This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/B_vIUAYNDohNsp7TO_JS2aSJMro.roa File: B_vIUAYNDohNsp7TO_JS2aSJMro.roa (raw, json) Hash identifier: qwKOWuK2KCNQX16wvRebNX9QpHGwEdTook+C8YemGvU= Subject key identifier: 07:FB:C8:50:06:0D:0E:88:4D:B2:9E:D3:3B:F2:52:D9:A4:89:32:BA Certificate issuer: /CN=ab54fe831b6a719f42e6c8486fd03b550be761fb Certificate serial: 019B0D425594777B731551B472C79AA18AA0 Authority key identifier: AB:54:FE:83:1B:6A:71:9F:42:E6:C8:48:6F:D0:3B:55:0B:E7:61:FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/B_vIUAYNDohNsp7TO_JS2aSJMro.roa Signing time: Thu 11 Dec 2025 11:53:29 +0000 ROA not before: Thu 11 Dec 2025 11:53:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 205086 IP address blocks: 109.234.84.0/24 maxlen: 24 213.162.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/q1T-gxtqcZ9C5shIb9A7VQvnYfs.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/q1T-gxtqcZ9C5shIb9A7VQvnYfs.mft rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:42:55:94:77:7b:73:15:51:b4:72:c7:9a:a1:8a:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab54fe831b6a719f42e6c8486fd03b550be761fb Validity Not Before: Dec 11 11:53:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=07fbc850060d0e884db29ed33bf252d9a48932ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f8:03:91:42:53:be:7b:99:08:17:57:bb:eb: 35:ca:4b:e5:1a:5e:69:2f:0f:3c:5e:81:5b:94:9c: 57:e5:fb:d1:c8:a1:c8:53:49:d6:aa:19:7e:02:97: f1:72:08:5a:03:66:e0:8e:14:df:ce:f1:b2:41:63: 36:80:d7:85:01:9c:c3:39:0a:c7:91:69:29:a3:7a: 59:92:3c:70:c3:0e:23:c8:c1:55:95:d0:96:68:ab: 30:dc:e9:08:33:f5:38:8a:f7:e5:73:aa:74:07:1f: 09:af:7f:cf:6c:86:6c:9f:04:35:e5:48:c5:ef:fb: cb:78:f9:82:ff:7e:3a:c9:ba:68:80:55:2f:91:bb: 86:73:2f:0e:cf:c4:aa:4d:36:63:1f:37:ba:b5:04: b6:15:f2:ae:e9:52:4d:94:0e:71:05:1c:c1:19:32: c7:da:78:cb:80:ed:50:c7:39:8e:f6:56:1e:50:01: 3f:64:a3:3a:05:8b:c2:f7:89:20:37:5f:84:7b:89: e1:bb:05:b1:db:f0:af:e0:e7:f6:2d:e2:67:c3:63: 6c:52:f8:9b:7a:16:82:a6:13:ee:d0:20:c4:52:dc: 85:6f:c0:ef:30:41:2f:cc:27:e7:1c:40:42:80:9b: 8b:d7:28:83:b9:8c:43:b2:f2:c9:37:e1:35:a5:ad: 31:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:FB:C8:50:06:0D:0E:88:4D:B2:9E:D3:3B:F2:52:D9:A4:89:32:BA X509v3 Authority Key Identifier: keyid:AB:54:FE:83:1B:6A:71:9F:42:E6:C8:48:6F:D0:3B:55:0B:E7:61:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/B_vIUAYNDohNsp7TO_JS2aSJMro.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/q1T-gxtqcZ9C5shIb9A7VQvnYfs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.234.84.0/24 213.162.211.0/24 Signature Algorithm: sha256WithRSAEncryption 66:14:21:01:94:96:56:5f:9c:f9:3e:6b:3f:3f:99:02:05:4d: af:37:c2:25:55:cd:57:6a:5c:2c:8d:bd:b8:7c:65:9e:43:00: c1:8a:7b:0e:c4:04:a3:a5:2c:d8:ae:37:03:bd:5f:06:b0:55: 01:48:3c:60:a2:8c:33:11:7a:ce:07:06:3e:8b:9c:41:02:8f: 51:ad:b2:90:0b:2d:b7:e3:58:ef:4c:cf:87:6d:96:c5:5f:ba: 84:15:36:00:58:7b:64:5a:66:65:46:9c:87:41:90:71:12:25: b7:fd:a5:b8:dd:2a:dc:2a:c0:9e:09:3d:7e:75:c5:58:e9:2a: ae:9d:3b:d7:16:fd:f7:52:7e:38:b8:00:d7:36:d7:14:8c:65: 54:3e:49:e1:52:f6:16:3f:d6:3c:3c:90:fe:bd:8e:bf:91:55: 59:5a:fe:d4:da:26:35:bd:cd:c1:15:0b:85:49:93:f0:03:f7: 74:dc:1d:a0:d7:6f:5b:19:8a:53:4a:27:b7:dc:08:65:4d:e9: 51:ee:fd:be:51:79:b9:30:c8:03:6b:e4:b0:b5:4f:31:97:0e: 47:f3:8f:d5:01:b4:dc:f2:d2:81:43:a3:9f:6c:02:72:5e:f9: e1:7f:ca:8a:a0:ce:e3:2e:5f:96:52:0c:85:2e:24:f8:3e:90: 60:de:72:f5 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZsNQlWUd3tzFVG0cseaoYqgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiNTRmZTgzMWI2YTcxOWY0MmU2Yzg0ODZmZDAzYjU1MGJl NzYxZmIwHhcNMjUxMjExMTE1MzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwN2ZiYzg1MDA2MGQwZTg4NGRiMjllZDMzYmYyNTJkOWE0ODkzMmJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PgDkUJTvnuZCBdXu+s1ykvlGl5p Lw88XoFblJxX5fvRyKHIU0nWqhl+ApfxcghaA2bgjhTfzvGyQWM2gNeFAZzDOQrH kWkpo3pZkjxwww4jyMFVldCWaKsw3OkIM/U4ivflc6p0Bx8Jr3/PbIZsnwQ15UjF 7/vLePmC/346ybpogFUvkbuGcy8Oz8SqTTZjHze6tQS2FfKu6VJNlA5xBRzBGTLH 2njLgO1QxzmO9lYeUAE/ZKM6BYvC94kgN1+Ee4nhuwWx2/Cv4Of2LeJnw2NsUvib ehaCphPu0CDEUtyFb8DvMEEvzCfnHEBCgJuL1yiDuYxDsvLJN+E1pa0xYQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAf7yFAGDQ6ITbKe0zvyUtmkiTK6MB8GA1UdIwQY MBaAFKtU/oMbanGfQubISG/QO1UL52H7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTFULWd4dHFjWjlDNXNoSWI5QTdWUXZuWWZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS81ZWFhYTctMzEwNy00MjY4LWFhZDYt NmZkOTc4OTIwNWJhLzEvQl92SVVBWU5Eb2hOc3A3VE9fSlMyYVNKTXJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS81ZWFhYTctMzEwNy00MjY4LWFhZDYtNmZkOTc4OTIwNWJh LzEvcTFULWd4dHFjWjlDNXNoSWI5QTdWUXZuWWZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAbepUAwQA 1aLTMA0GCSqGSIb3DQEBCwUAA4IBAQBmFCEBlJZWX5z5Pms/P5kCBU2vN8IlVc1X alwsjb24fGWeQwDBinsOxASjpSzYrjcDvV8GsFUBSDxgoowzEXrOBwY+i5xBAo9R rbKQCy2341jvTM+HbZbFX7qEFTYAWHtkWmZlRpyHQZBxEiW3/aW43SrcKsCeCT1+ dcVY6SqunTvXFv33Un44uADXNtcUjGVUPknhUvYWP9Y8PJD+vY6/kVVZWv7U2iY1 vc3BFQuFSZPwA/d03B2g129bGYpTSie33AhlTelR7v2+UXm5MMgDa+SwtU8xlw5H 84/VAbTc8tKBQ6OfbAJyXvnhf8qKoM7jLl+WUgyFLiT4PpBg3nL1 -----END CERTIFICATE-----Generated at Thu Dec 11 23:20:12 2025 by rpki-client