This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/skB4egbM7u7r86GQ4gobtzP81aY.roa File: skB4egbM7u7r86GQ4gobtzP81aY.roa (raw, json) Hash identifier: ZN5QoZ1Z/xaovGfuEq8TXCil2/F2l9H4YG9aIDk2RjU= Subject key identifier: B2:40:78:7A:06:CC:EE:EE:EB:F3:A1:90:E2:0A:1B:B7:33:FC:D5:A6 Certificate issuer: /CN=374e2729b17369890a1512f643cd08e4ba2ff414 Certificate serial: 019AA2502FC18CE098D712530B962A7892FA Authority key identifier: 37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/skB4egbM7u7r86GQ4gobtzP81aY.roa Signing time: Thu 20 Nov 2025 17:29:15 +0000 ROA not before: Thu 20 Nov 2025 17:29:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 209372 IP address blocks: 185.239.136.0/22 maxlen: 24 185.240.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.crl rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.mft rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 09:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a2:50:2f:c1:8c:e0:98:d7:12:53:0b:96:2a:78:92:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=374e2729b17369890a1512f643cd08e4ba2ff414 Validity Not Before: Nov 20 17:29:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=b240787a06cceeeeebf3a190e20a1bb733fcd5a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:35:6a:f4:69:52:90:2f:41:a1:31:44:f8:b1: c4:55:ef:16:99:af:b0:e5:0c:4d:46:f0:30:a5:7e: d5:b6:15:f2:11:d9:1f:c3:bb:e4:2d:43:92:0a:91: 61:d2:cd:f3:78:2c:07:a9:4b:54:39:65:11:e4:af: 03:8e:2f:7b:9d:b5:84:e5:da:42:41:4a:f3:b3:9b: e6:71:bf:00:f1:e8:ed:cf:98:e4:b6:f0:eb:8e:4c: e2:2a:b0:63:34:c9:4b:5d:5f:de:fc:e5:cf:89:7e: 82:86:e0:90:d5:e6:e7:d0:37:5b:60:d9:db:05:0c: 37:66:ff:2c:ea:81:e1:e2:52:fa:37:b8:cd:d2:e2: c1:a4:8a:4a:50:b6:d1:65:09:4b:e6:b2:aa:18:a7: 89:aa:dd:4c:89:e1:ce:ba:61:34:89:db:8d:d2:7a: ab:45:d8:d1:53:00:7f:c0:ab:c5:d5:46:18:4a:9c: 05:62:94:da:09:ca:1a:4e:38:10:b3:bf:6a:90:7b: 75:65:56:30:59:9c:0a:17:0e:b8:d6:15:70:78:29: 6c:63:c3:f6:dc:f5:7b:4d:2a:bb:d9:1e:1d:70:82: 03:bc:58:91:9b:ff:a1:86:4a:00:9e:bd:8d:3b:5d: 00:67:cd:a0:30:5e:80:d7:e7:4a:37:62:b3:40:42: e5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:40:78:7A:06:CC:EE:EE:EB:F3:A1:90:E2:0A:1B:B7:33:FC:D5:A6 X509v3 Authority Key Identifier: keyid:37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/skB4egbM7u7r86GQ4gobtzP81aY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.239.136.0/22 185.240.92.0/22 Signature Algorithm: sha256WithRSAEncryption 97:00:ad:ba:be:28:83:63:b8:96:36:0a:27:8d:0b:49:b1:a5: b4:bd:4e:20:10:62:7b:2c:b2:12:0e:a6:e0:9c:cf:88:c0:1a: d1:f1:0c:58:a1:84:a1:c0:c6:d6:2e:51:d2:10:5c:9b:aa:e7: 7c:aa:88:93:40:08:a4:a9:b2:95:2f:ab:9f:30:86:1e:ac:78: b6:5a:64:9a:d5:f7:4d:98:fe:59:6b:6b:cb:8b:ac:1e:66:c9: 3c:5b:e2:34:a9:c7:95:73:db:4d:8c:9f:e3:f5:d7:77:76:6a: ba:5e:55:bf:84:fa:b9:cc:9c:3b:22:3c:a5:6d:88:05:b0:a0: 27:94:21:4e:6b:34:f7:98:03:f9:bc:f0:56:36:19:c3:46:dd: ca:05:4d:9a:f8:8e:30:bc:56:fa:1d:aa:fd:86:ca:3a:76:35: 52:35:ec:64:b9:06:ea:f8:68:56:14:9f:2f:60:10:73:f6:eb: 93:cb:f7:fc:c5:09:cc:79:03:c2:32:5c:f4:4a:4d:a0:31:b1: 14:f4:02:65:32:b4:87:ed:07:24:c4:65:0d:ee:7c:a6:19:9a: a2:4d:ec:0c:41:e1:ce:8c:90:aa:a2:81:be:5d:32:ba:00:48: 05:5e:2b:bd:5e:81:63:0f:dc:f6:d1:d0:8b:89:7a:c8:fb:3f: 4b:eb:84:b5 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZqiUC/BjOCY1xJTC5YqeJL6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3NGUyNzI5YjE3MzY5ODkwYTE1MTJmNjQzY2QwOGU0YmEy ZmY0MTQwHhcNMjUxMTIwMTcyOTE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjQwNzg3YTA2Y2NlZWVlZWJmM2ExOTBlMjBhMWJiNzMzZmNkNWE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDVq9GlSkC9BoTFE+LHEVe8Wma+w 5QxNRvAwpX7VthXyEdkfw7vkLUOSCpFh0s3zeCwHqUtUOWUR5K8Dji97nbWE5dpC QUrzs5vmcb8A8ejtz5jktvDrjkziKrBjNMlLXV/e/OXPiX6ChuCQ1ebn0DdbYNnb BQw3Zv8s6oHh4lL6N7jN0uLBpIpKULbRZQlL5rKqGKeJqt1MieHOumE0iduN0nqr RdjRUwB/wKvF1UYYSpwFYpTaCcoaTjgQs79qkHt1ZVYwWZwKFw641hVweClsY8P2 3PV7TSq72R4dcIIDvFiRm/+hhkoAnr2NO10AZ82gMF6A1+dKN2KzQELlfwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLJAeHoGzO7u6/OhkOIKG7cz/NWmMB8GA1UdIwQY MBaAFDdOJymxc2mJChUS9kPNCOS6L/QUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjA0bktiRnphWWtLRlJMMlE4MEk1TG92OUJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC85NTIyMzAtYzI2Mi00MWNjLWI5NTYt Y2ZjNDZhNzZlYzc4LzEvc2tCNGVnYk03dTdyODZHUTRnb2J0elA4MWFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC85NTIyMzAtYzI2Mi00MWNjLWI5NTYtY2ZjNDZhNzZlYzc4 LzEvTjA0bktiRnphWWtLRlJMMlE4MEk1TG92OUJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCue+IAwQC ufBcMA0GCSqGSIb3DQEBCwUAA4IBAQCXAK26viiDY7iWNgonjQtJsaW0vU4gEGJ7 LLISDqbgnM+IwBrR8QxYoYShwMbWLlHSEFybqud8qoiTQAikqbKVL6ufMIYerHi2 WmSa1fdNmP5Za2vLi6weZsk8W+I0qceVc9tNjJ/j9dd3dmq6XlW/hPq5zJw7Ijyl bYgFsKAnlCFOazT3mAP5vPBWNhnDRt3KBU2a+I4wvFb6Har9hso6djVSNexkuQbq +GhWFJ8vYBBz9uuTy/f8xQnMeQPCMlz0Sk2gMbEU9AJlMrSH7QckxGUN7nymGZqi TewMQeHOjJCqooG+XTK6AEgFXiu9XoFjD9z20dCLiXrI+z9L64S1 -----END CERTIFICATE-----Generated at Wed Dec 3 13:19:10 2025 by rpki-client