This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dBMzHrY-x2FLb0TYfyCL3_SyNSU.roa File: dBMzHrY-x2FLb0TYfyCL3_SyNSU.roa (raw, json) Hash identifier: tX7SdzjPi4dnfrapWCDmMG6EA7YLtNELyR7z62HSxFM= Subject key identifier: 74:13:33:1E:B6:3E:C7:61:4B:6F:44:D8:7F:20:8B:DF:F4:B2:35:25 Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1 Certificate serial: 019A9BEAA5F9E760AEB5087DC7DC0FC2E331 Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dBMzHrY-x2FLb0TYfyCL3_SyNSU.roa Signing time: Wed 19 Nov 2025 11:40:37 +0000 ROA not before: Wed 19 Nov 2025 11:40:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 42831 IP address blocks: 89.125.88.0/22 maxlen: 22 89.125.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9b:ea:a5:f9:e7:60:ae:b5:08:7d:c7:dc:0f:c2:e3:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1 Validity Not Before: Nov 19 11:40:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=7413331eb63ec7614b6f44d87f208bdff4b23525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:91:2e:e6:bb:8f:fe:f5:41:04:b1:01:da:9b: f8:dc:98:d4:46:39:44:8f:db:3b:66:0e:0c:48:53: c6:e4:73:d9:d0:e7:b7:07:27:22:1d:9b:06:28:c4: de:09:03:2b:32:2e:6d:09:7e:19:7d:7d:a4:21:7e: 80:7a:ac:33:ca:40:9a:2c:a6:0a:c9:51:50:0e:43: d6:cb:f9:45:f2:e8:d4:09:6c:9c:3f:6a:4f:d3:c0: d8:ae:6d:ca:1b:51:5d:eb:c4:7c:35:b7:18:ba:58: be:b3:47:a9:e6:12:a0:13:f9:97:0c:5a:93:01:d2: 3e:42:84:65:64:a5:a8:f7:68:f9:87:22:a5:6e:4c: bc:8d:d0:49:58:c5:f5:ef:c2:34:ca:ac:bb:77:97: 13:fa:10:c6:d4:bc:97:16:c2:0f:64:4d:29:44:65: 41:ca:05:d2:01:c0:07:99:93:1c:62:40:c0:1c:51: 92:8c:cf:f3:af:b8:53:a0:00:20:db:a9:a7:2c:80: dc:be:2f:03:c7:42:17:cf:4e:60:ee:4e:09:4d:06: aa:e9:cd:b0:26:d9:5e:b9:95:73:99:f3:5c:08:be: bc:09:82:39:8f:be:4c:2d:3a:ab:7a:6e:e9:d0:2d: 67:50:9d:bd:30:67:2b:d3:93:e7:d1:01:44:1f:02: 09:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:13:33:1E:B6:3E:C7:61:4B:6F:44:D8:7F:20:8B:DF:F4:B2:35:25 X509v3 Authority Key Identifier: keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dBMzHrY-x2FLb0TYfyCL3_SyNSU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.125.88.0/22 89.125.196.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:34:7d:10:ab:aa:f7:5c:c2:fb:ff:2f:03:12:7c:4c:f3:a3: e2:41:61:5c:44:d1:70:61:ab:e2:40:51:7b:09:04:92:d3:44: 0f:c2:9f:d8:d4:9d:d9:68:80:96:f8:dd:ec:c6:f1:df:f3:96: cb:41:3d:13:a3:93:b5:43:c8:c4:3f:fe:61:2d:f9:b4:76:03: 79:38:ce:d0:f7:af:6f:35:d3:a7:f5:e8:e4:1f:31:85:6c:01: 71:2e:69:c1:1b:2c:e4:ba:2d:c8:f7:45:30:27:28:6b:0e:ea: 1e:25:26:c9:f6:df:f9:d3:e2:c1:a7:93:99:cc:4d:35:a1:60: c0:50:ef:ee:8c:c9:ed:46:f1:0d:ad:e8:ba:d0:90:25:3c:00: 2d:29:7d:ef:a9:fc:b7:c6:cf:1c:50:ed:b4:cd:89:cd:c0:34: e2:8d:15:b6:4b:94:ba:a8:a9:a4:19:76:e1:3c:d6:e0:b0:04: 65:16:78:2b:2b:84:61:e9:e3:13:72:ef:fb:99:37:1c:53:bb: 72:5f:8f:76:98:1e:91:e6:62:d0:61:fa:12:7a:9e:81:a6:8c: 5e:be:96:fc:e3:8f:f0:2f:d7:a4:99:cd:3e:fd:9b:ef:ff:de: 3c:43:25:20:5e:a4:98:2c:72:97:39:40:d6:71:51:f3:97:72: ce:fe:bc:9f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZqb6qX552CutQh9x9wPwuMxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm Y2ZlZDEwHhcNMjUxMTE5MTE0MDM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDEzMzMxZWI2M2VjNzYxNGI2ZjQ0ZDg3ZjIwOGJkZmY0YjIzNTI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJEu5ruP/vVBBLEB2pv43JjURjlE j9s7Zg4MSFPG5HPZ0Oe3ByciHZsGKMTeCQMrMi5tCX4ZfX2kIX6AeqwzykCaLKYK yVFQDkPWy/lF8ujUCWycP2pP08DYrm3KG1Fd68R8NbcYuli+s0ep5hKgE/mXDFqT AdI+QoRlZKWo92j5hyKlbky8jdBJWMX178I0yqy7d5cT+hDG1LyXFsIPZE0pRGVB ygXSAcAHmZMcYkDAHFGSjM/zr7hToAAg26mnLIDcvi8Dx0IXz05g7k4JTQaq6c2w JtleuZVzmfNcCL68CYI5j75MLTqrem7p0C1nUJ29MGcr05Pn0QFEHwIJtwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHQTMx62PsdhS29E2H8gi9/0sjUlMB8GA1UdIwQY MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt ZTU4MzlmNDNlNTgzLzEvZEJNekhyWS14MkZMYjBUWWZ5Q0wzX1N5TlNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCWX1YAwQC WX3EMA0GCSqGSIb3DQEBCwUAA4IBAQANNH0Qq6r3XML7/y8DEnxM86PiQWFcRNFw YaviQFF7CQSS00QPwp/Y1J3ZaICW+N3sxvHf85bLQT0To5O1Q8jEP/5hLfm0dgN5 OM7Q969vNdOn9ejkHzGFbAFxLmnBGyzkui3I90UwJyhrDuoeJSbJ9t/50+LBp5OZ zE01oWDAUO/ujMntRvENrei60JAlPAAtKX3vqfy3xs8cUO20zYnNwDTijRW2S5S6 qKmkGXbhPNbgsARlFngrK4Rh6eMTcu/7mTccU7tyX492mB6R5mLQYfoSep6Bpoxe vpb844/wL9ekmc0+/Zvv/948QyUgXqSYLHKXOUDWcVHzl3LO/ryf -----END CERTIFICATE-----Generated at Fri Dec 5 07:58:53 2025 by rpki-client