This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/z15GFgKkMvcaV37kGIUPlK8gEHM.roa File: z15GFgKkMvcaV37kGIUPlK8gEHM.roa (raw, json) Hash identifier: qwEQUmUTA+BurlvhvT/CO0ctVaiQcP2cdUQTmAeCga8= Subject key identifier: CF:5E:46:16:02:A4:32:F7:1A:57:7E:E4:18:85:0F:94:AF:20:10:73 Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7 Certificate serial: 019A2C0D56D194845E5679ACDFB463D60D3E Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/z15GFgKkMvcaV37kGIUPlK8gEHM.roa Signing time: Tue 28 Oct 2025 18:21:03 +0000 ROA not before: Tue 28 Oct 2025 18:21:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 43972 IP address blocks: 31.40.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.mft rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:2c:0d:56:d1:94:84:5e:56:79:ac:df:b4:63:d6:0d:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7 Validity Not Before: Oct 28 18:21:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=cf5e461602a432f71a577ee418850f94af201073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f6:5f:f7:57:34:b5:a9:fd:73:17:73:ad:90: 32:9b:99:ba:46:b9:56:90:64:31:34:78:e2:95:d8: 7e:06:69:c8:8c:01:82:08:8c:8b:e7:df:4b:cf:fe: f5:7f:10:7e:73:0f:ea:1b:f3:db:80:d0:d2:9d:0f: 57:cf:78:36:90:dd:df:58:35:22:32:3a:2a:e9:3b: 76:a8:4f:fb:49:8a:75:20:1e:14:7a:81:94:d9:62: bb:a6:78:31:0e:44:08:43:cb:e3:a2:31:c1:b7:82: 90:c4:01:bc:13:86:24:84:2f:b4:20:9b:46:02:ce: bc:2e:61:74:c8:dc:a5:4d:eb:7d:20:d2:d3:4c:6b: 8f:04:bb:22:2d:6d:ef:ae:a6:e9:49:84:14:04:62: 01:18:a6:29:7e:cc:af:26:4d:0a:7a:83:cb:94:b6: 86:68:e5:36:c2:28:25:7c:ae:f8:f8:ce:f4:65:45: c4:53:e0:ed:b4:c6:43:c7:31:d4:d6:20:fa:21:29: 10:d6:86:5d:f9:27:93:8b:50:29:97:af:72:9b:77: 17:55:65:ed:40:4d:60:2c:9e:1e:39:fb:82:fa:9f: a6:69:80:88:5f:ca:47:f2:c9:19:22:27:e3:e8:ce: 53:df:9a:9c:20:67:6b:52:59:c4:90:3b:22:0c:2e: e9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:5E:46:16:02:A4:32:F7:1A:57:7E:E4:18:85:0F:94:AF:20:10:73 X509v3 Authority Key Identifier: keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/z15GFgKkMvcaV37kGIUPlK8gEHM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.131.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:b5:f6:e7:8a:ae:55:49:2a:00:88:64:19:d7:01:69:e9:04: 5e:1a:95:40:0f:28:9d:20:9e:66:1e:f1:5e:db:28:a0:4a:8d: e2:69:9e:e3:bf:74:53:2c:cc:e3:5a:62:ae:36:6b:ac:94:54: bb:fe:aa:85:fe:1f:47:ec:3a:5f:a2:9f:14:39:24:5d:af:84: ef:b8:14:fa:fa:d4:54:70:bf:3d:85:e5:59:72:a1:a6:bf:20: 52:b2:09:60:5b:c8:02:e6:b1:1d:a6:62:6d:65:bc:c2:98:5c: 05:a2:56:39:e9:28:cf:0e:a1:68:6a:ef:1a:21:3b:12:c7:91: 44:db:fa:45:48:8b:c6:f7:64:82:43:2e:53:83:5b:06:4d:b5: 59:dd:77:70:34:08:40:ee:f6:2d:06:a5:1b:e1:0c:db:d0:19: 95:e8:7f:19:7a:91:d0:5e:63:e7:05:19:f6:7a:37:f9:44:ad: 35:62:dc:23:23:03:a7:10:99:51:fe:92:15:24:4a:c2:96:6d: 3e:a5:11:72:06:cf:0d:88:ac:dd:2c:e9:bf:a9:e3:f9:af:7c: 26:a1:65:ec:8a:b0:91:eb:2d:2b:7c:c3:3d:b8:f4:0e:20:57: 5b:3e:33:d3:77:ab:a4:05:c9:0f:2f:34:21:19:e8:76:f9:7f: 15:bf:3f:c9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZosDVbRlIReVnms37Rj1g0+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYWY1YzJlNWVkYzE5NzgzNGQwN2YzNDU5NjJiMDc0NWJl ZTY2ZDcwHhcNMjUxMDI4MTgyMTAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZjVlNDYxNjAyYTQzMmY3MWE1NzdlZTQxODg1MGY5NGFmMjAxMDczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0vZf91c0tan9cxdzrZAym5m6RrlW kGQxNHjildh+BmnIjAGCCIyL599Lz/71fxB+cw/qG/PbgNDSnQ9Xz3g2kN3fWDUi Mjoq6Tt2qE/7SYp1IB4UeoGU2WK7pngxDkQIQ8vjojHBt4KQxAG8E4YkhC+0IJtG As68LmF0yNylTet9INLTTGuPBLsiLW3vrqbpSYQUBGIBGKYpfsyvJk0KeoPLlLaG aOU2wiglfK74+M70ZUXEU+DttMZDxzHU1iD6ISkQ1oZd+SeTi1Apl69ym3cXVWXt QE1gLJ4eOfuC+p+maYCIX8pH8skZIifj6M5T35qcIGdrUlnEkDsiDC7pkQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFM9eRhYCpDL3Gld+5BiFD5SvIBBzMB8GA1UdIwQY MBaAFB6vXC5e3Bl4NNB/NFlisHRb7mbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODIt NGEzNGMxYmJhYjJiLzEvejE1R0ZnS2tNdmNhVjM3a0dJVVBsSzhnRUhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODItNGEzNGMxYmJhYjJi LzEvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHyiDMA0G CSqGSIb3DQEBCwUAA4IBAQBPtfbniq5VSSoAiGQZ1wFp6QReGpVADyidIJ5mHvFe 2yigSo3iaZ7jv3RTLMzjWmKuNmuslFS7/qqF/h9H7Dpfop8UOSRdr4TvuBT6+tRU cL89heVZcqGmvyBSsglgW8gC5rEdpmJtZbzCmFwFolY56SjPDqFoau8aITsSx5FE 2/pFSIvG92SCQy5Tg1sGTbVZ3XdwNAhA7vYtBqUb4Qzb0BmV6H8ZepHQXmPnBRn2 ejf5RK01YtwjIwOnEJlR/pIVJErClm0+pRFyBs8NiKzdLOm/qeP5r3wmoWXsirCR 6y0rfMM9uPQOIFdbPjPTd6ukBckPLzQhGeh2+X8Vvz/J -----END CERTIFICATE-----Generated at Sat Dec 6 14:53:37 2025 by rpki-client