This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/b4dc3c-ecab-436d-ac52-595307f47110/1/LE09wGjm-4tV478e5hKoYO1ss_4.roa File: LE09wGjm-4tV478e5hKoYO1ss_4.roa (raw, json) Hash identifier: ZvvOcJV43Cg5jGcdcMkvsbLcwJVugyuR0arAlKHmsbc= Subject key identifier: 2C:4D:3D:C0:68:E6:FB:8B:55:E3:BF:1E:E6:12:A8:60:ED:6C:B3:FE Certificate issuer: /CN=e5805c5fe3450287dcde6ade0d9c9558ba615e32 Certificate serial: 019AE4635EFB7B041AAD67EBAD0DA4AAEEE1 Authority key identifier: E5:80:5C:5F:E3:45:02:87:DC:DE:6A:DE:0D:9C:95:58:BA:61:5E:32 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YBcX-NFAofc3mreDZyVWLphXjI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/b4dc3c-ecab-436d-ac52-595307f47110/1/LE09wGjm-4tV478e5hKoYO1ss_4.roa Signing time: Wed 03 Dec 2025 13:25:08 +0000 ROA not before: Wed 03 Dec 2025 13:25:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 35453 IP address blocks: 45.67.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/b4dc3c-ecab-436d-ac52-595307f47110/1/5YBcX-NFAofc3mreDZyVWLphXjI.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/b4dc3c-ecab-436d-ac52-595307f47110/1/5YBcX-NFAofc3mreDZyVWLphXjI.mft rsync://rpki.ripe.net/repository/DEFAULT/5YBcX-NFAofc3mreDZyVWLphXjI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e4:63:5e:fb:7b:04:1a:ad:67:eb:ad:0d:a4:aa:ee:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5805c5fe3450287dcde6ade0d9c9558ba615e32 Validity Not Before: Dec 3 13:25:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=2c4d3dc068e6fb8b55e3bf1ee612a860ed6cb3fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5a:65:b3:86:c1:93:40:e9:c9:bf:fa:91:c2: b3:11:fd:27:8e:58:de:fe:ac:ea:71:90:f9:93:26: 6c:f8:48:2b:c7:50:bc:10:6e:32:56:d7:6b:74:5d: 69:64:da:83:3a:0c:fd:27:3a:43:99:58:da:df:c3: 00:92:ee:b0:9c:2a:c3:8e:2d:20:6a:94:7d:38:d7: ac:4c:3c:26:77:3e:a1:4f:9c:b5:60:91:4a:64:5a: 24:46:e4:36:a7:1c:5b:2d:4d:f4:8f:f7:db:92:ab: 99:4e:99:68:8e:7a:17:2b:68:a6:55:54:86:67:6a: 9f:64:2a:31:8b:f4:51:a7:8d:ef:03:b4:db:98:04: af:eb:4a:f2:c7:13:cb:61:02:6e:5d:c0:44:04:ed: 99:f1:44:ac:96:21:ba:8e:02:e5:57:4e:a1:7d:ed: 33:20:91:ea:ce:87:7a:23:2c:be:43:46:af:af:f5: 39:8e:0c:81:b3:4d:4a:da:e0:8f:94:eb:ae:df:c1: 69:6d:29:d9:8d:15:57:dc:01:fc:54:05:06:f1:10: c9:66:ee:d0:18:14:e4:56:b9:01:3d:ab:d6:50:4e: 2c:87:20:32:ca:23:19:98:a8:9e:ab:70:d3:1b:d0: f9:34:79:8a:74:9c:b4:04:4d:b2:3e:1b:e3:e2:c6: c3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4D:3D:C0:68:E6:FB:8B:55:E3:BF:1E:E6:12:A8:60:ED:6C:B3:FE X509v3 Authority Key Identifier: keyid:E5:80:5C:5F:E3:45:02:87:DC:DE:6A:DE:0D:9C:95:58:BA:61:5E:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YBcX-NFAofc3mreDZyVWLphXjI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b4dc3c-ecab-436d-ac52-595307f47110/1/LE09wGjm-4tV478e5hKoYO1ss_4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b4dc3c-ecab-436d-ac52-595307f47110/1/5YBcX-NFAofc3mreDZyVWLphXjI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.67.64.0/22 Signature Algorithm: sha256WithRSAEncryption ab:8f:5c:22:39:a3:47:ea:51:a2:bc:8e:d0:93:aa:12:db:73: ce:1e:07:7c:65:14:22:6a:bf:e4:7f:e4:07:f0:c4:e9:2c:59: db:3a:05:20:a6:fd:42:93:fb:af:6a:a4:31:34:54:80:55:79: ff:dd:15:38:e0:32:19:66:9b:a2:8e:7e:ac:b0:fb:94:1d:79: 75:4b:8e:c9:09:ff:33:53:91:7b:50:66:fc:7f:92:a4:99:d1: aa:ba:1c:d2:ef:14:b3:3c:24:08:56:57:c3:d1:0c:92:27:fd: bf:95:a6:2f:41:eb:d2:79:20:23:6c:a5:b2:7d:d8:e8:62:4c: c6:4b:25:b6:94:67:9f:02:a7:9a:3b:ca:fb:77:ba:29:bf:29: c5:df:bf:58:fa:c2:2c:99:15:d8:ee:15:7c:54:1c:2f:fa:25: 7e:9e:a2:ad:d5:86:bb:bd:be:c0:af:15:93:1d:42:53:23:32: 19:56:3b:4a:2d:e7:55:19:57:e9:e1:5f:39:90:98:5e:12:22: 27:6c:c0:40:96:9e:25:27:b4:54:9a:50:8c:6c:6d:78:eb:ab: 25:6e:cc:aa:4a:dd:49:89:d6:94:23:ee:7b:d9:93:2c:e9:6a: 19:92:78:63:fa:65:a9:77:76:4e:3e:40:fc:2e:80:d8:5a:4a: b9:f3:97:ce -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZrkY177ewQarWfrrQ2kqu7hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ODA1YzVmZTM0NTAyODdkY2RlNmFkZTBkOWM5NTU4YmE2 MTVlMzIwHhcNMjUxMjAzMTMyNTA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYzRkM2RjMDY4ZTZmYjhiNTVlM2JmMWVlNjEyYTg2MGVkNmNiM2ZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl1pls4bBk0Dpyb/6kcKzEf0njlje /qzqcZD5kyZs+Egrx1C8EG4yVtdrdF1pZNqDOgz9JzpDmVja38MAku6wnCrDji0g apR9ONesTDwmdz6hT5y1YJFKZFokRuQ2pxxbLU30j/fbkquZTplojnoXK2imVVSG Z2qfZCoxi/RRp43vA7TbmASv60ryxxPLYQJuXcBEBO2Z8USsliG6jgLlV06hfe0z IJHqzod6Iyy+Q0avr/U5jgyBs01K2uCPlOuu38FpbSnZjRVX3AH8VAUG8RDJZu7Q GBTkVrkBPavWUE4shyAyyiMZmKieq3DTG9D5NHmKdJy0BE2yPhvj4sbD4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCxNPcBo5vuLVeO/HuYSqGDtbLP+MB8GA1UdIwQY MBaAFOWAXF/jRQKH3N5q3g2clVi6YV4yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVlCY1gtTkZBb2ZjM21yZURaeVZXTHBoWGpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9iNGRjM2MtZWNhYi00MzZkLWFjNTIt NTk1MzA3ZjQ3MTEwLzEvTEUwOXdHam0tNHRWNDc4ZTVoS29ZTzFzc180LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9iNGRjM2MtZWNhYi00MzZkLWFjNTItNTk1MzA3ZjQ3MTEw LzEvNVlCY1gtTkZBb2ZjM21yZURaeVZXTHBoWGpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLUNAMA0G CSqGSIb3DQEBCwUAA4IBAQCrj1wiOaNH6lGivI7Qk6oS23POHgd8ZRQiar/kf+QH 8MTpLFnbOgUgpv1Ck/uvaqQxNFSAVXn/3RU44DIZZpuijn6ssPuUHXl1S47JCf8z U5F7UGb8f5KkmdGquhzS7xSzPCQIVlfD0QySJ/2/laYvQevSeSAjbKWyfdjoYkzG SyW2lGefAqeaO8r7d7opvynF379Y+sIsmRXY7hV8VBwv+iV+nqKt1Ya7vb7ArxWT HUJTIzIZVjtKLedVGVfp4V85kJheEiInbMBAlp4lJ7RUmlCMbG1466slbsyqSt1J idaUI+572ZMs6WoZknhj+mWpd3ZOPkD8LoDYWkq585fO -----END CERTIFICATE-----Generated at Sun Dec 7 01:06:33 2025 by rpki-client