This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/JUaIAOE5fe_2YaiS9GPWQlkWfWQ.roa File: JUaIAOE5fe_2YaiS9GPWQlkWfWQ.roa (raw, json) Hash identifier: 5LqXZ/2aP/lD77xdqIqJt/J4eorvdu4vfms+oGIuMQU= Subject key identifier: 25:46:88:00:E1:39:7D:EF:F6:61:A8:92:F4:63:D6:42:59:16:7D:64 Certificate issuer: /CN=b607604501de3609768c5ba7c4cca9c56b61f9d5 Certificate serial: 019AFE4F6E04C82CAEBCF1CB2705A6E5DD14 Authority key identifier: B6:07:60:45:01:DE:36:09:76:8C:5B:A7:C4:CC:A9:C5:6B:61:F9:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgdgRQHeNgl2jFunxMypxWth-dU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/JUaIAOE5fe_2YaiS9GPWQlkWfWQ.roa Signing time: Mon 08 Dec 2025 14:13:29 +0000 ROA not before: Mon 08 Dec 2025 14:13:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198412 IP address blocks: 176.124.112.0/23 maxlen: 24 176.124.112.0/24 maxlen: 24 176.124.113.0/24 maxlen: 24 185.187.152.0/24 maxlen: 24 185.187.153.0/24 maxlen: 24 2a05:b0c0::/48 maxlen: 48 2a05:b0c1::/48 maxlen: 48 2a05:b0c4:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/tgdgRQHeNgl2jFunxMypxWth-dU.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/tgdgRQHeNgl2jFunxMypxWth-dU.mft rsync://rpki.ripe.net/repository/DEFAULT/tgdgRQHeNgl2jFunxMypxWth-dU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fe:4f:6e:04:c8:2c:ae:bc:f1:cb:27:05:a6:e5:dd:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b607604501de3609768c5ba7c4cca9c56b61f9d5 Validity Not Before: Dec 8 14:13:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=25468800e1397deff661a892f463d64259167d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4d:e2:7d:72:30:3e:7b:4c:27:c0:3d:33:6c: 63:6c:12:3a:3f:e5:45:90:ac:b1:07:9d:c7:25:96: ae:49:a8:07:69:ff:b5:46:d1:4c:e3:20:84:37:84: d4:b2:0e:c8:e6:63:b0:25:6c:87:56:38:f1:4e:57: 58:a8:77:49:42:89:cd:17:44:66:45:8a:75:43:a9: 22:f3:55:79:ad:6f:30:10:98:91:99:ff:40:cb:55: 5a:31:95:68:33:d7:ca:ef:78:6c:1d:c0:ea:55:ba: 21:6d:59:5c:aa:e4:43:1a:fc:47:86:22:62:2d:45: 94:70:ca:f9:da:da:8f:7b:55:53:3e:cc:df:0a:81: ec:71:4c:ae:f2:90:9b:2b:f1:77:63:f3:73:f5:86: 5c:5a:37:9e:7f:12:ce:5c:02:8e:a4:90:f9:49:af: 73:63:1e:91:11:53:86:a1:b8:47:ac:6d:4b:78:f1: 7b:fb:27:66:19:c5:5d:3f:43:bd:4a:63:f7:7a:29: ec:48:13:dc:fa:69:01:f4:4d:28:55:2f:1e:d1:4c: f9:dc:8b:a0:ef:79:70:59:df:7b:95:77:49:06:28: 39:39:c8:98:f2:9d:6f:48:56:45:3a:1e:54:61:ea: 29:2e:5a:e9:01:db:6c:21:eb:16:d7:89:ab:58:a8: 68:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:46:88:00:E1:39:7D:EF:F6:61:A8:92:F4:63:D6:42:59:16:7D:64 X509v3 Authority Key Identifier: keyid:B6:07:60:45:01:DE:36:09:76:8C:5B:A7:C4:CC:A9:C5:6B:61:F9:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgdgRQHeNgl2jFunxMypxWth-dU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/JUaIAOE5fe_2YaiS9GPWQlkWfWQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/tgdgRQHeNgl2jFunxMypxWth-dU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.124.112.0/23 185.187.152.0/23 IPv6: 2a05:b0c0::/48 2a05:b0c1::/48 2a05:b0c4:1::/48 Signature Algorithm: sha256WithRSAEncryption 9d:a3:4a:cf:6a:89:dc:e1:c9:0b:fd:96:e8:c9:e7:6c:19:fc: bc:e7:94:b3:ad:75:ee:c8:c5:ba:15:99:f8:c6:1d:ec:99:53: 67:96:46:a3:ca:e4:23:96:96:92:0b:34:f4:2d:65:7a:78:2f: 28:dc:ea:d4:df:d3:91:0f:a9:5f:e5:dc:28:35:d5:21:ef:95: b3:77:57:2a:da:a0:a2:88:46:07:4d:4e:57:66:3a:cd:3f:d3: f2:86:c8:06:f3:5f:70:d6:22:16:b7:2d:5a:c1:37:69:06:15: 2a:2d:2f:2c:53:c5:3d:c5:ac:dd:4c:3b:20:bb:f8:2b:8a:71: cb:7b:ff:de:f8:ac:0b:71:c6:f3:24:1d:61:69:d0:7f:b5:29: dd:39:cf:cb:48:ec:50:5f:47:2b:5b:34:6a:fe:c9:a5:43:17: 24:9b:07:2c:98:07:09:77:10:b4:8e:6c:17:3a:d0:9e:a0:ae: f5:dd:32:2f:79:e4:46:36:bf:3e:3f:6f:61:d2:10:b8:ed:09: fd:66:bd:5e:6e:3b:af:8a:49:45:6e:95:86:d7:ca:c4:cd:fc: 81:84:88:c1:08:58:d2:ce:8c:6d:ab:58:62:a5:87:d4:96:34: c3:40:f2:c6:32:ff:af:3f:02:9f:6f:23:77:a1:45:32:ca:66: ff:6b:ee:94 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZr+T24EyCyuvPHLJwWm5d0UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2MDc2MDQ1MDFkZTM2MDk3NjhjNWJhN2M0Y2NhOWM1NmI2 MWY5ZDUwHhcNMjUxMjA4MTQxMzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNTQ2ODgwMGUxMzk3ZGVmZjY2MWE4OTJmNDYzZDY0MjU5MTY3ZDY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArE3ifXIwPntMJ8A9M2xjbBI6P+VF kKyxB53HJZauSagHaf+1RtFM4yCEN4TUsg7I5mOwJWyHVjjxTldYqHdJQonNF0Rm RYp1Q6ki81V5rW8wEJiRmf9Ay1VaMZVoM9fK73hsHcDqVbohbVlcquRDGvxHhiJi LUWUcMr52tqPe1VTPszfCoHscUyu8pCbK/F3Y/Nz9YZcWjeefxLOXAKOpJD5Sa9z Yx6REVOGobhHrG1LePF7+ydmGcVdP0O9SmP3einsSBPc+mkB9E0oVS8e0Uz53Iug 73lwWd97lXdJBig5OciY8p1vSFZFOh5UYeopLlrpAdtsIesW14mrWKhoJQIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFCVGiADhOX3v9mGokvRj1kJZFn1kMB8GA1UdIwQY MBaAFLYHYEUB3jYJdoxbp8TMqcVrYfnVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGdkZ1JRSGVOZ2wyakZ1bnhNeXB4V3RoLWRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9kMGY2MTktYjJkMy00NDIyLWE2MTgt YjlkZDUxMDgyNjU1LzEvSlVhSUFPRTVmZV8yWWFpUzlHUFdRbGtXZldRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9kMGY2MTktYjJkMy00NDIyLWE2MTgtYjlkZDUxMDgyNjU1 LzEvdGdkZ1JRSGVOZ2wyakZ1bnhNeXB4V3RoLWRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzASBAIAATAMAwQBsHxwAwQB ubuYMCEEAgACMBsDBwAqBbDAAAADBwAqBbDBAAADBwAqBbDEAAEwDQYJKoZIhvcN AQELBQADggEBAJ2jSs9qidzhyQv9lujJ52wZ/LznlLOtde7IxboVmfjGHeyZU2eW RqPK5COWlpILNPQtZXp4Lyjc6tTf05EPqV/l3Cg11SHvlbN3VyraoKKIRgdNTldm Os0/0/KGyAbzX3DWIha3LVrBN2kGFSotLyxTxT3FrN1MOyC7+CuKcct7/974rAtx xvMkHWFp0H+1Kd05z8tI7FBfRytbNGr+yaVDFySbByyYBwl3ELSObBc60J6grvXd Mi955EY2vz4/b2HSELjtCf1mvV5uO6+KSUVulYbXysTN/IGEiMEIWNLOjG2rWGKl h9SWNMNA8sYy/68/Ap9vI3ehRTLKZv9r7pQ= -----END CERTIFICATE-----Generated at Sat Dec 20 16:13:51 2025 by rpki-client