This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/g9NVZg8aMVhtlAD-Fq2e-nYcdHk.roa File: g9NVZg8aMVhtlAD-Fq2e-nYcdHk.roa (raw, json) Hash identifier: U8bIigSRBxhq2fwqfiWyy02y9ECEyGXLGL9Wm0jOW50= Subject key identifier: 83:D3:55:66:0F:1A:31:58:6D:94:00:FE:16:AD:9E:FA:76:1C:74:79 Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Certificate serial: 019B0291D92E84B2157B8007D7D044B893F0 Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/g9NVZg8aMVhtlAD-Fq2e-nYcdHk.roa Signing time: Tue 09 Dec 2025 10:04:31 +0000 ROA not before: Tue 09 Dec 2025 10:04:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 61317 IP address blocks: 82.153.34.0/24 maxlen: 24 82.153.37.0/24 maxlen: 24 82.153.132.0/24 maxlen: 24 109.176.247.0/24 maxlen: 24 109.176.251.0/24 maxlen: 24 213.210.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:02:91:d9:2e:84:b2:15:7b:80:07:d7:d0:44:b8:93:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Validity Not Before: Dec 9 10:04:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=83d355660f1a31586d9400fe16ad9efa761c7479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:89:78:ec:68:44:30:9a:7c:2b:51:0d:66:14: 59:2f:9f:cb:00:db:da:40:10:c7:93:78:2e:bf:c1: 14:ac:72:d0:e8:b1:35:d8:29:5b:90:3f:a3:85:ad: 77:3e:fe:92:d7:16:95:75:ff:73:4e:ce:d6:b5:d2: 82:a0:b6:cd:16:ab:dd:cd:46:3d:dd:df:f7:d3:21: 9c:29:c0:d4:f2:fc:6d:77:42:f1:ed:17:0d:d1:c6: 6a:fd:b7:35:e9:7b:5f:cb:7c:21:d3:42:88:4a:d8: 62:2c:d8:ee:4b:80:80:10:22:8c:f3:46:92:09:8e: fc:e8:94:c4:d9:67:89:c8:16:b3:8f:42:da:1c:da: 6c:dd:35:34:31:42:3f:82:e5:20:1a:d6:18:79:6b: 84:1d:f1:3b:7b:70:1c:29:3e:94:30:7b:5f:cd:e2: f8:13:0d:b3:c2:fd:1b:0b:7e:d7:41:32:ef:75:4b: 1b:cc:c6:11:29:46:02:d2:77:e4:eb:7a:79:5d:5c: 49:93:a1:cf:55:e5:4a:fd:a8:22:5e:b5:77:c9:6d: 4c:b8:e9:72:44:ae:cc:be:94:05:00:06:22:cc:36: 46:48:c2:ad:ad:42:37:a5:b4:14:19:af:94:0d:f5: 16:fb:af:4e:b0:8f:4f:67:ff:4a:27:ea:d7:77:b5: 28:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D3:55:66:0F:1A:31:58:6D:94:00:FE:16:AD:9E:FA:76:1C:74:79 X509v3 Authority Key Identifier: keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/g9NVZg8aMVhtlAD-Fq2e-nYcdHk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.153.34.0/24 82.153.37.0/24 82.153.132.0/24 109.176.247.0/24 109.176.251.0/24 213.210.62.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:66:31:a8:18:75:ab:bd:86:0d:6b:d5:27:c2:9c:2a:76:77: 80:c4:0a:9d:24:23:41:90:52:54:b4:8a:be:2c:21:b1:a6:38: ed:45:34:24:9f:cd:b9:07:f3:a8:b5:09:f2:86:6e:0b:c5:25: 49:b7:d2:c1:33:6a:0e:16:cc:80:0d:55:9c:97:3c:14:f8:c1: e6:52:e7:59:6d:f2:aa:da:b1:5e:18:02:bf:3a:93:07:8c:e2: 5d:56:c2:c6:fa:45:cd:55:e8:61:17:cc:dd:87:eb:d5:e0:1c: 84:a0:e4:67:80:eb:b1:3f:91:9d:d5:5d:ca:e6:3d:32:da:25: a4:89:71:ab:b8:d4:d2:9b:73:94:c6:4c:f2:5b:01:93:51:c2: 52:c1:da:d1:ce:10:9d:87:10:8e:26:18:c4:bb:33:7c:f3:1f: 35:0e:7e:14:44:bb:bc:e9:95:2d:30:48:50:8a:f0:38:f8:9d: 7a:65:48:f9:64:14:c3:c7:ca:2a:e7:2f:5d:a0:00:93:33:04: b9:14:c4:33:6c:2f:b6:4b:33:ea:47:06:80:d6:b0:c9:eb:67: b5:f9:89:35:97:52:b1:a1:a4:32:81:5a:1a:12:76:98:53:26: d1:c3:79:31:ae:12:2c:2d:13:0b:7e:4a:6f:c7:d7:11:51:e8: 20:32:c7:bc -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZsCkdkuhLIVe4AH19BEuJPwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh NTNiOWIwHhcNMjUxMjA5MTAwNDMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4M2QzNTU2NjBmMWEzMTU4NmQ5NDAwZmUxNmFkOWVmYTc2MWM3NDc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtol47GhEMJp8K1ENZhRZL5/LANva QBDHk3guv8EUrHLQ6LE12ClbkD+jha13Pv6S1xaVdf9zTs7WtdKCoLbNFqvdzUY9 3d/30yGcKcDU8vxtd0Lx7RcN0cZq/bc16Xtfy3wh00KISthiLNjuS4CAECKM80aS CY786JTE2WeJyBazj0LaHNps3TU0MUI/guUgGtYYeWuEHfE7e3AcKT6UMHtfzeL4 Ew2zwv0bC37XQTLvdUsbzMYRKUYC0nfk63p5XVxJk6HPVeVK/agiXrV3yW1MuOly RK7MvpQFAAYizDZGSMKtrUI3pbQUGa+UDfUW+69OsI9PZ/9KJ+rXd7UoRwIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFIPTVWYPGjFYbZQA/hatnvp2HHR5MB8GA1UdIwQY MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt NDEyMjhlMzlmZjdjLzEvZzlOVlpnOGFNVmh0bEFELUZxMmUtblljZEhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAUpkiAwQA UpklAwQAUpmEAwQAbbD3AwQAbbD7AwQA1dI+MA0GCSqGSIb3DQEBCwUAA4IBAQBa ZjGoGHWrvYYNa9UnwpwqdneAxAqdJCNBkFJUtIq+LCGxpjjtRTQkn825B/OotQny hm4LxSVJt9LBM2oOFsyADVWclzwU+MHmUudZbfKq2rFeGAK/OpMHjOJdVsLG+kXN VehhF8zdh+vV4ByEoORngOuxP5Gd1V3K5j0y2iWkiXGruNTSm3OUxkzyWwGTUcJS wdrRzhCdhxCOJhjEuzN88x81Dn4URLu86ZUtMEhQivA4+J16ZUj5ZBTDx8oq5y9d oACTMwS5FMQzbC+2SzPqRwaA1rDJ62e1+Yk1l1KxoaQygVoaEnaYUybRw3kxrhIs LRMLfkpvx9cRUeggMse8 -----END CERTIFICATE-----Generated at Sat Dec 20 01:12:23 2025 by rpki-client