This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/YSZJzXT5b0Sj_tQO-MMdT3bRp18.roa File: YSZJzXT5b0Sj_tQO-MMdT3bRp18.roa (raw, json) Hash identifier: 96NkI9+vuY/a0FcKcI8pc5DDs6w3jSiXhpfxwDuUO0k= Subject key identifier: 61:26:49:CD:74:F9:6F:44:A3:FE:D4:0E:F8:C3:1D:4F:76:D1:A7:5F Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019AA2C90E106769712FFC9E83624C58CE1E Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/YSZJzXT5b0Sj_tQO-MMdT3bRp18.roa Signing time: Thu 20 Nov 2025 19:41:16 +0000 ROA not before: Thu 20 Nov 2025 19:41:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 21859 IP address blocks: 31.56.66.0/24 maxlen: 24 31.56.220.0/24 maxlen: 24 31.57.35.0/24 maxlen: 24 31.57.100.0/24 maxlen: 24 31.57.228.0/24 maxlen: 24 31.57.239.0/24 maxlen: 24 31.58.33.0/24 maxlen: 24 31.59.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 22 Nov 2025 00:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a2:c9:0e:10:67:69:71:2f:fc:9e:83:62:4c:58:ce:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Nov 20 19:41:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=612649cd74f96f44a3fed40ef8c31d4f76d1a75f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:65:b1:d1:df:07:19:35:11:0a:fb:ba:21:61: 4c:b0:09:2d:fb:28:30:ea:00:35:7e:ff:48:ef:f8: e3:67:63:83:03:21:15:50:74:a4:98:34:7f:e5:d6: 6d:e0:61:90:bb:b4:5c:ec:15:30:1e:6d:08:ad:00: 3a:a4:a5:cc:30:32:ef:5f:fc:6a:d8:6c:a6:e4:f8: 81:cd:cd:aa:d4:88:c2:1b:35:99:9b:be:93:0b:32: 9c:9f:b8:b5:49:bf:0e:bd:21:70:43:98:b6:37:67: 48:e5:df:b5:a5:87:a1:ee:d9:fd:57:59:81:92:53: de:34:2f:0e:0c:5e:f8:5e:8f:5f:35:91:6b:c6:21: b5:bd:0f:e1:7a:f4:38:f4:e2:cd:3d:c9:1e:20:b5: 92:d9:2f:4d:54:92:a2:59:ce:9e:63:48:50:dc:e9: 9f:3e:e6:73:b7:e8:6e:03:a1:8c:57:31:72:54:75: 7f:5c:58:88:54:02:d8:7e:64:fb:fd:c0:52:e5:9b: 52:a0:97:f4:e9:78:ac:39:e5:b8:02:aa:bd:61:ef: d4:bf:69:49:a8:b2:e5:01:01:0c:7a:19:1c:81:5f: 56:66:78:a5:a0:08:91:cd:bf:d6:d8:e7:7a:72:e3: ce:0e:f4:12:ec:e8:52:32:7a:6e:bc:5d:53:13:eb: 9e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:26:49:CD:74:F9:6F:44:A3:FE:D4:0E:F8:C3:1D:4F:76:D1:A7:5F X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/YSZJzXT5b0Sj_tQO-MMdT3bRp18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.66.0/24 31.56.220.0/24 31.57.35.0/24 31.57.100.0/24 31.57.228.0/24 31.57.239.0/24 31.58.33.0/24 31.59.116.0/24 Signature Algorithm: sha256WithRSAEncryption 65:49:6c:18:e0:b9:c2:ec:2d:91:1f:0e:af:0c:c8:b1:20:cf: 0c:69:ae:51:06:e2:a2:1e:8d:67:73:c2:55:f2:83:98:77:5f: a9:82:61:51:85:35:51:6a:85:07:03:a9:c5:d9:23:31:9b:97: 57:a9:be:75:a9:3e:5f:b5:83:97:fc:28:80:db:69:9f:7a:32: a6:85:e4:93:56:a3:5b:a5:b5:2e:8c:4b:64:be:fe:5c:db:f6: f8:62:15:ec:aa:93:ce:11:0c:92:80:81:c9:0a:a3:9e:18:bd: 11:6c:c2:96:61:c5:36:e9:15:73:bb:8d:42:13:27:bb:57:5d: af:34:94:af:3d:95:66:ec:0e:02:a0:9a:77:d2:55:4d:1e:78: 6d:89:fe:2f:76:d1:78:4c:e9:16:2f:04:73:35:11:20:81:ce: 72:99:14:df:75:d6:3b:28:e7:a9:ee:cd:dc:0f:0f:7a:1a:1b: 2f:35:5c:13:ce:8c:6a:01:8c:41:2d:eb:83:b7:4b:0e:ba:9d: a2:d0:43:36:d3:f6:32:11:85:0c:18:3b:91:0a:ee:c7:2b:6f: cd:b5:17:67:b5:18:a8:c8:09:49:e2:e6:ed:d8:52:fc:db:e5: fa:8d:43:53:c8:5a:82:66:a6:db:36:ce:f9:ea:1b:83:d8:6e: 1b:86:35:c6 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZqiyQ4QZ2lxL/yeg2JMWM4eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjUxMTIwMTk0MTE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MTI2NDljZDc0Zjk2ZjQ0YTNmZWQ0MGVmOGMzMWQ0Zjc2ZDFhNzVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimWx0d8HGTURCvu6IWFMsAkt+ygw 6gA1fv9I7/jjZ2ODAyEVUHSkmDR/5dZt4GGQu7Rc7BUwHm0IrQA6pKXMMDLvX/xq 2Gym5PiBzc2q1IjCGzWZm76TCzKcn7i1Sb8OvSFwQ5i2N2dI5d+1pYeh7tn9V1mB klPeNC8ODF74Xo9fNZFrxiG1vQ/hevQ49OLNPckeILWS2S9NVJKiWc6eY0hQ3Omf PuZzt+huA6GMVzFyVHV/XFiIVALYfmT7/cBS5ZtSoJf06XisOeW4Aqq9Ye/Uv2lJ qLLlAQEMehkcgV9WZniloAiRzb/W2Od6cuPODvQS7OhSMnpuvF1TE+ueaQIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFGEmSc10+W9Eo/7UDvjDHU920adfMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvWVNaSnpYVDViMFNqX3RRTy1NTWRUM2JScDE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAHzhCAwQA HzjcAwQAHzkjAwQAHzlkAwQAHznkAwQAHznvAwQAHzohAwQAHzt0MA0GCSqGSIb3 DQEBCwUAA4IBAQBlSWwY4LnC7C2RHw6vDMixIM8Maa5RBuKiHo1nc8JV8oOYd1+p gmFRhTVRaoUHA6nF2SMxm5dXqb51qT5ftYOX/CiA22mfejKmheSTVqNbpbUujEtk vv5c2/b4YhXsqpPOEQySgIHJCqOeGL0RbMKWYcU26RVzu41CEye7V12vNJSvPZVm 7A4CoJp30lVNHnhtif4vdtF4TOkWLwRzNREggc5ymRTfddY7KOep7s3cDw96Ghsv NVwTzoxqAYxBLeuDt0sOup2i0EM20/YyEYUMGDuRCu7HK2/NtRdntRioyAlJ4ubt 2FL82+X6jUNTyFqCZqbbNs756huD2G4bhjXG -----END CERTIFICATE-----Generated at Fri Nov 21 07:28:56 2025 by rpki-client