This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/SohsxVb4_Kx1Rps6s6KZFGiAlBo.roa File: SohsxVb4_Kx1Rps6s6KZFGiAlBo.roa (raw, json) Hash identifier: DpkDv9v2RNex84dWsyB/0UohYl+9Px9l3sMzjXNHWcY= Subject key identifier: 4A:88:6C:C5:56:F8:FC:AC:75:46:9B:3A:B3:A2:99:14:68:80:94:1A Certificate issuer: /CN=5d129b0460cf9ee0500ee880a2cfa1a524e4df00 Certificate serial: 019A6D6EA019E51D1FBA06FE228362226BF9 Authority key identifier: 5D:12:9B:04:60:CF:9E:E0:50:0E:E8:80:A2:CF:A1:A5:24:E4:DF:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XRKbBGDPnuBQDuiAos-hpSTk3wA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/SohsxVb4_Kx1Rps6s6KZFGiAlBo.roa Signing time: Mon 10 Nov 2025 11:02:37 +0000 ROA not before: Mon 10 Nov 2025 11:02:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 214875 IP address blocks: 37.97.0.0/20 maxlen: 20 37.97.2.0/24 maxlen: 24 37.97.3.0/24 maxlen: 24 37.97.48.0/21 maxlen: 21 37.97.58.0/23 maxlen: 23 37.97.62.0/23 maxlen: 23 45.13.240.0/22 maxlen: 22 188.228.14.0/24 maxlen: 24 188.228.48.0/23 maxlen: 23 188.228.54.0/24 maxlen: 24 188.228.78.0/24 maxlen: 24 188.228.88.0/22 maxlen: 22 188.228.92.0/23 maxlen: 23 188.228.102.0/23 maxlen: 23 2a00:fd01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/XRKbBGDPnuBQDuiAos-hpSTk3wA.crl rsync://rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/XRKbBGDPnuBQDuiAos-hpSTk3wA.mft rsync://rpki.ripe.net/repository/DEFAULT/XRKbBGDPnuBQDuiAos-hpSTk3wA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:6d:6e:a0:19:e5:1d:1f:ba:06:fe:22:83:62:22:6b:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d129b0460cf9ee0500ee880a2cfa1a524e4df00 Validity Not Before: Nov 10 11:02:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4a886cc556f8fcac75469b3ab3a299146880941a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0b:86:a4:85:74:85:26:07:b9:bf:54:3c:41: a0:e0:0a:86:fa:de:d9:c2:ca:42:46:6e:42:54:34: f9:30:69:d0:b3:ac:10:08:9b:cc:84:7f:b4:ec:fc: 42:22:f7:63:d4:ba:f4:03:c5:2b:60:46:31:16:3c: 31:03:7b:e5:65:8e:8a:6d:ff:42:19:ab:3e:f7:be: ef:08:f9:73:64:4d:17:c9:1f:34:e2:c0:0b:61:0b: ea:3a:ad:cc:96:ff:40:88:3d:d7:db:92:50:76:af: 19:5e:67:a0:91:e8:a6:21:06:d6:54:00:fc:8a:0c: 26:9a:07:22:74:76:1f:4f:24:e6:2c:de:dd:d8:28: 88:3a:98:c8:fb:5d:85:2e:79:19:b1:9a:8f:9b:d1: 8a:b0:de:8f:e7:7a:1a:a0:7d:81:13:dd:9a:b1:6b: 2c:9c:c8:43:92:7e:80:f8:ba:37:a6:ba:8d:f9:bd: 3a:bd:a4:ec:3e:e4:a8:87:99:62:22:26:d0:54:92: d6:5e:e2:b1:8d:6f:66:c0:02:25:6c:cf:42:8a:fa: 09:ef:41:95:d6:ac:17:ea:9c:eb:65:29:70:a5:6d: 14:3c:74:09:89:f7:86:54:95:91:b0:cd:ec:eb:8b: 85:34:7d:cb:d5:af:c9:1a:97:30:09:a3:cb:20:a6: 56:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:88:6C:C5:56:F8:FC:AC:75:46:9B:3A:B3:A2:99:14:68:80:94:1A X509v3 Authority Key Identifier: keyid:5D:12:9B:04:60:CF:9E:E0:50:0E:E8:80:A2:CF:A1:A5:24:E4:DF:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XRKbBGDPnuBQDuiAos-hpSTk3wA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/SohsxVb4_Kx1Rps6s6KZFGiAlBo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/XRKbBGDPnuBQDuiAos-hpSTk3wA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.97.0.0/20 37.97.48.0/21 37.97.58.0/23 37.97.62.0/23 45.13.240.0/22 188.228.14.0/24 188.228.48.0/23 188.228.54.0/24 188.228.78.0/24 188.228.88.0-188.228.93.255 188.228.102.0/23 IPv6: 2a00:fd01::/32 Signature Algorithm: sha256WithRSAEncryption 04:a8:49:18:9e:d8:c3:72:09:11:e9:9a:70:f8:41:34:ef:cc: 33:c2:0b:2a:f3:e2:37:f8:f5:20:b9:76:61:fa:c1:7f:08:cb: db:82:c4:e0:66:1a:fd:0a:9f:15:01:a4:6d:89:c0:d3:be:f4: 79:65:56:12:1c:e6:82:ac:2a:80:35:5e:e3:85:9b:cd:b4:58: c6:43:d5:97:c9:e7:4b:2c:a5:a0:8f:5f:d9:31:9a:82:da:d6: 0d:3f:00:77:c0:ab:47:e3:6a:0f:a3:62:91:73:13:23:8f:70: b1:96:49:5e:6c:45:7c:30:84:e2:f3:ef:62:04:14:2f:36:8f: 53:8d:73:79:b4:ab:25:b2:46:32:31:2e:7a:e4:57:e1:09:27: 4a:4a:e0:2b:e8:e7:b5:b0:21:94:eb:b4:3e:cf:08:53:c2:60: 4b:5f:87:a9:f0:ac:a5:4d:52:9a:be:18:05:34:e9:96:87:59: 28:aa:c1:e6:37:76:2d:6a:88:88:da:74:30:9e:e3:93:1c:b3: 94:ed:46:87:ba:03:2b:2d:69:f9:b7:5b:08:9d:6b:38:7c:24: 58:f7:a4:48:5a:95:e0:ac:f3:8b:41:29:a0:a8:f3:7a:ad:43: d4:ca:b2:8e:9a:c2:6b:88:4d:56:a3:fe:48:3b:13:21:99:64: f3:84:50:9f -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgISAZptbqAZ5R0fugb+IoNiImv5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkMTI5YjA0NjBjZjllZTA1MDBlZTg4MGEyY2ZhMWE1MjRl NGRmMDAwHhcNMjUxMTEwMTEwMjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTg4NmNjNTU2ZjhmY2FjNzU0NjliM2FiM2EyOTkxNDY4ODA5NDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAuGpIV0hSYHub9UPEGg4AqG+t7Z wspCRm5CVDT5MGnQs6wQCJvMhH+07PxCIvdj1Lr0A8UrYEYxFjwxA3vlZY6Kbf9C Gas+977vCPlzZE0XyR804sALYQvqOq3Mlv9AiD3X25JQdq8ZXmegkeimIQbWVAD8 igwmmgcidHYfTyTmLN7d2CiIOpjI+12FLnkZsZqPm9GKsN6P53oaoH2BE92asWss nMhDkn6A+Lo3prqN+b06vaTsPuSoh5liIibQVJLWXuKxjW9mwAIlbM9CivoJ70GV 1qwX6pzrZSlwpW0UPHQJifeGVJWRsM3s64uFNH3L1a/JGpcwCaPLIKZWNwIDAQAB o4ICXDCCAlgwHQYDVR0OBBYEFEqIbMVW+PysdUabOrOimRRogJQaMB8GA1UdIwQY MBaAFF0SmwRgz57gUA7ogKLPoaUk5N8AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFJLYkJHRFBudUJRRHVpQW9zLWhwU1RrM3dBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi84NTU3ZTAtMzY4ZC00ZDhlLTk3NDEt YTg3N2RkNTFiYzQ5LzEvU29oc3hWYjRfS3gxUnBzNnM2S1pGR2lBbEJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi84NTU3ZTAtMzY4ZC00ZDhlLTk3NDEtYTg3N2RkNTFiYzQ5 LzEvWFJLYkJHRFBudUJRRHVpQW9zLWhwU1RrM3dBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHIGCCsGAQUFBwEHAQH/BGMwYTBQBAIAATBKAwQEJWEAAwQD JWEwAwQBJWE6AwQBJWE+AwQCLQ3wAwQAvOQOAwQBvOQwAwQAvOQ2AwQAvOROMAwD BAO85FgDBAG85FwDBAG85GYwDQQCAAIwBwMFACoA/QEwDQYJKoZIhvcNAQELBQAD ggEBAASoSRie2MNyCRHpmnD4QTTvzDPCCyrz4jf49SC5dmH6wX8Iy9uCxOBmGv0K nxUBpG2JwNO+9HllVhIc5oKsKoA1XuOFm820WMZD1ZfJ50sspaCPX9kxmoLa1g0/ AHfAq0fjag+jYpFzEyOPcLGWSV5sRXwwhOLz72IEFC82j1ONc3m0qyWyRjIxLnrk V+EJJ0pK4Cvo57WwIZTrtD7PCFPCYEtfh6nwrKVNUpq+GAU06ZaHWSiqweY3di1q iIjadDCe45Mcs5TtRoe6Aystafm3Wwidazh8JFj3pEhaleCs84tBKaCo83qtQ9TK so6awmuITVaj/kg7EyGZZPOEUJ8= -----END CERTIFICATE-----Generated at Sat Dec 6 15:50:36 2025 by rpki-client