This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/_7WtH8aHR1L2bTDVn9E_76DditQ.roa File: _7WtH8aHR1L2bTDVn9E_76DditQ.roa (raw, json) Hash identifier: GNJqn9i3udIC/30RCw5K5vyaTL+C2PYXuckCZHNZni4= Subject key identifier: FF:B5:AD:1F:C6:87:47:52:F6:6D:30:D5:9F:D1:3F:EF:A0:DD:8A:D4 Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a Certificate serial: 019AFD7931D4974243AB5481B243A3A6F7D0 Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/_7WtH8aHR1L2bTDVn9E_76DditQ.roa Signing time: Mon 08 Dec 2025 10:19:29 +0000 ROA not before: Mon 08 Dec 2025 10:19:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 39318 IP address blocks: 31.210.174.0/23 maxlen: 24 46.247.42.0/23 maxlen: 24 82.115.48.0/23 maxlen: 24 82.115.48.0/24 maxlen: 24 82.115.49.0/24 maxlen: 24 85.202.192.0/23 maxlen: 24 2a00:5da0:2000::/36 maxlen: 48 2a00:5da0:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fd:79:31:d4:97:42:43:ab:54:81:b2:43:a3:a6:f7:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a Validity Not Before: Dec 8 10:19:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ffb5ad1fc6874752f66d30d59fd13fefa0dd8ad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4c:c7:ef:30:22:ab:e2:c3:96:89:31:03:3b: bd:17:9f:f4:41:0e:57:48:42:6c:a8:be:90:bf:34: 10:6d:3a:8b:0d:e5:31:4a:80:5e:3a:6f:d0:4a:28: ec:bc:e9:c7:46:f4:bf:24:1e:f3:4f:fe:a9:89:b6: 39:6e:43:06:ca:05:44:f1:c0:af:05:76:c7:dd:e5: 8d:1f:d4:33:6b:5f:b5:f7:48:fe:f8:d4:38:cc:2b: 09:32:0f:6f:6d:ff:3a:b3:f9:89:82:fb:63:d7:39: 9c:7b:0a:50:cb:51:05:00:1f:75:41:2e:d8:c2:17: 40:4a:0c:23:62:b5:5a:55:2c:fe:4d:53:aa:b9:37: 68:0c:24:03:1e:88:1c:94:c4:9a:9f:08:e7:d6:0e: 85:e8:83:51:bc:3d:a0:4b:c9:bd:f8:2e:16:93:72: 2c:62:7b:3a:02:58:d3:a0:36:a6:d1:62:0a:63:e7: ab:c4:9a:fa:65:d3:32:91:0c:99:76:51:cf:19:90: 40:9f:b0:da:1a:6d:14:f2:38:54:4d:09:b7:e4:92: 04:70:8c:28:95:06:cb:d3:69:74:26:2c:29:cb:84: 2c:b7:f0:97:86:85:9f:0f:0e:2f:26:59:36:25:e6: 3d:70:ab:02:ac:6e:7a:5a:23:82:48:40:af:f2:17: 0a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B5:AD:1F:C6:87:47:52:F6:6D:30:D5:9F:D1:3F:EF:A0:DD:8A:D4 X509v3 Authority Key Identifier: keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/_7WtH8aHR1L2bTDVn9E_76DditQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.210.174.0/23 46.247.42.0/23 82.115.48.0/23 85.202.192.0/23 IPv6: 2a00:5da0:2000::/35 Signature Algorithm: sha256WithRSAEncryption 39:e3:66:0e:f3:0a:20:bd:b9:9b:c1:4c:30:7a:5f:d8:18:25: b6:99:c4:56:56:ee:3c:1c:e2:6c:50:d6:6d:a0:46:22:57:e6: c7:15:4a:0e:0e:dc:b3:ad:d4:35:b4:7c:43:98:96:95:2d:2e: 52:ba:09:f9:21:62:cf:68:4b:5b:96:25:56:d3:a2:f7:d0:b1: 03:4a:44:99:d7:4f:70:76:86:56:75:ce:b8:3d:32:f4:e1:a2: 94:e8:f5:9c:b7:10:63:b8:de:fc:88:78:37:66:2f:ab:f3:62: cd:a0:18:65:61:0e:76:c8:6b:fb:87:77:b7:30:09:45:ef:cd: a4:c2:a8:43:14:99:28:38:7f:2e:91:5e:41:53:e3:36:83:b8: da:a5:38:02:97:67:bc:71:81:85:66:8f:ce:d6:26:60:a6:4c: 9d:05:6e:80:a8:dd:52:d4:cb:5c:70:82:be:c6:1d:d0:89:5d: 52:87:0f:2e:fc:5d:15:22:95:24:83:d4:50:49:b0:6a:39:30: 5f:c4:df:ca:59:c2:a2:7f:0a:94:0f:1d:e2:db:81:a4:41:f3: 73:ff:d6:4f:f1:f3:22:4d:2e:ce:c5:a2:82:be:58:60:2e:8a: 6a:63:12:9b:bc:79:cd:68:aa:6b:48:d0:da:a1:03:7d:43:0a: ec:6e:9a:ad -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZr9eTHUl0JDq1SBskOjpvfQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4NDdiNTlkMjFlYTM2YjMwNjJmY2E4MGNlNzVjMTYxNmFm NTExOWEwHhcNMjUxMjA4MTAxOTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZmI1YWQxZmM2ODc0NzUyZjY2ZDMwZDU5ZmQxM2ZlZmEwZGQ4YWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy0zH7zAiq+LDlokxAzu9F5/0QQ5X SEJsqL6QvzQQbTqLDeUxSoBeOm/QSijsvOnHRvS/JB7zT/6pibY5bkMGygVE8cCv BXbH3eWNH9Qza1+190j++NQ4zCsJMg9vbf86s/mJgvtj1zmcewpQy1EFAB91QS7Y whdASgwjYrVaVSz+TVOquTdoDCQDHogclMSanwjn1g6F6INRvD2gS8m9+C4Wk3Is Yns6AljToDam0WIKY+erxJr6ZdMykQyZdlHPGZBAn7DaGm0U8jhUTQm35JIEcIwo lQbL02l0Jiwpy4Qst/CXhoWfDw4vJlk2JeY9cKsCrG56WiOCSECv8hcKgwIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFP+1rR/Gh0dS9m0w1Z/RP++g3YrUMB8GA1UdIwQY MBaAFBhHtZ0h6jazBi/KgM51wWFq9RGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8zODI0Y2QtZTUyNy00YWRjLWE0MTIt ZjkxYmI1MTc5MjE3LzEvXzdXdEg4YUhSMUwyYlREVm45RV83NkRkaXRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi8zODI0Y2QtZTUyNy00YWRjLWE0MTItZjkxYmI1MTc5MjE3 LzEvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAeBAIAATAYAwQBH9KuAwQB LvcqAwQBUnMwAwQBVcrAMA4EAgACMAgDBgUqAF2gIDANBgkqhkiG9w0BAQsFAAOC AQEAOeNmDvMKIL25m8FMMHpf2BgltpnEVlbuPBzibFDWbaBGIlfmxxVKDg7cs63U NbR8Q5iWlS0uUroJ+SFiz2hLW5YlVtOi99CxA0pEmddPcHaGVnXOuD0y9OGilOj1 nLcQY7je/Ih4N2Yvq/NizaAYZWEOdshr+4d3tzAJRe/NpMKoQxSZKDh/LpFeQVPj NoO42qU4ApdnvHGBhWaPztYmYKZMnQVugKjdUtTLXHCCvsYd0IldUocPLvxdFSKV JIPUUEmwajkwX8TfylnCon8KlA8d4tuBpEHzc//WT/HzIk0uzsWigr5YYC6KamMS m7x5zWiqa0jQ2qEDfUMK7G6arQ== -----END CERTIFICATE-----Generated at Wed Dec 17 22:21:28 2025 by rpki-client