This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/vIUr5qQxqqLVTYFZRBpJaE6yC18.roa File: vIUr5qQxqqLVTYFZRBpJaE6yC18.roa (raw, json) Hash identifier: puDWvLFM5Vh+RZHMeg9EaHeOJ4OAVD1A+mL/aQoFTAE= Subject key identifier: BC:85:2B:E6:A4:31:AA:A2:D5:4D:81:59:44:1A:49:68:4E:B2:0B:5F Certificate issuer: /CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e Certificate serial: 019B31C6C956D92743CF0FFFD06EC93FA941 Authority key identifier: BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/vIUr5qQxqqLVTYFZRBpJaE6yC18.roa Signing time: Thu 18 Dec 2025 14:04:29 +0000 ROA not before: Thu 18 Dec 2025 14:04:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215140 IP address blocks: 193.22.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.mft rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:c6:c9:56:d9:27:43:cf:0f:ff:d0:6e:c9:3f:a9:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e Validity Not Before: Dec 18 14:04:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=bc852be6a431aaa2d54d8159441a49684eb20b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:79:d7:a2:f0:7b:74:ba:3f:5a:76:08:3a:3c: 02:8d:b3:14:6f:7d:62:fa:88:50:ae:31:46:fc:9d: 9e:4f:68:00:45:f5:ec:8c:58:54:18:06:80:3a:d1: 21:ad:5d:35:17:92:ec:9d:1d:2e:12:5f:2f:80:0e: dc:1d:3a:da:74:a1:68:3f:f6:d2:49:3b:57:18:34: d5:7a:34:0d:a1:39:0a:eb:a7:bd:fc:30:0b:7a:a4: a8:94:29:d6:91:9e:f5:5f:cd:cc:f2:29:38:ba:c5: 48:a2:e9:e4:b2:45:01:26:5b:73:4d:79:52:eb:ef: f0:a6:64:ac:45:4e:d4:9c:a3:27:fb:b4:6a:a0:8e: c2:43:74:ca:2d:07:85:b3:d7:fd:19:82:48:95:71: d0:25:f4:f0:29:50:0b:b2:00:1d:2a:31:e3:ce:6b: 3f:b2:27:b4:a4:03:6a:79:cc:b3:0a:78:70:3d:77: 6c:9a:dd:4a:61:ba:89:7d:ce:19:b8:89:06:34:79: 89:06:3a:4e:1f:e2:8d:f3:8d:56:bc:31:80:50:35: db:b3:29:58:c4:d8:15:d0:a9:b3:19:fb:e6:83:55: bc:4b:e8:46:01:2e:ed:a9:31:20:35:b1:03:34:ad: c4:c5:2d:19:a3:16:19:f3:82:f9:de:cb:01:0f:c9: 46:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:85:2B:E6:A4:31:AA:A2:D5:4D:81:59:44:1A:49:68:4E:B2:0B:5F X509v3 Authority Key Identifier: keyid:BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/vIUr5qQxqqLVTYFZRBpJaE6yC18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.22.129.0/24 Signature Algorithm: sha256WithRSAEncryption 50:68:49:8a:46:05:5a:c4:6e:32:88:d4:b8:c0:6d:e1:53:43: 3c:82:18:f1:38:bc:78:c8:fd:0c:cf:33:31:21:35:44:d8:64: be:ee:f3:5a:2f:8d:83:09:ce:24:b1:9a:2a:47:c0:41:e2:4a: 5d:7d:e4:f2:78:a4:96:96:d9:fa:79:1c:43:b9:32:01:af:ee: 07:d8:c5:91:92:a9:e7:5d:ae:39:04:86:57:f9:7f:c8:e4:5c: 91:ba:21:f7:ae:97:25:b8:0e:9c:6a:cf:88:1c:10:90:46:6b: bc:31:56:13:50:07:9d:5b:90:8a:a2:14:17:92:1d:8d:11:65: 38:66:65:37:99:83:0a:3a:70:b8:66:89:e8:96:b4:9f:cd:a8: 50:82:fb:8c:2a:46:fe:96:cc:83:c7:1e:28:b9:d4:d6:8b:53: 0c:2f:5b:2d:96:05:ee:83:f3:d9:e1:86:c0:82:83:8f:2d:4f: d5:cb:79:45:17:c2:3e:4d:5f:ab:d6:85:92:d7:b7:1f:df:c3: 7f:41:0d:a3:42:66:25:e9:e8:04:9d:73:5d:f3:6d:7e:cd:c5: 8f:1c:a9:7a:a4:46:f6:a2:0e:c8:c2:d5:37:10:a9:9d:e6:70: 36:83:4d:6e:3d:17:a4:ed:06:11:2e:8b:90:35:da:57:0b:12: cf:5d:b9:f1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsxxslW2SdDzw//0G7JP6lBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNjdiZmY3YmFkMWViODM4NGI1ODVkZjdiZWYxMjA2Zjdm MTlmN2UwHhcNMjUxMjE4MTQwNDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzg1MmJlNmE0MzFhYWEyZDU0ZDgxNTk0NDFhNDk2ODRlYjIwYjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3nXovB7dLo/WnYIOjwCjbMUb31i +ohQrjFG/J2eT2gARfXsjFhUGAaAOtEhrV01F5LsnR0uEl8vgA7cHTradKFoP/bS STtXGDTVejQNoTkK66e9/DALeqSolCnWkZ71X83M8ik4usVIounkskUBJltzTXlS 6+/wpmSsRU7UnKMn+7RqoI7CQ3TKLQeFs9f9GYJIlXHQJfTwKVALsgAdKjHjzms/ sie0pANqecyzCnhwPXdsmt1KYbqJfc4ZuIkGNHmJBjpOH+KN841WvDGAUDXbsylY xNgV0KmzGfvmg1W8S+hGAS7tqTEgNbEDNK3ExS0ZoxYZ84L53ssBD8lGswIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLyFK+akMaqi1U2BWUQaSWhOsgtfMB8GA1UdIwQY MBaAFLpnv/e60euDhLWF33vvEgb38Z9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW1lXzk3clI2NE9FdFlYZmUtOFNCdmZ4bjM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi80YTI0NGQtNTFkMS00MTQzLWI2YWYt ZGE0NTM4MDIyYWM3LzEvdklVcjVxUXhxcUxWVFlGWlJCcEphRTZ5QzE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi80YTI0NGQtNTFkMS00MTQzLWI2YWYtZGE0NTM4MDIyYWM3 LzEvdW1lXzk3clI2NE9FdFlYZmUtOFNCdmZ4bjM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRaBMA0G CSqGSIb3DQEBCwUAA4IBAQBQaEmKRgVaxG4yiNS4wG3hU0M8ghjxOLx4yP0MzzMx ITVE2GS+7vNaL42DCc4ksZoqR8BB4kpdfeTyeKSWltn6eRxDuTIBr+4H2MWRkqnn Xa45BIZX+X/I5FyRuiH3rpcluA6cas+IHBCQRmu8MVYTUAedW5CKohQXkh2NEWU4 ZmU3mYMKOnC4ZonolrSfzahQgvuMKkb+lsyDxx4oudTWi1MML1stlgXug/PZ4YbA goOPLU/Vy3lFF8I+TV+r1oWS17cf38N/QQ2jQmYl6egEnXNd821+zcWPHKl6pEb2 og7IwtU3EKmd5nA2g01uPRek7QYRLouQNdpXCxLPXbnx -----END CERTIFICATE-----Generated at Sat Dec 20 12:46:45 2025 by rpki-client