This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/zT3qRTo_Bh_Y4PRUIgbcM4_OPhI.roa File: zT3qRTo_Bh_Y4PRUIgbcM4_OPhI.roa (raw, json) Hash identifier: DLHVLGVEeEcowvlPfROsXYSKn9EL35p8lKZcaisVJ0I= Subject key identifier: CD:3D:EA:45:3A:3F:06:1F:D8:E0:F4:54:22:06:DC:33:8F:CE:3E:12 Certificate issuer: /CN=4722aea0ef4c0667db819f5d5a3daea6399f038c Certificate serial: 019B7EA586BF189D6464A3FF1D6CE943E471 Authority key identifier: 47:22:AE:A0:EF:4C:06:67:DB:81:9F:5D:5A:3D:AE:A6:39:9F:03:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyKuoO9MBmfbgZ9dWj2upjmfA4w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/zT3qRTo_Bh_Y4PRUIgbcM4_OPhI.roa Signing time: Fri 02 Jan 2026 12:18:55 +0000 ROA not before: Fri 02 Jan 2026 12:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206892 IP address blocks: 45.95.44.0/22 maxlen: 24 94.199.178.0/23 maxlen: 24 94.199.179.0/24 maxlen: 24 95.140.32.0/24 maxlen: 24 95.140.38.0/23 maxlen: 24 185.90.236.0/22 maxlen: 24 185.161.72.0/22 maxlen: 24 185.199.28.0/22 maxlen: 24 185.234.180.0/22 maxlen: 24 194.39.44.0/22 maxlen: 24 195.200.232.0/23 maxlen: 24 2a07:c280::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/RyKuoO9MBmfbgZ9dWj2upjmfA4w.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/RyKuoO9MBmfbgZ9dWj2upjmfA4w.mft rsync://rpki.ripe.net/repository/DEFAULT/RyKuoO9MBmfbgZ9dWj2upjmfA4w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:86:bf:18:9d:64:64:a3:ff:1d:6c:e9:43:e4:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4722aea0ef4c0667db819f5d5a3daea6399f038c Validity Not Before: Jan 2 12:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd3dea453a3f061fd8e0f4542206dc338fce3e12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e2:15:06:5b:a7:48:25:f6:ab:6e:51:6e:62: 44:d2:b1:5e:0e:a1:da:f7:1c:90:dc:81:f2:10:0d: 64:f1:58:cd:69:9b:4b:c1:33:bf:57:95:96:d2:fc: 47:e0:10:39:e7:66:e0:6c:b0:06:a2:6a:35:b0:2a: cf:05:1d:c7:bf:2d:3f:53:18:27:05:92:07:30:6f: ab:8a:69:84:1d:5b:05:db:59:d1:62:39:39:9d:3e: 8d:69:45:48:7e:ac:e6:6f:98:ed:00:58:51:48:28: 8d:d5:29:87:a9:74:fc:07:96:8c:3a:ee:42:aa:0b: d4:ea:0c:40:56:36:a7:eb:e5:77:d8:0b:60:f4:d9: ee:e8:7d:54:f3:fa:6b:6e:63:b1:79:11:fe:58:ec: 3e:64:b0:5f:25:c9:05:a8:50:db:2f:b1:21:30:e9: 91:6e:0b:ae:cb:58:52:ab:eb:6e:84:20:81:78:a4: e0:9b:3b:9b:fb:25:45:57:c4:87:04:f1:52:41:6c: f7:b3:70:85:6e:28:04:e3:44:57:8a:98:ca:be:f2: e3:b8:2c:f8:31:9d:f0:0d:ec:4a:3c:70:f3:7b:a7: da:aa:bf:5e:78:21:5f:ef:a0:18:dc:3a:6d:af:e1: e6:47:8d:9f:87:b1:f1:76:1f:73:eb:5a:ce:70:5f: 2e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:3D:EA:45:3A:3F:06:1F:D8:E0:F4:54:22:06:DC:33:8F:CE:3E:12 X509v3 Authority Key Identifier: keyid:47:22:AE:A0:EF:4C:06:67:DB:81:9F:5D:5A:3D:AE:A6:39:9F:03:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyKuoO9MBmfbgZ9dWj2upjmfA4w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/zT3qRTo_Bh_Y4PRUIgbcM4_OPhI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/RyKuoO9MBmfbgZ9dWj2upjmfA4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.95.44.0/22 94.199.178.0/23 95.140.32.0/24 95.140.38.0/23 185.90.236.0/22 185.161.72.0/22 185.199.28.0/22 185.234.180.0/22 194.39.44.0/22 195.200.232.0/23 IPv6: 2a07:c280::/32 Signature Algorithm: sha256WithRSAEncryption c7:b4:47:e4:43:19:f8:d5:eb:f0:cf:9b:23:d4:d9:42:b8:b2: c7:5e:75:37:c5:27:1d:cb:00:bb:8a:bc:f7:37:bf:ca:ea:f9: 8a:2b:6b:97:c8:25:22:b8:2f:2e:2e:f7:7f:b6:da:23:05:47: 2b:61:d9:e8:d8:00:6d:cd:c9:3b:68:5d:3c:ff:38:20:16:c2: 0c:ee:5e:dd:13:77:fb:34:8c:27:fe:60:78:96:fc:6e:1c:07: 28:8e:5f:b9:03:b0:c3:64:bd:bc:d8:d6:d7:a7:eb:d1:6e:ca: cb:26:94:51:e1:ab:77:6c:38:fe:52:0a:78:34:f9:a7:31:2c: 55:5d:63:a8:19:f0:06:5c:02:f4:14:dc:c9:45:15:f3:a3:ce: 04:1c:42:00:8c:46:f1:e2:ce:a0:c0:c6:4b:65:35:18:c9:82: 3a:0a:bf:fb:41:d2:75:c0:e7:ab:6d:db:95:2b:c0:0f:08:6e: bc:66:91:13:3d:b9:8a:b4:82:1e:79:8c:c0:ab:dc:ad:ac:be: 9f:2e:97:da:12:0e:4f:56:73:73:db:65:82:1f:28:5b:e6:2b: e3:7d:00:ae:f6:e1:04:07:c6:ee:23:e2:6c:5d:c8:d4:d0:34: 89:dc:4c:6d:59:a5:38:62:c1:45:35:e0:52:3c:2b:70:02:1d: 0c:39:82:9d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgISAZt+pYa/GJ1kZKP/HWzpQ+RxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3MjJhZWEwZWY0YzA2NjdkYjgxOWY1ZDVhM2RhZWE2Mzk5 ZjAzOGMwHhcNMjYwMTAyMTIxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDNkZWE0NTNhM2YwNjFmZDhlMGY0NTQyMjA2ZGMzMzhmY2UzZTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1eIVBlunSCX2q25RbmJE0rFeDqHa 9xyQ3IHyEA1k8VjNaZtLwTO/V5WW0vxH4BA552bgbLAGomo1sCrPBR3Hvy0/Uxgn BZIHMG+rimmEHVsF21nRYjk5nT6NaUVIfqzmb5jtAFhRSCiN1SmHqXT8B5aMOu5C qgvU6gxAVjan6+V32Atg9Nnu6H1U8/prbmOxeRH+WOw+ZLBfJckFqFDbL7EhMOmR bguuy1hSq+tuhCCBeKTgmzub+yVFV8SHBPFSQWz3s3CFbigE40RXipjKvvLjuCz4 MZ3wDexKPHDze6faqr9eeCFf76AY3Dptr+HmR42fh7Hxdh9z61rOcF8uywIDAQAB o4ICTjCCAkowHQYDVR0OBBYEFM096kU6PwYf2OD0VCIG3DOPzj4SMB8GA1UdIwQY MBaAFEcirqDvTAZn24GfXVo9rqY5nwOMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnlLdW9POU1CbWZiZ1o5ZFdqMnVwam1mQTR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi84MGMzODctYjIwYi00MzBhLWE1ZTYt NmUzMDc0YzZjNjYzLzEvelQzcVJUb19CaF9ZNFBSVUlnYmNNNF9PUGhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi84MGMzODctYjIwYi00MzBhLWE1ZTYtNmUzMDc0YzZjNjYz LzEvUnlLdW9POU1CbWZiZ1o5ZFdqMnVwam1mQTR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGQGCCsGAQUFBwEHAQH/BFUwUzBCBAIAATA8AwQCLV8sAwQB XseyAwQAX4wgAwQBX4wmAwQCuVrsAwQCuaFIAwQCucccAwQCueq0AwQCwicsAwQB w8joMA0EAgACMAcDBQAqB8KAMA0GCSqGSIb3DQEBCwUAA4IBAQDHtEfkQxn41evw z5sj1NlCuLLHXnU3xScdywC7irz3N7/K6vmKK2uXyCUiuC8uLvd/ttojBUcrYdno 2ABtzck7aF08/zggFsIM7l7dE3f7NIwn/mB4lvxuHAcojl+5A7DDZL282NbXp+vR bsrLJpRR4at3bDj+Ugp4NPmnMSxVXWOoGfAGXAL0FNzJRRXzo84EHEIAjEbx4s6g wMZLZTUYyYI6Cr/7QdJ1wOerbduVK8APCG68ZpETPbmKtIIeeYzAq9ytrL6fLpfa Eg5PVnNz22WCHyhb5ivjfQCu9uEEB8buI+JsXcjU0DSJ3ExtWaU4YsFFNeBSPCtw Ah0MOYKd -----END CERTIFICATE-----Generated at Mon Jan 26 04:20:15 2026 by rpki-client