This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/91b2d2-dfb9-48d7-8436-ebc5b67823c5/1/Q5q3BiO4YG_K2vFXRjNFwyfQg10.roa File: Q5q3BiO4YG_K2vFXRjNFwyfQg10.roa (raw, json) Hash identifier: O7GnYMqyli6g9BJy56BrOmz/5oU5VJ03AScaqTn5dI8= Subject key identifier: 43:9A:B7:06:23:B8:60:6F:CA:DA:F1:57:46:33:45:C3:27:D0:83:5D Certificate issuer: /CN=13efb6e77018c9355a538856d4eb9e506975f535 Certificate serial: 019AC57D52364111DAE1EAE62BDEE88C5B57 Authority key identifier: 13:EF:B6:E7:70:18:C9:35:5A:53:88:56:D4:EB:9E:50:69:75:F5:35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E--253AYyTVaU4hW1OueUGl19TU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/91b2d2-dfb9-48d7-8436-ebc5b67823c5/1/Q5q3BiO4YG_K2vFXRjNFwyfQg10.roa Signing time: Thu 27 Nov 2025 13:25:15 +0000 ROA not before: Thu 27 Nov 2025 13:25:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 12581 IP address blocks: 193.138.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/91b2d2-dfb9-48d7-8436-ebc5b67823c5/1/E--253AYyTVaU4hW1OueUGl19TU.crl rsync://rpki.ripe.net/repository/DEFAULT/80/91b2d2-dfb9-48d7-8436-ebc5b67823c5/1/E--253AYyTVaU4hW1OueUGl19TU.mft rsync://rpki.ripe.net/repository/DEFAULT/E--253AYyTVaU4hW1OueUGl19TU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 07:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c5:7d:52:36:41:11:da:e1:ea:e6:2b:de:e8:8c:5b:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13efb6e77018c9355a538856d4eb9e506975f535 Validity Not Before: Nov 27 13:25:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=439ab70623b8606fcadaf157463345c327d0835d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:59:2c:e1:a1:47:e0:cf:79:f6:ff:5d:09:4d: 8e:0b:10:eb:63:2e:89:fe:0a:c9:85:d3:ea:07:1a: 73:14:ad:00:a4:1a:31:3e:e1:44:c6:11:a7:88:7f: ab:35:d3:30:3b:5b:95:72:a0:3f:b4:2e:2b:33:85: 25:d3:33:7a:eb:bc:2c:67:ea:d5:5d:6a:bc:6e:45: 32:1f:aa:94:81:48:2a:e2:4f:23:e4:7a:92:0d:a1: ec:ae:14:3c:4c:5c:8f:98:43:da:17:c1:bd:64:d7: 0a:bc:59:98:e9:00:63:85:6e:94:c2:81:3e:57:51: 8b:09:22:15:4c:ba:f0:22:30:8a:b8:e5:bf:a4:63: 3e:51:81:ce:e5:8a:4f:66:fe:51:b0:4c:e8:61:63: 8b:24:aa:cc:a0:79:32:93:ec:1a:2b:bc:ed:38:f8: bf:c0:0d:d9:90:52:8d:b3:64:bb:55:b2:b1:d8:f8: 12:35:31:55:26:63:bf:23:b2:bb:8a:16:b5:34:b5: a8:f5:0e:a5:36:08:13:3f:c5:d2:d8:ab:7e:e5:e5: 68:80:56:57:50:95:ea:7c:9d:3e:3c:03:70:39:c4: 78:6f:4b:ac:9c:05:3a:af:19:07:2e:6e:ec:73:eb: 1c:fd:b0:76:1f:98:c5:bb:3d:e3:73:b4:79:00:72: 20:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:9A:B7:06:23:B8:60:6F:CA:DA:F1:57:46:33:45:C3:27:D0:83:5D X509v3 Authority Key Identifier: keyid:13:EF:B6:E7:70:18:C9:35:5A:53:88:56:D4:EB:9E:50:69:75:F5:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E--253AYyTVaU4hW1OueUGl19TU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/91b2d2-dfb9-48d7-8436-ebc5b67823c5/1/Q5q3BiO4YG_K2vFXRjNFwyfQg10.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/91b2d2-dfb9-48d7-8436-ebc5b67823c5/1/E--253AYyTVaU4hW1OueUGl19TU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.138.88.0/24 Signature Algorithm: sha256WithRSAEncryption 40:1d:a3:b1:bf:11:62:dd:2f:40:02:49:3d:5d:cf:72:c2:db: d8:67:92:35:f2:fd:45:16:93:15:35:d5:44:f6:0c:4c:ee:8c: a9:cb:fe:c4:e1:70:a3:db:15:90:0e:ea:f6:d9:01:49:6e:cc: cf:c4:16:0d:5f:1d:af:d9:ed:a1:6d:f5:df:97:d6:77:a8:d3: 48:34:99:41:c8:d7:83:10:6c:a9:fa:ca:59:93:54:eb:5d:df: bd:87:fa:3c:f7:b0:8e:c5:0c:4c:44:2a:b6:e0:c9:36:55:c4: 3c:15:e3:65:7b:63:9c:04:69:d7:ed:f4:a2:e5:56:d0:7a:43: c3:f7:f1:81:ce:15:d8:2d:fa:3a:30:74:6e:ba:eb:35:23:33: 64:93:94:18:cc:6e:14:c6:20:cd:bc:1c:5f:2a:36:16:d7:5c: 58:ec:16:8c:9e:64:a4:4a:87:9d:fc:c9:12:2e:1b:55:62:bc: 91:5c:1b:04:c5:cb:c1:1a:0f:89:c8:8f:67:cc:a9:cd:54:cc: 64:a7:aa:fa:90:c2:1d:9a:05:ec:51:f1:bc:50:83:1b:a0:5d: f0:6b:98:d7:86:ec:d2:ed:94:55:da:0d:c2:fc:0b:aa:13:33: 97:70:bd:d2:41:90:5a:0e:87:8d:3c:5b:56:6a:d6:fe:5d:19: 00:10:a6:8a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZrFfVI2QRHa4ermK97ojFtXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzZWZiNmU3NzAxOGM5MzU1YTUzODg1NmQ0ZWI5ZTUwNjk3 NWY1MzUwHhcNMjUxMTI3MTMyNTE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MzlhYjcwNjIzYjg2MDZmY2FkYWYxNTc0NjMzNDVjMzI3ZDA4MzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1ks4aFH4M959v9dCU2OCxDrYy6J /grJhdPqBxpzFK0ApBoxPuFExhGniH+rNdMwO1uVcqA/tC4rM4Ul0zN667wsZ+rV XWq8bkUyH6qUgUgq4k8j5HqSDaHsrhQ8TFyPmEPaF8G9ZNcKvFmY6QBjhW6UwoE+ V1GLCSIVTLrwIjCKuOW/pGM+UYHO5YpPZv5RsEzoYWOLJKrMoHkyk+waK7ztOPi/ wA3ZkFKNs2S7VbKx2PgSNTFVJmO/I7K7iha1NLWo9Q6lNggTP8XS2Kt+5eVogFZX UJXqfJ0+PANwOcR4b0usnAU6rxkHLm7sc+sc/bB2H5jFuz3jc7R5AHIgkwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEOatwYjuGBvytrxV0YzRcMn0INdMB8GA1UdIwQY MBaAFBPvtudwGMk1WlOIVtTrnlBpdfU1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRS0tMjUzQVl5VFZhVTRoVzFPdWVVR2wxOVRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC85MWIyZDItZGZiOS00OGQ3LTg0MzYt ZWJjNWI2NzgyM2M1LzEvUTVxM0JpTzRZR19LMnZGWFJqTkZ3eWZRZzEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC85MWIyZDItZGZiOS00OGQ3LTg0MzYtZWJjNWI2NzgyM2M1 LzEvRS0tMjUzQVl5VFZhVTRoVzFPdWVVR2wxOVRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYpYMA0G CSqGSIb3DQEBCwUAA4IBAQBAHaOxvxFi3S9AAkk9Xc9ywtvYZ5I18v1FFpMVNdVE 9gxM7oypy/7E4XCj2xWQDur22QFJbszPxBYNXx2v2e2hbfXfl9Z3qNNINJlByNeD EGyp+spZk1TrXd+9h/o897COxQxMRCq24Mk2VcQ8FeNle2OcBGnX7fSi5VbQekPD 9/GBzhXYLfo6MHRuuus1IzNkk5QYzG4UxiDNvBxfKjYW11xY7BaMnmSkSoed/MkS LhtVYryRXBsExcvBGg+JyI9nzKnNVMxkp6r6kMIdmgXsUfG8UIMboF3wa5jXhuzS 7ZRV2g3C/AuqEzOXcL3SQZBaDoeNPFtWatb+XRkAEKaK -----END CERTIFICATE-----Generated at Tue Dec 16 11:36:49 2025 by rpki-client