This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/67pXXJ9TGz4KS4CPk3F2qwCJvPs.roa File: 67pXXJ9TGz4KS4CPk3F2qwCJvPs.roa (raw, json) Hash identifier: TL11KjGZ23sagC+4BrDFrq5tRJiiJf48Twqx/FNbs0g= Subject key identifier: EB:BA:57:5C:9F:53:1B:3E:0A:4B:80:8F:93:71:76:AB:00:89:BC:FB Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a Certificate serial: 019A87D99F53CD402AB2C724EBBFFBCC17B9 Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/67pXXJ9TGz4KS4CPk3F2qwCJvPs.roa Signing time: Sat 15 Nov 2025 14:09:37 +0000 ROA not before: Sat 15 Nov 2025 14:09:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 205886 IP address blocks: 217.147.167.0/24 maxlen: 24 217.147.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.mft rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:87:d9:9f:53:cd:40:2a:b2:c7:24:eb:bf:fb:cc:17:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a Validity Not Before: Nov 15 14:09:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ebba575c9f531b3e0a4b808f937176ab0089bcfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:01:1b:37:e0:48:39:a9:49:8a:d7:dc:c7:ba: a2:ba:3f:cd:a1:7e:ac:08:a1:cf:e3:b9:37:58:1c: 9f:6a:c2:2c:1f:3f:29:3c:de:44:31:13:ae:0d:2c: a7:66:b0:bc:23:01:20:f0:d2:ad:27:7f:51:f6:e1: 2e:0b:f6:78:a1:ee:d0:26:0a:50:ed:af:f0:07:31: 86:a8:15:ec:cd:13:27:1f:ec:0d:f3:60:88:29:f8: fd:c7:d0:50:95:8a:ff:c9:14:3f:7d:dd:c9:d9:e7: 78:95:e9:6d:be:1c:7a:10:41:4e:97:5a:6e:d7:36: 02:c6:0e:25:cc:5c:13:26:09:7c:a2:d7:f6:db:5e: e6:51:d8:76:76:67:1c:18:53:59:42:39:4a:ec:41: 6f:22:23:f1:f8:0f:86:4d:6a:b2:be:0e:f3:76:f7: 3c:9a:5a:e1:6b:d0:15:96:0d:2a:d7:1f:66:b7:ea: 3e:80:d9:b4:85:f5:f6:ee:dc:f5:a3:6e:07:fc:98: 55:a3:f3:95:06:f4:3f:a5:19:44:55:65:b5:2e:0a: 60:42:b4:aa:57:87:c6:19:cd:f0:14:89:d9:40:19: e9:76:a0:37:0e:6c:d7:de:cf:89:e5:ff:ee:18:cd: cf:57:6b:b5:53:f5:58:96:f8:c6:d3:1e:f2:c4:ca: 6b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:BA:57:5C:9F:53:1B:3E:0A:4B:80:8F:93:71:76:AB:00:89:BC:FB X509v3 Authority Key Identifier: keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/67pXXJ9TGz4KS4CPk3F2qwCJvPs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.147.167.0-217.147.168.255 Signature Algorithm: sha256WithRSAEncryption 5f:9f:6e:98:81:96:5e:22:17:e5:3c:27:99:73:5e:55:00:f8: 07:16:f1:9b:85:52:a1:d9:92:d9:75:a4:3b:f3:82:15:47:89: 42:12:c1:e3:a5:06:63:b1:fa:8c:56:51:dc:9e:29:3b:6f:9c: 9d:f7:51:0c:cd:c8:33:fa:9d:c5:9f:22:70:cd:4b:79:74:95: 24:92:73:be:ad:57:6b:87:42:13:db:83:7f:d9:6b:8c:96:16: 48:83:fa:d1:92:41:96:2f:c2:bc:39:8f:3e:1f:bd:12:b9:b8: 01:2f:1c:c4:85:f2:45:f2:cf:84:a5:3b:3a:cb:48:89:37:da: 1b:f7:9d:a4:d6:eb:a6:1d:a0:eb:06:86:d7:40:25:2f:0e:cb: c5:ff:96:af:fc:9c:c7:7b:e0:3d:21:d3:c0:42:5b:0a:b6:8c: 3e:68:a1:80:8c:85:ec:14:f8:7a:14:dc:67:e7:3f:c0:e3:24: 3d:6c:ab:33:20:31:a0:48:1d:bf:49:6b:7c:f8:09:a6:80:cb: d7:e6:9e:fa:4d:51:72:bd:ee:c4:0f:2a:ec:b2:b0:99:1e:2a: a0:b7:59:a5:bc:7c:f7:41:af:94:3b:70:05:ca:45:97:36:ee: 21:9e:90:56:82:4a:08:e2:3d:e8:3a:a6:47:9e:22:4c:5c:2d: 66:09:91:f3 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZqH2Z9TzUAqssck67/7zBe5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyZjhhYjJiYTI0ODc5ZTQ1YzQ0NTQ4NmZjZWIyMWFmNDY2 NTZkNWEwHhcNMjUxMTE1MTQwOTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYmJhNTc1YzlmNTMxYjNlMGE0YjgwOGY5MzcxNzZhYjAwODliY2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygEbN+BIOalJitfcx7qiuj/NoX6s CKHP47k3WByfasIsHz8pPN5EMROuDSynZrC8IwEg8NKtJ39R9uEuC/Z4oe7QJgpQ 7a/wBzGGqBXszRMnH+wN82CIKfj9x9BQlYr/yRQ/fd3J2ed4leltvhx6EEFOl1pu 1zYCxg4lzFwTJgl8otf2217mUdh2dmccGFNZQjlK7EFvIiPx+A+GTWqyvg7zdvc8 mlrha9AVlg0q1x9mt+o+gNm0hfX27tz1o24H/JhVo/OVBvQ/pRlEVWW1LgpgQrSq V4fGGc3wFInZQBnpdqA3DmzX3s+J5f/uGM3PV2u1U/VYlvjG0x7yxMprLwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFOu6V1yfUxs+CkuAj5NxdqsAibz7MB8GA1UdIwQY MBaAFEL4qyuiSHnkXERUhvzrIa9GZW1aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXZpcks2SkllZVJjUkZTR19Pc2hyMFpsYlZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9jMTdjNWQtNzU0My00NDBmLTg3OGYt MTc2OWZlZjZiZTk2LzEvNjdwWFhKOVRHejRLUzRDUGszRjJxd0NKdlBzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC9jMTdjNWQtNzU0My00NDBmLTg3OGYtMTc2OWZlZjZiZTk2 LzEvUXZpcks2SkllZVJjUkZTR19Pc2hyMFpsYlZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBADZk6cD BADZk6gwDQYJKoZIhvcNAQELBQADggEBAF+fbpiBll4iF+U8J5lzXlUA+AcW8ZuF UqHZktl1pDvzghVHiUISweOlBmOx+oxWUdyeKTtvnJ33UQzNyDP6ncWfInDNS3l0 lSSSc76tV2uHQhPbg3/Za4yWFkiD+tGSQZYvwrw5jz4fvRK5uAEvHMSF8kXyz4Sl OzrLSIk32hv3naTW66YdoOsGhtdAJS8Oy8X/lq/8nMd74D0h08BCWwq2jD5ooYCM hewU+HoU3GfnP8DjJD1sqzMgMaBIHb9Ja3z4CaaAy9fmnvpNUXK97sQPKuyysJke KqC3WaW8fPdBr5Q7cAXKRZc27iGekFaCSgjiPeg6pkeeIkxcLWYJkfM= -----END CERTIFICATE-----Generated at Sat Dec 6 09:55:02 2025 by rpki-client