This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/q_SHJ5IyXsykFgek4t_KsFaEQ5U.roa File: q_SHJ5IyXsykFgek4t_KsFaEQ5U.roa (raw, json) Hash identifier: A4mKYpa62e2fZARPUeUv3pe7BMEESkmU9sbUJFjOPCk= Subject key identifier: AB:F4:87:27:92:32:5E:CC:A4:16:07:A4:E2:DF:CA:B0:56:84:43:95 Certificate issuer: /CN=66f8206e3311df394f48389b8122b94aa1f0b05c Certificate serial: 019AE52BE027D1C23D8F7B649DACDBD03B90 Authority key identifier: 66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/q_SHJ5IyXsykFgek4t_KsFaEQ5U.roa Signing time: Wed 03 Dec 2025 17:04:09 +0000 ROA not before: Wed 03 Dec 2025 17:04:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215481 IP address blocks: 185.229.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.mft rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e5:2b:e0:27:d1:c2:3d:8f:7b:64:9d:ac:db:d0:3b:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66f8206e3311df394f48389b8122b94aa1f0b05c Validity Not Before: Dec 3 17:04:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=abf4872792325ecca41607a4e2dfcab056844395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:59:dc:e3:60:c2:b4:88:12:1e:a9:65:d2:fe: 38:7c:98:97:2f:92:ac:ba:0b:bd:ae:19:e2:bd:93: 60:07:e8:90:80:20:1d:b9:76:0f:5d:f8:60:37:14: 10:f8:9d:da:25:af:7f:36:3f:0f:ea:2f:9a:d1:88: 26:83:9a:11:7a:41:df:1f:09:69:a5:f5:a3:37:4a: ab:5f:19:d4:a8:52:93:ac:22:b4:74:72:03:16:e4: af:ab:7a:c9:54:54:ae:a3:94:d8:34:aa:97:bd:4b: 91:7e:86:63:f9:57:e5:1d:ef:6c:15:75:41:7c:56: 4f:b4:9b:9f:0a:76:c6:32:11:65:c4:cf:56:cc:67: e4:41:f0:c6:36:df:4d:fe:e7:28:c5:88:c2:62:59: e0:96:7d:9c:2a:3f:f7:75:06:90:e4:33:0a:39:e7: bc:2b:23:a3:3c:63:b0:80:2b:46:e7:67:b3:c7:c7: 8a:1e:51:de:e9:6d:d8:01:60:00:24:e4:d7:00:d2: bc:e5:f4:47:6d:72:f6:03:16:03:10:97:fb:b3:b3: 08:5d:9e:74:39:b0:d7:5a:6f:eb:a8:d3:0d:43:29: cd:90:30:71:96:31:5a:8c:7c:37:ed:8c:53:f1:9b: e2:12:77:7c:21:da:ea:97:7d:d5:d7:0c:5f:ea:f1: d9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:F4:87:27:92:32:5E:CC:A4:16:07:A4:E2:DF:CA:B0:56:84:43:95 X509v3 Authority Key Identifier: keyid:66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/q_SHJ5IyXsykFgek4t_KsFaEQ5U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.35.0/24 Signature Algorithm: sha256WithRSAEncryption 53:49:00:e4:95:14:08:4d:a0:2b:e7:52:1b:63:88:0b:d5:35: 24:78:e4:95:cb:0f:ce:bc:2a:73:f0:c9:95:f2:17:d9:d7:e1: 06:e4:0e:0a:2f:19:2e:45:58:85:05:5e:6c:38:30:4c:0b:33: 4d:45:3e:a2:27:97:c3:7d:42:cf:0d:92:b9:05:ab:3d:4f:d4: 30:6c:b6:77:97:20:21:40:13:ae:22:f4:99:14:b6:39:5b:2e: 56:ba:bf:98:c0:45:1b:b8:cd:ce:0f:ef:21:fb:7d:5e:de:52: 19:0c:e0:8b:ba:ec:d3:86:81:26:84:2d:d2:f4:17:e6:ed:58: 30:43:0e:82:23:ab:3f:31:cb:7e:c6:92:80:5c:42:00:a6:40: 27:31:86:ad:4e:80:fe:f0:1b:24:98:4d:93:07:92:67:ff:5b: c7:f3:86:d4:14:5b:92:8c:e7:3a:a1:17:2e:91:98:9f:04:03: f0:54:14:c3:2e:e8:dc:34:79:82:52:c7:a2:0f:69:3e:bb:2e: 32:de:1f:8e:82:7a:5d:62:bb:54:56:d7:e0:4d:4a:b7:03:a5: f4:13:c0:45:d2:3e:e7:70:2e:9e:61:e1:f9:37:14:d0:59:ea: b3:b7:ed:f3:10:47:20:4e:58:4e:91:5f:78:df:4e:2a:f0:e0: 6f:f3:f0:63 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZrlK+An0cI9j3tknazb0DuQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZjgyMDZlMzMxMWRmMzk0ZjQ4Mzg5YjgxMjJiOTRhYTFm MGIwNWMwHhcNMjUxMjAzMTcwNDA5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYmY0ODcyNzkyMzI1ZWNjYTQxNjA3YTRlMmRmY2FiMDU2ODQ0Mzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVnc42DCtIgSHqll0v44fJiXL5Ks ugu9rhnivZNgB+iQgCAduXYPXfhgNxQQ+J3aJa9/Nj8P6i+a0Ygmg5oRekHfHwlp pfWjN0qrXxnUqFKTrCK0dHIDFuSvq3rJVFSuo5TYNKqXvUuRfoZj+VflHe9sFXVB fFZPtJufCnbGMhFlxM9WzGfkQfDGNt9N/ucoxYjCYlngln2cKj/3dQaQ5DMKOee8 KyOjPGOwgCtG52ezx8eKHlHe6W3YAWAAJOTXANK85fRHbXL2AxYDEJf7s7MIXZ50 ObDXWm/rqNMNQynNkDBxljFajHw37YxT8ZviEnd8Idrql33V1wxf6vHZkQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKv0hyeSMl7MpBYHpOLfyrBWhEOVMB8GA1UdIwQY MBaAFGb4IG4zEd85T0g4m4EiuUqh8LBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnZnZ2JqTVIzemxQU0RpYmdTSzVTcUh3c0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9iZTFhMjUtNTg1NS00YWVjLThlMTgt YmJmZDQ1Yzg0YmVhLzEvcV9TSEo1SXlYc3lrRmdlazR0X0tzRmFFUTVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9iZTFhMjUtNTg1NS00YWVjLThlMTgtYmJmZDQ1Yzg0YmVh LzEvWnZnZ2JqTVIzemxQU0RpYmdTSzVTcUh3c0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueUjMA0G CSqGSIb3DQEBCwUAA4IBAQBTSQDklRQITaAr51IbY4gL1TUkeOSVyw/OvCpz8MmV 8hfZ1+EG5A4KLxkuRViFBV5sODBMCzNNRT6iJ5fDfULPDZK5Bas9T9QwbLZ3lyAh QBOuIvSZFLY5Wy5Wur+YwEUbuM3OD+8h+31e3lIZDOCLuuzThoEmhC3S9Bfm7Vgw Qw6CI6s/Mct+xpKAXEIApkAnMYatToD+8BskmE2TB5Jn/1vH84bUFFuSjOc6oRcu kZifBAPwVBTDLujcNHmCUseiD2k+uy4y3h+OgnpdYrtUVtfgTUq3A6X0E8BF0j7n cC6eYeH5NxTQWeqzt+3zEEcgTlhOkV94304q8OBv8/Bj -----END CERTIFICATE-----Generated at Thu Dec 4 07:32:06 2025 by rpki-client