0/24 maxlen: 24 185.160.195.0/24 maxlen: 24 185.169.220.0/24 maxlen: 24 185.169.221.0/24 maxlen: 24 185.169.222.0/24 maxlen: 24 185.169.223.0/24 maxlen: 24 2a14:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c4:67:02:69:bd:0c:f9:a0:85:6a:57:fa:0c:db:e5:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67499595a65aab0b53768def08091e31061e9e65 Validity Not Before: Nov 27 08:21:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=5ee9a557221534c18774af2c6ac56160b1ea588d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7d:a9:b9:bf:dc:9e:62:11:78:12:da:c1:c9: dc:58:b5:b0:4b:48:f0:ab:cc:c5:2a:9a:46:02:7c: 9b:c5:42:84:92:1f:c5:2d:1a:f2:20:bb:f7:18:69: d1:7b:be:da:9d:ad:39:7d:22:96:a0:d8:02:9c:06: 30:b9:f8:6e:11:7f:25:50:6b:dd:69:5f:47:61:e1: ff:63:04:74:70:49:3d:ea:bf:27:03:a1:92:b5:b0: 4a:9d:78:80:87:12:19:02:5a:f3:bc:12:c2:01:c4: 94:cb:7b:5b:2f:8e:d4:cb:7a:65:c8:93:05:a1:83: 1a:e0:a7:bb:7b:01:9a:da:a9:44:96:23:54:07:41: 04:0d:bd:95:fa:14:da:46:66:9e:ee:2a:ea:1c:27: 04:43:d1:dc:1c:61:40:d2:34:ee:e9:10:27:5a:b8: f1:a4:87:d2:36:8c:15:71:6a:b0:d1:ea:41:0f:b6: e4:67:e4:b1:c1:6c:77:cc:af:66:d3:5a:1b:ef:7b: 9a:77:b3:0b:3e:83:ab:81:63:05:6a:c3:d6:4b:c5: 72:76:e4:0f:bd:92:80:67:4e:a9:9a:f8:2e:79:77: 20:93:45:f2:0a:68:d7:42:68:85:f1:47:b9:a8:17: 71:3e:ba:61:33:c0:a8:25:13:2c:a6:b6:58:65:cd: 2d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E9:A5:57:22:15:34:C1:87:74:AF:2C:6A:C5:61:60:B1:EA:58:8D X509v3 Authority Key Identifier: keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/XumlVyIVNMGHdK8sasVhYLHqWI0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.20.105.0/24 46.20.110.0/24 185.160.193.0-185.160.195.255 185.169.220.0/22 IPv6: 2a14:80::/48 Signature Algorithm: sha256WithRSAEncryption 3e:66:7f:ba:6f:b6:cd:f1:44:fe:ee:59:7c:0b:74:29:97:e2: 90:b0:68:8c:5e:6a:46:b8:82:8b:71:f0:a0:aa:4f:5d:74:23: e4:0d:f2:f4:1d:ad:5f:58:5c:b8:08:ac:6e:51:50:03:95:a7: 73:75:88:d4:c9:9d:25:63:ab:a3:42:7b:98:63:36:83:4d:3b: 9b:e3:8c:83:af:2a:11:b8:26:ad:aa:25:3b:5c:5c:0c:e6:a1: 26:08:51:af:47:62:50:95:02:ca:43:cb:ab:d0:ab:53:c2:72: cb:0b:30:4c:57:ae:d3:8a:d0:ea:3b:ec:01:a0:1b:e4:3d:45: 40:e7:68:a4:9a:9f:42:4a:bc:f3:c0:a3:9d:57:c7:eb:d3:3c: bb:30:a3:a5:30:ae:88:a7:eb:39:2d:1b:03:49:4c:3c:b8:b0: 32:46:2a:01:c0:c2:cc:d8:12:02:b3:a5:e6:65:c4:42:21:e8: b1:60:7f:65:23:75:11:3f:fa:6c:41:80:36:8e:f7:6e:ae:29: 04:77:2d:6d:16:68:f1:d7:df:8c:71:a7:35:83:b2:cf:11:6e: 4c:32:51:0c:9b:39:ab:7e:0c:7a:4b:c1:79:a1:e6:39:36:b9: 86:0f:93:d9:af:31:c1:c8:4d:ba:27:c1:56:d3:4a:cb:b8:4c: d2:17:bb:06 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgISAZrEZwJpvQz5oIVqV/oM2+UhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx ZTllNjUwHhcNMjUxMTI3MDgyMTE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWU5YTU1NzIyMTUzNGMxODc3NGFmMmM2YWM1NjE2MGIxZWE1ODhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4H2pub/cnmIReBLawcncWLWwS0jw q8zFKppGAnybxUKEkh/FLRryILv3GGnRe77ana05fSKWoNgCnAYwufhuEX8lUGvd aV9HYeH/YwR0cEk96r8nA6GStbBKnXiAhxIZAlrzvBLCAcSUy3tbL47Uy3plyJMF oYMa4Ke7ewGa2qlEliNUB0EEDb2V+hTaRmae7irqHCcEQ9HcHGFA0jTu6RAnWrjx pIfSNowVcWqw0epBD7bkZ+SxwWx3zK9m01ob73uad7MLPoOrgWMFasPWS8VyduQP vZKAZ06pmvgueXcgk0XyCmjXQmiF8Ue5qBdxPrphM8CoJRMsprZYZc0t8wIDAQAB o4ICNDCCAjAwHQYDVR0OBBYEFF7ppVciFTTBh3SvLGrFYWCx6liNMB8GA1UdIwQY MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct MzU1MDgwNDE2NTJkLzEvWHVtbFZ5SVZOTUdIZEs4c2FzVmhZTEhxV0kwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTAmBAIAATAgAwQALhRpAwQA LhRuMAwDBAC5oMEDBAK5oMADBAK5qdwwDwQCAAIwCQMHACoUAIAAADANBgkqhkiG 9w0BAQsFAAOCAQEAPmZ/um+2zfFE/u5ZfAt0KZfikLBojF5qRriCi3HwoKpPXXQj 5A3y9B2tX1hcuAisblFQA5Wnc3WI1MmdJWOro0J7mGM2g007m+OMg68qEbgmraol O1xcDOahJghRr0diUJUCykPLq9CrU8JyywswTFeu04rQ6jvsAaAb5D1FQOdopJqf Qkq888CjnVfH69M8uzCjpTCuiKfrOS0bA0lMPLiwMkYqAcDCzNgSArOl5mXEQiHo sWB/ZSN1ET/6bEGANo73bq4pBHctbRZo8dffjHGnNYOyzxFuTDJRDJs5q34MekvB eaHmOTa5hg+T2a8xwchNuifBVtNKy7hM0he7Bg== -----END CERTIFICATE-----Generated at Sat Dec 6 20:51:07 2025 by rpki-client