This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/y4Vx9Qkt31hnDWKRDzjTPFqJDKw.roa File: y4Vx9Qkt31hnDWKRDzjTPFqJDKw.roa (raw, json) Hash identifier: pJac98NKx2lAtwRM2cZV4ynaL5asMJypxmM9yqZe034= Subject key identifier: CB:85:71:F5:09:2D:DF:58:67:0D:62:91:0F:38:D3:3C:5A:89:0C:AC Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75 Certificate serial: 019ABBE89DA84B5B88C630812CFA870DF08F Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/y4Vx9Qkt31hnDWKRDzjTPFqJDKw.roa Signing time: Tue 25 Nov 2025 16:46:15 +0000 ROA not before: Tue 25 Nov 2025 16:46:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 62235 IP address blocks: 5.183.56.0/22 maxlen: 24 5.183.56.0/23 maxlen: 24 5.183.58.0/23 maxlen: 24 37.156.76.0/22 maxlen: 24 37.156.108.0/22 maxlen: 24 37.156.108.0/23 maxlen: 24 37.156.110.0/23 maxlen: 24 45.14.204.0/22 maxlen: 24 45.14.204.0/23 maxlen: 24 45.14.206.0/24 maxlen: 24 45.14.207.0/24 maxlen: 24 45.86.184.0/23 maxlen: 24 45.86.186.0/23 maxlen: 24 85.204.200.0/21 maxlen: 24 85.204.200.0/22 maxlen: 24 85.204.204.0/22 maxlen: 24 87.247.128.0/22 maxlen: 24 87.247.128.0/23 maxlen: 24 87.247.130.0/23 maxlen: 24 89.35.231.0/24 maxlen: 24 89.39.167.0/24 maxlen: 24 89.44.82.0/24 maxlen: 24 89.45.220.0/22 maxlen: 24 89.45.220.0/23 maxlen: 24 89.45.222.0/23 maxlen: 24 89.46.35.0/24 maxlen: 24 89.46.37.0/24 maxlen: 24 89.46.39.0/24 maxlen: 24 89.46.247.0/24 maxlen: 24 92.119.0.0/22 maxlen: 24 92.119.0.0/23 maxlen: 24 92.119.2.0/23 maxlen: 24 94.177.0.0/22 maxlen: 24 94.177.0.0/23 maxlen: 24 94.177.2.0/23 maxlen: 24 185.41.244.0/22 maxlen: 24 185.41.244.0/23 maxlen: 24 185.41.246.0/23 maxlen: 24 185.56.76.0/22 maxlen: 24 185.56.76.0/23 maxlen: 24 185.56.78.0/23 maxlen: 24 185.87.128.0/22 maxlen: 24 185.87.128.0/23 maxlen: 24 185.87.130.0/23 maxlen: 24 188.212.16.0/22 maxlen: 24 188.212.16.0/23 maxlen: 24 188.212.18.0/23 maxlen: 24 188.213.80.0/22 maxlen: 24 188.213.80.0/23 maxlen: 24 188.213.82.0/23 maxlen: 24 188.213.83.0/24 maxlen: 24 188.214.112.0/21 maxlen: 24 188.214.112.0/22 maxlen: 24 188.214.116.0/22 maxlen: 24 188.214.118.0/24 maxlen: 24 194.124.56.0/22 maxlen: 24 194.124.56.0/23 maxlen: 24 194.124.58.0/23 maxlen: 24 195.82.98.0/23 maxlen: 24 195.82.98.0/24 maxlen: 24 195.82.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.mft rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:bb:e8:9d:a8:4b:5b:88:c6:30:81:2c:fa:87:0d:f0:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75 Validity Not Before: Nov 25 16:46:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=cb8571f5092ddf58670d62910f38d33c5a890cac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b0:b9:7d:1c:cb:15:79:16:be:23:c6:43:93: 82:93:49:1d:7a:4e:95:6b:35:f3:9a:27:6a:da:6f: f9:fa:5a:a5:04:5e:e8:07:47:58:d8:1a:8a:62:d6: 47:ab:17:f1:36:29:7c:dc:07:dd:ba:8b:e9:39:6b: 3c:da:b2:c5:14:33:66:ca:1e:cb:98:cc:bf:39:5b: f3:3c:19:22:a5:7c:10:04:86:e0:5d:20:54:22:66: a7:a9:4f:76:c1:39:7f:2f:ca:3f:32:3c:10:fe:05: c3:0d:e7:7e:38:d8:b6:5e:5a:17:03:06:76:d7:c3: 35:0b:9a:8b:db:63:5e:54:ad:eb:e8:8a:92:26:67: 05:fa:bc:ed:1c:fe:27:3c:73:f4:43:9c:9a:b7:c1: 84:a8:89:98:e9:2e:70:a6:3d:a3:66:ae:3f:09:92: a6:c1:d6:e3:c6:81:66:4f:c6:29:33:9a:c8:42:c7: 18:8d:3e:a0:0c:48:1b:80:8c:61:75:26:82:e5:bc: 8a:94:87:dd:53:a2:59:1f:48:31:54:c6:0a:e8:7e: 2e:c2:1c:c9:c9:32:b7:da:8f:e8:6d:1b:69:24:08: 41:58:f7:7b:e5:8e:e9:86:7c:0c:e4:6c:9f:6e:97: 3c:f1:6e:0c:ca:17:de:50:4f:6b:8d:50:64:b9:12: 18:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:85:71:F5:09:2D:DF:58:67:0D:62:91:0F:38:D3:3C:5A:89:0C:AC X509v3 Authority Key Identifier: keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/y4Vx9Qkt31hnDWKRDzjTPFqJDKw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.183.56.0/22 37.156.76.0/22 37.156.108.0/22 45.14.204.0/22 45.86.184.0/22 85.204.200.0/21 87.247.128.0/22 89.35.231.0/24 89.39.167.0/24 89.44.82.0/24 89.45.220.0/22 89.46.35.0/24 89.46.37.0/24 89.46.39.0/24 89.46.247.0/24 92.119.0.0/22 94.177.0.0/22 185.41.244.0/22 185.56.76.0/22 185.87.128.0/22 188.212.16.0/22 188.213.80.0/22 188.214.112.0/21 194.124.56.0/22 195.82.98.0/23 Signature Algorithm: sha256WithRSAEncryption 75:7b:3a:82:1e:c8:0d:09:f5:22:fd:6c:fb:fd:cb:c5:c0:d5: d5:e5:37:cb:f6:6f:ca:46:cd:fd:0a:a7:e9:cd:b5:3b:56:38: cb:8f:ea:b2:5d:fa:ca:3c:61:54:2e:e0:6b:08:13:bb:5c:ad: c7:63:7b:8f:6b:c3:04:f0:ab:9e:9b:19:96:13:ad:d8:65:2f: ed:8d:38:ac:14:aa:41:9c:63:f5:45:4a:47:6a:17:9c:87:5f: a0:15:73:e4:21:a9:0c:98:90:de:c0:4c:b3:e5:64:00:ba:b0: 1a:9d:08:57:c8:07:2d:44:17:3f:b5:11:60:ba:99:64:83:e9: e0:94:4d:c1:8c:1e:90:88:d7:db:08:b3:bb:f6:3a:50:d4:3d: 13:2f:55:f1:82:af:89:64:ba:d1:6e:20:ee:d7:f3:a3:9c:23: e0:77:4a:25:e5:94:0c:71:4c:91:cf:45:06:75:8d:f0:a4:1d: 44:9d:ee:38:04:78:e7:5b:72:be:e4:f2:fc:95:81:bd:41:8f: c7:1e:13:6b:1b:74:4b:e6:06:75:fa:07:5b:ef:5b:54:35:9b: e6:af:72:52:5b:56:c3:cf:b2:db:15:8f:67:18:48:95:4b:cb: e7:0e:ac:2c:0d:2e:ad:8e:c2:46:1e:57:85:ea:ac:b5:f2:b3: a3:a5:76:d3 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgISAZq76J2oS1uIxjCBLPqHDfCPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4 YjZiNzUwHhcNMjUxMTI1MTY0NjE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjg1NzFmNTA5MmRkZjU4NjcwZDYyOTEwZjM4ZDMzYzVhODkwY2FjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLC5fRzLFXkWviPGQ5OCk0kdek6V azXzmidq2m/5+lqlBF7oB0dY2BqKYtZHqxfxNil83AfduovpOWs82rLFFDNmyh7L mMy/OVvzPBkipXwQBIbgXSBUImanqU92wTl/L8o/MjwQ/gXDDed+ONi2XloXAwZ2 18M1C5qL22NeVK3r6IqSJmcF+rztHP4nPHP0Q5yat8GEqImY6S5wpj2jZq4/CZKm wdbjxoFmT8YpM5rIQscYjT6gDEgbgIxhdSaC5byKlIfdU6JZH0gxVMYK6H4uwhzJ yTK32o/obRtpJAhBWPd75Y7phnwM5Gyfbpc88W4MyhfeUE9rjVBkuRIYqQIDAQAB o4ICnjCCApowHQYDVR0OBBYEFMuFcfUJLd9YZw1ikQ840zxaiQysMB8GA1UdIwQY MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt Yzc5MTRhYjY0MjczLzEveTRWeDlRa3QzMWhuRFdLUkR6alRQRnFKREt3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGzBggrBgEFBQcBBwEB/wSBozCBoDCBnQQCAAEwgZYDBAIF tzgDBAIlnEwDBAIlnGwDBAItDswDBAItVrgDBANVzMgDBAJX94ADBABZI+cDBABZ J6cDBABZLFIDBAJZLdwDBABZLiMDBABZLiUDBABZLicDBABZLvcDBAJcdwADBAJe sQADBAK5KfQDBAK5OEwDBAK5V4ADBAK81BADBAK81VADBAO81nADBALCfDgDBAHD UmIwDQYJKoZIhvcNAQELBQADggEBAHV7OoIeyA0J9SL9bPv9y8XA1dXlN8v2b8pG zf0Kp+nNtTtWOMuP6rJd+so8YVQu4GsIE7tcrcdje49rwwTwq56bGZYTrdhlL+2N OKwUqkGcY/VFSkdqF5yHX6AVc+QhqQyYkN7ATLPlZAC6sBqdCFfIBy1EFz+1EWC6 mWSD6eCUTcGMHpCI19sIs7v2OlDUPRMvVfGCr4lkutFuIO7X86OcI+B3SiXllAxx TJHPRQZ1jfCkHUSd7jgEeOdbcr7k8vyVgb1Bj8ceE2sbdEvmBnX6B1vvW1Q1m+av clJbVsPPstsVj2cYSJVLy+cOrCwNLq2OwkYeV4XqrLXys6OldtM= -----END CERTIFICATE-----Generated at Sat Dec 6 18:48:24 2025 by rpki-client