This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/BFKw7-MX6eGQOqY5TssnirGAqBA.roa File: BFKw7-MX6eGQOqY5TssnirGAqBA.roa (raw, json) Hash identifier: bS60KLTdWaNaRicQcYXzs/obcsxKZL5GUEz81rYkH/0= Subject key identifier: 04:52:B0:EF:E3:17:E9:E1:90:3A:A6:39:4E:CB:27:8A:B1:80:A8:10 Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10 Certificate serial: 019B210773BF5571707A8B229922FB042D8E Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/BFKw7-MX6eGQOqY5TssnirGAqBA.roa Signing time: Mon 15 Dec 2025 08:01:35 +0000 ROA not before: Mon 15 Dec 2025 08:01:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9304 IP address blocks: 83.137.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 11:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:07:73:bf:55:71:70:7a:8b:22:99:22:fb:04:2d:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10 Validity Not Before: Dec 15 08:01:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=0452b0efe317e9e1903aa6394ecb278ab180a810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c2:d9:0d:cf:4d:7e:54:4d:51:ab:ea:f9:4e: 5e:be:3b:79:82:b0:72:be:5b:70:0d:e5:0f:fc:24: 34:23:07:84:91:13:89:18:84:88:ed:e5:d0:42:94: 50:40:a9:b4:e6:48:a2:0e:a2:9a:55:09:e5:80:66: 7d:54:f9:a6:74:7c:2d:bf:ab:1b:96:52:87:5d:2e: 59:ef:e5:94:22:e8:dd:cd:35:48:09:40:85:f1:c8: e0:19:f7:e0:0f:a5:a0:6e:e8:7b:d9:dc:bf:34:5c: 69:17:a9:18:ae:58:5f:93:c0:4c:c2:58:0f:0b:31: f5:5b:cb:d0:6a:8e:e9:5b:78:b1:64:e9:25:c2:2f: 5a:e0:2f:e8:44:e3:5c:03:f5:0b:fa:1b:82:c2:28: b1:0d:46:a0:69:2c:75:be:36:a3:00:89:c7:89:b6: 0b:45:42:d1:d3:3f:bc:11:3d:e9:6e:0d:89:f8:f1: 26:35:81:6d:5f:10:18:d9:e0:45:e1:7f:9b:d0:2a: 2c:6c:84:9e:7d:d7:20:55:92:9f:7b:29:fc:6b:3e: be:e4:7a:fc:a9:ec:10:a4:4c:6a:de:9f:78:f4:4f: 2e:a8:35:59:22:0d:a9:08:c4:b0:4a:db:88:2d:a2: a6:90:bc:00:fe:c5:19:df:7f:71:1b:8a:10:84:08: da:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:52:B0:EF:E3:17:E9:E1:90:3A:A6:39:4E:CB:27:8A:B1:80:A8:10 X509v3 Authority Key Identifier: keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/BFKw7-MX6eGQOqY5TssnirGAqBA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.137.153.0/24 Signature Algorithm: sha256WithRSAEncryption c0:fb:c8:62:7c:30:f7:3f:df:50:07:a8:f2:6f:eb:dc:1e:5d: b1:4d:78:38:9a:b1:7e:3a:9b:05:a6:df:3f:d5:8b:ce:1c:a9: 96:e3:52:bc:00:c1:02:02:67:ae:5d:74:07:98:f7:eb:f5:bb: 64:da:dc:7d:14:d5:d9:07:a0:bb:2f:cc:89:6d:74:f1:73:c4: d6:b9:45:c6:65:84:47:0a:0f:1b:8b:86:7f:4b:f4:41:c1:b0: bf:ab:2b:93:19:d3:43:32:8b:28:4b:b4:46:29:88:f8:ff:d8: 42:b1:c6:65:79:99:90:0c:2d:cc:88:56:44:3f:63:a4:74:ce: a0:20:56:f8:48:04:b5:bc:cb:1c:65:cf:6f:a4:61:60:c6:26: b3:97:98:a8:82:c8:4e:83:c0:46:60:56:af:f1:f6:d6:2f:19: 9f:f0:e3:c4:b1:ec:4f:70:11:7e:11:81:f5:f3:23:3f:c1:50: 3e:88:b7:7e:2e:b2:29:25:3e:25:04:54:3f:65:d9:8d:f2:43: 74:9a:36:1f:85:db:ce:de:fb:52:1d:9c:a0:c8:33:a8:2e:d9: 9d:76:35:61:10:70:3b:9f:b2:30:35:45:36:0b:2a:d4:12:ca: bf:3e:dc:48:19:18:fa:3b:d0:77:3e:ce:fa:da:86:51:94:71: 6f:dc:dd:b5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZshB3O/VXFweosimSL7BC2OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx MWRhMTAwHhcNMjUxMjE1MDgwMTM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNDUyYjBlZmUzMTdlOWUxOTAzYWE2Mzk0ZWNiMjc4YWIxODBhODEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8LZDc9NflRNUavq+U5evjt5grBy vltwDeUP/CQ0IweEkROJGISI7eXQQpRQQKm05kiiDqKaVQnlgGZ9VPmmdHwtv6sb llKHXS5Z7+WUIujdzTVICUCF8cjgGffgD6Wgbuh72dy/NFxpF6kYrlhfk8BMwlgP CzH1W8vQao7pW3ixZOklwi9a4C/oRONcA/UL+huCwiixDUagaSx1vjajAInHibYL RULR0z+8ET3pbg2J+PEmNYFtXxAY2eBF4X+b0CosbISefdcgVZKfeyn8az6+5Hr8 qewQpExq3p949E8uqDVZIg2pCMSwStuILaKmkLwA/sUZ339xG4oQhAjaOQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFARSsO/jF+nhkDqmOU7LJ4qxgKgQMB8GA1UdIwQY MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt N2U0ZDZmNmY2ZTY2LzEvQkZLdzctTVg2ZUdRT3FZNVRzc25pckdBcUJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2 LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU4mZMA0G CSqGSIb3DQEBCwUAA4IBAQDA+8hifDD3P99QB6jyb+vcHl2xTXg4mrF+OpsFpt8/ 1YvOHKmW41K8AMECAmeuXXQHmPfr9btk2tx9FNXZB6C7L8yJbXTxc8TWuUXGZYRH Cg8bi4Z/S/RBwbC/qyuTGdNDMosoS7RGKYj4/9hCscZleZmQDC3MiFZEP2OkdM6g IFb4SAS1vMscZc9vpGFgxiazl5iogshOg8BGYFav8fbWLxmf8OPEsexPcBF+EYH1 8yM/wVA+iLd+LrIpJT4lBFQ/ZdmN8kN0mjYfhdvO3vtSHZygyDOoLtmddjVhEHA7 n7IwNUU2CyrUEsq/PtxIGRj6O9B3Ps762oZRlHFv3N21 -----END CERTIFICATE-----Generated at Fri Dec 19 18:08:48 2025 by rpki-client