This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Q3neqfMl0nZgZgQRFEJQYHUJ_uI.roa File: Q3neqfMl0nZgZgQRFEJQYHUJ_uI.roa (raw, json) Hash identifier: Uvu7dYAjFawUjluikrEC2O6OZMBTDKMGV+QbfFyckG4= Subject key identifier: 43:79:DE:A9:F3:25:D2:76:60:66:04:11:14:42:50:60:75:09:FE:E2 Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f Certificate serial: 019B2793B32C9FF42A4A692045966068539D Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Q3neqfMl0nZgZgQRFEJQYHUJ_uI.roa Signing time: Tue 16 Dec 2025 14:32:29 +0000 ROA not before: Tue 16 Dec 2025 14:32:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 41789 IP address blocks: 31.129.0.0/20 maxlen: 24 31.129.16.0/24 maxlen: 24 31.129.17.0/24 maxlen: 24 31.129.18.0/24 maxlen: 24 31.129.19.0/24 maxlen: 24 31.129.20.0/24 maxlen: 24 31.129.23.0/24 maxlen: 24 31.129.24.0/24 maxlen: 24 31.129.25.0/24 maxlen: 24 31.129.26.0/24 maxlen: 24 31.129.27.0/24 maxlen: 24 31.129.28.0/24 maxlen: 24 31.129.29.0/24 maxlen: 24 31.129.31.0/24 maxlen: 24 46.19.64.0/22 maxlen: 24 81.200.144.0/21 maxlen: 24 94.198.216.0/22 maxlen: 24 141.98.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.mft rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:93:b3:2c:9f:f4:2a:4a:69:20:45:96:60:68:53:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f Validity Not Before: Dec 16 14:32:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4379dea9f325d27660660411144250607509fee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:72:70:23:fd:7e:fb:c9:cf:ee:a5:57:4d:27: bd:da:3f:3e:d8:ef:79:47:a9:de:58:33:13:7d:bc: 7c:1f:89:61:c0:6b:d4:27:7c:53:f1:eb:3d:3c:c5: aa:b9:05:e6:b5:43:16:cc:72:6c:48:5e:35:1b:f5: 57:a2:62:4f:f6:55:7f:7c:33:77:2d:55:32:ca:94: de:88:e7:74:f5:65:d9:32:92:84:a0:2b:f3:3e:2e: c6:51:70:24:1f:12:1a:7a:7d:b1:40:df:fc:02:9a: 52:c0:b5:9a:84:cd:d3:f0:dd:39:a2:ab:05:01:20: 81:02:39:cd:9b:2d:57:18:d1:d1:4e:9d:90:5d:93: 34:0d:97:37:d1:eb:09:e3:af:bd:18:ab:aa:a8:79: fe:c6:ed:28:d7:3e:7c:65:a4:94:1b:84:2a:2c:cb: 8e:9d:b7:40:7e:93:0f:9c:13:e9:b1:68:b1:c5:17: e3:3d:8b:6b:c2:f5:55:64:fc:8a:04:fa:b3:d4:5a: 5c:04:52:6c:c6:f1:cb:cb:11:c1:1b:76:98:a2:57: 45:a9:81:f6:23:6d:e6:f8:39:54:15:07:93:12:67: c4:92:c6:62:97:e1:07:94:77:25:12:9d:ca:a2:18: 10:01:17:0c:0d:37:cb:34:e4:1f:fc:d8:6b:fe:b6: cc:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:79:DE:A9:F3:25:D2:76:60:66:04:11:14:42:50:60:75:09:FE:E2 X509v3 Authority Key Identifier: keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Q3neqfMl0nZgZgQRFEJQYHUJ_uI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.129.0.0-31.129.20.255 31.129.23.0-31.129.29.255 31.129.31.0/24 46.19.64.0/22 81.200.144.0/21 94.198.216.0/22 141.98.234.0/24 Signature Algorithm: sha256WithRSAEncryption 16:02:d3:be:f2:af:d6:59:b7:2d:1f:36:ed:ec:e8:f7:db:17: 44:7b:ad:d2:41:04:bd:82:65:9c:8f:99:38:d2:50:47:93:09: b0:e6:ef:f2:31:2b:31:65:b9:f1:2c:cc:48:26:94:0c:b4:9d: 5a:37:03:a9:69:19:bd:35:81:4c:06:ca:d1:d7:b1:34:db:ff: 19:bc:69:a7:7f:9f:2f:a9:16:75:5d:42:02:e0:51:4d:cd:07: b7:6e:b5:27:b1:be:c3:d6:58:05:e7:a4:00:07:d1:56:7e:7e: 18:f5:99:a5:72:c2:13:65:46:40:4e:47:89:22:4e:26:5e:bf: 62:3c:fc:a1:3a:e1:62:f0:10:f7:d1:34:c0:23:56:51:f6:8a: e1:ab:d4:2a:b1:b8:64:91:1a:3d:c8:16:03:7b:93:e4:08:38: f0:02:c8:ca:fd:bd:5f:88:9c:5a:25:af:50:3e:82:6a:2e:3e: f5:f3:b6:45:dd:7d:8c:92:0f:53:29:32:3a:f5:9e:f8:60:0b: db:a4:44:32:83:f0:7a:58:2f:6d:05:b2:18:6c:ca:fd:84:6a: 24:6b:33:33:30:6d:37:15:72:01:3b:7e:04:6e:7f:59:42:ed: 7a:03:49:0c:8f:b8:81:39:da:96:93:de:12:dc:f9:71:37:8f: 71:8c:a2:67 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZsnk7Msn/QqSmkgRZZgaFOdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1YjFkMTNjMmUyNmUxMjc4NjI0NmE1ZWM0YzViZWE2OTg2 NGIyMGYwHhcNMjUxMjE2MTQzMjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0Mzc5ZGVhOWYzMjVkMjc2NjA2NjA0MTExNDQyNTA2MDc1MDlmZWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3JwI/1++8nP7qVXTSe92j8+2O95 R6neWDMTfbx8H4lhwGvUJ3xT8es9PMWquQXmtUMWzHJsSF41G/VXomJP9lV/fDN3 LVUyypTeiOd09WXZMpKEoCvzPi7GUXAkHxIaen2xQN/8AppSwLWahM3T8N05oqsF ASCBAjnNmy1XGNHRTp2QXZM0DZc30esJ46+9GKuqqHn+xu0o1z58ZaSUG4QqLMuO nbdAfpMPnBPpsWixxRfjPYtrwvVVZPyKBPqz1FpcBFJsxvHLyxHBG3aYoldFqYH2 I23m+DlUFQeTEmfEksZil+EHlHclEp3KohgQARcMDTfLNOQf/Nhr/rbMyQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFEN53qnzJdJ2YGYEERRCUGB1Cf7iMB8GA1UdIwQY MBaAFAWx0TwuJuEnhiRqXsTFvqaYZLIPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjct NDkwNTI0M2JjODI4LzEvUTNuZXFmTWwwblpnWmdRUkZFSlFZSFVKX3VJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjctNDkwNTI0M2JjODI4 LzEvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTA/BAIAATA5MAsDAwAfgQME AB+BFDAMAwQAH4EXAwQBH4EcAwQAH4EfAwQCLhNAAwQDUciQAwQCXsbYAwQAjWLq MA0GCSqGSIb3DQEBCwUAA4IBAQAWAtO+8q/WWbctHzbt7Oj32xdEe63SQQS9gmWc j5k40lBHkwmw5u/yMSsxZbnxLMxIJpQMtJ1aNwOpaRm9NYFMBsrR17E02/8ZvGmn f58vqRZ1XUIC4FFNzQe3brUnsb7D1lgF56QAB9FWfn4Y9ZmlcsITZUZATkeJIk4m Xr9iPPyhOuFi8BD30TTAI1ZR9orhq9QqsbhkkRo9yBYDe5PkCDjwAsjK/b1fiJxa Ja9QPoJqLj7187ZF3X2Mkg9TKTI69Z74YAvbpEQyg/B6WC9tBbIYbMr9hGokazMz MG03FXIBO34Ebn9ZQu16A0kMj7iBOdqWk94S3PlxN49xjKJn -----END CERTIFICATE-----Generated at Wed Dec 17 19:47:47 2025 by rpki-client