This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/QFRboaXHFBdeyuVhRXAO82hpmvU.roa File: QFRboaXHFBdeyuVhRXAO82hpmvU.roa (raw, json) Hash identifier: RtpZjbCNeO6bIZd7mQdvmn1LjiIx2JpQJYmxTxefjYE= Subject key identifier: 40:54:5B:A1:A5:C7:14:17:5E:CA:E5:61:45:70:0E:F3:68:69:9A:F5 Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915 Certificate serial: 019B2BD444EAE2A143E2EB6B974082FEA97A Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/QFRboaXHFBdeyuVhRXAO82hpmvU.roa Signing time: Wed 17 Dec 2025 10:21:30 +0000 ROA not before: Wed 17 Dec 2025 10:21:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 25198 IP address blocks: 212.69.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.mft rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 11:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:d4:44:ea:e2:a1:43:e2:eb:6b:97:40:82:fe:a9:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915 Validity Not Before: Dec 17 10:21:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=40545ba1a5c714175ecae56145700ef368699af5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:af:60:51:e1:db:1f:a6:7a:cb:27:08:ec:3f: 33:e3:9c:8f:e9:4e:85:e7:a1:9a:f5:f0:c2:48:cb: b7:a7:10:a9:8a:9a:c7:df:48:bf:05:01:5e:32:49: c8:e7:ec:c0:53:2a:ed:82:4b:a4:fc:4c:02:80:93: 61:3f:cf:08:0c:3d:62:cf:6a:80:ae:06:ab:61:7f: 5a:fe:0b:84:b6:2c:36:90:74:49:6a:a8:e6:62:e7: 96:2b:7f:4c:ad:a0:e7:a7:16:a1:d2:2a:3f:f6:e8: a4:c6:2f:31:cc:a5:10:18:b7:9a:5b:fd:c4:1b:72: 25:04:8d:84:c9:60:5a:43:5f:1f:fc:69:9d:de:51: 29:5f:f0:e0:c7:86:78:cf:d1:6b:d0:74:c0:c3:d0: 4c:5d:22:a0:5f:04:78:63:95:fa:c2:85:03:27:fc: 15:fa:79:80:86:e5:4f:5e:fa:2c:68:29:f4:48:51: 58:f9:e7:ac:59:af:50:20:c1:90:c1:d2:6e:24:72: c8:55:d4:ca:4c:d1:1c:e0:e7:ba:40:a7:c2:86:3b: 3b:d2:d0:ec:fc:9a:0e:2e:3b:ac:ba:cc:e7:41:4c: 81:d6:15:77:61:fa:ed:95:f5:fc:82:b3:a7:46:fe: ca:d2:ec:b8:ba:69:9e:5f:cd:82:f1:d3:30:ad:64: 83:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:54:5B:A1:A5:C7:14:17:5E:CA:E5:61:45:70:0E:F3:68:69:9A:F5 X509v3 Authority Key Identifier: keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/QFRboaXHFBdeyuVhRXAO82hpmvU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.69.8.0/24 Signature Algorithm: sha256WithRSAEncryption 74:be:f0:8b:4a:b2:a5:7a:37:81:c1:2c:19:36:54:19:01:ad: 08:ff:51:22:76:04:16:5e:46:4e:33:8c:c4:26:57:e8:d7:cd: 4d:79:94:76:49:f0:18:7c:0e:d4:e2:b1:70:31:6c:9c:5c:65: d1:ca:d4:94:76:d4:44:49:13:98:d5:73:fd:68:dd:2f:77:71: 16:01:00:58:51:51:cb:28:74:95:e6:b3:16:09:45:fe:76:98: eb:5b:f2:9a:ed:b4:84:54:e9:5d:4b:9f:27:82:56:16:ec:f3: b5:7f:0d:b5:64:41:7b:68:42:0e:f1:6c:61:96:62:7b:b6:b0: 08:55:e3:69:a9:41:2a:f0:26:e1:3e:33:78:a2:c1:6f:29:0c: e4:cd:c5:88:48:ac:7c:a2:84:23:70:5c:0e:56:c2:94:5a:e4: 50:c5:07:4a:ad:44:58:5f:30:b5:3c:8e:83:46:dc:b4:02:94: 98:2f:46:30:d6:e9:7b:80:6f:a6:3b:d9:61:ea:65:2c:78:39: 3f:eb:ef:84:4a:7c:37:d5:32:da:a0:43:f9:96:98:04:4e:56: ff:73:05:ce:b4:4c:12:4e:34:ec:48:83:52:07:78:9a:de:e4: 1c:c2:a7:ae:c6:e2:05:bc:96:35:1c:e2:2f:3d:ab:46:a6:0c: ac:00:e0:12 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsr1ETq4qFD4utrl0CC/ql6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj N2U5MTUwHhcNMjUxMjE3MTAyMTMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MDU0NWJhMWE1YzcxNDE3NWVjYWU1NjE0NTcwMGVmMzY4Njk5YWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoK9gUeHbH6Z6yycI7D8z45yP6U6F 56Ga9fDCSMu3pxCpiprH30i/BQFeMknI5+zAUyrtgkuk/EwCgJNhP88IDD1iz2qA rgarYX9a/guEtiw2kHRJaqjmYueWK39MraDnpxah0io/9uikxi8xzKUQGLeaW/3E G3IlBI2EyWBaQ18f/Gmd3lEpX/Dgx4Z4z9Fr0HTAw9BMXSKgXwR4Y5X6woUDJ/wV +nmAhuVPXvosaCn0SFFY+eesWa9QIMGQwdJuJHLIVdTKTNEc4Oe6QKfChjs70tDs /JoOLjususznQUyB1hV3YfrtlfX8grOnRv7K0uy4ummeX82C8dMwrWSD4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEBUW6GlxxQXXsrlYUVwDvNoaZr1MB8GA1UdIwQY MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt ZmFlNWRiZWQzYjFiLzEvUUZSYm9hWEhGQmRleXVWaFJYQU84MmhwbXZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1EUIMA0G CSqGSIb3DQEBCwUAA4IBAQB0vvCLSrKlejeBwSwZNlQZAa0I/1EidgQWXkZOM4zE Jlfo181NeZR2SfAYfA7U4rFwMWycXGXRytSUdtRESROY1XP9aN0vd3EWAQBYUVHL KHSV5rMWCUX+dpjrW/Ka7bSEVOldS58nglYW7PO1fw21ZEF7aEIO8WxhlmJ7trAI VeNpqUEq8CbhPjN4osFvKQzkzcWISKx8ooQjcFwOVsKUWuRQxQdKrURYXzC1PI6D Rty0ApSYL0Yw1ul7gG+mO9lh6mUseDk/6++ESnw31TLaoEP5lpgETlb/cwXOtEwS TjTsSINSB3ia3uQcwqeuxuIFvJY1HOIvPatGpgysAOAS -----END CERTIFICATE-----Generated at Fri Dec 19 20:16:18 2025 by rpki-client