This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/e59mOeQsrW-90segmPPLWMjT0YI.roa File: e59mOeQsrW-90segmPPLWMjT0YI.roa (raw, json) Hash identifier: toiB1Qv2MIoXXFo0FWdc3w36O3AKCGfMQKznYcWinGU= Subject key identifier: 7B:9F:66:39:E4:2C:AD:6F:BD:D2:C7:A0:98:F3:CB:58:C8:D3:D1:82 Certificate issuer: /CN=9338840926ac73ead5b6187919e88f10032299ca Certificate serial: 019ADF6E23ED73356B7EC2D26315731B90DE Authority key identifier: 93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/e59mOeQsrW-90segmPPLWMjT0YI.roa Signing time: Tue 02 Dec 2025 14:18:48 +0000 ROA not before: Tue 02 Dec 2025 14:18:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 214470 IP address blocks: 45.148.73.0/24 maxlen: 24 2a0f:8c00::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:df:6e:23:ed:73:35:6b:7e:c2:d2:63:15:73:1b:90:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9338840926ac73ead5b6187919e88f10032299ca Validity Not Before: Dec 2 14:18:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=7b9f6639e42cad6fbdd2c7a098f3cb58c8d3d182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:be:78:34:ab:ce:a5:13:d9:30:fc:01:21:3a: 47:c9:7f:30:89:1c:5e:a6:99:c7:61:8a:26:06:15: 75:51:e5:40:a4:78:f8:04:16:84:7d:40:f5:c5:b9: bd:17:13:e8:b6:af:e6:3e:63:c3:9b:6e:76:f4:01: b3:77:8d:fd:46:de:c4:ec:e5:9d:cf:67:61:91:75: 62:dc:42:76:47:54:1c:6b:1e:46:09:09:f5:0a:ce: 00:7c:dc:d4:c8:ef:3b:3c:e9:01:c1:00:53:da:a7: 05:a3:d9:bd:e1:7e:d3:37:ba:fe:02:5f:a1:b6:80: f9:65:da:6f:39:36:ca:98:c5:48:31:56:33:bc:15: f5:75:82:27:d0:dd:c4:72:57:34:3f:cd:32:df:d8: 65:f7:06:3c:3a:e4:28:07:50:0e:0a:d7:5b:6b:80: 28:de:11:79:6e:07:22:c0:8e:48:c7:4d:ce:b0:68: 29:79:56:7f:36:26:8e:3b:49:fb:f6:e7:bb:fd:fe: 85:2a:90:fe:4a:10:d4:09:70:03:00:4c:b0:ad:68: e7:67:58:46:81:0f:24:93:b2:ec:4d:7d:79:25:8b: 2a:ad:61:39:2e:dc:67:86:36:04:cb:64:f2:fb:cd: 51:2e:64:cd:af:c7:73:6f:0b:a3:13:30:e6:de:f3: 1b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9F:66:39:E4:2C:AD:6F:BD:D2:C7:A0:98:F3:CB:58:C8:D3:D1:82 X509v3 Authority Key Identifier: keyid:93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/e59mOeQsrW-90segmPPLWMjT0YI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.148.73.0/24 IPv6: 2a0f:8c00::/33 Signature Algorithm: sha256WithRSAEncryption 11:2f:4b:88:23:97:62:e0:95:86:17:e5:67:36:81:f1:d0:07: ed:fa:fb:14:e2:70:68:9b:d7:6e:a7:c1:08:d6:e7:d0:e0:b2: 63:f5:29:10:44:3b:f6:42:de:d2:56:d6:66:b2:12:09:8f:f6: 79:79:b3:b5:49:e6:e5:d8:f6:7c:0a:7d:9d:e6:dd:04:6a:aa: 92:0e:dd:ae:75:a7:24:dc:e9:b1:4e:8c:0c:f9:44:b6:e2:37: f6:6f:05:b6:a5:ee:ee:52:d2:02:04:fc:a3:12:56:a1:51:80: 17:d2:24:11:41:c2:dd:45:34:14:cf:ac:73:50:9e:3c:f3:63: 29:eb:e9:9a:d7:90:56:f9:db:1a:ab:0f:87:9e:7d:ad:4b:dc: 53:09:ae:f6:cd:be:bc:5a:e4:db:85:85:58:61:6b:96:cc:8f: c3:f9:65:28:c5:11:ee:ab:1e:b1:7d:ea:7d:a8:97:7c:ff:79: f3:98:16:be:0f:f4:1a:0f:0e:24:7f:b4:0c:86:8b:41:a1:22: 2e:08:52:6a:1e:61:ef:d5:0a:ed:05:bc:41:52:88:9e:9a:35: f7:0d:0e:25:8b:38:30:04:7b:bb:12:a9:4f:16:06:ae:7f:13: 35:c2:22:24:6d:65:87:20:4c:3a:d9:37:c9:ba:6c:60:e9:fe: 65:28:65:46 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZrfbiPtczVrfsLSYxVzG5DeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMzg4NDA5MjZhYzczZWFkNWI2MTg3OTE5ZTg4ZjEwMDMy Mjk5Y2EwHhcNMjUxMjAyMTQxODQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjlmNjYzOWU0MmNhZDZmYmRkMmM3YTA5OGYzY2I1OGM4ZDNkMTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvb54NKvOpRPZMPwBITpHyX8wiRxe ppnHYYomBhV1UeVApHj4BBaEfUD1xbm9FxPotq/mPmPDm2529AGzd439Rt7E7OWd z2dhkXVi3EJ2R1Qcax5GCQn1Cs4AfNzUyO87POkBwQBT2qcFo9m94X7TN7r+Al+h toD5ZdpvOTbKmMVIMVYzvBX1dYIn0N3Eclc0P80y39hl9wY8OuQoB1AOCtdba4Ao 3hF5bgciwI5Ix03OsGgpeVZ/NiaOO0n79ue7/f6FKpD+ShDUCXADAEywrWjnZ1hG gQ8kk7LsTX15JYsqrWE5LtxnhjYEy2Ty+81RLmTNr8dzbwujEzDm3vMbPwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFHufZjnkLK1vvdLHoJjzy1jI09GCMB8GA1UdIwQY MBaAFJM4hAkmrHPq1bYYeRnojxADIpnKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8wYmQ0ZDMtZDQ2Yy00ODNmLTk1NmUt ZWE3YWU3MmJkMzJkLzEvZTU5bU9lUXNyVy05MHNlZ21QUExXTWpUMFlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS8wYmQ0ZDMtZDQ2Yy00ODNmLTk1NmUtZWE3YWU3MmJkMzJk LzEva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQALZRJMA4E AgACMAgDBgcqD4wAADANBgkqhkiG9w0BAQsFAAOCAQEAES9LiCOXYuCVhhflZzaB 8dAH7fr7FOJwaJvXbqfBCNbn0OCyY/UpEEQ79kLe0lbWZrISCY/2eXmztUnm5dj2 fAp9nebdBGqqkg7drnWnJNzpsU6MDPlEtuI39m8FtqXu7lLSAgT8oxJWoVGAF9Ik EUHC3UU0FM+sc1CePPNjKevpmteQVvnbGqsPh559rUvcUwmu9s2+vFrk24WFWGFr lsyPw/llKMUR7qsesX3qfaiXfP9585gWvg/0Gg8OJH+0DIaLQaEiLghSah5h79UK 7QW8QVKInpo19w0OJYs4MAR7uxKpTxYGrn8TNcIiJG1lhyBMOtk3ybpsYOn+ZShl Rg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:58:37 2025 by rpki-client