This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/LYpaU8KOzWUMo8KrYsH3AYLWxzE.roa File: LYpaU8KOzWUMo8KrYsH3AYLWxzE.roa (raw, json) Hash identifier: 4OCIjdQSi+Lej75LcTuRCeuJAtl0L3KePDVSiOgyG+8= Subject key identifier: 2D:8A:5A:53:C2:8E:CD:65:0C:A3:C2:AB:62:C1:F7:01:82:D6:C7:31 Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e Certificate serial: 019AB5ECEA083D7810418DAAD9218AE30E25 Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/LYpaU8KOzWUMo8KrYsH3AYLWxzE.roa Signing time: Mon 24 Nov 2025 12:53:13 +0000 ROA not before: Mon 24 Nov 2025 12:53:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1136 IP address blocks: 145.4.224.0/20 maxlen: 20 145.15.108.0/22 maxlen: 22 145.15.108.0/24 maxlen: 24 145.15.109.0/24 maxlen: 24 145.15.110.0/24 maxlen: 24 145.15.111.0/24 maxlen: 24 145.15.114.0/24 maxlen: 24 145.15.115.0/24 maxlen: 24 145.15.208.0/21 maxlen: 21 145.78.0.0/16 maxlen: 16 145.78.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.mft rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b5:ec:ea:08:3d:78:10:41:8d:aa:d9:21:8a:e3:0e:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e Validity Not Before: Nov 24 12:53:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=2d8a5a53c28ecd650ca3c2ab62c1f70182d6c731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:00:a0:5e:12:e2:5f:1f:4c:62:dc:69:5c:f1: ec:db:22:67:c3:36:0d:cb:36:df:8f:5d:1c:ff:78: c7:86:af:2c:03:58:43:04:1d:a0:53:32:2e:06:c5: ce:78:6f:32:16:65:a3:6b:36:6d:85:0a:41:3e:14: 40:3a:ce:02:14:43:e7:dd:c5:64:8a:7d:4a:4b:db: 38:f0:4e:d8:12:5c:72:60:55:16:69:33:d1:c0:5c: f4:14:e7:ca:b4:82:d4:44:d7:9c:2b:50:f8:7d:3c: 9b:50:d1:32:66:76:83:0a:38:e8:9b:a5:75:36:74: fa:44:62:e5:e5:0b:08:c3:0e:93:4d:0c:b6:14:31: fc:d9:f5:21:9f:d0:64:2b:73:cf:2e:7d:f7:33:60: 6e:29:26:9b:c1:0d:eb:96:01:69:a5:cf:ed:68:fc: b8:55:bf:30:d3:09:1c:0a:64:a6:8d:bd:38:09:85: 75:7a:75:33:e4:64:e3:31:de:fb:b7:05:ef:14:e3: e8:df:2b:cc:af:75:d2:9c:32:7d:d6:15:c7:62:6a: a3:3b:09:04:6d:84:73:75:24:d6:b5:1a:dd:63:6a: 3f:86:bc:64:4a:6a:15:48:c4:a9:de:e2:9a:44:f3: 3d:45:af:d9:48:5e:0e:c7:ef:de:bd:5b:4c:14:c7: cc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:8A:5A:53:C2:8E:CD:65:0C:A3:C2:AB:62:C1:F7:01:82:D6:C7:31 X509v3 Authority Key Identifier: keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/LYpaU8KOzWUMo8KrYsH3AYLWxzE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.4.224.0/20 145.15.108.0/22 145.15.114.0/23 145.15.208.0/21 145.78.0.0/16 Signature Algorithm: sha256WithRSAEncryption 27:84:98:4a:40:11:f0:e7:b0:dc:20:bd:29:8f:3b:1a:9a:95: 70:af:40:0a:90:5b:6d:1b:89:62:94:43:b6:40:f0:bc:7c:16: ac:53:78:b8:6a:c0:c4:d3:5a:9b:6f:6f:60:81:3a:b3:58:69: ce:f2:10:6b:96:0e:32:76:f0:2a:af:1d:35:a2:fe:47:79:ed: c9:f1:5a:89:17:34:cd:f4:1a:d0:14:ec:74:8e:02:8e:93:98: ee:a9:13:bd:d4:81:34:d9:38:a0:46:b8:1f:88:7c:53:e6:67: 6a:19:83:34:6c:ce:ec:97:e9:ac:f8:76:ce:1a:c5:f9:55:c7: 6d:cc:39:ef:de:95:28:84:5a:c8:09:e1:23:dd:dc:02:4d:f6: 30:b9:20:52:d5:5a:83:5f:7c:0c:4c:2a:bc:41:95:c0:1b:59: 37:19:8e:53:20:a0:39:6d:d7:1b:70:27:bd:76:4a:1c:17:2c: 65:2a:e0:2f:85:70:fd:d0:40:1f:3e:7b:79:88:26:f0:45:38: fa:26:ee:82:6e:94:10:28:cc:f0:dd:6f:7c:ed:6a:ef:24:28: 82:3f:5c:0d:50:8a:74:c6:77:df:b5:ce:91:b4:2c:9b:59:59: a2:5c:03:4e:9c:05:f1:37:13:d5:98:78:f2:0c:58:8d:74:d3: 07:4a:94:d2 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZq17OoIPXgQQY2q2SGK4w4lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NzNkYjE3Nzk1ZDJiZjFiNGI1MzQ1YzViMjkzOTBkYmFm NDUyM2UwHhcNMjUxMTI0MTI1MzEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDhhNWE1M2MyOGVjZDY1MGNhM2MyYWI2MmMxZjcwMTgyZDZjNzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwCgXhLiXx9MYtxpXPHs2yJnwzYN yzbfj10c/3jHhq8sA1hDBB2gUzIuBsXOeG8yFmWjazZthQpBPhRAOs4CFEPn3cVk in1KS9s48E7YElxyYFUWaTPRwFz0FOfKtILURNecK1D4fTybUNEyZnaDCjjom6V1 NnT6RGLl5QsIww6TTQy2FDH82fUhn9BkK3PPLn33M2BuKSabwQ3rlgFppc/taPy4 Vb8w0wkcCmSmjb04CYV1enUz5GTjMd77twXvFOPo3yvMr3XSnDJ91hXHYmqjOwkE bYRzdSTWtRrdY2o/hrxkSmoVSMSp3uKaRPM9Ra/ZSF4Ox+/evVtMFMfMmwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFC2KWlPCjs1lDKPCq2LB9wGC1scxMB8GA1UdIwQY MBaAFBdz2xd5XSvxtLU0XFspOQ269FI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYt NTQ4NjFmMjMyNDlkLzEvTFlwYVU4S096V1VNbzhLcllzSDNBWUxXeHpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYtNTQ4NjFmMjMyNDlk LzEvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAjBAIAATAdAwQEkQTgAwQC kQ9sAwQBkQ9yAwQDkQ/QAwMAkU4wDQYJKoZIhvcNAQELBQADggEBACeEmEpAEfDn sNwgvSmPOxqalXCvQAqQW20biWKUQ7ZA8Lx8FqxTeLhqwMTTWptvb2CBOrNYac7y EGuWDjJ28CqvHTWi/kd57cnxWokXNM30GtAU7HSOAo6TmO6pE73UgTTZOKBGuB+I fFPmZ2oZgzRszuyX6az4ds4axflVx23MOe/elSiEWsgJ4SPd3AJN9jC5IFLVWoNf fAxMKrxBlcAbWTcZjlMgoDlt1xtwJ712ShwXLGUq4C+FcP3QQB8+e3mIJvBFOPom 7oJulBAozPDdb3ztau8kKII/XA1QinTGd9+1zpG0LJtZWaJcA06cBfE3E9WYePIM WI100wdKlNI= -----END CERTIFICATE-----Generated at Sat Dec 6 18:46:06 2025 by rpki-client