This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/CMzBzDoqteujWMTcXS0UBGlLsbA.roa File: CMzBzDoqteujWMTcXS0UBGlLsbA.roa (raw, json) Hash identifier: kGM+jdA2kv7R6IG67twqOLcjwiAADPQKBo3xpDUa1T4= Subject key identifier: 08:CC:C1:CC:3A:2A:B5:EB:A3:58:C4:DC:5D:2D:14:04:69:4B:B1:B0 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019AD402DF8E2DE2EDA9817218C0211B8CAD Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/CMzBzDoqteujWMTcXS0UBGlLsbA.roa Signing time: Sun 30 Nov 2025 09:05:49 +0000 ROA not before: Sun 30 Nov 2025 09:05:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 393942 IP address blocks: 31.56.238.0/24 maxlen: 24 31.58.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d4:02:df:8e:2d:e2:ed:a9:81:72:18:c0:21:1b:8c:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Nov 30 09:05:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=08ccc1cc3a2ab5eba358c4dc5d2d1404694bb1b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2a:a7:a9:0a:12:17:44:85:15:ed:fe:73:58: f3:c5:41:5a:a6:8d:18:50:dd:30:72:d2:64:34:7b: c0:78:b4:ee:3f:bd:8c:b5:d2:91:ea:f6:2a:53:0b: 07:60:6e:3d:2d:68:ad:1d:08:53:26:bd:8c:f6:4c: 2c:fa:f9:d7:a6:0a:3f:b0:68:4d:2a:34:e2:69:62: c7:00:84:07:be:ba:85:ce:6a:bc:23:7e:08:bc:ec: 26:34:d3:55:71:43:75:12:1b:aa:7f:5c:af:e6:e5: 20:ed:06:83:c5:9a:1d:55:fd:2f:47:a5:eb:a2:ec: 25:c4:ab:61:72:08:b6:91:76:a9:1a:0e:48:24:69: ca:9a:37:d5:04:21:e5:a9:e7:73:d8:a9:69:1c:95: df:6e:f2:d5:de:5a:1d:8c:86:3a:ba:49:3d:43:ea: 7e:60:87:7c:17:0c:6f:90:d3:6a:af:f1:cf:9b:0c: ee:f4:77:05:55:b8:fe:f6:aa:31:f6:d8:45:60:46: 93:1b:30:89:cd:72:7a:3d:dc:70:40:89:cf:0c:34: ba:8f:21:6a:1b:75:8e:0a:54:d0:a3:7c:f7:ac:61: 2f:1d:f4:3d:73:09:25:8f:7e:0d:71:c4:3e:c4:ee: 97:9e:71:b6:b7:f2:7c:11:fd:e1:2d:02:59:a1:56: 33:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CC:C1:CC:3A:2A:B5:EB:A3:58:C4:DC:5D:2D:14:04:69:4B:B1:B0 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/CMzBzDoqteujWMTcXS0UBGlLsbA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.238.0/24 31.58.69.0/24 Signature Algorithm: sha256WithRSAEncryption 25:14:87:c3:03:06:88:df:3d:a2:4b:88:e9:21:ce:54:cf:02: 8c:73:be:03:75:21:af:4f:6a:57:9d:b7:d9:a8:38:22:eb:79: f5:46:11:d4:02:6b:66:f0:74:12:dc:dc:ae:1d:b8:57:d7:0e: c5:b6:a8:f5:a7:62:11:80:e1:95:e2:16:32:4e:a2:e8:9f:34: 86:1e:fc:41:74:81:5e:af:25:10:40:c8:17:44:3e:b7:6b:01: 27:a9:fc:dd:c1:84:b4:ab:af:82:9e:c8:88:da:11:2d:1f:88: 77:be:68:bd:88:01:bb:f8:98:80:22:80:50:1e:df:96:c2:29: 9c:47:fd:00:ff:89:54:36:9e:9a:6b:3b:e0:8b:f7:0f:30:1a: 1a:44:24:38:92:33:12:f6:38:56:d8:fd:f0:4d:6a:dd:f4:68: fc:e0:43:22:30:46:47:bb:17:24:d2:e4:61:bc:4c:2e:bc:90: 1a:a6:41:bf:dd:fd:2d:b0:cb:dd:a0:72:f0:58:22:a9:f4:08: b8:cd:e2:fa:46:04:9c:a4:f2:90:2f:ad:d6:c4:5e:ec:0a:a2: 55:64:16:ea:ee:cf:d8:f4:b8:8c:ec:3c:87:cc:0a:a1:ae:c8: 4b:a2:0a:a5:3e:4d:1c:4e:d6:45:2c:6c:9f:58:76:19:14:67: 3e:d5:ff:87 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZrUAt+OLeLtqYFyGMAhG4ytMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjUxMTMwMDkwNTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOGNjYzFjYzNhMmFiNWViYTM1OGM0ZGM1ZDJkMTQwNDY5NGJiMWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4yqnqQoSF0SFFe3+c1jzxUFapo0Y UN0wctJkNHvAeLTuP72MtdKR6vYqUwsHYG49LWitHQhTJr2M9kws+vnXpgo/sGhN KjTiaWLHAIQHvrqFzmq8I34IvOwmNNNVcUN1Ehuqf1yv5uUg7QaDxZodVf0vR6Xr ouwlxKthcgi2kXapGg5IJGnKmjfVBCHlqedz2KlpHJXfbvLV3lodjIY6ukk9Q+p+ YId8FwxvkNNqr/HPmwzu9HcFVbj+9qox9thFYEaTGzCJzXJ6PdxwQInPDDS6jyFq G3WOClTQo3z3rGEvHfQ9cwklj34NccQ+xO6XnnG2t/J8Ef3hLQJZoVYzuQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAjMwcw6KrXro1jE3F0tFARpS7GwMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvQ016QnpEb3F0ZXVqV01UY1hTMFVCR2xMc2JBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHzjuAwQA HzpFMA0GCSqGSIb3DQEBCwUAA4IBAQAlFIfDAwaI3z2iS4jpIc5UzwKMc74DdSGv T2pXnbfZqDgi63n1RhHUAmtm8HQS3NyuHbhX1w7Ftqj1p2IRgOGV4hYyTqLonzSG HvxBdIFeryUQQMgXRD63awEnqfzdwYS0q6+CnsiI2hEtH4h3vmi9iAG7+JiAIoBQ Ht+WwimcR/0A/4lUNp6aazvgi/cPMBoaRCQ4kjMS9jhW2P3wTWrd9Gj84EMiMEZH uxck0uRhvEwuvJAapkG/3f0tsMvdoHLwWCKp9Ai4zeL6RgScpPKQL63WxF7sCqJV ZBbq7s/Y9LiM7DyHzAqhrshLogqlPk0cTtZFLGyfWHYZFGc+1f+H -----END CERTIFICATE-----Generated at Fri Dec 5 06:43:46 2025 by rpki-client