This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/9aa99d-be43-4d74-afc9-964425c18c6f/1/vWMQ8KKH8gz6XYyYFwLQ1kCO9dI.roa File: vWMQ8KKH8gz6XYyYFwLQ1kCO9dI.roa (raw, json) Hash identifier: joOcTEe4VMAeerKDSxu9+eE3V+lz+piT6nn7yrfv2ZU= Subject key identifier: BD:63:10:F0:A2:87:F2:0C:FA:5D:8C:98:17:02:D0:D6:40:8E:F5:D2 Certificate issuer: /CN=fbcdd117eac757b6f8f39428653ae12508cc6989 Certificate serial: 019A6E12802A23C430DC4B7C0EDE0F5138C0 Authority key identifier: FB:CD:D1:17:EA:C7:57:B6:F8:F3:94:28:65:3A:E1:25:08:CC:69:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-83RF-rHV7b485QoZTrhJQjMaYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/9aa99d-be43-4d74-afc9-964425c18c6f/1/vWMQ8KKH8gz6XYyYFwLQ1kCO9dI.roa Signing time: Mon 10 Nov 2025 14:01:37 +0000 ROA not before: Mon 10 Nov 2025 14:01:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 25581 IP address blocks: 45.81.12.0/22 maxlen: 22 45.90.8.0/23 maxlen: 23 91.207.130.0/23 maxlen: 23 185.34.148.0/22 maxlen: 22 185.34.149.0/24 maxlen: 24 185.170.216.0/21 maxlen: 21 2a00:da60::/32 maxlen: 32 2a00:da60:b01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/9aa99d-be43-4d74-afc9-964425c18c6f/1/1-83RF-rHV7b485QoZTrhJQjMaYk.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/9aa99d-be43-4d74-afc9-964425c18c6f/1/1-83RF-rHV7b485QoZTrhJQjMaYk.mft rsync://rpki.ripe.net/repository/DEFAULT/1-83RF-rHV7b485QoZTrhJQjMaYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:6e:12:80:2a:23:c4:30:dc:4b:7c:0e:de:0f:51:38:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fbcdd117eac757b6f8f39428653ae12508cc6989 Validity Not Before: Nov 10 14:01:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=bd6310f0a287f20cfa5d8c981702d0d6408ef5d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e8:5e:b0:7b:2a:76:a8:fa:bf:73:8c:ce:7d: 57:95:52:e4:e2:f7:fd:bb:0f:05:d3:1e:ed:3d:cc: 07:be:83:06:6e:7e:46:62:6b:79:20:f3:bd:49:aa: 62:9f:f7:e0:ac:9d:76:77:93:27:03:6b:b5:72:7a: 7f:ab:31:71:96:28:1b:58:71:d8:fc:d8:2a:c9:70: be:e2:ce:7e:00:0a:47:6e:90:d8:1a:37:6d:43:29: 75:f9:5c:fc:4d:24:eb:1c:72:54:9e:bb:c2:81:a7: 1e:92:b3:c8:6c:d0:5f:75:29:0c:4e:cf:7d:b0:2f: 70:83:3b:49:0f:bc:89:dd:5b:39:2e:5b:f1:71:c4: 46:8b:b9:9f:3d:6c:db:a8:57:a5:3c:7c:87:a7:95: 2f:21:cb:85:85:5d:cf:77:6d:38:8e:73:ce:4f:9b: 53:16:eb:63:70:7e:74:05:e3:e5:f5:db:ff:14:17: de:80:04:84:45:81:26:d5:58:af:1e:84:70:22:cb: 57:3c:e8:e9:ea:55:1b:8b:24:28:0b:2d:14:cc:ee: 2b:06:70:e5:5e:34:c8:02:cf:9c:0e:a3:2b:21:7f: d0:c0:f0:9f:51:26:14:d8:91:8b:f6:3c:0b:a8:48: 92:c6:a5:6e:d0:e7:ea:5f:98:4f:1f:4f:fa:13:75: b0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:63:10:F0:A2:87:F2:0C:FA:5D:8C:98:17:02:D0:D6:40:8E:F5:D2 X509v3 Authority Key Identifier: keyid:FB:CD:D1:17:EA:C7:57:B6:F8:F3:94:28:65:3A:E1:25:08:CC:69:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-83RF-rHV7b485QoZTrhJQjMaYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9aa99d-be43-4d74-afc9-964425c18c6f/1/vWMQ8KKH8gz6XYyYFwLQ1kCO9dI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9aa99d-be43-4d74-afc9-964425c18c6f/1/1-83RF-rHV7b485QoZTrhJQjMaYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.81.12.0/22 45.90.8.0/23 91.207.130.0/23 185.34.148.0/22 185.170.216.0/21 IPv6: 2a00:da60::/32 Signature Algorithm: sha256WithRSAEncryption 57:20:6a:62:e1:71:da:8c:e0:2f:ae:85:d3:03:fe:ff:98:59: ce:79:f9:e1:65:bc:22:5f:7d:f3:08:39:b7:bd:8d:b2:0c:31: 54:5a:90:0f:3e:d0:0b:7f:7e:15:13:67:bb:ed:f2:9a:fb:d0: 35:53:42:84:d5:ea:ab:08:dd:b0:cb:76:31:65:e2:05:ae:16: d3:16:ad:e2:89:bb:55:1d:bb:11:87:57:08:6a:19:45:b6:86: 42:62:b4:b2:5e:f6:e1:36:a1:83:0b:c7:07:2a:af:ab:8f:f7: 1e:3e:72:de:48:b3:7a:79:2d:5d:38:4e:36:12:d7:49:70:1f: e2:ab:ca:56:c3:49:f2:7f:be:b1:43:fe:66:27:44:d7:0d:6d: a2:b4:b3:06:cb:9b:e0:6a:32:be:66:78:98:57:e9:9b:e7:24: 8c:65:94:e8:71:50:46:a9:47:d4:1c:41:a6:4d:ab:dc:26:4a: 5a:94:56:80:c3:fa:d4:61:a3:ec:14:c7:19:e4:49:3f:1a:a8: f2:d8:76:5e:c5:2b:09:e5:f4:c4:41:dd:32:16:cc:4e:bc:8d: 17:6e:f0:82:59:af:22:40:11:59:c2:ba:c8:f5:e7:e8:ad:87: 99:9a:b6:e8:47:ae:f0:f5:dc:55:10:84:0f:49:ef:27:31:9c: c8:b1:a0:1f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZpuEoAqI8Qw3Et8Dt4PUTjAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZiY2RkMTE3ZWFjNzU3YjZmOGYzOTQyODY1M2FlMTI1MDhj YzY5ODkwHhcNMjUxMTEwMTQwMTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZDYzMTBmMGEyODdmMjBjZmE1ZDhjOTgxNzAyZDBkNjQwOGVmNWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+hesHsqdqj6v3OMzn1XlVLk4vf9 uw8F0x7tPcwHvoMGbn5GYmt5IPO9Sapin/fgrJ12d5MnA2u1cnp/qzFxligbWHHY /NgqyXC+4s5+AApHbpDYGjdtQyl1+Vz8TSTrHHJUnrvCgacekrPIbNBfdSkMTs99 sC9wgztJD7yJ3Vs5LlvxccRGi7mfPWzbqFelPHyHp5UvIcuFhV3Pd204jnPOT5tT FutjcH50BePl9dv/FBfegASERYEm1VivHoRwIstXPOjp6lUbiyQoCy0UzO4rBnDl XjTIAs+cDqMrIX/QwPCfUSYU2JGL9jwLqEiSxqVu0OfqX5hPH0/6E3Ww/wIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFL1jEPCih/IM+l2MmBcC0NZAjvXSMB8GA1UdIwQY MBaAFPvN0Rfqx1e2+POUKGU64SUIzGmJMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS04M1JGLXJIVjdiNDg1UW9aVHJoSlFqTWFZay5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIvOWFhOTlkLWJlNDMtNGQ3NC1hZmM5 LTk2NDQyNWMxOGM2Zi8xL3ZXTVE4S0tIOGd6NlhZeVlGd0xRMWtDTzlkSS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOWIvOWFhOTlkLWJlNDMtNGQ3NC1hZmM5LTk2NDQyNWMxOGM2 Zi8xLzEtODNSRi1ySFY3YjQ4NVFvWlRyaEpRak1hWWsuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MCQEAgABMB4DBAItUQwD BAEtWggDBAFbz4IDBAK5IpQDBAO5qtgwDQQCAAIwBwMFACoA2mAwDQYJKoZIhvcN AQELBQADggEBAFcgamLhcdqM4C+uhdMD/v+YWc55+eFlvCJfffMIObe9jbIMMVRa kA8+0At/fhUTZ7vt8pr70DVTQoTV6qsI3bDLdjFl4gWuFtMWreKJu1UduxGHVwhq GUW2hkJitLJe9uE2oYMLxwcqr6uP9x4+ct5Is3p5LV04TjYS10lwH+KrylbDSfJ/ vrFD/mYnRNcNbaK0swbLm+BqMr5meJhX6ZvnJIxllOhxUEapR9QcQaZNq9wmSlqU VoDD+tRho+wUxxnkST8aqPLYdl7FKwnl9MRB3TIWzE68jRdu8IJZryJAEVnCusj1 5+ith5matuhHrvD13FUQhA9J7ycxnMixoB8= -----END CERTIFICATE-----Generated at Sat Dec 6 22:02:05 2025 by rpki-client