This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/RHKQCLh9p5JzpuKanJX0DkMRUlA.roa File: RHKQCLh9p5JzpuKanJX0DkMRUlA.roa (raw, json) Hash identifier: o9uzhadYctQ+ct/9t6KVMIQQ2ktWwbMKXVh4ukOS++c= Subject key identifier: 44:72:90:08:B8:7D:A7:92:73:A6:E2:9A:9C:95:F4:0E:43:11:52:50 Certificate issuer: /CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342 Certificate serial: 019A6DB9B3076867AA22A97C3F251BFEA1AB Authority key identifier: 8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/RHKQCLh9p5JzpuKanJX0DkMRUlA.roa Signing time: Mon 10 Nov 2025 12:24:37 +0000 ROA not before: Mon 10 Nov 2025 12:24:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212066 IP address blocks: 87.250.255.0/24 maxlen: 24 2a02:6b8:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/jYRATl-KSxF65E5z1TxE7N1Xg0I.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/jYRATl-KSxF65E5z1TxE7N1Xg0I.mft rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:6d:b9:b3:07:68:67:aa:22:a9:7c:3f:25:1b:fe:a1:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342 Validity Not Before: Nov 10 12:24:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=44729008b87da79273a6e29a9c95f40e43115250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:be:c4:0b:98:f8:6a:77:cc:b5:4f:aa:60:b1: d0:eb:fb:6e:57:a8:33:03:2c:bc:69:bf:a8:36:91: e4:3a:32:50:05:27:52:dd:f0:12:13:87:8f:75:bb: 98:c2:79:28:fb:46:12:d3:40:e3:d4:a4:49:80:91: 09:fc:fe:25:c8:27:a8:c1:3c:7f:ec:53:ff:fa:87: 7b:99:a5:f4:cc:65:95:5f:a7:1a:54:fd:1f:cb:89: 85:7f:c6:7b:54:5e:51:3c:36:4a:80:38:22:83:94: 5a:6b:a2:57:8c:5a:bf:24:fe:f0:b6:20:89:94:00: 9c:0e:ab:0d:04:e7:e0:35:9f:cc:a9:0a:b7:e6:ed: df:a6:23:63:f7:2f:05:0f:99:c4:18:ce:86:88:5f: 78:25:42:38:47:b2:76:88:07:ec:bd:77:f1:d7:ea: 6b:f6:e3:95:74:a6:94:42:44:26:53:67:5a:d5:c9: 61:33:fb:72:80:fd:b6:9c:d5:2d:c2:22:ae:69:16: 9d:1f:61:58:f0:60:01:9c:0e:49:fe:ce:27:1b:76: 07:b7:c1:be:61:d4:bb:91:37:76:b5:56:bf:1e:d1: 82:38:84:26:42:dd:a0:f7:7b:2c:8e:dc:a1:59:4a: 5c:ef:34:65:fa:82:e7:7c:ff:9a:81:d8:75:c9:34: 2c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:72:90:08:B8:7D:A7:92:73:A6:E2:9A:9C:95:F4:0E:43:11:52:50 X509v3 Authority Key Identifier: keyid:8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/RHKQCLh9p5JzpuKanJX0DkMRUlA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/jYRATl-KSxF65E5z1TxE7N1Xg0I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.250.255.0/24 IPv6: 2a02:6b8:f::/48 Signature Algorithm: sha256WithRSAEncryption 5e:40:4f:f3:97:42:91:be:52:65:a4:16:7b:9c:b6:0e:96:cb: 66:9f:cf:19:5e:c8:e8:9d:b7:59:aa:1f:d6:9e:b8:8f:da:78: 20:18:ba:87:28:39:5d:76:57:56:f6:e0:0e:66:3f:07:64:d4: 90:b0:0f:9e:3b:2b:41:c5:e6:24:5d:4b:1e:0a:52:ff:8d:ed: c8:42:f1:83:b4:17:f0:12:23:83:ad:73:28:05:03:99:93:64: 98:bf:85:94:1f:3c:1f:4b:83:d7:fa:d2:f6:aa:f7:05:51:91: de:7b:25:d5:ea:60:c2:de:d1:e7:7d:5f:97:f0:29:62:33:92: 54:60:1d:54:e2:90:aa:93:d4:fb:f0:f0:e8:78:3f:b4:14:b3: 2c:7f:3f:0e:07:49:3d:33:e5:c9:b4:d0:91:70:04:dc:3f:a4: b4:a1:c1:35:a0:a1:2a:f5:37:39:e0:36:ae:92:f7:49:b4:e7: f6:7c:c4:43:b1:2a:b5:67:ed:21:da:52:1a:57:ad:76:03:ff: 95:7e:64:49:98:a4:80:11:33:6f:bb:93:e9:c9:46:a6:3c:a7: f4:4d:54:c1:e8:7d:40:70:bb:24:87:70:24:81:c5:1e:78:c9: fb:2f:34:a3:7c:8a:d9:3d:19:ef:04:7c:b1:92:f1:7d:36:2b: 50:76:d7:17 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZptubMHaGeqIql8PyUb/qGrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkODQ0MDRlNWY4YTRiMTE3YWU0NGU3M2Q1M2M0NGVjZGQ1 NzgzNDIwHhcNMjUxMTEwMTIyNDM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDcyOTAwOGI4N2RhNzkyNzNhNmUyOWE5Yzk1ZjQwZTQzMTE1MjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4L7EC5j4anfMtU+qYLHQ6/tuV6gz Ayy8ab+oNpHkOjJQBSdS3fASE4ePdbuYwnko+0YS00Dj1KRJgJEJ/P4lyCeowTx/ 7FP/+od7maX0zGWVX6caVP0fy4mFf8Z7VF5RPDZKgDgig5Raa6JXjFq/JP7wtiCJ lACcDqsNBOfgNZ/MqQq35u3fpiNj9y8FD5nEGM6GiF94JUI4R7J2iAfsvXfx1+pr 9uOVdKaUQkQmU2da1clhM/tygP22nNUtwiKuaRadH2FY8GABnA5J/s4nG3YHt8G+ YdS7kTd2tVa/HtGCOIQmQt2g93ssjtyhWUpc7zRl+oLnfP+agdh1yTQstwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFERykAi4faeSc6bimpyV9A5DEVJQMB8GA1UdIwQY MBaAFI2EQE5fiksReuROc9U8ROzdV4NCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvallSQVRsLUtTeEY2NUU1ejFUeEU3TjFYZzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9kNTFmNjQtNWQwNi00ZmMwLWFiNjkt MmNkOThlZTUzNTY5LzEvUkhLUUNMaDlwNUp6cHVLYW5KWDBEa01SVWxBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9kNTFmNjQtNWQwNi00ZmMwLWFiNjktMmNkOThlZTUzNTY5 LzEvallSQVRsLUtTeEY2NUU1ejFUeEU3TjFYZzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAV/r/MA8E AgACMAkDBwAqAga4AA8wDQYJKoZIhvcNAQELBQADggEBAF5AT/OXQpG+UmWkFnuc tg6Wy2afzxleyOidt1mqH9aeuI/aeCAYuocoOV12V1b24A5mPwdk1JCwD547K0HF 5iRdSx4KUv+N7chC8YO0F/ASI4OtcygFA5mTZJi/hZQfPB9Lg9f60vaq9wVRkd57 JdXqYMLe0ed9X5fwKWIzklRgHVTikKqT1Pvw8Oh4P7QUsyx/Pw4HST0z5cm00JFw BNw/pLShwTWgoSr1NzngNq6S90m05/Z8xEOxKrVn7SHaUhpXrXYD/5V+ZEmYpIAR M2+7k+nJRqY8p/RNVMHofUBwuySHcCSBxR54yfsvNKN8itk9Ge8EfLGS8X02K1B2 1xc= -----END CERTIFICATE-----Generated at Sat Dec 6 11:34:37 2025 by rpki-client