This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/uJY0aCLxZzoLq0XvsLawDEej2hM.roa File: uJY0aCLxZzoLq0XvsLawDEej2hM.roa (raw, json) Hash identifier: FERilVGSuoFY+23zYgzW1Kj+2ucoIGxYNPXxSDhlp1I= Subject key identifier: B8:96:34:68:22:F1:67:3A:0B:AB:45:EF:B0:B6:B0:0C:47:A3:DA:13 Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722 Certificate serial: 019A9B9A15A5807181B7AA6E8CDDDDE455BA Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/uJY0aCLxZzoLq0XvsLawDEej2hM.roa Signing time: Wed 19 Nov 2025 10:12:37 +0000 ROA not before: Wed 19 Nov 2025 10:12:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 85.115.208.0/23 maxlen: 24 85.115.210.0/23 maxlen: 24 213.145.68.0/23 maxlen: 23 213.145.70.0/23 maxlen: 24 213.145.70.0/24 maxlen: 24 213.145.72.0/21 maxlen: 24 213.145.82.0/24 maxlen: 24 213.145.84.0/23 maxlen: 23 213.145.84.0/24 maxlen: 24 213.145.86.0/23 maxlen: 23 213.145.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.mft rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9b:9a:15:a5:80:71:81:b7:aa:6e:8c:dd:dd:e4:55:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722 Validity Not Before: Nov 19 10:12:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=b896346822f1673a0bab45efb0b6b00c47a3da13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:68:3d:82:f9:83:53:a3:37:22:7d:e2:7b:b4: 1a:51:ee:8e:45:74:01:74:ed:8c:8f:b9:44:30:8d: 0e:3d:28:f1:d1:04:f6:18:48:46:77:18:4c:cb:27: 14:68:65:3e:55:9f:c9:ab:d9:9a:b3:24:de:ff:5b: a3:79:48:0b:a3:4c:a3:41:0b:a9:3e:66:3b:ec:db: aa:75:8e:1c:f3:2d:db:0b:e4:10:9f:6a:9c:61:ed: bf:be:2a:e1:2e:68:4d:95:27:7a:35:9a:a0:6f:b7: 17:01:5e:df:ed:30:fa:09:4c:97:1e:74:a0:01:81: 0c:a1:01:b7:f7:c2:71:7c:1b:9b:b7:49:49:42:64: 4b:b8:90:28:17:18:bb:ba:71:2b:c7:c2:4a:1e:70: 2e:2c:77:b9:80:8c:36:92:96:67:4a:59:db:29:2c: 79:92:63:2e:20:e3:a6:d8:e0:8a:ed:05:6e:34:4e: 30:31:d8:3f:33:6a:bd:68:96:99:15:e1:53:d9:ca: 40:aa:a4:b3:36:d9:01:91:df:e2:d1:6c:9a:4c:60: 9e:20:46:f8:ed:1e:75:7c:e6:e3:ee:4b:9b:3a:cd: d8:c7:1e:e2:6b:ee:9d:a4:97:67:d5:db:59:0c:d4: 04:c9:4d:04:da:35:04:57:fc:5e:dc:b9:a1:a2:06: 08:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:96:34:68:22:F1:67:3A:0B:AB:45:EF:B0:B6:B0:0C:47:A3:DA:13 X509v3 Authority Key Identifier: keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/uJY0aCLxZzoLq0XvsLawDEej2hM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.115.208.0/22 213.145.68.0-213.145.79.255 213.145.82.0/24 213.145.84.0-213.145.89.255 Signature Algorithm: sha256WithRSAEncryption 66:b2:5b:e2:44:19:b2:57:87:d5:dc:f1:d7:eb:b9:46:20:d2: fa:c0:82:42:8e:15:f9:e8:00:30:61:33:c0:20:b3:b0:33:7a: b0:2c:8b:a2:da:8e:55:8a:4f:2e:34:92:2e:0e:2d:41:c8:d3: 41:77:67:f6:3f:93:44:4e:b6:b6:f4:d3:d1:1c:14:48:0a:09: 8a:79:a7:e3:41:f3:9f:20:1a:bd:98:ae:c6:a2:d8:05:70:36: 8e:9b:97:ce:02:fe:62:94:42:20:da:f6:09:76:a6:21:07:f6: 09:51:6f:78:c1:5b:cc:26:41:c0:b2:95:81:32:1b:d2:01:10: ec:f0:82:19:b0:15:07:0e:4c:95:21:ed:28:b4:b5:40:81:bc: e8:c3:d4:b1:06:26:15:f4:4b:b6:bd:ec:eb:8d:bf:4d:21:1f: 63:31:d5:70:3a:4f:a4:20:e0:dc:89:7a:3c:b8:b1:ee:6b:2e: 9d:51:c7:55:a1:38:7a:55:08:1e:ab:aa:80:c9:a1:51:b8:82: 9b:f5:b4:c0:26:d0:68:2c:16:d9:91:3c:db:55:b7:2c:de:f4: d7:c2:a1:aa:6e:35:8d:22:e1:d6:f3:3a:20:ec:68:9d:aa:a4: 3e:d8:c9:0a:39:b7:e5:62:c5:5e:85:f0:8a:45:a6:42:10:2b: 3d:7c:0e:e9 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZqbmhWlgHGBt6pujN3d5FW6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx ZDA3MjIwHhcNMjUxMTE5MTAxMjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODk2MzQ2ODIyZjE2NzNhMGJhYjQ1ZWZiMGI2YjAwYzQ3YTNkYTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2g9gvmDU6M3In3ie7QaUe6ORXQB dO2Mj7lEMI0OPSjx0QT2GEhGdxhMyycUaGU+VZ/Jq9masyTe/1ujeUgLo0yjQQup PmY77NuqdY4c8y3bC+QQn2qcYe2/virhLmhNlSd6NZqgb7cXAV7f7TD6CUyXHnSg AYEMoQG398JxfBubt0lJQmRLuJAoFxi7unErx8JKHnAuLHe5gIw2kpZnSlnbKSx5 kmMuIOOm2OCK7QVuNE4wMdg/M2q9aJaZFeFT2cpAqqSzNtkBkd/i0WyaTGCeIEb4 7R51fObj7kubOs3Yxx7ia+6dpJdn1dtZDNQEyU0E2jUEV/xe3LmhogYICwIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFLiWNGgi8Wc6C6tF77C2sAxHo9oTMB8GA1UdIwQY MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt ZDI0MmI2ZjNhOGExLzEvdUpZMGFDTHhaem9McTBYdnNMYXdERWVqMmhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQCVXPQMAwD BALVkUQDBATVkUADBADVkVIwDAMEAtWRVAMEAdWRWDANBgkqhkiG9w0BAQsFAAOC AQEAZrJb4kQZsleH1dzx1+u5RiDS+sCCQo4V+egAMGEzwCCzsDN6sCyLotqOVYpP LjSSLg4tQcjTQXdn9j+TRE62tvTT0RwUSAoJinmn40HznyAavZiuxqLYBXA2jpuX zgL+YpRCINr2CXamIQf2CVFveMFbzCZBwLKVgTIb0gEQ7PCCGbAVBw5MlSHtKLS1 QIG86MPUsQYmFfRLtr3s642/TSEfYzHVcDpPpCDg3Il6PLix7msunVHHVaE4elUI HquqgMmhUbiCm/W0wCbQaCwW2ZE821W3LN7018Khqm41jSLh1vM6IOxonaqkPtjJ Cjm35WLFXoXwikWmQhArPXwO6Q== -----END CERTIFICATE-----Generated at Fri Dec 5 17:19:32 2025 by rpki-client