This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/QGXKuMyMj7np7BrXR-UiykLNelo.roa File: QGXKuMyMj7np7BrXR-UiykLNelo.roa (raw, json) Hash identifier: TouINLMwq+4tSpfvKTTYgiCKqK8iE1oP/BBT+AyGC04= Subject key identifier: 40:65:CA:B8:CC:8C:8F:B9:E9:EC:1A:D7:47:E5:22:CA:42:CD:7A:5A Certificate issuer: /CN=4b98127943e7175734964010c89ef821416a31b3 Certificate serial: 019AE8DF71F974CF2EFF43680BA46E7E6D99 Authority key identifier: 4B:98:12:79:43:E7:17:57:34:96:40:10:C8:9E:F8:21:41:6A:31:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5gSeUPnF1c0lkAQyJ74IUFqMbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/QGXKuMyMj7np7BrXR-UiykLNelo.roa Signing time: Thu 04 Dec 2025 10:19:08 +0000 ROA not before: Thu 04 Dec 2025 10:19:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 6871 IP address blocks: 31.108.0.0/14 maxlen: 14 31.125.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/S5gSeUPnF1c0lkAQyJ74IUFqMbM.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/S5gSeUPnF1c0lkAQyJ74IUFqMbM.mft rsync://rpki.ripe.net/repository/DEFAULT/S5gSeUPnF1c0lkAQyJ74IUFqMbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e8:df:71:f9:74:cf:2e:ff:43:68:0b:a4:6e:7e:6d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b98127943e7175734964010c89ef821416a31b3 Validity Not Before: Dec 4 10:19:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4065cab8cc8c8fb9e9ec1ad747e522ca42cd7a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9b:53:0e:66:bd:71:8f:9b:e3:6c:9e:d0:8e: 9d:45:af:ed:f9:af:08:51:e2:65:e0:f5:78:41:64: 2d:80:13:56:05:78:ba:71:5b:fc:d1:7f:f7:cc:66: 67:9c:66:1c:b2:7c:14:5a:e9:6e:84:b6:3e:f4:6a: f7:a6:eb:47:e9:f0:89:b7:7e:5f:25:58:2b:90:84: 68:1b:eb:53:f9:11:2f:1d:90:a9:ba:80:5f:ae:ba: fe:98:f9:9e:ee:29:7c:16:36:16:0e:c4:8d:ec:b2: 4b:eb:b9:2a:48:20:e5:8b:d5:10:92:5d:dd:2c:c7: 50:28:d1:29:b2:bc:3f:3d:0c:a6:ff:15:82:fe:0b: 70:bf:16:3f:e7:16:c6:12:e2:1b:3e:51:4d:6d:da: 83:fe:2a:67:39:85:e9:09:cf:fa:82:83:02:a2:b3: 60:45:84:87:e1:c8:21:b2:e6:09:e5:8a:48:09:40: eb:23:86:47:50:70:98:1d:58:ce:24:35:6a:58:16: 56:7b:99:78:4a:52:81:84:5c:3a:a2:f6:ac:29:62: 5b:26:0a:e9:67:db:bb:74:4a:b4:b4:ac:b8:6c:67: 78:fa:0e:c5:1f:3b:ac:10:eb:aa:d0:e8:35:f2:94: 5f:36:82:0d:9f:43:c6:c7:02:37:b3:ff:6a:8b:0b: 26:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:65:CA:B8:CC:8C:8F:B9:E9:EC:1A:D7:47:E5:22:CA:42:CD:7A:5A X509v3 Authority Key Identifier: keyid:4B:98:12:79:43:E7:17:57:34:96:40:10:C8:9E:F8:21:41:6A:31:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5gSeUPnF1c0lkAQyJ74IUFqMbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/QGXKuMyMj7np7BrXR-UiykLNelo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f20df3-2753-4353-a668-621792f7e56a/1/S5gSeUPnF1c0lkAQyJ74IUFqMbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.108.0.0/14 31.125.0.0/16 Signature Algorithm: sha256WithRSAEncryption a3:61:b8:28:a4:d0:ef:df:dd:75:c2:9d:ab:f2:6b:22:f7:dc: 92:a0:c3:0f:90:9e:f9:2a:70:2b:81:fe:f7:5c:12:e3:56:09: c1:d0:21:d3:de:e7:81:ea:fd:5f:73:a6:c3:7d:97:26:e9:19: ad:f0:0e:94:6b:07:66:b9:52:df:35:db:27:16:3e:4c:12:2d: 0b:8f:13:56:69:cd:8f:59:35:19:d0:61:cc:ec:e8:ef:fa:13: 11:af:77:49:b3:42:20:9d:41:d8:df:d4:56:3a:f0:e7:03:d1: b3:84:70:19:8d:ec:fa:8b:cb:36:da:88:ba:a3:92:6a:9a:cc: 3d:fc:9c:e5:08:6c:9c:4e:f0:3f:a4:64:4d:91:dc:1e:ae:4c: b0:e5:a3:09:ed:e7:a6:3a:57:3e:4a:6f:1a:40:b4:4a:fd:c3: 75:c0:f2:e6:07:a6:29:da:59:43:33:ae:7c:10:3e:28:73:d3: 2c:64:7e:22:fc:b1:4f:33:c4:75:7d:1a:6c:b1:a6:67:70:55: 93:97:e5:ff:4c:af:b3:50:db:c8:ed:7a:0e:44:1b:e7:08:49: 5c:7f:2e:22:1d:6d:a3:bb:01:a7:82:64:58:8a:ca:fb:98:0e: fd:98:ec:f8:cd:c3:48:7d:7e:91:67:62:06:b5:15:34:ee:09: a4:d5:d2:27 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgISAZro33H5dM8u/0NoC6Rufm2ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiOTgxMjc5NDNlNzE3NTczNDk2NDAxMGM4OWVmODIxNDE2 YTMxYjMwHhcNMjUxMjA0MTAxOTA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MDY1Y2FiOGNjOGM4ZmI5ZTllYzFhZDc0N2U1MjJjYTQyY2Q3YTVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ZtTDma9cY+b42ye0I6dRa/t+a8I UeJl4PV4QWQtgBNWBXi6cVv80X/3zGZnnGYcsnwUWuluhLY+9Gr3putH6fCJt35f JVgrkIRoG+tT+REvHZCpuoBfrrr+mPme7il8FjYWDsSN7LJL67kqSCDli9UQkl3d LMdQKNEpsrw/PQym/xWC/gtwvxY/5xbGEuIbPlFNbdqD/ipnOYXpCc/6goMCorNg RYSH4cghsuYJ5YpICUDrI4ZHUHCYHVjOJDVqWBZWe5l4SlKBhFw6ovasKWJbJgrp Z9u7dEq0tKy4bGd4+g7FHzusEOuq0Og18pRfNoINn0PGxwI3s/9qiwsmfwIDAQAB o4ICDTCCAgkwHQYDVR0OBBYEFEBlyrjMjI+56ewa10flIspCzXpaMB8GA1UdIwQY MBaAFEuYEnlD5xdXNJZAEMie+CFBajGzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzVnU2VVUG5GMWMwbGtBUXlKNzRJVUZxTWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9mMjBkZjMtMjc1My00MzUzLWE2Njgt NjIxNzkyZjdlNTZhLzEvUUdYS3VNeU1qN25wN0JyWFItVWl5a0xOZWxvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9mMjBkZjMtMjc1My00MzUzLWE2NjgtNjIxNzkyZjdlNTZh LzEvUzVnU2VVUG5GMWMwbGtBUXlKNzRJVUZxTWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCMGCCsGAQUFBwEHAQH/BBQwEjAQBAIAATAKAwMCH2wDAwAf fTANBgkqhkiG9w0BAQsFAAOCAQEAo2G4KKTQ79/ddcKdq/JrIvfckqDDD5Ce+Spw K4H+91wS41YJwdAh097nger9X3Omw32XJukZrfAOlGsHZrlS3zXbJxY+TBItC48T VmnNj1k1GdBhzOzo7/oTEa93SbNCIJ1B2N/UVjrw5wPRs4RwGY3s+ovLNtqIuqOS aprMPfyc5QhsnE7wP6RkTZHcHq5MsOWjCe3npjpXPkpvGkC0Sv3DdcDy5gemKdpZ QzOufBA+KHPTLGR+IvyxTzPEdX0abLGmZ3BVk5fl/0yvs1DbyO16DkQb5whJXH8u Ih1to7sBp4JkWIrK+5gO/Zjs+M3DSH1+kWdiBrUVNO4JpNXSJw== -----END CERTIFICATE-----Generated at Sat Dec 6 23:47:25 2025 by rpki-client