This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/fKcwQYNH98XsFcbKGJENUZXHFjI.roa File: fKcwQYNH98XsFcbKGJENUZXHFjI.roa (raw, json) Hash identifier: 3FvUc7KWveMGfwTJPyrap8mlbMCiKY4QmfDzgX7qeAk= Subject key identifier: 7C:A7:30:41:83:47:F7:C5:EC:15:C6:CA:18:91:0D:51:95:C7:16:32 Certificate issuer: /CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f Certificate serial: 019AC095378E89423F0B09C4C23E36DD5756 Authority key identifier: 29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/fKcwQYNH98XsFcbKGJENUZXHFjI.roa Signing time: Wed 26 Nov 2025 14:33:15 +0000 ROA not before: Wed 26 Nov 2025 14:33:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 5.10.213.0/24 maxlen: 24 5.10.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.mft rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c0:95:37:8e:89:42:3f:0b:09:c4:c2:3e:36:dd:57:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f Validity Not Before: Nov 26 14:33:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=7ca730418347f7c5ec15c6ca18910d5195c71632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:79:c7:92:48:51:eb:4d:a2:4a:43:78:6b:75: 30:f9:69:f8:a1:3a:ec:66:c1:dc:a7:11:b1:dc:12: 48:28:7e:64:65:f2:f2:87:e2:16:85:b4:55:69:1c: 9c:14:8f:c0:9e:dd:91:86:9a:28:03:ff:82:10:86: 55:a2:f6:14:bf:9f:fc:55:76:da:a9:16:52:6f:8a: 7d:97:2e:e5:13:86:1d:41:f0:85:e6:9d:3f:4b:54: 95:a6:ea:d4:d0:e5:73:57:3e:33:e6:8a:a2:8b:a4: 18:95:c6:45:64:bd:b8:6e:c7:40:ad:24:98:13:d2: c9:f9:fd:5a:82:73:51:37:3d:33:f2:48:64:1f:10: 0b:25:14:13:91:c9:f2:6f:53:8d:ff:be:91:9f:f8: 4d:6f:0b:f1:d7:c2:18:de:e3:10:e2:63:b9:e2:80: 80:69:b6:85:a4:53:73:53:a9:39:11:f6:61:72:e8: 4c:ce:05:9a:d7:08:19:75:7e:6b:e5:d3:17:de:a1: e3:c7:56:ac:76:ef:67:c0:33:51:34:b9:f5:c6:1e: ee:e1:54:5c:e3:25:f2:d1:5e:c8:db:f1:47:49:5f: 59:04:93:04:16:4d:eb:0f:0b:94:fb:aa:96:87:fa: d5:d1:da:b1:f0:6f:0c:2f:59:02:f8:f4:a1:89:c9: 74:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:A7:30:41:83:47:F7:C5:EC:15:C6:CA:18:91:0D:51:95:C7:16:32 X509v3 Authority Key Identifier: keyid:29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/fKcwQYNH98XsFcbKGJENUZXHFjI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.10.213.0/24 5.10.222.0/24 Signature Algorithm: sha256WithRSAEncryption 80:0e:e0:6a:e5:66:9b:da:79:4e:fc:e5:60:c5:2a:e1:a0:8e: b4:01:88:30:4e:ea:8a:ad:b4:97:52:ec:34:0e:c5:7f:9c:9b: d1:0d:24:f8:44:43:42:64:51:72:8a:51:8c:b8:b9:c9:63:25: 25:bb:fc:3b:1d:d5:af:74:f9:44:55:b0:f5:72:71:63:c3:30: bb:5b:7b:8c:fa:3d:3e:12:7c:b0:7c:ea:5f:cd:ab:e1:37:6c: e4:2d:cb:cb:9f:f9:22:5f:5e:93:57:fe:73:26:ed:a3:70:cf: 82:8b:90:b4:33:fd:92:cb:b5:9d:a4:70:99:a3:80:3b:0c:16: 1f:75:67:84:73:e0:a4:03:1c:98:97:0c:55:ce:46:bf:fb:63: 13:22:ea:11:39:d5:b7:b7:5f:79:a6:c5:8f:26:0b:cb:a6:55: 75:66:93:93:6c:b7:af:3b:17:f1:59:5d:37:fe:06:3d:5d:4f: 96:c9:e0:75:90:4c:df:bd:af:49:2c:73:a9:9f:56:7d:ab:5e: ac:d7:65:11:2f:98:c6:ad:3e:ee:21:2e:3d:ff:a0:20:60:94: ff:da:60:db:51:a4:10:9b:cf:b5:8d:62:85:c1:47:09:12:ff: 8a:0e:fe:6b:7a:ec:1b:24:36:db:1d:c8:13:d1:56:26:b2:a1: a4:2f:c1:16 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZrAlTeOiUI/CwnEwj423VdWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5N2VmOWJlZmQxYTdlMjRjMGNjOTcyOTk4N2ZjMDY1ZDZi NzEzMmYwHhcNMjUxMTI2MTQzMzE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Y2E3MzA0MTgzNDdmN2M1ZWMxNWM2Y2ExODkxMGQ1MTk1YzcxNjMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyXnHkkhR602iSkN4a3Uw+Wn4oTrs ZsHcpxGx3BJIKH5kZfLyh+IWhbRVaRycFI/Ant2RhpooA/+CEIZVovYUv5/8VXba qRZSb4p9ly7lE4YdQfCF5p0/S1SVpurU0OVzVz4z5oqii6QYlcZFZL24bsdArSSY E9LJ+f1agnNRNz0z8khkHxALJRQTkcnyb1ON/76Rn/hNbwvx18IY3uMQ4mO54oCA abaFpFNzU6k5EfZhcuhMzgWa1wgZdX5r5dMX3qHjx1asdu9nwDNRNLn1xh7u4VRc 4yXy0V7I2/FHSV9ZBJMEFk3rDwuU+6qWh/rV0dqx8G8ML1kC+PShicl0oQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHynMEGDR/fF7BXGyhiRDVGVxxYyMB8GA1UdIwQY MBaAFCl++b79Gn4kwMyXKZh/wGXWtxMvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWIt ZGVlNzY4NjAwMTNkLzEvZktjd1FZTkg5OFhzRmNiS0dKRU5VWlhIRmpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWItZGVlNzY4NjAwMTNk LzEvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABQrVAwQA BQreMA0GCSqGSIb3DQEBCwUAA4IBAQCADuBq5Wab2nlO/OVgxSrhoI60AYgwTuqK rbSXUuw0DsV/nJvRDST4RENCZFFyilGMuLnJYyUlu/w7HdWvdPlEVbD1cnFjwzC7 W3uM+j0+EnywfOpfzavhN2zkLcvLn/kiX16TV/5zJu2jcM+Ci5C0M/2Sy7WdpHCZ o4A7DBYfdWeEc+CkAxyYlwxVzka/+2MTIuoROdW3t195psWPJgvLplV1ZpOTbLev OxfxWV03/gY9XU+WyeB1kEzfva9JLHOpn1Z9q16s12URL5jGrT7uIS49/6AgYJT/ 2mDbUaQQm8+1jWKFwUcJEv+KDv5reuwbJDbbHcgT0VYmsqGkL8EW -----END CERTIFICATE-----Generated at Sat Dec 6 21:11:44 2025 by rpki-client