This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/d6aef7-0a82-4963-9993-fc918f2e74ec/1/gL7EUF4F8fkW9BkZVETXRoXqwGI.roa File: gL7EUF4F8fkW9BkZVETXRoXqwGI.roa (raw, json) Hash identifier: 7lhfIaS2xmfgv64vJAgEVH7j+JB/4OXV6L8+g/ewpsw= Subject key identifier: 80:BE:C4:50:5E:05:F1:F9:16:F4:19:19:54:44:D7:46:85:EA:C0:62 Certificate issuer: /CN=bebb370b1db20dfd908954247acb1e0a05240ac1 Certificate serial: 019A82E85DCC717945393D406289CFCFE6FC Authority key identifier: BE:BB:37:0B:1D:B2:0D:FD:90:89:54:24:7A:CB:1E:0A:05:24:0A:C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrs3Cx2yDf2QiVQkesseCgUkCsE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/d6aef7-0a82-4963-9993-fc918f2e74ec/1/gL7EUF4F8fkW9BkZVETXRoXqwGI.roa Signing time: Fri 14 Nov 2025 15:07:37 +0000 ROA not before: Fri 14 Nov 2025 15:07:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 47178 IP address blocks: 93.188.112.0/21 maxlen: 24 185.99.224.0/22 maxlen: 24 2a05:ba80::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/d6aef7-0a82-4963-9993-fc918f2e74ec/1/vrs3Cx2yDf2QiVQkesseCgUkCsE.crl rsync://rpki.ripe.net/repository/DEFAULT/03/d6aef7-0a82-4963-9993-fc918f2e74ec/1/vrs3Cx2yDf2QiVQkesseCgUkCsE.mft rsync://rpki.ripe.net/repository/DEFAULT/vrs3Cx2yDf2QiVQkesseCgUkCsE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:82:e8:5d:cc:71:79:45:39:3d:40:62:89:cf:cf:e6:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bebb370b1db20dfd908954247acb1e0a05240ac1 Validity Not Before: Nov 14 15:07:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=80bec4505e05f1f916f419195444d74685eac062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c7:32:da:b2:78:e8:fa:a1:fd:78:e6:b7:08: 8d:9a:c4:16:d1:9c:60:79:83:77:db:ec:9f:96:fe: 4e:80:de:e6:e3:cb:6f:43:d5:01:13:84:82:1e:1d: 76:28:1d:46:05:03:29:bf:40:26:12:6e:0f:65:e5: fd:b8:7e:61:17:d7:2d:b6:80:dd:56:ce:04:a5:23: a3:48:76:c9:51:04:3f:24:22:83:e7:be:ae:6a:ac: ab:a2:c4:85:46:41:77:47:6b:96:8c:a7:42:bb:f6: 6d:97:76:ed:b0:23:0e:50:77:8d:88:1b:df:bd:3a: 6c:f9:ac:09:bc:ad:1c:08:29:bf:24:b7:f8:5a:02: 2b:4c:ba:7d:81:90:57:06:d6:b0:40:67:34:48:86: 88:70:f9:be:8c:5a:18:17:74:f1:7a:cc:45:a5:f1: f4:ac:14:43:a5:4e:91:4b:2d:74:36:e9:e5:b6:f1: 0a:bf:65:8c:ec:02:8d:4b:de:a3:d3:db:12:3e:dc: 07:48:5b:8a:7d:fa:61:eb:69:82:0e:6d:e0:6e:4d: 78:88:91:15:6c:62:b1:51:24:d1:04:1f:05:33:af: c5:da:97:2a:3d:63:ca:52:6e:4b:2f:5c:1c:ac:af: 9e:77:81:28:a0:04:89:5c:2f:45:4d:aa:ce:a1:30: 43:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:BE:C4:50:5E:05:F1:F9:16:F4:19:19:54:44:D7:46:85:EA:C0:62 X509v3 Authority Key Identifier: keyid:BE:BB:37:0B:1D:B2:0D:FD:90:89:54:24:7A:CB:1E:0A:05:24:0A:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrs3Cx2yDf2QiVQkesseCgUkCsE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d6aef7-0a82-4963-9993-fc918f2e74ec/1/gL7EUF4F8fkW9BkZVETXRoXqwGI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d6aef7-0a82-4963-9993-fc918f2e74ec/1/vrs3Cx2yDf2QiVQkesseCgUkCsE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.188.112.0/21 185.99.224.0/22 IPv6: 2a05:ba80::/29 Signature Algorithm: sha256WithRSAEncryption 49:cc:51:62:ea:30:90:c6:84:72:cd:b9:7a:ce:c1:18:de:77: 4c:40:d4:c6:93:73:f3:ae:7f:d1:3a:9d:37:9d:ea:88:65:0d: d7:57:e3:67:43:c1:78:e3:c4:0c:d1:54:15:ef:ae:c5:bc:0e: 39:07:d0:d2:f4:41:4f:e4:7f:d2:28:c1:82:2e:07:0d:31:bd: ac:ea:d5:de:af:dd:63:26:10:54:23:f4:8c:02:ae:9f:25:48: 9b:05:34:d3:c7:0b:74:fd:24:ae:7b:ea:b7:7d:15:db:ad:de: e0:24:cb:42:3a:bf:2f:97:0c:61:a2:06:67:d2:1a:ed:8e:2f: 14:4b:e2:ba:7b:f0:af:e9:66:ed:00:fc:82:b1:7f:55:c3:2d: 7e:47:59:81:3e:5c:cb:c4:10:ad:7f:a6:8d:0f:66:72:ed:5a: 01:5c:35:98:5e:15:d4:0a:f2:f0:87:4d:2b:ae:29:49:09:b7: 8b:03:46:21:70:42:42:54:5b:ca:00:e4:47:94:64:33:0b:c1: dc:08:e5:ac:a1:ab:86:b3:c7:33:48:19:ee:e5:da:66:d0:4d: d9:96:b2:3c:59:e9:2c:d2:79:cd:15:cb:3a:20:a9:21:4f:e9: 3b:8f:34:1d:e9:5c:76:df:75:f8:b5:b8:00:aa:2d:cc:6d:28: c9:f2:5c:a9 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZqC6F3McXlFOT1AYonPz+b8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlYmIzNzBiMWRiMjBkZmQ5MDg5NTQyNDdhY2IxZTBhMDUy NDBhYzEwHhcNMjUxMTE0MTUwNzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MGJlYzQ1MDVlMDVmMWY5MTZmNDE5MTk1NDQ0ZDc0Njg1ZWFjMDYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18cy2rJ46Pqh/XjmtwiNmsQW0Zxg eYN32+yflv5OgN7m48tvQ9UBE4SCHh12KB1GBQMpv0AmEm4PZeX9uH5hF9cttoDd Vs4EpSOjSHbJUQQ/JCKD576uaqyrosSFRkF3R2uWjKdCu/Ztl3btsCMOUHeNiBvf vTps+awJvK0cCCm/JLf4WgIrTLp9gZBXBtawQGc0SIaIcPm+jFoYF3TxesxFpfH0 rBRDpU6RSy10NunltvEKv2WM7AKNS96j09sSPtwHSFuKffph62mCDm3gbk14iJEV bGKxUSTRBB8FM6/F2pcqPWPKUm5LL1wcrK+ed4EooASJXC9FTarOoTBD9QIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFIC+xFBeBfH5FvQZGVRE10aF6sBiMB8GA1UdIwQY MBaAFL67Nwsdsg39kIlUJHrLHgoFJArBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnJzM0N4MnlEZjJRaVZRa2Vzc2VDZ1VrQ3NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9kNmFlZjctMGE4Mi00OTYzLTk5OTMt ZmM5MThmMmU3NGVjLzEvZ0w3RVVGNEY4ZmtXOUJrWlZFVFhSb1hxd0dJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9kNmFlZjctMGE4Mi00OTYzLTk5OTMtZmM5MThmMmU3NGVj LzEvdnJzM0N4MnlEZjJRaVZRa2Vzc2VDZ1VrQ3NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDXbxwAwQC uWPgMA0EAgACMAcDBQMqBbqAMA0GCSqGSIb3DQEBCwUAA4IBAQBJzFFi6jCQxoRy zbl6zsEY3ndMQNTGk3Pzrn/ROp03neqIZQ3XV+NnQ8F448QM0VQV767FvA45B9DS 9EFP5H/SKMGCLgcNMb2s6tXer91jJhBUI/SMAq6fJUibBTTTxwt0/SSue+q3fRXb rd7gJMtCOr8vlwxhogZn0hrtji8US+K6e/Cv6WbtAPyCsX9Vwy1+R1mBPlzLxBCt f6aND2Zy7VoBXDWYXhXUCvLwh00rrilJCbeLA0YhcEJCVFvKAORHlGQzC8HcCOWs oauGs8czSBnu5dpm0E3ZlrI8Weks0nnNFcs6IKkhT+k7jzQd6Vx233X4tbgAqi3M bSjJ8lyp -----END CERTIFICATE-----Generated at Sat Dec 6 21:14:23 2025 by rpki-client