This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BbNkjvVe5Dgcl4TVg6Tr8zo3njk.roa File: BbNkjvVe5Dgcl4TVg6Tr8zo3njk.roa (raw, json) Hash identifier: 8+uGuiv2XxmqF+QCjbGOCIxo7jvIqxX7ZPPWwAOUC9A= Subject key identifier: 05:B3:64:8E:F5:5E:E4:38:1C:97:84:D5:83:A4:EB:F3:3A:37:9E:39 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B0291D8018E90B0ADE08ACE1E710E5822 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BbNkjvVe5Dgcl4TVg6Tr8zo3njk.roa Signing time: Tue 09 Dec 2025 10:04:31 +0000 ROA not before: Tue 09 Dec 2025 10:04:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 25198 IP address blocks: 31.56.125.0/24 maxlen: 24 31.56.192.0/24 maxlen: 24 31.56.193.0/24 maxlen: 24 31.57.132.0/24 maxlen: 24 31.57.191.0/24 maxlen: 24 31.57.221.0/24 maxlen: 24 31.57.237.0/24 maxlen: 24 31.58.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:02:91:d8:01:8e:90:b0:ad:e0:8a:ce:1e:71:0e:58:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Dec 9 10:04:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=05b3648ef55ee4381c9784d583a4ebf33a379e39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f6:27:c9:ca:c0:85:c7:cf:fc:c0:e3:62:50: 02:a3:a8:06:16:3b:73:85:09:1d:ef:37:5b:1a:9b: 81:d1:db:9a:0d:c8:bd:d5:34:64:40:11:74:c5:5f: 25:27:34:7a:6e:8b:f3:91:6f:bc:45:05:72:59:16: 82:d2:82:48:be:80:11:b0:56:40:5c:4b:71:63:46: 2d:19:e5:63:d2:40:1e:e4:41:ff:fd:8a:00:aa:e8: ab:cd:8b:cb:84:8f:21:cc:31:a4:0e:99:1a:58:fd: 42:52:d8:ed:7e:28:24:7d:54:94:82:90:71:84:f5: 9f:97:36:73:f8:2c:06:8d:9e:ff:63:44:5b:0d:78: 44:11:ec:a5:de:9d:c0:44:2b:ee:39:1f:14:0f:67: 6a:c9:23:82:31:80:d7:2a:a1:76:3d:5f:45:c4:24: 4a:ac:85:ba:50:a2:70:f6:66:d5:0f:ff:b9:85:20: fc:c1:92:5b:40:cb:3d:b0:6f:97:a4:38:dd:68:9d: ce:ee:a4:b5:05:58:69:d9:66:be:b5:47:b3:f3:85: 87:72:d3:79:56:dc:43:9c:4d:a0:a8:76:d4:ba:8b: a9:90:ec:15:39:20:31:86:7b:a0:68:f2:ff:42:c2: 27:f0:db:43:a8:5c:16:02:c0:d6:b5:fd:9e:2f:6d: 74:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B3:64:8E:F5:5E:E4:38:1C:97:84:D5:83:A4:EB:F3:3A:37:9E:39 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BbNkjvVe5Dgcl4TVg6Tr8zo3njk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.125.0/24 31.56.192.0/23 31.57.132.0/24 31.57.191.0/24 31.57.221.0/24 31.57.237.0/24 31.58.231.0/24 Signature Algorithm: sha256WithRSAEncryption bb:d9:e5:32:72:b7:d4:bc:44:1e:4b:88:dd:fb:75:1b:c3:f6: 3f:d2:4a:d0:b2:9d:b5:3f:0f:d9:60:d4:35:2b:3f:d0:49:a4: 6b:19:59:54:22:77:af:87:d1:e1:6c:d9:e9:e0:45:42:63:a7: 0c:74:20:1f:75:37:1e:ab:79:fb:a1:a5:1c:19:b5:ea:87:9e: 35:f3:a9:53:18:77:ab:9a:48:b9:97:7d:57:32:6f:d6:98:e4: de:33:38:ce:7c:76:6d:b6:5e:e6:61:b1:86:57:55:7d:ef:e9: e3:43:88:d8:5e:ad:8c:7c:1d:de:26:79:62:2a:a7:16:d9:f4: b5:4a:40:70:ee:60:72:cc:a5:30:4f:3f:9c:08:ea:17:b9:3b: 00:7f:23:fd:3e:00:35:83:b2:32:2a:25:f0:b9:35:40:46:76: 0b:91:fe:b7:6b:1c:1f:21:c9:fc:cf:0d:30:c5:8d:93:c3:e9: e4:54:89:db:1c:ff:56:17:75:ab:b6:39:ca:83:81:9c:8d:75: cb:90:a8:f5:c3:d5:f9:d8:ec:e2:cd:c2:e4:3e:59:4c:e3:a3: 4d:13:69:15:01:d4:ce:a4:74:05:5e:13:24:48:ff:e9:a7:9c: 32:2e:8f:ea:ea:19:3d:b2:0b:47:51:75:9e:9a:5b:72:04:21: 1b:74:a9:b2 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZsCkdgBjpCwreCKzh5xDlgiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjUxMjA5MTAwNDMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNWIzNjQ4ZWY1NWVlNDM4MWM5Nzg0ZDU4M2E0ZWJmMzNhMzc5ZTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/YnycrAhcfP/MDjYlACo6gGFjtz hQkd7zdbGpuB0duaDci91TRkQBF0xV8lJzR6bovzkW+8RQVyWRaC0oJIvoARsFZA XEtxY0YtGeVj0kAe5EH//YoAquirzYvLhI8hzDGkDpkaWP1CUtjtfigkfVSUgpBx hPWflzZz+CwGjZ7/Y0RbDXhEEeyl3p3ARCvuOR8UD2dqySOCMYDXKqF2PV9FxCRK rIW6UKJw9mbVD/+5hSD8wZJbQMs9sG+XpDjdaJ3O7qS1BVhp2Wa+tUez84WHctN5 VtxDnE2gqHbUuoupkOwVOSAxhnugaPL/QsIn8NtDqFwWAsDWtf2eL210EQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFAWzZI71XuQ4HJeE1YOk6/M6N545MB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvQmJOa2p2VmU1RGdjbDRUVmc2VHI4em8zbmprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAHzh9AwQB HzjAAwQAHzmEAwQAHzm/AwQAHzndAwQAHzntAwQAHzrnMA0GCSqGSIb3DQEBCwUA A4IBAQC72eUycrfUvEQeS4jd+3Ubw/Y/0krQsp21Pw/ZYNQ1Kz/QSaRrGVlUInev h9HhbNnp4EVCY6cMdCAfdTceq3n7oaUcGbXqh54186lTGHermki5l31XMm/WmOTe MzjOfHZttl7mYbGGV1V97+njQ4jYXq2MfB3eJnliKqcW2fS1SkBw7mByzKUwTz+c COoXuTsAfyP9PgA1g7IyKiXwuTVARnYLkf63axwfIcn8zw0wxY2Tw+nkVInbHP9W F3WrtjnKg4GcjXXLkKj1w9X52OzizcLkPllM46NNE2kVAdTOpHQFXhMkSP/pp5wy Lo/q6hk9sgtHUXWemltyBCEbdKmy -----END CERTIFICATE-----Generated at Wed Dec 10 08:59:56 2025 by rpki-client