This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/UFFeHJ2B-RAhKeZ_nrZFkBvEasw.roa File: UFFeHJ2B-RAhKeZ_nrZFkBvEasw.roa (raw, json) Hash identifier: u2aLD80nejdc0K41bLKONy7hFTGwZbf2uT0JcNGa4LI= Subject key identifier: 50:51:5E:1C:9D:81:F9:10:21:29:E6:7F:9E:B6:45:90:1B:C4:6A:CC Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a Certificate serial: 019B0B931FB68EC32817E5C1A04467B0B0F0 Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/UFFeHJ2B-RAhKeZ_nrZFkBvEasw.roa Signing time: Thu 11 Dec 2025 04:02:29 +0000 ROA not before: Thu 11 Dec 2025 04:02:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 209372 IP address blocks: 85.28.32.0/20 maxlen: 24 85.28.32.0/23 maxlen: 23 85.28.32.0/24 maxlen: 24 85.28.33.0/24 maxlen: 24 85.28.34.0/24 maxlen: 24 85.28.35.0/24 maxlen: 24 85.28.36.0/22 maxlen: 22 85.28.40.0/23 maxlen: 23 85.28.42.0/24 maxlen: 24 85.28.43.0/24 maxlen: 24 85.28.44.0/23 maxlen: 23 85.28.48.0/20 maxlen: 24 85.28.48.0/22 maxlen: 22 85.28.52.0/23 maxlen: 23 85.28.54.0/23 maxlen: 23 85.28.56.0/24 maxlen: 24 85.28.57.0/24 maxlen: 24 85.28.58.0/24 maxlen: 24 85.28.59.0/24 maxlen: 24 85.28.60.0/22 maxlen: 22 85.28.60.0/24 maxlen: 24 85.28.62.0/24 maxlen: 24 109.238.192.0/20 maxlen: 24 109.238.192.0/22 maxlen: 24 109.238.200.0/24 maxlen: 24 109.238.203.0/24 maxlen: 24 109.238.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.mft rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 04:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0b:93:1f:b6:8e:c3:28:17:e5:c1:a0:44:67:b0:b0:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a Validity Not Before: Dec 11 04:02:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=50515e1c9d81f9102129e67f9eb645901bc46acc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c9:b9:b0:ee:fc:a4:3c:b4:83:85:58:0b:18: 45:70:d8:7a:2c:c0:6f:36:a9:a8:aa:55:5c:18:20: f3:e3:5d:8c:d0:2a:86:bb:6b:e1:c9:c4:1c:66:9b: 2f:6b:10:58:47:22:48:ba:7f:74:5f:56:35:69:d2: 47:87:6c:1c:51:7f:33:90:00:06:0a:1a:ad:b8:40: 33:69:6c:47:36:d5:dc:1c:b3:98:75:f6:97:dd:2d: ac:46:8e:63:7a:47:7f:de:47:51:c7:6a:65:b0:64: 01:04:c9:c0:9f:b4:57:8e:06:d8:1e:b4:73:b9:91: 12:60:25:c2:05:69:d9:3b:7a:3d:ad:21:57:b5:70: 6c:99:fa:7c:cf:e4:af:55:57:a6:ce:5b:f5:4f:c4: ed:44:15:e4:eb:11:a3:85:7a:f5:1a:67:7a:80:70: 73:10:7c:49:03:b1:ce:cd:4a:f0:90:db:3a:92:5f: 8f:0b:df:0a:ce:71:1f:13:0e:a3:ae:a4:9c:cb:ca: 09:02:4b:01:bf:05:51:b6:a7:bc:5b:88:29:05:79: de:b3:36:d9:22:eb:f0:0c:db:5f:c7:1e:7f:be:08: a8:88:b8:bd:ef:e5:65:1d:2e:5c:1f:e1:07:4a:60: b4:78:d1:65:22:df:50:42:34:af:3d:0f:00:d0:32: c3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:51:5E:1C:9D:81:F9:10:21:29:E6:7F:9E:B6:45:90:1B:C4:6A:CC X509v3 Authority Key Identifier: keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/UFFeHJ2B-RAhKeZ_nrZFkBvEasw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.28.32.0/19 109.238.192.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:c3:65:87:eb:f8:3a:70:a9:77:37:0d:a1:44:2c:29:0d:71: a8:d0:10:85:7b:d6:05:85:f1:f1:b1:06:06:6e:1a:f4:ab:9c: 2e:4c:1a:e4:0b:16:45:f6:a2:57:90:28:64:5b:7f:50:ea:d8: 45:e6:56:63:94:0b:ac:2a:d5:53:3e:9d:8f:0d:23:2b:8b:06: 50:ff:59:47:87:54:1c:9c:a8:de:54:0c:ad:32:88:fc:a1:b1: 6d:98:b3:75:8c:d3:c4:ed:2c:ce:92:58:cb:25:a5:96:4b:5b: c4:eb:bc:5c:57:ac:96:08:22:b9:8d:61:52:df:09:45:87:bc: 57:de:04:1a:8c:49:51:6f:ee:e3:2d:56:e9:27:e7:93:7d:87: 51:04:02:a5:ff:8f:f5:2b:fd:b1:a2:e0:99:f7:70:5c:fc:bb: 98:60:99:d1:bc:98:e8:d3:6c:11:6a:83:cf:b7:5b:c6:b0:00: 50:30:27:05:63:62:09:b9:5a:a0:21:18:8a:b1:89:f1:16:f5: 8b:40:ef:e1:ef:68:eb:1f:32:b6:be:92:f4:73:a3:9b:b4:4f: 3e:d5:19:1b:28:0f:8c:94:00:f7:c4:74:f5:6d:01:c0:59:44: fb:a3:3b:fc:4e:46:60:96:13:45:11:81:c6:38:63:1c:b0:42: 72:ec:68:cd -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZsLkx+2jsMoF+XBoERnsLDwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZjM0NGE2M2RjYjcwZTg5MDU3ZGViOGUyNzYxZGM0NTE2 NTg4MWEwHhcNMjUxMjExMDQwMjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MDUxNWUxYzlkODFmOTEwMjEyOWU2N2Y5ZWI2NDU5MDFiYzQ2YWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycm5sO78pDy0g4VYCxhFcNh6LMBv NqmoqlVcGCDz412M0CqGu2vhycQcZpsvaxBYRyJIun90X1Y1adJHh2wcUX8zkAAG ChqtuEAzaWxHNtXcHLOYdfaX3S2sRo5jekd/3kdRx2plsGQBBMnAn7RXjgbYHrRz uZESYCXCBWnZO3o9rSFXtXBsmfp8z+SvVVemzlv1T8TtRBXk6xGjhXr1Gmd6gHBz EHxJA7HOzUrwkNs6kl+PC98KznEfEw6jrqScy8oJAksBvwVRtqe8W4gpBXneszbZ IuvwDNtfxx5/vgioiLi97+VlHS5cH+EHSmC0eNFlIt9QQjSvPQ8A0DLDbQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFBRXhydgfkQISnmf562RZAbxGrMMB8GA1UdIwQY MBaAFCLzRKY9y3DokFfeuOJ2HcRRZYgaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXZORXBqM0xjT2lRVjk2NDRuWWR4RkZsaUJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi81MzYwZTctZjAyYS00NzM3LTk5Yzct ZmViYjY0YjVlMTY0LzEvVUZGZUhKMkItUkFoS2VaX25yWkZrQnZFYXN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi81MzYwZTctZjAyYS00NzM3LTk5YzctZmViYjY0YjVlMTY0 LzEvSXZORXBqM0xjT2lRVjk2NDRuWWR4RkZsaUJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFVRwgAwQE be7AMA0GCSqGSIb3DQEBCwUAA4IBAQB+w2WH6/g6cKl3Nw2hRCwpDXGo0BCFe9YF hfHxsQYGbhr0q5wuTBrkCxZF9qJXkChkW39Q6thF5lZjlAusKtVTPp2PDSMriwZQ /1lHh1QcnKjeVAytMoj8obFtmLN1jNPE7SzOkljLJaWWS1vE67xcV6yWCCK5jWFS 3wlFh7xX3gQajElRb+7jLVbpJ+eTfYdRBAKl/4/1K/2xouCZ93Bc/LuYYJnRvJjo 02wRaoPPt1vGsABQMCcFY2IJuVqgIRiKsYnxFvWLQO/h72jrHzK2vpL0c6ObtE8+ 1RkbKA+MlAD3xHT1bQHAWUT7ozv8TkZglhNFEYHGOGMcsEJy7GjN -----END CERTIFICATE-----Generated at Sat Dec 20 11:47:20 2025 by rpki-client