This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/cFtIJdrbg3qazUR63rm24o-WXFw.roa File: cFtIJdrbg3qazUR63rm24o-WXFw.roa (raw, json) Hash identifier: UaG7G0yKjFaJShmVTHg27190gsxVR0b0A55xeHOQqH4= Subject key identifier: 70:5B:48:25:DA:DB:83:7A:9A:CD:44:7A:DE:B9:B6:E2:8F:96:5C:5C Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808 Certificate serial: 019B25E47CD454C5B70CAEE3D3178CBF7077 Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/cFtIJdrbg3qazUR63rm24o-WXFw.roa Signing time: Tue 16 Dec 2025 06:41:29 +0000 ROA not before: Tue 16 Dec 2025 06:41:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 15774 IP address blocks: 31.216.170.0/24 maxlen: 24 37.61.176.0/21 maxlen: 32 46.20.64.0/20 maxlen: 32 46.166.65.0/24 maxlen: 24 46.166.79.0/24 maxlen: 24 46.166.80.0/23 maxlen: 24 46.166.80.0/24 maxlen: 24 46.166.81.0/24 maxlen: 24 46.166.82.0/24 maxlen: 24 46.166.83.0/24 maxlen: 24 46.166.84.0/22 maxlen: 23 46.166.88.0/23 maxlen: 23 46.166.91.0/24 maxlen: 24 46.166.93.0/24 maxlen: 24 46.166.94.0/24 maxlen: 24 46.166.95.0/24 maxlen: 24 46.182.128.0/22 maxlen: 22 46.182.131.0/24 maxlen: 24 46.226.240.0/21 maxlen: 32 62.33.122.0/23 maxlen: 32 62.249.131.0/24 maxlen: 24 79.132.96.0/19 maxlen: 32 81.4.192.0/18 maxlen: 32 81.18.128.0/19 maxlen: 32 83.234.10.0/24 maxlen: 24 83.234.54.0/24 maxlen: 32 83.234.136.0/23 maxlen: 23 83.234.168.0/23 maxlen: 32 83.234.240.0/21 maxlen: 21 89.186.234.0/24 maxlen: 24 91.204.96.0/22 maxlen: 32 94.251.20.0/24 maxlen: 24 109.74.208.0/20 maxlen: 32 109.233.172.0/22 maxlen: 32 164.177.176.0/21 maxlen: 32 176.104.128.0/21 maxlen: 21 176.104.152.0/22 maxlen: 22 176.104.156.0/22 maxlen: 22 176.104.160.0/21 maxlen: 32 176.125.64.0/18 maxlen: 18 178.76.194.0/23 maxlen: 23 178.76.196.0/22 maxlen: 22 178.76.205.0/24 maxlen: 24 178.76.207.0/24 maxlen: 24 178.76.208.0/23 maxlen: 23 178.76.210.0/23 maxlen: 23 178.76.212.0/24 maxlen: 24 178.76.214.0/24 maxlen: 24 178.76.216.0/21 maxlen: 21 178.76.224.0/19 maxlen: 24 178.76.234.0/24 maxlen: 24 185.6.236.0/22 maxlen: 32 185.43.84.0/23 maxlen: 32 185.43.86.0/23 maxlen: 32 185.61.24.0/22 maxlen: 32 2a00:1138::/32 maxlen: 128 2a03:3700::/36 maxlen: 128 2a03:3700:1000::/36 maxlen: 128 2a03:3700:2000::/36 maxlen: 128 2a03:3700:3000::/36 maxlen: 128 2a03:3700:4000::/36 maxlen: 128 2a03:3700:5000::/36 maxlen: 128 2a03:3700:6000::/36 maxlen: 128 2a03:3700:7000::/36 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.mft rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:e4:7c:d4:54:c5:b7:0c:ae:e3:d3:17:8c:bf:70:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808 Validity Not Before: Dec 16 06:41:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=705b4825dadb837a9acd447adeb9b6e28f965c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:4b:e4:4e:b5:6f:c9:86:89:98:29:60:bb:ba: 9a:87:15:a9:02:19:32:5d:a1:5d:fc:24:51:20:d4: e0:2a:d6:3f:b2:9c:a2:95:fa:a2:22:52:10:c3:e4: 57:e9:c0:97:2c:07:43:2e:dd:53:6d:0a:a9:3f:23: dd:02:59:98:b2:e7:d2:ef:90:32:1e:61:c0:93:84: a0:2a:7e:6e:8c:3e:64:d4:bb:c9:2c:35:0e:2e:a6: 5e:44:a2:6a:c4:40:3a:27:0e:d5:9c:da:ec:11:ec: ba:b1:9c:8d:0f:38:ac:6e:7d:10:d6:09:64:1f:28: 92:ef:67:a5:40:1a:d6:de:f7:5e:f2:99:4a:99:36: 19:79:be:63:c4:23:62:e9:36:84:c6:4b:b1:27:b3: 70:90:c1:f9:30:31:32:91:26:f0:1f:0f:51:54:4f: 52:37:a5:af:4d:94:ac:46:e1:e4:d9:e4:29:35:d0: 72:28:56:dc:f8:95:74:3f:94:63:1f:4c:b0:e2:e6: dd:ea:8b:da:58:d6:25:e2:91:c7:7a:77:3e:2b:73: 75:c0:a7:37:ed:8b:bc:cc:ce:6e:a1:d5:73:b5:a8: 75:19:7a:6e:3f:a3:cc:c7:83:c4:44:c1:04:89:0d: 36:f2:ed:72:89:0f:6a:ca:97:eb:77:5a:17:a2:46: ff:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5B:48:25:DA:DB:83:7A:9A:CD:44:7A:DE:B9:B6:E2:8F:96:5C:5C X509v3 Authority Key Identifier: keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/cFtIJdrbg3qazUR63rm24o-WXFw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.216.170.0/24 37.61.176.0/21 46.20.64.0/20 46.166.65.0/24 46.166.79.0-46.166.89.255 46.166.91.0/24 46.166.93.0-46.166.95.255 46.182.128.0/22 46.226.240.0/21 62.33.122.0/23 62.249.131.0/24 79.132.96.0/19 81.4.192.0/18 81.18.128.0/19 83.234.10.0/24 83.234.54.0/24 83.234.136.0/23 83.234.168.0/23 83.234.240.0/21 89.186.234.0/24 91.204.96.0/22 94.251.20.0/24 109.74.208.0/20 109.233.172.0/22 164.177.176.0/21 176.104.128.0/21 176.104.152.0-176.104.167.255 176.125.64.0/18 178.76.194.0-178.76.199.255 178.76.205.0/24 178.76.207.0-178.76.212.255 178.76.214.0/24 178.76.216.0-178.76.255.255 185.6.236.0/22 185.43.84.0/22 185.61.24.0/22 IPv6: 2a00:1138::/32 2a03:3700::/33 Signature Algorithm: sha256WithRSAEncryption 37:70:24:e2:e0:af:4a:28:dd:1e:c1:94:24:ae:e8:58:9f:fc: 16:c3:c2:3e:7c:d9:b8:fb:4b:61:77:21:0b:0f:ec:51:6b:f8: 2a:24:69:c5:43:12:63:14:eb:0e:59:21:a9:44:33:03:c3:2f: c8:fa:a9:5e:14:13:e3:e5:5d:2c:b6:c0:e0:57:9f:16:57:d8: a9:62:d0:1f:27:23:fd:ce:da:b3:63:11:14:f9:af:f3:19:70: 68:29:65:2f:75:a2:0e:d2:b6:c4:63:1f:f6:e4:0b:4e:15:c0: 0e:f9:4a:a2:b3:2d:62:99:18:79:3b:81:08:88:57:e1:f6:c9: 61:ff:8d:6a:89:79:4e:61:ee:f3:6e:a0:1d:4e:d4:99:28:0c: d2:04:c7:c8:91:fd:30:9e:40:a4:20:f5:92:30:44:fe:cf:77: 35:ed:04:24:18:00:d0:4e:42:2e:60:7e:22:ec:42:20:43:f7: a2:62:c1:78:9d:01:97:96:b2:da:05:77:85:43:db:49:5f:a1: a4:fb:f0:09:22:af:d9:18:97:e3:a7:f8:c0:8d:05:db:6b:97: 31:32:a4:93:81:cf:b4:35:24:c5:68:f3:08:7d:4b:72:b1:7b: 2d:28:e3:e6:aa:4c:ef:7a:5c:7b:d0:24:c1:c8:92:75:1c:6f: ff:ae:ac:e8 -----BEGIN CERTIFICATE----- MIIGHzCCBQegAwIBAgISAZsl5HzUVMW3DK7j0xeMv3B3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkYWM4MzBjY2FhNzQ3ODNkZDk2MWZhYjI0MWEyMjhkN2Nj NmY4MDgwHhcNMjUxMjE2MDY0MTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDViNDgyNWRhZGI4MzdhOWFjZDQ0N2FkZWI5YjZlMjhmOTY1YzVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUvkTrVvyYaJmClgu7qahxWpAhky XaFd/CRRINTgKtY/spyilfqiIlIQw+RX6cCXLAdDLt1TbQqpPyPdAlmYsufS75Ay HmHAk4SgKn5ujD5k1LvJLDUOLqZeRKJqxEA6Jw7VnNrsEey6sZyNDzisbn0Q1glk HyiS72elQBrW3vde8plKmTYZeb5jxCNi6TaExkuxJ7NwkMH5MDEykSbwHw9RVE9S N6WvTZSsRuHk2eQpNdByKFbc+JV0P5RjH0yw4ubd6ovaWNYl4pHHenc+K3N1wKc3 7Yu8zM5uodVztah1GXpuP6PMx4PERMEEiQ028u1yiQ9qypfrd1oXokb/GwIDAQAB o4IDKzCCAycwHQYDVR0OBBYEFHBbSCXa24N6ms1Eet65tuKPllxcMB8GA1UdIwQY MBaAFK2sgwzKp0eD3ZYfqyQaIo18xvgIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmF5RERNcW5SNFBkbGgtckpCb2lqWHpHLUFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8zMjVjOGQtZDM2OC00ZWVlLTljYTgt OTI5ZjdkNjM1ZjRiLzEvY0Z0SUpkcmJnM3FhelVSNjNybTI0by1XWEZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8zMjVjOGQtZDM2OC00ZWVlLTljYTgtOTI5ZjdkNjM1ZjRi LzEvcmF5RERNcW5SNFBkbGgtckpCb2lqWHpHLUFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIIBPwYIKwYBBQUHAQcBAf8EggEuMIIBKjCCAQ8EAgABMIIB BwMEAB/YqgMEAyU9sAMEBC4UQAMEAC6mQTAMAwQALqZPAwQBLqZYAwQALqZbMAwD BAAupl0DBAUupkADBAIutoADBAMu4vADBAE+IXoDBAA++YMDBAVPhGADBAZRBMAD BAVREoADBABT6goDBABT6jYDBAFT6ogDBAFT6qgDBANT6vADBABZuuoDBAJbzGAD BABe+xQDBARtStADBAJt6awDBAOksbADBAOwaIAwDAMEA7BomAMEA7BooAMEBrB9 QDAMAwQBskzCAwQDskzAAwQAskzNMAwDBACyTM8DBACyTNQDBACyTNYwCwMEA7JM 2AMDALJMAwQCuQbsAwQCuStUAwQCuT0YMBUEAgACMA8DBQAqABE4AwYHKgM3AAAw DQYJKoZIhvcNAQELBQADggEBADdwJOLgr0oo3R7BlCSu6Fif/BbDwj582bj7S2F3 IQsP7FFr+CokacVDEmMU6w5ZIalEMwPDL8j6qV4UE+PlXSy2wOBXnxZX2Kli0B8n I/3O2rNjERT5r/MZcGgpZS91og7StsRjH/bkC04VwA75SqKzLWKZGHk7gQiIV+H2 yWH/jWqJeU5h7vNuoB1O1JkoDNIEx8iR/TCeQKQg9ZIwRP7PdzXtBCQYANBOQi5g fiLsQiBD96JiwXidAZeWstoFd4VD20lfoaT78Akir9kYl+On+MCNBdtrlzEypJOB z7Q1JMVo8wh9S3Kxey0o4+aqTO96XHvQJMHIknUcb/+urOg= -----END CERTIFICATE-----Generated at Wed Dec 17 17:01:57 2025 by rpki-client