This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/rNGt9LDewJiHuR2lJc36D8TSyXw.roa File: rNGt9LDewJiHuR2lJc36D8TSyXw.roa (raw, json) Hash identifier: g8y+iBLG3cbxk27H5tP4VQre3m+vNBagD8EWSrYcgoM= Subject key identifier: AC:D1:AD:F4:B0:DE:C0:98:87:B9:1D:A5:25:CD:FA:0F:C4:D2:C9:7C Certificate issuer: /CN=828bbad6f4916842bbe320284fafe10caf59edf0 Certificate serial: 019A9205622B4ECEE0204DF18E60CC512BB6 Authority key identifier: 82:8B:BA:D6:F4:91:68:42:BB:E3:20:28:4F:AF:E1:0C:AF:59:ED:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gou61vSRaEK74yAoT6_hDK9Z7fA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/rNGt9LDewJiHuR2lJc36D8TSyXw.roa Signing time: Mon 17 Nov 2025 13:33:37 +0000 ROA not before: Mon 17 Nov 2025 13:33:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 49097 IP address blocks: 31.3.150.0/24 maxlen: 24 31.3.151.0/24 maxlen: 24 80.70.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/gou61vSRaEK74yAoT6_hDK9Z7fA.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/gou61vSRaEK74yAoT6_hDK9Z7fA.mft rsync://rpki.ripe.net/repository/DEFAULT/gou61vSRaEK74yAoT6_hDK9Z7fA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:92:05:62:2b:4e:ce:e0:20:4d:f1:8e:60:cc:51:2b:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828bbad6f4916842bbe320284fafe10caf59edf0 Validity Not Before: Nov 17 13:33:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=acd1adf4b0dec09887b91da525cdfa0fc4d2c97c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0c:e5:08:ff:c9:e5:d5:b1:1b:90:ae:56:57: d3:7b:b3:6c:ea:31:fa:3d:1d:2c:e5:4c:ca:6e:97: 1f:d3:ad:f0:69:38:03:b0:56:0e:4a:5b:c7:6d:82: 3e:75:02:83:5c:af:db:02:d3:e6:6f:4f:73:d6:b5: ce:d9:17:3f:bf:b1:4c:e0:61:96:e6:41:eb:90:26: a9:6f:6a:58:18:f4:ee:0a:e6:d8:bf:eb:92:6f:73: ae:35:12:df:33:9d:72:03:42:42:7c:91:ce:fb:87: b7:94:5c:ad:b8:a9:4d:bf:e3:d2:f7:ce:6a:7b:78: 0e:78:1f:15:d7:f0:9f:ea:5f:a5:bf:02:ed:d1:45: 72:0b:79:a9:7e:65:1c:3c:ad:56:2a:da:23:4d:41: 1f:98:6d:65:f7:f8:5a:37:9b:1a:c7:3b:7a:a7:c6: 4d:5f:8f:f4:c6:b3:70:5c:e5:04:95:a4:f4:61:f8: 51:c4:ab:63:2b:0f:84:1c:55:15:37:dd:44:a7:b2: 3e:bf:be:de:79:93:12:ad:ed:1d:58:8f:34:ed:d3: 8d:3d:49:fa:8f:7f:e6:2c:8d:f1:a4:10:69:61:01: 9c:cc:a5:bb:31:1a:bb:d1:f9:07:92:52:7d:a4:25: d3:e8:00:e2:3f:59:e5:98:2f:ce:38:0a:64:14:3b: 59:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D1:AD:F4:B0:DE:C0:98:87:B9:1D:A5:25:CD:FA:0F:C4:D2:C9:7C X509v3 Authority Key Identifier: keyid:82:8B:BA:D6:F4:91:68:42:BB:E3:20:28:4F:AF:E1:0C:AF:59:ED:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gou61vSRaEK74yAoT6_hDK9Z7fA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/rNGt9LDewJiHuR2lJc36D8TSyXw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/gou61vSRaEK74yAoT6_hDK9Z7fA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.3.150.0/23 80.70.171.0/24 Signature Algorithm: sha256WithRSAEncryption 69:45:6b:a0:c0:05:d2:4e:4e:83:68:48:67:4a:66:cc:23:38: 43:39:d3:a4:16:cc:f0:18:1e:9d:c6:f8:4c:ed:04:57:fe:5e: bb:18:cd:71:a1:d8:67:f3:a5:03:54:91:30:44:b4:33:6e:8c: 0b:7e:8c:bd:cd:6b:be:5a:d8:b6:34:31:ba:65:bf:aa:a1:00: 2b:3f:70:ac:3d:72:f9:10:57:39:f1:9d:31:59:37:27:f7:00: 33:6c:bc:34:4e:df:5b:69:09:e7:4e:5a:8b:fa:ee:9c:1b:c7: d6:30:8c:40:29:51:fb:1f:2f:d9:f4:88:ed:a8:d2:2d:6b:5b: 28:b3:a7:14:1e:f4:e5:0e:68:43:ff:bf:08:48:a6:59:89:80: 04:77:b9:1e:c3:d0:e3:91:9f:19:03:db:98:c2:44:c6:90:25: 1d:88:ab:20:41:d0:d9:0b:37:b5:15:72:02:b0:61:ab:3b:eb: 09:9b:12:4e:86:dd:1d:31:91:7b:fc:7a:2e:34:a4:4b:fb:2d: fa:9c:79:9b:e5:73:d2:7c:64:a4:15:88:fa:25:17:c1:fc:24: 23:62:d9:c3:d6:2e:64:fc:bf:f5:10:45:a8:e3:92:90:b8:e4: 30:38:8d:e0:47:22:5d:70:c3:fd:eb:cd:5c:fa:a6:9d:3c:03: 28:40:bb:44 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZqSBWIrTs7gIE3xjmDMUSu2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyOGJiYWQ2ZjQ5MTY4NDJiYmUzMjAyODRmYWZlMTBjYWY1 OWVkZjAwHhcNMjUxMTE3MTMzMzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2QxYWRmNGIwZGVjMDk4ODdiOTFkYTUyNWNkZmEwZmM0ZDJjOTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwzlCP/J5dWxG5CuVlfTe7Ns6jH6 PR0s5UzKbpcf063waTgDsFYOSlvHbYI+dQKDXK/bAtPmb09z1rXO2Rc/v7FM4GGW 5kHrkCapb2pYGPTuCubYv+uSb3OuNRLfM51yA0JCfJHO+4e3lFytuKlNv+PS985q e3gOeB8V1/Cf6l+lvwLt0UVyC3mpfmUcPK1WKtojTUEfmG1l9/haN5saxzt6p8ZN X4/0xrNwXOUElaT0YfhRxKtjKw+EHFUVN91Ep7I+v77eeZMSre0dWI807dONPUn6 j3/mLI3xpBBpYQGczKW7MRq70fkHklJ9pCXT6ADiP1nlmC/OOApkFDtZgwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKzRrfSw3sCYh7kdpSXN+g/E0sl8MB8GA1UdIwQY MBaAFIKLutb0kWhCu+MgKE+v4QyvWe3wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ291NjF2U1JhRUs3NHlBb1Q2X2hESzlaN2ZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC84M2Y5NzctODJiOC00Njk1LTljMDgt MTg5NjU1NWEyZjBlLzEvck5HdDlMRGV3SmlIdVIybEpjMzZEOFRTeVh3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC84M2Y5NzctODJiOC00Njk1LTljMDgtMTg5NjU1NWEyZjBl LzEvZ291NjF2U1JhRUs3NHlBb1Q2X2hESzlaN2ZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBHwOWAwQA UEarMA0GCSqGSIb3DQEBCwUAA4IBAQBpRWugwAXSTk6DaEhnSmbMIzhDOdOkFszw GB6dxvhM7QRX/l67GM1xodhn86UDVJEwRLQzbowLfoy9zWu+Wti2NDG6Zb+qoQAr P3CsPXL5EFc58Z0xWTcn9wAzbLw0Tt9baQnnTlqL+u6cG8fWMIxAKVH7Hy/Z9Ijt qNIta1sos6cUHvTlDmhD/78ISKZZiYAEd7kew9DjkZ8ZA9uYwkTGkCUdiKsgQdDZ Cze1FXICsGGrO+sJmxJOht0dMZF7/HouNKRL+y36nHmb5XPSfGSkFYj6JRfB/CQj YtnD1i5k/L/1EEWo45KQuOQwOI3gRyJdcMP9681c+qadPAMoQLtE -----END CERTIFICATE-----Generated at Sat Dec 6 14:06:45 2025 by rpki-client