This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/BKrQXqfrcTeiKgHXj86E48D-w8g.roa File: BKrQXqfrcTeiKgHXj86E48D-w8g.roa (raw, json) Hash identifier: L26jc+T0fl1hv7R2zWx4ljKg9N/dLOL1UCp15HLrhrY= Subject key identifier: 04:AA:D0:5E:A7:EB:71:37:A2:2A:01:D7:8F:CE:84:E3:C0:FE:C3:C8 Certificate issuer: /CN=66f8206e3311df394f48389b8122b94aa1f0b05c Certificate serial: 019AE52BDFCF0CD5FD053CCFEF8F22853B6A Authority key identifier: 66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/BKrQXqfrcTeiKgHXj86E48D-w8g.roa Signing time: Wed 03 Dec 2025 17:04:09 +0000 ROA not before: Wed 03 Dec 2025 17:04:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 211588 IP address blocks: 185.229.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.mft rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e5:2b:df:cf:0c:d5:fd:05:3c:cf:ef:8f:22:85:3b:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66f8206e3311df394f48389b8122b94aa1f0b05c Validity Not Before: Dec 3 17:04:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=04aad05ea7eb7137a22a01d78fce84e3c0fec3c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2d:46:a0:4a:52:b2:ba:a1:ac:c0:fa:3b:9c: 26:2b:c1:7e:7f:c8:d6:ac:92:69:ea:2d:3a:ff:c0: 0f:ae:8e:81:27:a4:a2:38:8e:b5:63:a1:28:a9:cb: 32:87:6f:6f:a3:4e:4e:d7:21:34:ff:8a:9d:30:ca: 3a:07:1f:05:8b:07:45:28:08:53:e0:0c:5f:3c:3e: 69:e7:6e:35:22:ed:bc:a4:9a:75:fd:08:2d:5e:42: 04:e5:c5:43:84:63:58:b2:1d:99:8c:2e:fb:f3:d7: 59:df:95:aa:61:df:4b:c3:bc:36:63:99:89:a2:b3: 16:d3:69:7a:19:7a:e6:ef:aa:21:12:56:f7:ea:43: 24:f0:e8:9c:bf:10:0f:66:4b:f5:b6:ff:44:0a:90: b8:f4:5c:1f:e7:68:f1:96:81:a4:5d:ad:57:45:b1: 31:c7:d6:5c:b8:b5:40:40:27:d2:b4:0c:8d:3b:b9: cf:c6:90:b2:e0:63:7c:be:8b:1c:a4:4e:b4:1d:72: 0e:88:fa:7d:30:ce:8e:51:1b:de:c6:54:c2:49:7d: 3f:d9:4f:71:45:a0:3d:2b:3a:7b:b3:99:62:9d:fe: fe:c8:e2:42:01:06:db:78:70:3c:da:47:1a:14:da: e8:13:72:d6:4a:ab:15:77:86:4a:c7:20:79:3e:90: be:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AA:D0:5E:A7:EB:71:37:A2:2A:01:D7:8F:CE:84:E3:C0:FE:C3:C8 X509v3 Authority Key Identifier: keyid:66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/BKrQXqfrcTeiKgHXj86E48D-w8g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.33.0/24 Signature Algorithm: sha256WithRSAEncryption 13:dc:ce:ba:7d:43:a7:6c:0e:cf:51:44:14:59:87:a0:90:30: 16:ad:69:6e:e4:d4:51:f2:eb:1a:7c:b5:80:83:8d:fe:22:fd: e4:0a:ea:5f:59:3b:43:72:13:03:5b:22:77:8d:d8:d1:79:1e: 59:07:15:b3:d7:dc:44:a1:fb:f5:fd:3c:a7:28:aa:b6:f9:35: 14:38:9b:9c:f2:88:50:00:fc:ed:9d:c5:82:b5:b7:5d:80:3a: 0e:c9:f0:89:eb:65:78:9c:27:94:97:ae:0a:6c:e0:2a:d7:17: bc:76:9f:74:c6:ab:27:cc:b1:56:16:fd:3e:13:77:cc:db:50: 0d:58:b6:8c:cd:19:c3:73:10:33:d8:14:69:39:cc:3f:08:d9: ac:01:fc:6a:e4:f8:11:b6:ee:ce:af:10:68:ea:7b:f6:b6:e3: 03:ee:f7:57:03:9b:f1:ca:63:00:c2:d9:19:8c:01:88:d3:b5: 9a:1b:da:41:6d:fb:8f:3a:47:1f:59:d5:12:97:db:61:79:87: 9b:bf:77:46:36:80:8f:91:73:ea:4e:d1:54:da:0f:e9:69:3d: 39:34:e5:bb:51:76:83:49:16:94:6b:fe:72:7e:83:14:44:c2: 4c:db:3d:01:1f:df:0a:d3:36:e8:e2:88:3e:28:95:e4:b1:2d: ae:67:78:29 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZrlK9/PDNX9BTzP748ihTtqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZjgyMDZlMzMxMWRmMzk0ZjQ4Mzg5YjgxMjJiOTRhYTFm MGIwNWMwHhcNMjUxMjAzMTcwNDA5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNGFhZDA1ZWE3ZWI3MTM3YTIyYTAxZDc4ZmNlODRlM2MwZmVjM2M4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwS1GoEpSsrqhrMD6O5wmK8F+f8jW rJJp6i06/8APro6BJ6SiOI61Y6Eoqcsyh29vo05O1yE0/4qdMMo6Bx8FiwdFKAhT 4AxfPD5p5241Iu28pJp1/QgtXkIE5cVDhGNYsh2ZjC7789dZ35WqYd9Lw7w2Y5mJ orMW02l6GXrm76ohElb36kMk8OicvxAPZkv1tv9ECpC49Fwf52jxloGkXa1XRbEx x9ZcuLVAQCfStAyNO7nPxpCy4GN8voscpE60HXIOiPp9MM6OURvexlTCSX0/2U9x RaA9Kzp7s5linf7+yOJCAQbbeHA82kcaFNroE3LWSqsVd4ZKxyB5PpC+DQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFASq0F6n63E3oioB14/OhOPA/sPIMB8GA1UdIwQY MBaAFGb4IG4zEd85T0g4m4EiuUqh8LBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnZnZ2JqTVIzemxQU0RpYmdTSzVTcUh3c0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9iZTFhMjUtNTg1NS00YWVjLThlMTgt YmJmZDQ1Yzg0YmVhLzEvQktyUVhxZnJjVGVpS2dIWGo4NkU0OEQtdzhnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9iZTFhMjUtNTg1NS00YWVjLThlMTgtYmJmZDQ1Yzg0YmVh LzEvWnZnZ2JqTVIzemxQU0RpYmdTSzVTcUh3c0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueUhMA0G CSqGSIb3DQEBCwUAA4IBAQAT3M66fUOnbA7PUUQUWYegkDAWrWlu5NRR8usafLWA g43+Iv3kCupfWTtDchMDWyJ3jdjReR5ZBxWz19xEofv1/TynKKq2+TUUOJuc8ohQ APztncWCtbddgDoOyfCJ62V4nCeUl64KbOAq1xe8dp90xqsnzLFWFv0+E3fM21AN WLaMzRnDcxAz2BRpOcw/CNmsAfxq5PgRtu7OrxBo6nv2tuMD7vdXA5vxymMAwtkZ jAGI07WaG9pBbfuPOkcfWdUSl9theYebv3dGNoCPkXPqTtFU2g/paT05NOW7UXaD SRaUa/5yfoMURMJM2z0BH98K0zbo4og+KJXksS2uZ3gp -----END CERTIFICATE-----Generated at Fri Dec 5 18:22:19 2025 by rpki-client