This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/KUetIJvIbf-RwWScWVCZi9TC7iI.roa File: KUetIJvIbf-RwWScWVCZi9TC7iI.roa (raw, json) Hash identifier: epzj9JFPCcvIPeSXLc/JujoI7wMFChHedAXABI5ULJY= Subject key identifier: 29:47:AD:20:9B:C8:6D:FF:91:C1:64:9C:59:50:99:8B:D4:C2:EE:22 Certificate issuer: /CN=fef918c5a9330dbbe6eee17cb9a1d62fbc855bde Certificate serial: 019A7C69C3E1BB4F19397F163FF05166317A Authority key identifier: FE:F9:18:C5:A9:33:0D:BB:E6:EE:E1:7C:B9:A1:D6:2F:BC:85:5B:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_vkYxakzDbvm7uF8uaHWL7yFW94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/KUetIJvIbf-RwWScWVCZi9TC7iI.roa Signing time: Thu 13 Nov 2025 08:51:37 +0000 ROA not before: Thu 13 Nov 2025 08:51:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 20832 IP address blocks: 185.109.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/_vkYxakzDbvm7uF8uaHWL7yFW94.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/_vkYxakzDbvm7uF8uaHWL7yFW94.mft rsync://rpki.ripe.net/repository/DEFAULT/_vkYxakzDbvm7uF8uaHWL7yFW94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:7c:69:c3:e1:bb:4f:19:39:7f:16:3f:f0:51:66:31:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fef918c5a9330dbbe6eee17cb9a1d62fbc855bde Validity Not Before: Nov 13 08:51:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=2947ad209bc86dff91c1649c5950998bd4c2ee22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e6:d7:d0:42:38:b2:6f:bd:73:49:d5:e7:e2: 83:1b:7c:0b:e9:aa:9d:e2:30:28:4d:dd:7f:fd:c1: af:cb:21:8d:0e:22:81:4b:eb:f1:80:28:7e:89:37: 59:2a:41:0d:cf:9e:4d:1f:60:ff:09:09:db:83:7d: 72:d7:28:2c:32:8c:5d:70:d1:1e:06:82:0a:23:90: 34:32:59:c1:a6:12:79:44:24:a4:78:4d:dc:74:ed: 8b:a8:6f:ea:93:14:e4:59:37:a7:0e:92:62:2b:8a: b7:93:fb:b3:7b:8d:2c:ef:7c:46:d9:c6:51:9b:49: 5d:99:d7:27:5f:9e:47:07:2b:05:b7:79:fb:9c:65: ba:d2:f6:70:ff:69:38:47:d2:51:c1:03:70:c9:fe: 28:dc:3e:20:4a:df:57:64:fe:88:af:a5:31:44:a8: d6:77:c8:53:74:66:95:d8:e9:3b:35:0c:a5:6b:0e: d5:5f:63:1d:73:39:d4:8b:bc:8b:0a:02:a6:d3:f8: 29:99:be:5c:1a:d0:78:42:11:cd:78:ab:3e:25:31: 7e:20:a1:7f:fb:23:dc:23:d6:3f:72:09:94:75:ba: 02:e1:ad:98:3f:1a:7d:ce:e8:d3:4b:4e:7c:8d:db: a9:30:35:a7:44:77:a4:18:59:73:e2:d8:06:27:04: a8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:47:AD:20:9B:C8:6D:FF:91:C1:64:9C:59:50:99:8B:D4:C2:EE:22 X509v3 Authority Key Identifier: keyid:FE:F9:18:C5:A9:33:0D:BB:E6:EE:E1:7C:B9:A1:D6:2F:BC:85:5B:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_vkYxakzDbvm7uF8uaHWL7yFW94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/KUetIJvIbf-RwWScWVCZi9TC7iI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/_vkYxakzDbvm7uF8uaHWL7yFW94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.109.104.0/22 Signature Algorithm: sha256WithRSAEncryption b2:9d:70:44:6a:60:c4:5e:c0:99:c0:f4:39:fd:42:aa:08:20: 18:07:ef:9f:7b:b3:1e:a7:8b:27:9a:61:16:cf:bc:a1:29:f0: 85:ee:38:15:33:78:1f:2b:9f:0f:0d:e0:f2:bc:09:31:47:d9: 9b:45:75:fe:c9:b3:77:6e:ac:d0:2e:ed:ec:8d:cf:4a:8e:7a: 87:b2:9e:83:56:01:6b:10:db:83:d1:54:f2:90:f8:72:fb:88: 02:24:34:86:05:d7:fc:cf:5f:3c:5a:32:2c:d8:e3:02:08:15: d5:03:d3:45:9d:be:65:9a:47:a9:f7:9d:46:6e:de:1b:11:09: b1:62:db:51:9b:99:14:01:f5:60:e7:3b:2d:3d:4f:00:f6:46: 88:e1:2a:2c:19:5f:d4:fe:22:da:88:ca:67:fa:5a:84:e0:34: 4e:ae:47:c2:09:68:62:7d:f0:15:1d:d8:0a:d0:58:b7:40:3d: a7:80:dc:e0:1d:9b:21:5b:f5:1c:79:e0:e3:76:d0:5a:14:9e: cd:bf:3e:db:47:ea:af:6b:29:bf:a7:95:2c:fb:58:83:af:37: 15:e7:b0:15:17:62:2d:3b:a5:0c:18:a6:b9:43:49:75:c4:88: 92:90:ea:f7:f9:7e:82:93:23:e0:7c:be:5a:d2:4c:9a:43:dd: b7:c6:a2:9a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZp8acPhu08ZOX8WP/BRZjF6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlZjkxOGM1YTkzMzBkYmJlNmVlZTE3Y2I5YTFkNjJmYmM4 NTViZGUwHhcNMjUxMTEzMDg1MTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTQ3YWQyMDliYzg2ZGZmOTFjMTY0OWM1OTUwOTk4YmQ0YzJlZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvubX0EI4sm+9c0nV5+KDG3wL6aqd 4jAoTd1//cGvyyGNDiKBS+vxgCh+iTdZKkENz55NH2D/CQnbg31y1ygsMoxdcNEe BoIKI5A0MlnBphJ5RCSkeE3cdO2LqG/qkxTkWTenDpJiK4q3k/uze40s73xG2cZR m0ldmdcnX55HBysFt3n7nGW60vZw/2k4R9JRwQNwyf4o3D4gSt9XZP6Ir6UxRKjW d8hTdGaV2Ok7NQylaw7VX2MdcznUi7yLCgKm0/gpmb5cGtB4QhHNeKs+JTF+IKF/ +yPcI9Y/cgmUdboC4a2YPxp9zujTS058jdupMDWnRHekGFlz4tgGJwSoFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFClHrSCbyG3/kcFknFlQmYvUwu4iMB8GA1UdIwQY MBaAFP75GMWpMw275u7hfLmh1i+8hVveMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3ZrWXhha3pEYnZtN3VGOHVhSFdMN3lGVzk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9lZDY1NWQtNTEwMi00OTMyLWIxZGIt YmEyODg5YWZhYWRkLzEvS1VldElKdkliZi1Sd1dTY1dWQ1ppOVRDN2lJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi9lZDY1NWQtNTEwMi00OTMyLWIxZGItYmEyODg5YWZhYWRk LzEvX3ZrWXhha3pEYnZtN3VGOHVhSFdMN3lGVzk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuW1oMA0G CSqGSIb3DQEBCwUAA4IBAQCynXBEamDEXsCZwPQ5/UKqCCAYB++fe7Mep4snmmEW z7yhKfCF7jgVM3gfK58PDeDyvAkxR9mbRXX+ybN3bqzQLu3sjc9KjnqHsp6DVgFr ENuD0VTykPhy+4gCJDSGBdf8z188WjIs2OMCCBXVA9NFnb5lmkep951Gbt4bEQmx YttRm5kUAfVg5zstPU8A9kaI4SosGV/U/iLaiMpn+lqE4DROrkfCCWhiffAVHdgK 0Fi3QD2ngNzgHZshW/UceeDjdtBaFJ7Nvz7bR+qvaym/p5Us+1iDrzcV57AVF2It O6UMGKa5Q0l1xIiSkOr3+X6CkyPgfL5a0kyaQ923xqKa -----END CERTIFICATE-----Generated at Sat Dec 6 17:14:36 2025 by rpki-client