This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/xZ8_FtyOoYQhBe4_1jlvCQDfhhU.roa File: xZ8_FtyOoYQhBe4_1jlvCQDfhhU.roa (raw, json) Hash identifier: A6XCP73eFEKF/rQa/nJO+G6QSChxaH4U3Rru774QV8Q= Subject key identifier: C5:9F:3F:16:DC:8E:A1:84:21:05:EE:3F:D6:39:6F:09:00:DF:86:15 Certificate issuer: /CN=a86580e18ad6ff8dc942be883c16de8b731f9605 Certificate serial: 019AE380EB322AC1920799A74F432CBF8CCC Authority key identifier: A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/xZ8_FtyOoYQhBe4_1jlvCQDfhhU.roa Signing time: Wed 03 Dec 2025 09:17:48 +0000 ROA not before: Wed 03 Dec 2025 09:17:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 59547 IP address blocks: 141.136.16.0/20 maxlen: 24 151.248.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/qGWA4YrW_43JQr6IPBbei3MflgU.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/qGWA4YrW_43JQr6IPBbei3MflgU.mft rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 09:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e3:80:eb:32:2a:c1:92:07:99:a7:4f:43:2c:bf:8c:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a86580e18ad6ff8dc942be883c16de8b731f9605 Validity Not Before: Dec 3 09:17:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=c59f3f16dc8ea1842105ee3fd6396f0900df8615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:54:9f:36:e0:15:e8:a0:50:5d:e6:1d:16:0c: ca:dc:f2:79:e8:10:17:5b:c6:ee:2f:90:e9:19:45: 02:24:77:5e:dc:c3:b1:e1:11:6e:51:4e:99:f8:ed: 7c:fa:9b:0f:2c:ab:23:20:0e:33:89:7d:12:de:3a: 96:cf:71:ad:c6:d7:f5:14:93:39:69:e6:e5:c5:11: 3d:16:5a:02:fc:b3:52:8c:87:d9:c5:9d:cd:94:b8: 67:d7:20:bc:36:a3:ab:e1:8d:e1:8e:1f:a0:22:09: fd:83:ee:13:4d:31:f8:4c:42:67:39:bd:4b:2c:dd: 3f:86:4f:f7:14:1b:b3:54:55:fd:21:90:f7:3b:f4: 7f:37:94:dd:37:4a:2b:d9:90:3e:90:cd:dc:e0:9a: 88:d8:0b:c7:bd:48:11:ed:4f:6e:5a:f9:32:d6:94: 95:b7:7a:59:06:af:7c:24:54:b5:6c:d7:a3:65:2e: f8:fd:fb:65:44:4e:48:98:a9:de:38:5d:f8:c7:92: 3f:d5:55:66:67:8a:0f:2a:00:ec:4b:a6:d4:b7:51: 8d:c7:6d:21:0b:45:c1:b8:e3:ed:5c:ff:98:ee:64: f1:e5:ee:24:1c:0d:05:65:38:ff:f0:4b:5f:75:8a: ef:49:b3:41:1a:f1:aa:bf:3f:55:13:1f:d2:89:02: ac:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:9F:3F:16:DC:8E:A1:84:21:05:EE:3F:D6:39:6F:09:00:DF:86:15 X509v3 Authority Key Identifier: keyid:A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/xZ8_FtyOoYQhBe4_1jlvCQDfhhU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/qGWA4YrW_43JQr6IPBbei3MflgU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.136.16.0/20 151.248.48.0/21 Signature Algorithm: sha256WithRSAEncryption 23:73:6b:34:e8:f7:96:88:94:ca:e0:4c:1f:b8:ac:38:9c:56: b6:40:82:18:b8:ea:78:c1:6a:7e:94:50:77:9d:47:c6:b8:2f: ad:4e:8a:89:e6:85:49:24:91:44:f1:f8:91:1e:4d:41:97:ab: 85:99:62:07:8c:79:91:a2:96:47:86:39:8e:88:45:d7:c3:2c: f8:2c:f9:60:8a:16:b4:ee:29:19:68:ae:8d:e1:b4:5b:bc:50: 49:60:d3:4b:04:59:1f:c2:d2:36:49:43:9f:69:11:84:d2:2f: 78:c8:c2:bc:c8:ea:f6:6c:08:5a:a3:2a:27:73:ad:81:8e:5b: 90:bf:c4:b7:da:15:5c:4b:ac:59:23:1f:30:7c:d3:f9:32:c9: 26:46:6d:67:8f:b8:f5:11:d4:a5:e3:ff:d6:9c:52:6a:a4:52: 0a:3c:cf:ac:a2:5a:e8:74:c0:24:3e:88:23:49:00:6f:6a:6e: e2:cb:de:d5:7c:3e:0e:d8:5f:d3:c9:dc:93:af:38:e3:61:22: c8:5b:73:32:59:4a:be:4f:da:86:8e:17:61:06:dc:73:f4:70: 35:4a:72:da:bb:8f:74:fa:db:a4:46:1b:80:7d:81:cf:11:e2: 8b:9b:b5:e5:85:03:3c:06:03:58:be:ae:29:9f:d9:fb:90:43: 14:6c:9b:3c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZrjgOsyKsGSB5mnT0Msv4zMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NjU4MGUxOGFkNmZmOGRjOTQyYmU4ODNjMTZkZThiNzMx Zjk2MDUwHhcNMjUxMjAzMDkxNzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTlmM2YxNmRjOGVhMTg0MjEwNWVlM2ZkNjM5NmYwOTAwZGY4NjE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6FSfNuAV6KBQXeYdFgzK3PJ56BAX W8buL5DpGUUCJHde3MOx4RFuUU6Z+O18+psPLKsjIA4ziX0S3jqWz3Gtxtf1FJM5 aeblxRE9FloC/LNSjIfZxZ3NlLhn1yC8NqOr4Y3hjh+gIgn9g+4TTTH4TEJnOb1L LN0/hk/3FBuzVFX9IZD3O/R/N5TdN0or2ZA+kM3c4JqI2AvHvUgR7U9uWvky1pSV t3pZBq98JFS1bNejZS74/ftlRE5ImKneOF34x5I/1VVmZ4oPKgDsS6bUt1GNx20h C0XBuOPtXP+Y7mTx5e4kHA0FZTj/8EtfdYrvSbNBGvGqvz9VEx/SiQKsUwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMWfPxbcjqGEIQXuP9Y5bwkA34YVMB8GA1UdIwQY MBaAFKhlgOGK1v+NyUK+iDwW3otzH5YFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUdXQTRZcldfNDNKUXI2SVBCYmVpM01mbGdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9lMjlkY2UtYTE3NC00Yjc3LTg5YWEt MjM2ZTkyZmM2YTU5LzEveFo4X0Z0eU9vWVFoQmU0XzFqbHZDUURmaGhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS9lMjlkY2UtYTE3NC00Yjc3LTg5YWEtMjM2ZTkyZmM2YTU5 LzEvcUdXQTRZcldfNDNKUXI2SVBCYmVpM01mbGdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEjYgQAwQD l/gwMA0GCSqGSIb3DQEBCwUAA4IBAQAjc2s06PeWiJTK4EwfuKw4nFa2QIIYuOp4 wWp+lFB3nUfGuC+tToqJ5oVJJJFE8fiRHk1Bl6uFmWIHjHmRopZHhjmOiEXXwyz4 LPlgiha07ikZaK6N4bRbvFBJYNNLBFkfwtI2SUOfaRGE0i94yMK8yOr2bAhaoyon c62BjluQv8S32hVcS6xZIx8wfNP5MskmRm1nj7j1EdSl4//WnFJqpFIKPM+solro dMAkPogjSQBvam7iy97VfD4O2F/TydyTrzjjYSLIW3MyWUq+T9qGjhdhBtxz9HA1 SnLau490+tukRhuAfYHPEeKLm7XlhQM8BgNYvq4pn9n7kEMUbJs8 -----END CERTIFICATE-----Generated at Sat Dec 6 17:17:45 2025 by rpki-client