This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hQdFVn6h_niqfD_59NSDjRBTKYs.roa File: hQdFVn6h_niqfD_59NSDjRBTKYs.roa (raw, json) Hash identifier: uHuxXNP3/UeEfmnKVVsrYwit0ekvKUXQZVNr5mu8wCo= Subject key identifier: 85:07:45:56:7E:A1:FE:78:AA:7C:3F:F9:F4:D4:83:8D:10:53:29:8B Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B60BAC4D2D652452B098D3706DBB619B2 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hQdFVn6h_niqfD_59NSDjRBTKYs.roa Signing time: Sat 27 Dec 2025 16:53:31 +0000 ROA not before: Sat 27 Dec 2025 16:53:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16276 IP address blocks: 31.56.52.0/22 maxlen: 22 31.56.83.0/24 maxlen: 24 31.56.112.0/24 maxlen: 24 31.56.219.0/24 maxlen: 24 31.57.161.0/24 maxlen: 24 31.57.199.0/24 maxlen: 24 31.58.88.0/24 maxlen: 24 31.59.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 15:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:60:ba:c4:d2:d6:52:45:2b:09:8d:37:06:db:b6:19:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Dec 27 16:53:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=850745567ea1fe78aa7c3ff9f4d4838d1053298b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:94:09:f8:37:9b:7c:88:84:7f:90:52:77: fb:f9:a7:81:5c:1a:ef:02:db:e7:e6:b6:25:c2:c9: d1:96:93:0b:b4:35:f1:aa:fd:07:b5:c9:e4:28:bb: 94:10:35:8b:f0:94:bc:b9:a7:19:06:2b:dd:e7:af: 82:6a:3c:62:38:4e:97:1d:d7:b5:57:4f:73:e7:a3: 18:ac:b4:1b:1b:48:3e:ee:22:0d:6b:5a:ca:33:49: 23:ef:9c:95:6f:9a:9b:4f:87:60:3c:d6:e2:c1:00: 95:5e:82:a5:3e:2f:5f:44:f0:4e:04:06:3a:2d:7a: 15:be:02:28:cc:15:40:99:75:a0:b3:9e:33:b1:0d: ac:35:f7:b9:46:4e:c5:02:4c:ed:30:75:55:86:45: 89:8a:d7:94:20:fa:3d:58:d7:c9:23:a9:1e:6b:aa: f8:da:e5:d9:7c:2f:94:a4:ee:9c:d2:c9:c5:4f:5a: c1:9b:6d:e3:0f:e4:02:74:f9:c5:82:c0:9a:f4:ee: e1:42:f2:d9:95:a9:51:68:85:01:69:97:9e:ec:92: 55:6f:78:54:bd:3b:b5:3c:cc:47:d0:02:29:e5:48: a9:70:9e:bd:48:f7:c1:a8:42:1c:83:d5:01:8e:b6: 03:7f:ad:28:da:a4:d3:e6:1b:cb:f9:f8:46:0d:81: c5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:07:45:56:7E:A1:FE:78:AA:7C:3F:F9:F4:D4:83:8D:10:53:29:8B X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hQdFVn6h_niqfD_59NSDjRBTKYs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.52.0/22 31.56.83.0/24 31.56.112.0/24 31.56.219.0/24 31.57.161.0/24 31.57.199.0/24 31.58.88.0/24 31.59.68.0/24 Signature Algorithm: sha256WithRSAEncryption 33:80:4d:7a:99:90:71:4e:52:f1:bf:ed:c3:59:1a:f3:d0:f3: 89:48:22:dd:6d:98:b5:d8:3b:28:2a:ce:97:1a:2f:2a:7a:ba: 0e:80:92:43:88:58:57:ba:10:55:76:c4:0e:fb:0b:a2:9a:12: 3f:cf:94:89:aa:6d:a9:5a:c3:22:74:fb:0c:17:f8:45:32:0d: ac:5c:1e:d1:a5:23:74:79:57:68:0c:9a:4d:3b:f9:c8:d4:79: bd:53:26:6f:fa:44:6e:47:3b:bd:33:df:c4:6d:ce:8a:b6:3e: 2d:75:35:57:1e:b3:ce:22:80:bd:ee:34:23:a9:d1:cc:1a:37: 3e:d7:46:ab:b4:b0:1b:96:d2:bb:d9:08:85:2c:c4:f0:1f:13: ac:8b:91:b6:67:45:ad:33:f3:c8:f0:95:0c:21:33:17:a9:80: 6f:f4:3f:3e:8a:8e:7a:ce:8c:c1:0a:7e:ab:39:b5:84:21:59: 32:85:8d:46:45:b3:d7:7f:0b:d0:0a:53:3d:66:45:1e:5c:77: 92:b6:28:f4:16:7f:db:54:8f:30:bd:2d:e3:71:63:19:81:5d: 2d:77:40:f6:a6:7e:26:da:7c:62:a2:be:81:1e:ee:fd:35:36: ff:e1:50:d0:0f:c2:00:cb:73:bb:e3:44:df:7d:f8:a3:2e:d8: cf:88:0a:df -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZtgusTS1lJFKwmNNwbbthmyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjUxMjI3MTY1MzMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTA3NDU1NjdlYTFmZTc4YWE3YzNmZjlmNGQ0ODM4ZDEwNTMyOThiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwraUCfg3m3yIhH+QUnf7+aeBXBrv Atvn5rYlwsnRlpMLtDXxqv0HtcnkKLuUEDWL8JS8uacZBivd56+CajxiOE6XHde1 V09z56MYrLQbG0g+7iINa1rKM0kj75yVb5qbT4dgPNbiwQCVXoKlPi9fRPBOBAY6 LXoVvgIozBVAmXWgs54zsQ2sNfe5Rk7FAkztMHVVhkWJiteUIPo9WNfJI6kea6r4 2uXZfC+UpO6c0snFT1rBm23jD+QCdPnFgsCa9O7hQvLZlalRaIUBaZee7JJVb3hU vTu1PMxH0AIp5UipcJ69SPfBqEIcg9UBjrYDf60o2qTT5hvL+fhGDYHF+wIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFIUHRVZ+of54qnw/+fTUg40QUymLMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvaFFkRlZuNmhfbmlxZkRfNTlOU0RqUkJUS1lzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCHzg0AwQA HzhTAwQAHzhwAwQAHzjbAwQAHzmhAwQAHznHAwQAHzpYAwQAHztEMA0GCSqGSIb3 DQEBCwUAA4IBAQAzgE16mZBxTlLxv+3DWRrz0POJSCLdbZi12DsoKs6XGi8qeroO gJJDiFhXuhBVdsQO+wuimhI/z5SJqm2pWsMidPsMF/hFMg2sXB7RpSN0eVdoDJpN O/nI1Hm9UyZv+kRuRzu9M9/Ebc6Ktj4tdTVXHrPOIoC97jQjqdHMGjc+10artLAb ltK72QiFLMTwHxOsi5G2Z0WtM/PI8JUMITMXqYBv9D8+io56zozBCn6rObWEIVky hY1GRbPXfwvQClM9ZkUeXHeStij0Fn/bVI8wvS3jcWMZgV0td0D2pn4m2nxior6B Hu79NTb/4VDQD8IAy3O740TfffijLtjPiArf -----END CERTIFICATE-----Generated at Tue Dec 30 23:53:55 2025 by rpki-client