This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/CFcM8YhLzfVa4KF4BnZUWPGlw-k.roa File: CFcM8YhLzfVa4KF4BnZUWPGlw-k.roa (raw, json) Hash identifier: OSDL67nvNaJsIzTSTlSTs6C7FocSdVDQb3abZPfeL4s= Subject key identifier: 08:57:0C:F1:88:4B:CD:F5:5A:E0:A1:78:06:76:54:58:F1:A5:C3:E9 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019AC10E5D32A8D4A68386C571AD96411484 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/CFcM8YhLzfVa4KF4BnZUWPGlw-k.roa Signing time: Wed 26 Nov 2025 16:45:35 +0000 ROA not before: Wed 26 Nov 2025 16:45:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 204104 IP address blocks: 31.57.200.0/24 maxlen: 24 31.58.237.0/24 maxlen: 24 94.183.150.0/24 maxlen: 24 94.183.162.0/24 maxlen: 24 94.183.169.0/24 maxlen: 24 217.60.199.0/24 maxlen: 24 217.60.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 02:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c1:0e:5d:32:a8:d4:a6:83:86:c5:71:ad:96:41:14:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Nov 26 16:45:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=08570cf1884bcdf55ae0a17806765458f1a5c3e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6b:06:e5:61:09:02:6d:39:b7:70:24:62:d7: 7b:d5:c4:8a:62:61:d8:41:ed:be:f2:cd:97:69:6f: 14:ba:f7:6e:66:2e:60:a7:ef:b1:f9:46:b0:d4:74: cb:34:7c:5a:7e:e2:b6:e7:94:3c:22:72:50:a2:fc: 6c:31:fc:33:5c:c8:7c:86:b9:b8:24:cb:06:c7:ae: 6f:5b:94:94:c9:54:a8:e2:d6:e3:ae:b2:b7:69:2f: 25:7e:07:85:76:81:5e:a4:36:80:c8:2d:6d:c0:f8: 0c:77:53:8e:46:e0:f5:00:93:9a:10:a3:ea:eb:c8: b2:00:56:66:6b:86:b4:27:90:8b:32:3f:7e:45:cc: 08:e7:74:ac:22:75:84:db:d4:c4:a7:d0:2e:60:ec: 55:43:f6:d2:77:cc:e9:9a:a5:9c:c8:ee:cd:db:15: f0:5e:c3:1b:00:31:4c:0f:80:9c:6d:7d:42:8f:6f: c3:f7:91:3e:72:ac:b4:b3:69:15:59:13:d9:ab:11: de:d9:e8:e6:43:e0:8a:f5:3f:7d:e2:b4:f4:2b:19: ad:7c:6c:3b:b7:50:bb:1c:94:c5:51:58:bf:b6:05: 4f:e1:17:30:f1:83:f8:b1:c0:4c:b5:21:c3:20:c7: 3d:06:3b:04:f5:32:ea:13:e3:5b:37:4c:03:c6:20: cb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:57:0C:F1:88:4B:CD:F5:5A:E0:A1:78:06:76:54:58:F1:A5:C3:E9 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/CFcM8YhLzfVa4KF4BnZUWPGlw-k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.57.200.0/24 31.58.237.0/24 94.183.150.0/24 94.183.162.0/24 94.183.169.0/24 217.60.199.0/24 217.60.238.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:88:59:b5:a1:e3:89:ee:7d:7f:bf:72:b0:15:1b:07:9e:b9: 0e:ff:1c:cd:fb:8e:a8:1c:14:38:c4:a1:43:f5:6a:48:1d:c5: af:a4:6d:47:9b:4f:07:26:d9:01:5d:8d:b7:3f:5d:69:70:ab: e7:7d:9c:61:49:3d:eb:dd:49:23:51:3f:1c:8a:a1:50:a3:21: a0:d0:d8:ca:4e:1a:29:8b:fe:ee:a8:19:e5:c1:cd:fe:e5:ad: 6e:33:73:0e:53:09:6e:49:cf:7e:7c:8a:e6:79:ed:8b:c5:2d: b3:a8:c6:ef:17:44:d1:5f:b0:0c:08:46:d7:67:5d:7f:22:45: 12:6e:57:ee:d0:82:5f:ae:52:44:6a:d8:8c:e4:18:ff:90:5a: 67:70:22:f9:30:79:d3:75:ef:80:ba:6d:2b:cb:d3:af:8c:86: 21:93:aa:6d:67:99:c7:a8:da:fc:e8:1b:89:ff:ce:c2:ce:b3: f5:bc:6e:d9:93:5e:db:04:fc:c6:7a:2b:f9:a7:13:dc:c5:58: 02:ad:9f:34:bd:c2:4c:12:d2:ea:8a:d8:1a:64:e0:2b:a6:1d: 13:27:0f:40:08:a0:ae:43:cf:4c:86:bd:e2:7b:28:d0:1c:99: 7a:2d:fb:33:6d:a3:7d:36:55:fa:29:8a:37:f0:5f:ad:c0:1c: f0:98:02:1a -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZrBDl0yqNSmg4bFca2WQRSEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjUxMTI2MTY0NTM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODU3MGNmMTg4NGJjZGY1NWFlMGExNzgwNjc2NTQ1OGYxYTVjM2U5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2GsG5WEJAm05t3AkYtd71cSKYmHY Qe2+8s2XaW8UuvduZi5gp++x+Uaw1HTLNHxafuK255Q8InJQovxsMfwzXMh8hrm4 JMsGx65vW5SUyVSo4tbjrrK3aS8lfgeFdoFepDaAyC1twPgMd1OORuD1AJOaEKPq 68iyAFZma4a0J5CLMj9+RcwI53SsInWE29TEp9AuYOxVQ/bSd8zpmqWcyO7N2xXw XsMbADFMD4CcbX1Cj2/D95E+cqy0s2kVWRPZqxHe2ejmQ+CK9T994rT0KxmtfGw7 t1C7HJTFUVi/tgVP4Rcw8YP4scBMtSHDIMc9BjsE9TLqE+NbN0wDxiDLqwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFAhXDPGIS831WuCheAZ2VFjxpcPpMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvQ0ZjTThZaEx6ZlZhNEtGNEJuWlVXUEdsdy1rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAHznIAwQA HzrtAwQAXreWAwQAXreiAwQAXrepAwQA2TzHAwQA2TzuMA0GCSqGSIb3DQEBCwUA A4IBAQAviFm1oeOJ7n1/v3KwFRsHnrkO/xzN+46oHBQ4xKFD9WpIHcWvpG1Hm08H JtkBXY23P11pcKvnfZxhST3r3UkjUT8ciqFQoyGg0NjKThopi/7uqBnlwc3+5a1u M3MOUwluSc9+fIrmee2LxS2zqMbvF0TRX7AMCEbXZ11/IkUSblfu0IJfrlJEatiM 5Bj/kFpncCL5MHnTde+Aum0ry9OvjIYhk6ptZ5nHqNr86BuJ/87CzrP1vG7Zk17b BPzGeiv5pxPcxVgCrZ80vcJMEtLqitgaZOArph0TJw9ACKCuQ89Mhr3ieyjQHJl6 LfszbaN9NlX6KYo38F+twBzwmAIa -----END CERTIFICATE-----Generated at Thu Nov 27 06:44:56 2025 by rpki-client