This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/XmP5gd5RMoI2I-3CuFjmsoadU-A.roa File: XmP5gd5RMoI2I-3CuFjmsoadU-A.roa (raw, json) Hash identifier: yTuyaNUFHzFeSHibSr05GdVIbx2NHYDZL76zx1zzku8= Subject key identifier: 5E:63:F9:81:DE:51:32:82:36:23:ED:C2:B8:58:E6:B2:86:9D:53:E0 Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019A7391AAA0B1C5D14B6ED68A0B4482FA93 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/XmP5gd5RMoI2I-3CuFjmsoadU-A.roa Signing time: Tue 11 Nov 2025 15:38:37 +0000 ROA not before: Tue 11 Nov 2025 15:38:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14670 IP address blocks: 65.181.111.0/24 maxlen: 24 65.181.118.0/24 maxlen: 24 88.135.73.0/24 maxlen: 24 185.181.252.0/24 maxlen: 24 190.92.168.0/22 maxlen: 24 190.92.172.0/24 maxlen: 24 190.92.173.0/24 maxlen: 24 192.243.110.0/24 maxlen: 24 192.250.225.0/24 maxlen: 24 192.250.231.0/24 maxlen: 24 193.30.117.0/24 maxlen: 24 195.250.24.0/24 maxlen: 24 195.250.26.0/24 maxlen: 24 195.250.29.0/24 maxlen: 24 199.103.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:73:91:aa:a0:b1:c5:d1:4b:6e:d6:8a:0b:44:82:fa:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Nov 11 15:38:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=5e63f981de5132823623edc2b858e6b2869d53e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2c:1d:78:a6:fc:fe:7a:a9:c5:96:af:2c:d7: f5:cb:56:ae:7b:ce:c1:8a:33:1e:cc:f1:36:3b:a8: 64:a4:50:de:b2:45:0d:97:3c:b5:3f:d2:f7:02:6c: 3e:54:ab:12:ca:b0:90:7e:e1:56:95:9d:40:b9:cb: b4:d4:33:2e:fb:59:88:37:c9:23:08:1c:e6:75:23: ca:2a:84:21:2d:f1:98:12:f6:33:ff:3e:e6:88:ba: bb:3a:29:03:6c:9b:29:bf:db:7e:82:06:f2:10:e0: 8e:86:28:88:39:55:99:47:ec:c3:44:36:61:84:e7: 86:83:45:27:a8:dd:e5:60:47:0a:e7:a7:45:a0:0e: 15:e4:1b:86:d0:83:8b:ef:7e:6d:a3:0d:1b:22:94: 73:e0:32:0c:f4:b7:0f:8c:4b:76:10:19:ae:fd:60: bf:4f:0f:07:78:45:ea:e6:cc:d4:2d:bd:d3:5a:56: 94:44:51:a2:7d:fe:54:68:b4:4d:35:cd:cd:10:0e: 05:62:a0:12:d3:ac:80:19:a8:96:c7:ee:10:d7:91: 1f:ce:b6:01:23:57:02:a0:f6:56:33:4c:77:eb:cd: a9:27:c2:65:5d:9d:b1:2b:e0:64:80:f0:c2:ab:a6: 1b:18:c4:d4:69:cb:f1:6a:85:78:b6:cd:b1:03:d2: 54:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:63:F9:81:DE:51:32:82:36:23:ED:C2:B8:58:E6:B2:86:9D:53:E0 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/XmP5gd5RMoI2I-3CuFjmsoadU-A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.181.111.0/24 65.181.118.0/24 88.135.73.0/24 185.181.252.0/24 190.92.168.0-190.92.173.255 192.243.110.0/24 192.250.225.0/24 192.250.231.0/24 193.30.117.0/24 195.250.24.0/24 195.250.26.0/24 195.250.29.0/24 199.103.58.0/24 Signature Algorithm: sha256WithRSAEncryption 73:d6:d6:22:06:24:ac:0b:4d:5a:f4:5a:0b:44:1f:19:f6:88: 00:1c:a2:11:8c:85:c0:35:bf:e8:f9:aa:98:cd:c6:6a:cc:43: 13:12:3a:68:a7:3a:0f:69:4a:ef:29:af:d8:2d:fa:35:69:e5: a8:0b:76:12:36:e6:c7:4d:44:e0:fa:06:0c:08:1f:ce:99:8d: de:c9:b4:5b:de:7d:0c:85:01:1f:99:a9:0d:45:25:b0:c6:66: af:43:0e:23:69:04:89:fd:90:14:2f:0a:8d:78:7b:4c:ec:d2: 3f:01:99:d3:64:43:ea:2d:49:32:b4:d8:18:7b:d5:de:f1:b3: 0f:49:f8:25:2c:fd:5e:47:35:4d:a6:3a:b5:f5:ef:af:05:3d: 6f:15:3b:45:e3:f1:88:26:c5:9e:d8:40:ad:c4:12:15:6d:cf: b0:80:0d:6a:87:c5:d1:52:29:ff:99:23:ce:05:d8:a7:43:b8: 87:05:62:b4:b1:86:5f:2d:ca:59:8b:f4:3a:7c:6d:1e:47:47: cc:c1:3a:09:dd:1e:f3:f8:d4:70:ff:4e:ed:48:9d:07:fa:40: 22:76:5a:3b:d1:63:0a:4e:39:54:9b:52:d8:ad:31:39:63:e1: 82:71:68:70:53:df:cd:c5:db:bb:7c:44:69:2f:be:c1:38:a3: 7a:0b:64:4f -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgISAZpzkaqgscXRS27WigtEgvqTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjUxMTExMTUzODM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZTYzZjk4MWRlNTEzMjgyMzYyM2VkYzJiODU4ZTZiMjg2OWQ1M2UwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoywdeKb8/nqpxZavLNf1y1aue87B ijMezPE2O6hkpFDeskUNlzy1P9L3Amw+VKsSyrCQfuFWlZ1Aucu01DMu+1mIN8kj CBzmdSPKKoQhLfGYEvYz/z7miLq7OikDbJspv9t+ggbyEOCOhiiIOVWZR+zDRDZh hOeGg0UnqN3lYEcK56dFoA4V5BuG0IOL735tow0bIpRz4DIM9LcPjEt2EBmu/WC/ Tw8HeEXq5szULb3TWlaURFGiff5UaLRNNc3NEA4FYqAS06yAGaiWx+4Q15EfzrYB I1cCoPZWM0x3682pJ8JlXZ2xK+BkgPDCq6YbGMTUacvxaoV4ts2xA9JUoQIDAQAB o4ICWTCCAlUwHQYDVR0OBBYEFF5j+YHeUTKCNiPtwrhY5rKGnVPgMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvWG1QNWdkNVJNb0kySS0zQ3VGam1zb2FkVS1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG8GCCsGAQUFBwEHAQH/BGAwXjBcBAIAATBWAwQAQbVvAwQA QbV2AwQAWIdJAwQAubX8MAwDBAO+XKgDBAG+XKwDBADA824DBADA+uEDBADA+ucD BADBHnUDBADD+hgDBADD+hoDBADD+h0DBADHZzowDQYJKoZIhvcNAQELBQADggEB AHPW1iIGJKwLTVr0WgtEHxn2iAAcohGMhcA1v+j5qpjNxmrMQxMSOminOg9pSu8p r9gt+jVp5agLdhI25sdNROD6BgwIH86Zjd7JtFvefQyFAR+ZqQ1FJbDGZq9DDiNp BIn9kBQvCo14e0zs0j8BmdNkQ+otSTK02Bh71d7xsw9J+CUs/V5HNU2mOrX1768F PW8VO0Xj8YgmxZ7YQK3EEhVtz7CADWqHxdFSKf+ZI84F2KdDuIcFYrSxhl8tylmL 9Dp8bR5HR8zBOgndHvP41HD/Tu1InQf6QCJ2WjvRYwpOOVSbUtitMTlj4YJxaHBT 383F27t8RGkvvsE4o3oLZE8= -----END CERTIFICATE-----Generated at Sat Dec 6 20:43:55 2025 by rpki-client