This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/YFB0sTsYozvjrXhjBJ2amnZ2V7w.roa File: YFB0sTsYozvjrXhjBJ2amnZ2V7w.roa (raw, json) Hash identifier: uPWSw73oxcAUAyBDtV6WPoCMHLjlUYY+eFM926F5KGA= Subject key identifier: 60:50:74:B1:3B:18:A3:3B:E3:AD:78:63:04:9D:9A:9A:76:76:57:BC Certificate issuer: /CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac Certificate serial: 019A96182B1580A227AF113EBF77775EC030 Authority key identifier: B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/YFB0sTsYozvjrXhjBJ2amnZ2V7w.roa Signing time: Tue 18 Nov 2025 08:32:37 +0000 ROA not before: Tue 18 Nov 2025 08:32:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 209420 IP address blocks: 31.207.68.0/24 maxlen: 24 31.207.69.0/24 maxlen: 24 31.207.70.0/24 maxlen: 24 31.207.72.0/24 maxlen: 24 152.89.133.0/24 maxlen: 24 192.145.16.0/23 maxlen: 23 192.145.16.0/24 maxlen: 24 192.145.17.0/24 maxlen: 24 192.145.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.mft rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:96:18:2b:15:80:a2:27:af:11:3e:bf:77:77:5e:c0:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac Validity Not Before: Nov 18 08:32:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=605074b13b18a33be3ad7863049d9a9a767657bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:55:74:f0:7e:80:8c:31:c9:65:f7:83:0d:3d: 59:a8:20:1d:b3:8b:55:48:22:68:62:9f:b8:8d:e5: e7:90:0f:fc:de:2a:6e:d8:21:8f:a6:33:8f:bf:69: 2f:3a:9f:b9:59:bf:b0:64:4b:06:f4:72:a2:f0:69: a5:ae:7b:c8:5a:88:23:b6:61:76:d1:f2:0f:3f:87: ad:a9:a1:72:73:7e:4a:c1:b2:7b:b3:0b:49:6a:4a: 78:09:df:96:b1:7b:b5:06:9a:d3:f3:01:2d:80:bf: 1d:1c:71:83:d2:ea:fb:a5:c9:0a:22:73:58:6d:13: 11:d9:9a:f4:96:cc:df:55:18:d8:be:02:66:49:4d: f6:86:eb:02:5f:c0:a6:20:2f:f6:46:94:fd:01:e7: 5b:07:a6:d3:41:dd:7e:e1:13:11:c9:e2:80:df:1d: a3:f3:4f:0c:5a:57:fa:a0:25:3a:2d:d8:79:db:9b: b8:f9:52:a3:45:cb:8f:33:d4:ec:6c:5d:3b:1a:1f: f4:45:cb:5b:de:1b:f5:1e:ed:78:ce:7d:91:bd:23: 8f:7c:5d:fa:3f:15:75:6f:3d:a7:38:bd:e3:f5:d0: 3c:47:f8:c4:61:fe:97:86:21:4b:e7:cd:05:4f:ec: 6e:25:92:70:ce:d0:b4:96:75:af:d3:4e:36:b0:8e: ac:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:50:74:B1:3B:18:A3:3B:E3:AD:78:63:04:9D:9A:9A:76:76:57:BC X509v3 Authority Key Identifier: keyid:B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/YFB0sTsYozvjrXhjBJ2amnZ2V7w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.207.68.0-31.207.70.255 31.207.72.0/24 152.89.133.0/24 192.145.16.0-192.145.18.255 Signature Algorithm: sha256WithRSAEncryption 2b:8d:ca:24:88:72:b1:43:d1:3a:b7:6d:55:a5:45:f4:dc:46: 6e:85:a8:49:e6:b6:2d:f4:5e:62:88:cb:4f:2b:5d:d1:c9:fe: 56:c1:b1:bf:2f:92:7d:89:63:9e:bd:33:58:75:4f:c5:04:fe: a1:4d:e6:0d:e0:91:d7:ad:f9:54:44:39:63:35:ab:9d:0b:91: b0:f2:06:a9:57:93:ad:ef:9f:f6:48:38:a6:64:d7:d5:8c:06: e4:54:f8:b2:d4:0b:84:e6:47:dd:ca:4e:28:68:06:f3:d6:cd: 64:31:82:5d:00:6f:8e:6a:a8:17:66:93:3d:38:52:69:46:1c: fd:42:2f:e5:13:f0:47:4d:dd:bf:77:60:16:68:7a:e0:bd:a0: 97:69:2a:06:26:47:97:ba:fb:44:30:59:14:46:d8:35:49:b3: c8:c3:2c:2f:80:f4:fc:86:36:9b:f1:86:9c:47:5b:7c:11:de: 29:0f:39:53:4a:44:ed:67:a9:c3:a8:d9:46:bc:44:ca:7b:3b: ea:86:e9:ef:eb:8b:1f:6e:49:2e:90:c0:0f:d9:81:50:7d:52: 1a:c4:67:6f:63:59:99:f2:19:9e:14:da:ef:fe:f6:23:d8:82: f5:32:cd:0d:de:1b:37:ee:51:c6:40:04:31:98:63:9a:23:85: c6:47:5e:11 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZqWGCsVgKInrxE+v3d3XsAwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3MjU4OGMwMGVlZjcxNTgwOWViNWZkZDZkNjcxN2NjMjhj MGRmYWMwHhcNMjUxMTE4MDgzMjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDUwNzRiMTNiMThhMzNiZTNhZDc4NjMwNDlkOWE5YTc2NzY1N2JjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFV08H6AjDHJZfeDDT1ZqCAds4tV SCJoYp+4jeXnkA/83ipu2CGPpjOPv2kvOp+5Wb+wZEsG9HKi8GmlrnvIWogjtmF2 0fIPP4etqaFyc35KwbJ7swtJakp4Cd+WsXu1BprT8wEtgL8dHHGD0ur7pckKInNY bRMR2Zr0lszfVRjYvgJmSU32husCX8CmIC/2RpT9AedbB6bTQd1+4RMRyeKA3x2j 808MWlf6oCU6Ldh525u4+VKjRcuPM9TsbF07Gh/0Rctb3hv1Hu14zn2RvSOPfF36 PxV1bz2nOL3j9dA8R/jEYf6XhiFL580FT+xuJZJwztC0lnWv0042sI6sqQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFGBQdLE7GKM74614YwSdmpp2dle8MB8GA1UdIwQY MBaAFLcliMAO73FYCetf3W1nF8wowN+sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHlXSXdBN3ZjVmdKNjFfZGJXY1h6Q2pBMzZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9lYmJhYzktZmVlNy00ZjNiLThjZDUt N2E0MTI1NGVhYWNhLzEvWUZCMHNUc1lvenZqclhoakJKMmFtbloyVjd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9lYmJhYzktZmVlNy00ZjNiLThjZDUtN2E0MTI1NGVhYWNh LzEvdHlXSXdBN3ZjVmdKNjFfZGJXY1h6Q2pBMzZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoMAwDBAIfz0QD BAAfz0YDBAAfz0gDBACYWYUwDAMEBMCREAMEAMCREjANBgkqhkiG9w0BAQsFAAOC AQEAK43KJIhysUPROrdtVaVF9NxGboWoSea2LfReYojLTytd0cn+VsGxvy+SfYlj nr0zWHVPxQT+oU3mDeCR1635VEQ5YzWrnQuRsPIGqVeTre+f9kg4pmTX1YwG5FT4 stQLhOZH3cpOKGgG89bNZDGCXQBvjmqoF2aTPThSaUYc/UIv5RPwR03dv3dgFmh6 4L2gl2kqBiZHl7r7RDBZFEbYNUmzyMMsL4D0/IY2m/GGnEdbfBHeKQ85U0pE7Wep w6jZRrxEyns76obp7+uLH25JLpDAD9mBUH1SGsRnb2NZmfIZnhTa7/72I9iC9TLN Dd4bN+5RxkAEMZhjmiOFxkdeEQ== -----END CERTIFICATE-----Generated at Sat Dec 6 17:47:38 2025 by rpki-client