This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/cJbkM7B9GFqgtDKcAolXNPLKhXs.roa File: cJbkM7B9GFqgtDKcAolXNPLKhXs.roa (raw, json) Hash identifier: ZKA9hNlkKHWoDRDAQGIg3RbHOXD8ouOvnw216TDBz+E= Subject key identifier: 70:96:E4:33:B0:7D:18:5A:A0:B4:32:9C:02:89:57:34:F2:CA:85:7B Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b Certificate serial: 019B0C30987B3885F1607043AF1731098C8D Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/cJbkM7B9GFqgtDKcAolXNPLKhXs.roa Signing time: Thu 11 Dec 2025 06:54:29 +0000 ROA not before: Thu 11 Dec 2025 06:54:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 213541 IP address blocks: 89.19.56.0/24 maxlen: 24 89.19.57.0/24 maxlen: 24 89.19.58.0/24 maxlen: 24 89.19.59.0/24 maxlen: 24 185.59.232.0/22 maxlen: 24 185.68.245.0/24 maxlen: 24 185.81.146.0/24 maxlen: 24 185.81.147.0/24 maxlen: 24 185.81.174.0/24 maxlen: 24 185.81.184.0/23 maxlen: 23 185.81.186.0/23 maxlen: 23 185.89.104.0/22 maxlen: 22 185.89.108.0/22 maxlen: 22 185.95.100.0/23 maxlen: 24 185.95.102.0/23 maxlen: 24 185.96.81.0/24 maxlen: 24 185.96.82.0/24 maxlen: 24 185.96.83.0/24 maxlen: 24 185.96.132.0/24 maxlen: 24 185.96.134.0/23 maxlen: 24 185.97.0.0/22 maxlen: 24 185.98.43.0/24 maxlen: 24 185.101.203.0/24 maxlen: 24 185.104.151.0/24 maxlen: 24 185.112.56.0/23 maxlen: 24 185.175.224.0/23 maxlen: 24 185.175.226.0/23 maxlen: 24 213.170.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.mft rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 23:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0c:30:98:7b:38:85:f1:60:70:43:af:17:31:09:8c:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b Validity Not Before: Dec 11 06:54:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=7096e433b07d185aa0b4329c02895734f2ca857b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:48:d5:4f:92:e0:21:08:d0:ad:ad:5b:dd:64: 6e:29:33:48:8f:dc:cf:2a:4e:78:6a:3d:6a:4d:39: 45:86:b5:72:b6:f0:89:c7:3e:5d:cd:8f:a5:37:a0: d5:37:1d:d1:0a:31:30:45:c8:d7:d9:e6:c7:69:6f: 09:ab:77:cf:47:42:2e:c4:d6:ea:03:b5:30:29:08: 77:28:89:92:7b:cd:c1:4b:02:7a:91:69:c2:df:5b: d2:c8:57:2b:a0:4d:69:f2:7d:41:c2:33:65:b3:d2: 15:ed:66:9d:94:58:87:46:53:90:b8:33:f8:aa:f8: a7:40:d7:8a:8c:5b:80:a7:7a:23:f0:fd:99:ff:e4: 70:c9:d3:2c:b5:75:d6:b5:b7:18:ac:55:52:6c:10: 06:a3:6b:bf:98:21:12:a9:1e:1e:73:c5:a3:d5:ca: 46:79:70:ed:61:37:e9:c3:7c:ac:8f:29:36:c8:49: d0:9c:56:b0:e4:13:da:d6:9f:c1:8a:69:8b:8e:bb: 21:d1:20:e5:c5:da:8d:28:04:0b:fc:fe:be:cd:b8: ac:da:23:02:b6:59:23:95:75:25:14:4a:b2:8a:ea: fe:99:31:3b:0c:12:86:ac:e0:89:76:8e:08:26:dd: 02:82:fd:ad:6e:2b:9c:b2:15:42:80:6f:fb:c5:6a: 31:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:96:E4:33:B0:7D:18:5A:A0:B4:32:9C:02:89:57:34:F2:CA:85:7B X509v3 Authority Key Identifier: keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/cJbkM7B9GFqgtDKcAolXNPLKhXs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.19.56.0/22 185.59.232.0/22 185.68.245.0/24 185.81.146.0/23 185.81.174.0/24 185.81.184.0/22 185.89.104.0/21 185.95.100.0/22 185.96.81.0-185.96.83.255 185.96.132.0/24 185.96.134.0/23 185.97.0.0/22 185.98.43.0/24 185.101.203.0/24 185.104.151.0/24 185.112.56.0/23 185.175.224.0/22 213.170.223.0/24 Signature Algorithm: sha256WithRSAEncryption 88:96:9a:77:c0:e4:7c:23:67:0f:0c:0b:0e:1c:f8:df:7f:37: a5:cd:2e:d5:b9:fb:62:dc:67:9e:46:09:70:78:85:52:04:8f: 81:31:57:68:fd:61:0b:83:a5:b3:bd:5b:35:d0:61:96:60:de: a3:a9:b4:b8:8e:15:d4:d9:45:5e:63:22:e4:02:01:45:8d:6f: bd:29:93:29:2e:c2:e9:d4:ca:cc:37:9d:7b:c0:a3:ba:1b:20: 61:46:62:fc:62:aa:d0:50:9e:0d:90:e4:58:74:6c:e9:55:32: 50:99:83:39:cb:93:a7:4c:a6:67:56:75:38:a4:93:6c:60:fb: ca:3b:72:13:bd:ea:de:48:43:16:4a:6c:55:2f:31:01:6b:3f: 2e:4b:98:9d:99:42:45:97:70:e1:7e:10:66:f9:4e:97:b5:9a: 35:48:a4:da:2a:af:75:05:b7:4b:d0:d2:61:97:cd:5a:84:52: 5b:86:73:08:a2:98:7f:1c:c8:d5:f4:d0:eb:f6:98:df:09:14: 66:8e:f9:a5:0e:bf:95:88:0e:13:4c:05:40:49:cf:d4:fc:c9: 9d:f0:a2:14:5f:cd:2d:31:cc:51:78:22:f1:fd:0d:9d:c1:d1: 46:dd:d8:88:0d:0e:19:cd:7a:0a:c5:bc:b3:64:bb:e6:af:36: 71:e1:1a:86 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgISAZsMMJh7OIXxYHBDrxcxCYyNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4 OWU4NWIwHhcNMjUxMjExMDY1NDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDk2ZTQzM2IwN2QxODVhYTBiNDMyOWMwMjg5NTczNGYyY2E4NTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEjVT5LgIQjQra1b3WRuKTNIj9zP Kk54aj1qTTlFhrVytvCJxz5dzY+lN6DVNx3RCjEwRcjX2ebHaW8Jq3fPR0IuxNbq A7UwKQh3KImSe83BSwJ6kWnC31vSyFcroE1p8n1BwjNls9IV7WadlFiHRlOQuDP4 qvinQNeKjFuAp3oj8P2Z/+RwydMstXXWtbcYrFVSbBAGo2u/mCESqR4ec8Wj1cpG eXDtYTfpw3ysjyk2yEnQnFaw5BPa1p/BimmLjrsh0SDlxdqNKAQL/P6+zbis2iMC tlkjlXUlFEqyiur+mTE7DBKGrOCJdo4IJt0Cgv2tbiucshVCgG/7xWoxDQIDAQAB o4ICeDCCAnQwHQYDVR0OBBYEFHCW5DOwfRhaoLQynAKJVzTyyoV7MB8GA1UdIwQY MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt NmVlNTM0ZDkyZTUyLzEvY0pia003QjlHRnFndERLY0FvbFhOUExLaFhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGNBggrBgEFBQcBBwEB/wR+MHwwegQCAAEwdAMEAlkTOAME Ark76AMEALlE9QMEAblRkgMEALlRrgMEArlRuAMEA7lZaAMEArlfZDAMAwQAuWBR AwQCuWBQAwQAuWCEAwQBuWCGAwQCuWEAAwQAuWIrAwQAuWXLAwQAuWiXAwQBuXA4 AwQCua/gAwQA1arfMA0GCSqGSIb3DQEBCwUAA4IBAQCIlpp3wOR8I2cPDAsOHPjf fzelzS7Vufti3GeeRglweIVSBI+BMVdo/WELg6WzvVs10GGWYN6jqbS4jhXU2UVe YyLkAgFFjW+9KZMpLsLp1MrMN517wKO6GyBhRmL8YqrQUJ4NkORYdGzpVTJQmYM5 y5OnTKZnVnU4pJNsYPvKO3ITvereSEMWSmxVLzEBaz8uS5idmUJFl3DhfhBm+U6X tZo1SKTaKq91BbdL0NJhl81ahFJbhnMIoph/HMjV9NDr9pjfCRRmjvmlDr+ViA4T TAVASc/U/Mmd8KIUX80tMcxReCLx/Q2dwdFG3diIDQ4ZzXoKxbyzZLvmrzZx4RqG -----END CERTIFICATE-----Generated at Sat Dec 20 05:09:27 2025 by rpki-client