This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/Aej3vuUOOh-hnVT2y79YY5m8mGY.roa File: Aej3vuUOOh-hnVT2y79YY5m8mGY.roa (raw, json) Hash identifier: fppWr1w65j8oBsq8Zfr0PlchmfA3JUP+aptwGmIlnY8= Subject key identifier: 01:E8:F7:BE:E5:0E:3A:1F:A1:9D:54:F6:CB:BF:58:63:99:BC:98:66 Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d Certificate serial: 019B03A650B644C552C609902C042B7DA15A Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/Aej3vuUOOh-hnVT2y79YY5m8mGY.roa Signing time: Tue 09 Dec 2025 15:06:29 +0000 ROA not before: Tue 09 Dec 2025 15:06:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 209372 IP address blocks: 89.185.76.0/24 maxlen: 24 89.185.79.0/24 maxlen: 24 92.240.196.0/24 maxlen: 24 92.240.198.0/24 maxlen: 24 92.240.199.0/24 maxlen: 24 92.240.204.0/24 maxlen: 24 92.240.206.0/23 maxlen: 24 92.240.215.0/24 maxlen: 24 92.240.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 03:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:03:a6:50:b6:44:c5:52:c6:09:90:2c:04:2b:7d:a1:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d Validity Not Before: Dec 9 15:06:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=01e8f7bee50e3a1fa19d54f6cbbf586399bc9866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:52:ca:b0:89:d5:89:89:1c:50:d7:73:a1:a2: f7:dd:e4:fa:31:07:c1:e7:95:bd:08:b8:27:cd:c4: 4c:7a:33:32:0b:64:2d:6c:36:15:d7:11:d8:11:9c: 42:be:51:30:93:f0:ca:a4:76:e8:bf:23:31:d5:8b: 32:ce:3b:ed:78:bb:c7:df:ab:c5:5a:df:b5:12:a6: a1:79:a9:cb:41:0e:74:47:67:27:21:19:76:f4:fd: c2:f5:9a:59:68:26:99:84:47:f1:61:d7:4c:83:31: 3f:97:f5:d5:5a:f5:66:39:f1:c9:8b:87:32:52:4f: 0a:db:65:98:a7:7f:7a:bf:d0:13:25:8e:6a:1b:49: 2b:f1:55:fa:4d:80:49:02:51:6b:b3:1a:cf:6a:32: 93:be:53:20:4d:95:ca:97:22:6f:3c:06:8e:71:db: b3:cf:9e:76:03:80:c0:b5:55:3e:24:6d:cf:09:95: 84:21:8d:2f:69:4c:fb:8d:97:14:39:4a:4f:47:9c: 76:03:61:85:d0:88:82:92:03:d6:e2:67:8c:38:cf: 91:00:53:08:81:b1:42:ea:7f:5f:05:c3:6a:f4:c9: bc:f7:fd:9d:45:42:e0:6d:4e:02:06:9e:47:5e:38: 8d:69:f5:8d:b1:22:a7:af:15:61:88:1a:43:b0:09: 4f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E8:F7:BE:E5:0E:3A:1F:A1:9D:54:F6:CB:BF:58:63:99:BC:98:66 X509v3 Authority Key Identifier: keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/Aej3vuUOOh-hnVT2y79YY5m8mGY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.185.76.0/24 89.185.79.0/24 92.240.196.0/24 92.240.198.0/23 92.240.204.0/24 92.240.206.0/23 92.240.215.0/24 92.240.217.0/24 Signature Algorithm: sha256WithRSAEncryption 61:b7:5e:36:87:62:71:d4:9e:93:0c:65:d9:65:24:64:6b:15: 08:8b:fa:f7:09:bf:16:ce:4b:ca:d9:3b:43:ba:bc:0a:38:03: d0:a1:65:d5:f3:a3:09:98:ef:f4:43:67:45:aa:38:5c:fc:ac: fd:f4:1c:d4:3e:ce:eb:b2:b9:93:1c:34:1f:94:b4:a9:36:f9: 48:6f:28:d5:ca:49:ab:6b:54:8b:52:f4:8c:46:07:5a:dc:43: cc:5e:f7:77:10:3f:ab:7f:cb:37:43:0f:77:30:f3:ee:75:a2: 1b:c7:40:5a:b4:2b:52:d2:45:88:32:3e:ae:94:02:db:f2:58: dd:cc:93:51:df:ee:78:f1:f6:7e:64:5b:6a:7c:ff:cc:ea:8a: 71:4e:5a:29:aa:dc:5f:49:78:ce:31:2e:b8:d2:54:32:f2:83: d6:6f:6a:98:49:f0:c2:cb:81:91:8a:c1:59:31:e1:09:f2:09: 7b:87:b2:c7:5f:33:da:3d:9a:20:77:e3:84:49:98:e6:1f:9e: 4b:db:e8:b8:45:5c:1f:a0:32:54:8c:2e:5a:8f:22:39:20:56: 04:11:5e:6b:9e:76:db:8d:e2:de:8c:fe:1f:3c:dd:a3:73:b7: 7a:ae:74:dc:c7:8a:b2:0b:fb:de:c7:92:79:8f:cf:b6:47:78: f9:76:a5:08 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZsDplC2RMVSxgmQLAQrfaFaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNTdjMmQ5ZDkzYWM3Y2Y5YjJmMTdjYWE3ODU5YjY5ODVi MzliOWQwHhcNMjUxMjA5MTUwNjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMWU4ZjdiZWU1MGUzYTFmYTE5ZDU0ZjZjYmJmNTg2Mzk5YmM5ODY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyFLKsInViYkcUNdzoaL33eT6MQfB 55W9CLgnzcRMejMyC2QtbDYV1xHYEZxCvlEwk/DKpHbovyMx1YsyzjvteLvH36vF Wt+1EqaheanLQQ50R2cnIRl29P3C9ZpZaCaZhEfxYddMgzE/l/XVWvVmOfHJi4cy Uk8K22WYp396v9ATJY5qG0kr8VX6TYBJAlFrsxrPajKTvlMgTZXKlyJvPAaOcduz z552A4DAtVU+JG3PCZWEIY0vaUz7jZcUOUpPR5x2A2GF0IiCkgPW4meMOM+RAFMI gbFC6n9fBcNq9Mm89/2dRULgbU4CBp5HXjiNafWNsSKnrxVhiBpDsAlPBQIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFAHo977lDjofoZ1U9su/WGOZvJhmMB8GA1UdIwQY MBaAFO9XwtnZOsfPmy8XyqeFm2mFs5udMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8xZTA0YjgtMTAzMS00M2Y5LTk2Njct OGU2Zjg3OGRiNWY0LzEvQWVqM3Z1VU9PaC1oblZUMnk3OVlZNW04bUdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8xZTA0YjgtMTAzMS00M2Y5LTk2NjctOGU2Zjg3OGRiNWY0 LzEvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAWblMAwQA WblPAwQAXPDEAwQBXPDGAwQAXPDMAwQBXPDOAwQAXPDXAwQAXPDZMA0GCSqGSIb3 DQEBCwUAA4IBAQBht142h2Jx1J6TDGXZZSRkaxUIi/r3Cb8WzkvK2TtDurwKOAPQ oWXV86MJmO/0Q2dFqjhc/Kz99BzUPs7rsrmTHDQflLSpNvlIbyjVykmra1SLUvSM Rgda3EPMXvd3ED+rf8s3Qw93MPPudaIbx0BatCtS0kWIMj6ulALb8ljdzJNR3+54 8fZ+ZFtqfP/M6opxTlopqtxfSXjOMS640lQy8oPWb2qYSfDCy4GRisFZMeEJ8gl7 h7LHXzPaPZogd+OESZjmH55L2+i4RVwfoDJUjC5ajyI5IFYEEV5rnnbbjeLejP4f PN2jc7d6rnTcx4qyC/vex5J5j8+2R3j5dqUI -----END CERTIFICATE-----Generated at Sat Dec 20 11:47:15 2025 by rpki-client