This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/fgixHbZKg25jUYMjY4avGf_2zgc.roa File: fgixHbZKg25jUYMjY4avGf_2zgc.roa (raw, json) Hash identifier: a1WxWLaFd4etV2MRrIUVy/vhRQGZaTvT5ScFogrxkhA= Subject key identifier: 7E:08:B1:1D:B6:4A:83:6E:63:51:83:23:63:86:AF:19:FF:F6:CE:07 Certificate issuer: /CN=051f29462e7a7da7eb5f45da7873f14e403fe3ab Certificate serial: 019A91FD2478DF9323F846DAE31B0B9DEB5B Authority key identifier: 05:1F:29:46:2E:7A:7D:A7:EB:5F:45:DA:78:73:F1:4E:40:3F:E3:AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BR8pRi56fafrX0XaeHPxTkA_46s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/fgixHbZKg25jUYMjY4avGf_2zgc.roa Signing time: Mon 17 Nov 2025 13:24:37 +0000 ROA not before: Mon 17 Nov 2025 13:24:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 214639 IP address blocks: 188.209.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/BR8pRi56fafrX0XaeHPxTkA_46s.crl rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/BR8pRi56fafrX0XaeHPxTkA_46s.mft rsync://rpki.ripe.net/repository/DEFAULT/BR8pRi56fafrX0XaeHPxTkA_46s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 08:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:91:fd:24:78:df:93:23:f8:46:da:e3:1b:0b:9d:eb:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=051f29462e7a7da7eb5f45da7873f14e403fe3ab Validity Not Before: Nov 17 13:24:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=7e08b11db64a836e635183236386af19fff6ce07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8d:ed:fa:4c:2d:90:f7:dc:f3:10:f9:e6:13: 9a:51:17:24:f9:0a:0f:10:59:0f:01:71:cc:5d:29: 8d:4e:7f:01:67:06:e1:e6:e8:03:8a:6f:cb:9f:4f: cc:77:62:58:c4:86:1c:00:ee:91:aa:7d:87:d3:29: 32:8a:e6:d9:08:20:ac:bc:e6:98:fc:05:7c:8a:88: dc:03:06:53:0a:50:2e:c5:8e:58:6f:3e:3a:95:94: ae:e9:9d:d2:a6:78:af:23:1d:22:21:8f:fb:1a:8d: 82:f5:69:a4:d8:7a:4a:4a:da:65:c6:af:69:9a:e6: bf:3e:4c:bd:3d:eb:bc:8b:74:0b:0d:25:04:e7:9a: e0:66:07:7e:84:74:68:66:2a:a2:a5:0c:39:cd:9f: 7b:00:53:2a:af:d8:9e:36:7e:f4:df:2e:76:55:d5: 65:54:9d:88:75:cc:14:43:0e:4e:fa:1b:e2:f6:2a: a5:ae:71:15:ce:d1:ed:6c:50:ad:01:39:61:fb:c9: 34:30:bf:44:67:c6:7b:be:bf:f6:7d:05:52:05:ea: 42:5f:7d:cc:08:ba:6c:89:f1:37:df:f3:a0:e6:e7: 96:8a:3b:55:64:6e:b4:a7:18:4c:23:3b:de:20:a6: a1:f9:b5:a5:f3:b7:25:66:6d:fb:96:94:c6:0e:83: b0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:08:B1:1D:B6:4A:83:6E:63:51:83:23:63:86:AF:19:FF:F6:CE:07 X509v3 Authority Key Identifier: keyid:05:1F:29:46:2E:7A:7D:A7:EB:5F:45:DA:78:73:F1:4E:40:3F:E3:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BR8pRi56fafrX0XaeHPxTkA_46s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/fgixHbZKg25jUYMjY4avGf_2zgc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/BR8pRi56fafrX0XaeHPxTkA_46s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.209.129.0/24 Signature Algorithm: sha256WithRSAEncryption 27:4a:b2:45:b0:21:3a:88:22:eb:71:75:00:59:47:d5:f8:2b: e6:93:21:28:0e:34:29:02:ae:df:71:12:21:73:8e:45:d6:b7: d5:e7:fb:22:0e:c6:a8:89:45:0c:c5:03:87:72:c4:65:5b:55: a3:94:05:d6:d9:fc:74:dd:5b:3e:0f:90:65:32:20:d5:cb:66: 05:23:f7:55:8b:00:9a:70:8d:be:c6:a0:c2:cc:76:7a:91:51: 9e:e1:4b:56:f0:a1:b7:78:10:4f:8e:3c:60:ae:e0:05:3c:79: 41:fc:42:e9:6b:dc:d1:67:a4:1c:95:65:d4:45:f8:2b:8b:23: 74:4a:3c:e5:e2:71:43:8a:a3:fa:c7:91:76:dd:a5:fc:46:c7: 2a:93:74:7d:2b:86:76:ee:b5:35:c3:45:1c:d1:06:25:7b:47: 88:f5:67:30:eb:81:33:98:4b:0f:b0:e2:01:17:61:18:3a:e0: aa:74:67:f5:44:e8:88:66:4a:d1:f5:ba:59:22:b3:8a:fa:58: 30:9e:6e:10:67:5a:9e:3e:28:f9:87:b2:f6:5a:b8:3f:58:09: d3:c4:47:f5:51:3b:87:d2:31:dc:95:72:c0:ac:55:50:d6:18: 4d:5b:d5:c2:6b:ba:97:40:42:15:e8:bf:0e:38:d6:40:54:ce: e9:5d:6b:b8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZqR/SR435Mj+Eba4xsLnetbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MWYyOTQ2MmU3YTdkYTdlYjVmNDVkYTc4NzNmMTRlNDAz ZmUzYWIwHhcNMjUxMTE3MTMyNDM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTA4YjExZGI2NGE4MzZlNjM1MTgzMjM2Mzg2YWYxOWZmZjZjZTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAso3t+kwtkPfc8xD55hOaURck+QoP EFkPAXHMXSmNTn8BZwbh5ugDim/Ln0/Md2JYxIYcAO6Rqn2H0ykyiubZCCCsvOaY /AV8iojcAwZTClAuxY5Ybz46lZSu6Z3SpnivIx0iIY/7Go2C9Wmk2HpKStplxq9p mua/Pky9Peu8i3QLDSUE55rgZgd+hHRoZiqipQw5zZ97AFMqr9ieNn703y52VdVl VJ2IdcwUQw5O+hvi9iqlrnEVztHtbFCtATlh+8k0ML9EZ8Z7vr/2fQVSBepCX33M CLpsifE33/Og5ueWijtVZG60pxhMIzveIKah+bWl87clZm37lpTGDoOwfwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFH4IsR22SoNuY1GDI2OGrxn/9s4HMB8GA1UdIwQY MBaAFAUfKUYuen2n619F2nhz8U5AP+OrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlI4cFJpNTZmYWZyWDBYYWVIUHhUa0FfNDZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8zOTUzMjgtZjQ2MS00NGI3LWIwMzEt M2Y4YjU1ZGExYWM0LzEvZmdpeEhiWktnMjVqVVlNalk0YXZHZl8yemdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8zOTUzMjgtZjQ2MS00NGI3LWIwMzEtM2Y4YjU1ZGExYWM0 LzEvQlI4cFJpNTZmYWZyWDBYYWVIUHhUa0FfNDZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNGBMA0G CSqGSIb3DQEBCwUAA4IBAQAnSrJFsCE6iCLrcXUAWUfV+CvmkyEoDjQpAq7fcRIh c45F1rfV5/siDsaoiUUMxQOHcsRlW1WjlAXW2fx03Vs+D5BlMiDVy2YFI/dViwCa cI2+xqDCzHZ6kVGe4UtW8KG3eBBPjjxgruAFPHlB/ELpa9zRZ6QclWXURfgriyN0 Sjzl4nFDiqP6x5F23aX8Rscqk3R9K4Z27rU1w0Uc0QYle0eI9Wcw64EzmEsPsOIB F2EYOuCqdGf1ROiIZkrR9bpZIrOK+lgwnm4QZ1qePij5h7L2Wrg/WAnTxEf1UTuH 0jHclXLArFVQ1hhNW9XCa7qXQEIV6L8OONZAVM7pXWu4 -----END CERTIFICATE-----Generated at Fri Dec 5 17:53:27 2025 by rpki-client