This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/cXGDPo1fIztaXUyElHreP-80gF0.roa File: cXGDPo1fIztaXUyElHreP-80gF0.roa (raw, json) Hash identifier: kihFDhEGb15zT25P1ek3Q2qsDFLxcKie/o1ArvHcBr0= Subject key identifier: 71:71:83:3E:8D:5F:23:3B:5A:5D:4C:84:94:7A:DE:3F:EF:34:80:5D Certificate issuer: /CN=57c670c8db32dd748df797c5c93013d8c91fa839 Certificate serial: 019AC7688AAF792E9F33C3B9374C3EE9FB3B Authority key identifier: 57:C6:70:C8:DB:32:DD:74:8D:F7:97:C5:C9:30:13:D8:C9:1F:A8:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/cXGDPo1fIztaXUyElHreP-80gF0.roa Signing time: Thu 27 Nov 2025 22:21:48 +0000 ROA not before: Thu 27 Nov 2025 22:21:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 205090 IP address blocks: 89.44.86.0/24 maxlen: 24 89.44.87.0/24 maxlen: 24 91.200.12.0/24 maxlen: 24 95.81.121.0/24 maxlen: 24 95.81.122.0/24 maxlen: 24 103.71.20.0/24 maxlen: 24 103.71.21.0/24 maxlen: 24 104.128.133.0/24 maxlen: 24 109.69.62.0/24 maxlen: 24 185.105.88.0/24 maxlen: 24 185.105.89.0/24 maxlen: 24 185.105.90.0/24 maxlen: 24 185.105.91.0/24 maxlen: 24 185.128.105.0/24 maxlen: 24 185.128.106.0/24 maxlen: 24 185.128.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.mft rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 09:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c7:68:8a:af:79:2e:9f:33:c3:b9:37:4c:3e:e9:fb:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57c670c8db32dd748df797c5c93013d8c91fa839 Validity Not Before: Nov 27 22:21:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=7171833e8d5f233b5a5d4c84947ade3fef34805d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:19:0f:3d:0e:b4:8b:e2:45:3e:a9:bc:50:76: dd:13:a9:45:37:8a:cb:b0:5c:99:89:37:d1:ef:b0: ac:03:3c:fe:af:c0:7f:c4:3e:2d:91:3a:fa:6c:67: 35:73:1f:23:f0:73:1f:22:36:94:02:e9:f3:ca:96: cf:a0:b3:1d:56:93:c8:56:8f:df:0c:1a:d3:07:fa: 0a:e4:b0:95:0b:42:52:c2:30:c4:62:a2:86:35:f3: 1f:34:c3:df:f9:b1:21:88:2c:63:b2:38:c1:02:ab: 5f:df:f3:e4:9f:29:ab:41:4c:d1:2d:54:da:87:45: 75:a0:a8:d4:e0:54:6c:d7:1b:14:78:17:13:e4:3e: d4:f4:54:8b:25:76:9a:99:42:2e:5f:da:ea:48:b9: 9f:c0:b1:c2:d1:88:e0:28:8e:a4:9b:1b:27:fd:d9: 6e:f2:c2:29:a3:6c:09:42:d3:81:33:0b:d9:3e:d2: e2:d4:b0:76:d9:8b:03:29:49:d9:5b:8f:ac:50:01: 90:47:d8:fb:64:99:8f:e7:7f:3b:f9:3f:bb:a0:57: fe:5d:1e:27:60:7b:8a:d7:3c:0f:5c:45:a4:f8:3a: ae:7b:d0:c1:38:dc:87:ca:0b:a1:d5:6d:42:d0:41: aa:82:a5:2c:03:e3:c1:bd:7e:46:b4:94:19:d0:6c: 94:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:71:83:3E:8D:5F:23:3B:5A:5D:4C:84:94:7A:DE:3F:EF:34:80:5D X509v3 Authority Key Identifier: keyid:57:C6:70:C8:DB:32:DD:74:8D:F7:97:C5:C9:30:13:D8:C9:1F:A8:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/cXGDPo1fIztaXUyElHreP-80gF0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.44.86.0/23 91.200.12.0/24 95.81.121.0-95.81.122.255 103.71.20.0/23 104.128.133.0/24 109.69.62.0/24 185.105.88.0/22 185.128.105.0-185.128.107.255 Signature Algorithm: sha256WithRSAEncryption 2b:fb:c9:02:a2:d6:6c:8c:73:b9:c2:5a:cd:ba:a7:7d:f7:95: 3e:80:bc:fd:f4:57:9c:ae:7f:5c:84:ed:fa:be:29:6b:c9:ec: 0b:b7:37:0c:bc:c7:3b:0d:b2:61:75:20:7f:6a:c1:19:d5:65: c3:73:23:e5:02:2a:2a:46:f9:c7:8e:86:cc:f9:4f:25:ff:36: 03:88:eb:97:81:33:35:cc:74:1b:42:6b:c4:88:39:ac:84:9d: 45:d0:55:7d:16:c3:24:99:3a:9d:39:dd:82:a9:06:db:ee:02: 94:39:98:73:cc:4d:dd:5a:7e:05:09:ac:1e:c7:c7:19:29:09: 72:bf:4c:66:6f:d2:bb:79:cd:a4:fd:e9:a1:69:98:ef:25:f5: e8:9f:94:78:a8:e5:0a:d5:74:52:65:dc:3b:ff:ad:6e:1c:00: 86:1c:01:90:3a:14:f5:64:98:d0:b8:50:11:92:67:b4:70:1d: 79:70:a2:11:ad:6a:05:07:55:69:81:a8:5f:23:1f:15:d8:e0: 38:92:54:58:85:88:1a:8e:10:16:08:f4:fd:b8:f7:33:6d:74: 9b:cc:e1:14:e6:cc:ee:0e:f3:53:58:79:04:8d:39:4e:e0:dc: ee:70:c4:76:e5:5d:95:69:47:1e:38:3a:53:e0:fb:94:41:f8: 33:63:b9:fb -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgISAZrHaIqveS6fM8O5N0w+6fs7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3YzY3MGM4ZGIzMmRkNzQ4ZGY3OTdjNWM5MzAxM2Q4Yzkx ZmE4MzkwHhcNMjUxMTI3MjIyMTQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTcxODMzZThkNWYyMzNiNWE1ZDRjODQ5NDdhZGUzZmVmMzQ4MDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBkPPQ60i+JFPqm8UHbdE6lFN4rL sFyZiTfR77CsAzz+r8B/xD4tkTr6bGc1cx8j8HMfIjaUAunzypbPoLMdVpPIVo/f DBrTB/oK5LCVC0JSwjDEYqKGNfMfNMPf+bEhiCxjsjjBAqtf3/PknymrQUzRLVTa h0V1oKjU4FRs1xsUeBcT5D7U9FSLJXaamUIuX9rqSLmfwLHC0YjgKI6kmxsn/dlu 8sIpo2wJQtOBMwvZPtLi1LB22YsDKUnZW4+sUAGQR9j7ZJmP5387+T+7oFf+XR4n YHuK1zwPXEWk+Dque9DBONyHyguh1W1C0EGqgqUsA+PBvX5GtJQZ0GyUawIDAQAB o4ICQzCCAj8wHQYDVR0OBBYEFHFxgz6NXyM7Wl1MhJR63j/vNIBdMB8GA1UdIwQY MBaAFFfGcMjbMt10jfeXxckwE9jJH6g5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjhad3lOc3kzWFNOOTVmRnlUQVQyTWtmcURrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC81YTZmZGEtNzg5Ni00YzUwLWFmZmQt MzA0OTVmNDAzNzg0LzEvY1hHRFBvMWZJenRhWFV5RWxIcmVQLTgwZ0YwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC81YTZmZGEtNzg5Ni00YzUwLWFmZmQtMzA0OTVmNDAzNzg0 LzEvVjhad3lOc3kzWFNOOTVmRnlUQVQyTWtmcURrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFkGCCsGAQUFBwEHAQH/BEowSDBGBAIAATBAAwQBWSxWAwQA W8gMMAwDBABfUXkDBABfUXoDBAFnRxQDBABogIUDBABtRT4DBAK5aVgwDAMEALmA aQMEArmAaDANBgkqhkiG9w0BAQsFAAOCAQEAK/vJAqLWbIxzucJazbqnffeVPoC8 /fRXnK5/XITt+r4pa8nsC7c3DLzHOw2yYXUgf2rBGdVlw3Mj5QIqKkb5x46GzPlP Jf82A4jrl4EzNcx0G0JrxIg5rISdRdBVfRbDJJk6nTndgqkG2+4ClDmYc8xN3Vp+ BQmsHsfHGSkJcr9MZm/Su3nNpP3poWmY7yX16J+UeKjlCtV0UmXcO/+tbhwAhhwB kDoU9WSY0LhQEZJntHAdeXCiEa1qBQdVaYGoXyMfFdjgOJJUWIWIGo4QFgj0/bj3 M210m8zhFObM7g7zU1h5BI05TuDc7nDEduVdlWlHHjg6U+D7lEH4M2O5+w== -----END CERTIFICATE-----Generated at Sat Dec 6 16:52:16 2025 by rpki-client