This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/ZwlhiYyWQkRGz3NJHJFyM_Rg7Cg.roa File: ZwlhiYyWQkRGz3NJHJFyM_Rg7Cg.roa (raw, json) Hash identifier: 5by/fhrdm7/3f06Vze3ay8vgCnkJXF3Gh0BeggMxG98= Subject key identifier: 67:09:61:89:8C:96:42:44:46:CF:73:49:1C:91:72:33:F4:60:EC:28 Certificate issuer: /CN=efa5b62347a1b64cea49a2ab3ab4983c34861fb2 Certificate serial: 019AE3BDA9A752F2341D05938B44C3C18C2E Authority key identifier: EF:A5:B6:23:47:A1:B6:4C:EA:49:A2:AB:3A:B4:98:3C:34:86:1F:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/76W2I0ehtkzqSaKrOrSYPDSGH7I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/ZwlhiYyWQkRGz3NJHJFyM_Rg7Cg.roa Signing time: Wed 03 Dec 2025 10:24:08 +0000 ROA not before: Wed 03 Dec 2025 10:24:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 216416 IP address blocks: 185.207.136.0/24 maxlen: 24 185.207.137.0/24 maxlen: 24 185.207.138.0/24 maxlen: 24 185.207.139.0/24 maxlen: 24 188.137.152.0/24 maxlen: 24 188.137.153.0/24 maxlen: 24 188.137.154.0/24 maxlen: 24 188.137.155.0/24 maxlen: 24 188.137.156.0/24 maxlen: 24 188.137.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/76W2I0ehtkzqSaKrOrSYPDSGH7I.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/76W2I0ehtkzqSaKrOrSYPDSGH7I.mft rsync://rpki.ripe.net/repository/DEFAULT/76W2I0ehtkzqSaKrOrSYPDSGH7I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e3:bd:a9:a7:52:f2:34:1d:05:93:8b:44:c3:c1:8c:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=efa5b62347a1b64cea49a2ab3ab4983c34861fb2 Validity Not Before: Dec 3 10:24:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=670961898c96424446cf73491c917233f460ec28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:40:62:3b:ad:89:c5:86:80:6e:38:da:1f:bd: 15:38:9b:2a:b2:b0:27:ed:98:8c:f9:51:94:2d:06: b3:ce:16:0b:64:d0:7f:30:71:6f:45:f4:6b:b2:99: db:f6:e2:33:aa:99:05:75:1b:45:30:89:1b:09:59: de:ae:97:66:d3:3d:e2:65:e8:75:4d:4d:89:9c:ca: e3:42:b6:be:92:f2:ea:ec:62:68:49:b8:1e:9e:45: 24:95:89:60:68:31:36:4f:fb:64:77:15:a8:52:4b: d0:9a:32:05:71:c8:7b:45:1c:ab:11:6e:84:29:80: 14:fa:6a:b1:cc:64:93:3f:b3:09:64:13:fd:92:e3: 7c:b6:6f:63:52:73:c4:2f:20:3d:5b:de:d2:fa:0b: b6:b8:76:da:43:a2:82:1d:f6:2b:cf:e6:d6:d3:c5: 51:0a:e5:20:60:1c:7a:b4:aa:83:07:aa:51:71:a1: 9a:59:a6:e7:8b:63:90:7f:f3:a1:95:8f:99:4a:9f: 0f:1a:a9:fa:a5:e5:f4:c5:3a:ed:7d:99:eb:12:54: dd:dd:28:19:c8:ef:f5:61:4a:76:7f:76:87:58:bb: b9:d3:bf:3d:b9:3f:bf:1d:34:ea:9d:4e:2d:a4:57: 9c:30:89:82:73:17:f8:d7:28:fa:be:a3:94:82:38: 47:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:09:61:89:8C:96:42:44:46:CF:73:49:1C:91:72:33:F4:60:EC:28 X509v3 Authority Key Identifier: keyid:EF:A5:B6:23:47:A1:B6:4C:EA:49:A2:AB:3A:B4:98:3C:34:86:1F:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/76W2I0ehtkzqSaKrOrSYPDSGH7I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/ZwlhiYyWQkRGz3NJHJFyM_Rg7Cg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/76W2I0ehtkzqSaKrOrSYPDSGH7I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.207.136.0/22 188.137.152.0-188.137.157.255 Signature Algorithm: sha256WithRSAEncryption 24:6f:6d:86:79:7b:4f:e9:db:a7:94:28:14:2b:77:26:a6:e1: 0c:00:4e:2c:6d:aa:cc:84:99:fc:95:e2:65:5d:39:ff:ef:69: e2:c6:42:66:14:1a:53:c0:f1:85:91:d3:88:27:3f:52:72:2b: e4:67:2f:64:d1:20:00:48:54:9f:2c:2e:1c:04:19:bb:68:b4: 9d:45:57:de:a6:7e:40:f1:ea:56:dc:02:7b:47:40:83:77:c6: 8d:90:a7:cd:3b:62:f9:5f:e4:d7:10:71:57:4c:e2:9a:dd:ff: f1:a6:c1:5b:86:1e:6d:a6:b4:72:f6:fc:89:e3:29:fd:41:7b: cf:45:00:54:b6:b1:06:78:32:8c:99:de:98:22:90:cf:b5:2a: 99:30:25:f2:c5:86:71:a0:1b:40:a6:7a:39:a8:5f:ca:e0:ff: a9:f0:aa:28:d0:fb:10:14:0a:1b:79:fc:65:0e:76:ce:91:44: 1b:d2:b1:47:21:30:9b:0e:5a:05:92:d6:e1:31:8f:fb:ee:cc: 9f:71:8d:de:64:87:84:68:7c:9c:f5:b2:a6:98:94:49:88:11: f8:7a:cb:5e:0b:13:f0:61:e0:82:6b:c3:a2:8d:1e:1a:00:87: 45:4c:ba:94:06:b8:0e:39:40:a5:c2:29:bd:ee:63:58:a4:f9: 9b:a2:7d:a3 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZrjvamnUvI0HQWTi0TDwYwuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmYTViNjIzNDdhMWI2NGNlYTQ5YTJhYjNhYjQ5ODNjMzQ4 NjFmYjIwHhcNMjUxMjAzMTAyNDA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzA5NjE4OThjOTY0MjQ0NDZjZjczNDkxYzkxNzIzM2Y0NjBlYzI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0BiO62JxYaAbjjaH70VOJsqsrAn 7ZiM+VGULQazzhYLZNB/MHFvRfRrspnb9uIzqpkFdRtFMIkbCVnerpdm0z3iZeh1 TU2JnMrjQra+kvLq7GJoSbgenkUklYlgaDE2T/tkdxWoUkvQmjIFcch7RRyrEW6E KYAU+mqxzGSTP7MJZBP9kuN8tm9jUnPELyA9W97S+gu2uHbaQ6KCHfYrz+bW08VR CuUgYBx6tKqDB6pRcaGaWabni2OQf/OhlY+ZSp8PGqn6peX0xTrtfZnrElTd3SgZ yO/1YUp2f3aHWLu50789uT+/HTTqnU4tpFecMImCcxf41yj6vqOUgjhHKwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFGcJYYmMlkJERs9zSRyRcjP0YOwoMB8GA1UdIwQY MBaAFO+ltiNHobZM6kmiqzq0mDw0hh+yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzZXMkkwZWh0a3pxU2FLck9yU1lQRFNHSDdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yNGRiMjEtZWZiOS00MDdlLTk2YWQt MDEzZDJhMTFjMGE1LzEvWndsaGlZeVdRa1JHejNOSkhKRnlNX1JnN0NnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8yNGRiMjEtZWZiOS00MDdlLTk2YWQtMDEzZDJhMTFjMGE1 LzEvNzZXMkkwZWh0a3pxU2FLck9yU1lQRFNHSDdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQCuc+IMAwD BAO8iZgDBAG8iZwwDQYJKoZIhvcNAQELBQADggEBACRvbYZ5e0/p26eUKBQrdyam 4QwATixtqsyEmfyV4mVdOf/vaeLGQmYUGlPA8YWR04gnP1JyK+RnL2TRIABIVJ8s LhwEGbtotJ1FV96mfkDx6lbcAntHQIN3xo2Qp807Yvlf5NcQcVdM4prd//GmwVuG Hm2mtHL2/InjKf1Be89FAFS2sQZ4MoyZ3pgikM+1KpkwJfLFhnGgG0CmejmoX8rg /6nwqijQ+xAUCht5/GUOds6RRBvSsUchMJsOWgWS1uExj/vuzJ9xjd5kh4RofJz1 sqaYlEmIEfh6y14LE/Bh4IJrw6KNHhoAh0VMupQGuA45QKXCKb3uY1ik+ZuifaM= -----END CERTIFICATE-----Generated at Sat Dec 6 16:34:51 2025 by rpki-client