This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/8sc3OYx-OLcUYUCQNkQRhHPGHIM.roa File: 8sc3OYx-OLcUYUCQNkQRhHPGHIM.roa (raw, json) Hash identifier: AiHEuRSSZHbm5JYCDPCzN9GH0KT3qO9ONER8L0rZZrE= Subject key identifier: F2:C7:37:39:8C:7E:38:B7:14:61:40:90:36:44:11:84:73:C6:1C:83 Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a Certificate serial: 019AC5A3C602D6B9F5BEF8CC99AFD08E5A86 Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/8sc3OYx-OLcUYUCQNkQRhHPGHIM.roa Signing time: Thu 27 Nov 2025 14:07:15 +0000 ROA not before: Thu 27 Nov 2025 14:07:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 207549 IP address blocks: 45.92.40.0/24 maxlen: 24 2a0e:1cc0:464e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.mft rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c5:a3:c6:02:d6:b9:f5:be:f8:cc:99:af:d0:8e:5a:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a Validity Not Before: Nov 27 14:07:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=f2c737398c7e38b7146140903644118473c61c83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9c:76:6b:2c:3a:a4:ff:22:51:94:ad:7c:73: bf:dd:38:83:f5:31:8c:0c:1b:dc:79:93:9c:d8:d8: 39:b9:2e:b1:54:6c:2e:31:38:2d:05:ea:17:24:3a: ac:e1:b6:11:4e:65:ed:e5:fa:28:61:25:8d:a3:42: 21:d3:f4:77:28:1f:e3:3e:61:b8:c9:83:1e:b8:7a: 87:f9:4d:37:15:3a:a5:7d:07:90:c3:16:35:ba:0c: d6:95:a6:14:fc:80:49:ae:4c:cb:2d:da:c3:3f:7a: 4f:62:d3:87:59:16:87:ad:8c:aa:bc:db:dd:f4:46: 72:0b:b8:a6:7f:57:da:fd:25:51:e9:75:4b:72:ca: 1e:a3:20:2f:3e:46:b1:da:14:9d:21:58:df:e8:39: 11:f7:6f:71:2a:32:79:30:8a:bb:53:18:4c:9c:92: 87:4a:88:2e:93:fd:9d:52:35:3e:a1:0d:50:d6:a2: 3a:29:8d:10:e2:75:bc:c5:fe:77:47:10:4f:26:dd: cc:f8:bf:a2:08:35:41:a8:04:dd:73:a8:e4:54:d3: 2b:98:79:0b:aa:be:ef:2b:d8:ea:de:db:87:c9:04: db:15:db:2d:bd:cb:09:a8:eb:18:7e:6f:0d:74:00: 3e:dc:98:22:c1:79:da:25:8b:fe:3e:80:83:32:79: c6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C7:37:39:8C:7E:38:B7:14:61:40:90:36:44:11:84:73:C6:1C:83 X509v3 Authority Key Identifier: keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/8sc3OYx-OLcUYUCQNkQRhHPGHIM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.92.40.0/24 IPv6: 2a0e:1cc0:464e::/48 Signature Algorithm: sha256WithRSAEncryption 77:7d:a2:60:34:e4:a0:21:5a:f5:66:48:30:a8:b6:32:75:5a: c2:c2:61:f9:eb:f5:7a:ec:9d:c0:f6:55:87:0c:ed:31:46:73: 72:72:f3:65:4c:ca:54:d5:1f:1b:e0:c5:08:ea:37:ca:01:0c: 51:a4:db:80:0e:d8:f9:40:12:c5:81:22:3d:e1:b3:e4:55:5a: 82:4e:50:42:e5:85:d4:5b:db:1d:68:6f:6f:fa:f8:93:c4:7a: 03:d8:6c:6f:0f:dd:9c:46:dd:32:a6:68:ac:6b:7d:0b:a2:a8: 2c:89:e5:82:f6:5d:0a:c7:9b:f1:08:65:0a:31:1a:4c:f2:53: 96:b3:e5:27:3f:41:e9:68:36:30:de:4a:f9:25:05:01:24:d0: d0:19:79:fd:0f:24:5d:eb:14:89:37:25:48:55:52:0a:f5:1a: 63:9a:8c:fe:88:81:03:a6:17:74:b8:d3:9f:ee:2d:e6:57:db: 7a:43:5b:ee:e2:48:7d:8c:30:8a:e7:c9:bc:75:be:79:25:c7: 33:ea:2d:46:17:42:94:cc:4b:32:f7:bc:6c:f8:c7:e7:f6:a1: 41:eb:e4:10:f5:93:34:47:f0:bf:4f:ef:3b:c1:ce:b4:d5:90: 3f:0f:8d:0f:ba:4f:48:d5:3d:6c:ce:fd:6a:ee:92:38:21:89: e9:83:3e:f0 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZrFo8YC1rn1vvjMma/QjlqGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlMzEzNjdkZjZkMTg2MTA3MWM5MmJhZTcyNjUyMzMyNmY0 NWJhMmEwHhcNMjUxMTI3MTQwNzE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMmM3MzczOThjN2UzOGI3MTQ2MTQwOTAzNjQ0MTE4NDczYzYxYzgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpx2ayw6pP8iUZStfHO/3TiD9TGM DBvceZOc2Ng5uS6xVGwuMTgtBeoXJDqs4bYRTmXt5fooYSWNo0Ih0/R3KB/jPmG4 yYMeuHqH+U03FTqlfQeQwxY1ugzWlaYU/IBJrkzLLdrDP3pPYtOHWRaHrYyqvNvd 9EZyC7imf1fa/SVR6XVLcsoeoyAvPkax2hSdIVjf6DkR929xKjJ5MIq7UxhMnJKH Soguk/2dUjU+oQ1Q1qI6KY0Q4nW8xf53RxBPJt3M+L+iCDVBqATdc6jkVNMrmHkL qr7vK9jq3tuHyQTbFdstvcsJqOsYfm8NdAA+3JgiwXnaJYv+PoCDMnnGuwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFPLHNzmMfji3FGFAkDZEEYRzxhyDMB8GA1UdIwQY MBaAFO4xNn320YYQcckrrnJlIzJvRboqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2pFMmZmYlJoaEJ4eVN1dWNtVWpNbTlGdWlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8xYmI0ZGQtZTljNC00ZDNkLTlhM2It MTE1OWRiZmJlZDU0LzEvOHNjM09ZeC1PTGNVWVVDUU5rUVJoSFBHSElNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8xYmI0ZGQtZTljNC00ZDNkLTlhM2ItMTE1OWRiZmJlZDU0 LzEvN2pFMmZmYlJoaEJ4eVN1dWNtVWpNbTlGdWlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQALVwoMA8E AgACMAkDBwAqDhzARk4wDQYJKoZIhvcNAQELBQADggEBAHd9omA05KAhWvVmSDCo tjJ1WsLCYfnr9XrsncD2VYcM7TFGc3Jy82VMylTVHxvgxQjqN8oBDFGk24AO2PlA EsWBIj3hs+RVWoJOUELlhdRb2x1ob2/6+JPEegPYbG8P3ZxG3TKmaKxrfQuiqCyJ 5YL2XQrHm/EIZQoxGkzyU5az5Sc/QeloNjDeSvklBQEk0NAZef0PJF3rFIk3JUhV Ugr1GmOajP6IgQOmF3S405/uLeZX23pDW+7iSH2MMIrnybx1vnklxzPqLUYXQpTM SzL3vGz4x+f2oUHr5BD1kzRH8L9P7zvBzrTVkD8PjQ+6T0jVPWzO/WrukjghiemD PvA= -----END CERTIFICATE-----Generated at Sat Dec 6 09:47:40 2025 by rpki-client