This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/zdUU6xh-U_UhQuIpzwDv3G1TgNc.roa File: zdUU6xh-U_UhQuIpzwDv3G1TgNc.roa (raw, json) Hash identifier: Xcmlw4uYbZey4RR44rfO/TAhXzqgGs0gxnMsef5qoaI= Subject key identifier: CD:D5:14:EB:18:7E:53:F5:21:42:E2:29:CF:00:EF:DC:6D:53:80:D7 Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72 Certificate serial: 019B79EC9B588AFF376218571601FEF54A2B Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/zdUU6xh-U_UhQuIpzwDv3G1TgNc.roa Signing time: Thu 01 Jan 2026 14:18:28 +0000 ROA not before: Thu 01 Jan 2026 14:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60261 IP address blocks: 46.183.90.0/24 maxlen: 24 46.183.91.0/24 maxlen: 24 46.183.92.0/24 maxlen: 24 178.79.216.0/23 maxlen: 23 178.79.216.0/24 maxlen: 24 178.79.217.0/24 maxlen: 24 178.249.109.0/24 maxlen: 24 2a02:3d0:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:9b:58:8a:ff:37:62:18:57:16:01:fe:f5:4a:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72 Validity Not Before: Jan 1 14:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cdd514eb187e53f52142e229cf00efdc6d5380d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6f:81:9b:a4:1a:3c:f6:0c:99:3d:46:18:41: 71:a6:26:d4:4d:25:a4:ab:df:1c:f2:4d:27:b0:ba: b1:0b:89:ab:b9:8f:9b:cb:76:04:fc:74:f5:24:6d: 83:e3:f5:49:35:72:37:40:93:be:7b:b2:2e:ac:a4: 5d:28:0a:09:c8:13:71:a8:0f:8e:5a:83:c9:f7:c0: df:ea:73:3b:dc:9b:f3:db:c8:5e:2c:53:8b:28:75: 04:2d:51:2f:70:f5:60:6a:fc:f8:ae:de:a7:17:a7: cb:0b:3c:c8:be:88:43:78:02:3a:7d:92:52:f4:e7: f4:b5:4a:ad:cc:08:7a:0b:2c:d7:29:47:cc:c3:e0: af:35:fa:6f:4f:f6:cc:63:ca:10:5d:fc:09:fe:b4: d5:1b:11:aa:37:fd:e2:da:fe:c0:a3:1c:5c:75:87: cb:a4:41:8e:4d:78:f5:f5:53:ca:db:49:27:55:bf: fd:01:8e:ae:a6:46:c1:40:c0:ce:bb:0e:87:6e:30: 81:31:68:ee:da:63:eb:86:3f:3c:9e:8c:82:3e:9e: 82:82:80:bf:17:c9:62:4a:89:23:7c:ad:a0:79:07: 9d:b0:28:cf:f7:5a:80:79:a4:b3:0b:17:f6:65:fe: 7b:f7:12:d2:16:32:6d:a6:a6:21:b5:2f:e1:57:63: 22:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D5:14:EB:18:7E:53:F5:21:42:E2:29:CF:00:EF:DC:6D:53:80:D7 X509v3 Authority Key Identifier: keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/zdUU6xh-U_UhQuIpzwDv3G1TgNc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.183.90.0-46.183.92.255 178.79.216.0/23 178.249.109.0/24 IPv6: 2a02:3d0:a::/48 Signature Algorithm: sha256WithRSAEncryption 85:76:de:e5:fa:4e:db:db:7f:ed:b2:b5:56:a3:00:f5:e2:e9: 06:b9:ea:81:5b:5a:8c:c0:51:c9:af:ac:af:be:8d:0f:1d:85: c7:98:81:73:fd:a4:b8:af:d6:d6:0a:53:6c:21:fb:68:8b:a1: e7:5e:d0:e6:8c:90:71:e7:b9:ce:4b:be:86:6d:21:ac:47:ce: 24:76:09:24:ef:2a:84:71:35:a8:25:27:be:6e:4a:81:c4:43: a3:85:3f:3e:d4:ca:cd:53:45:c2:6f:29:04:eb:58:70:15:19: 9f:21:4e:5c:6e:99:d0:89:a0:27:3f:7b:9d:81:a2:86:14:ab: d5:b9:fd:2e:7f:c5:a2:04:bf:fb:7a:ce:87:2a:1b:60:5e:c6: e3:03:cb:a7:c7:cc:9f:1a:62:bb:04:45:b9:78:7b:2e:00:57: 15:34:93:94:f9:69:4e:d5:31:12:12:2a:c8:b6:4e:7c:44:18: ac:92:e2:29:69:65:3a:da:2e:c5:f7:87:47:21:89:66:9a:06: f3:a6:d0:19:af:05:bf:0b:fb:da:c2:a7:48:11:12:67:7e:13: cd:88:3d:e0:8e:22:49:b5:5f:de:04:8d:c3:dd:4d:e1:f6:82: c4:04:e8:d4:c9:00:c0:8b:b4:04:1c:21:d7:be:81:65:1f:f8: c1:29:3f:fc -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgISAZt57JtYiv83YhhXFgH+9UorMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwZTM5NTNjNWNiNDUyZjE1OWY4ZTE1MDVmYzcwMmU4ODM2 NTdlNzIwHhcNMjYwMTAxMTQxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZGQ1MTRlYjE4N2U1M2Y1MjE0MmUyMjljZjAwZWZkYzZkNTM4MGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApm+Bm6QaPPYMmT1GGEFxpibUTSWk q98c8k0nsLqxC4mruY+by3YE/HT1JG2D4/VJNXI3QJO+e7IurKRdKAoJyBNxqA+O WoPJ98Df6nM73Jvz28heLFOLKHUELVEvcPVgavz4rt6nF6fLCzzIvohDeAI6fZJS 9Of0tUqtzAh6CyzXKUfMw+CvNfpvT/bMY8oQXfwJ/rTVGxGqN/3i2v7AoxxcdYfL pEGOTXj19VPK20knVb/9AY6upkbBQMDOuw6HbjCBMWju2mPrhj88noyCPp6CgoC/ F8liSokjfK2geQedsCjP91qAeaSzCxf2Zf579xLSFjJtpqYhtS/hV2MiiQIDAQAB o4ICLjCCAiowHQYDVR0OBBYEFM3VFOsYflP1IULiKc8A79xtU4DXMB8GA1UdIwQY MBaAFEDjlTxctFLxWfjhUF/HAuiDZX5yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEt ZmE1YWYzOGRlYjVlLzEvemRVVTZ4aC1VX1VoUXVJcHp3RHYzRzFUZ05jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi83ZDg1MDUtMzg5OS00YTllLThjZjEtZmE1YWYzOGRlYjVl LzEvUU9PVlBGeTBVdkZaLU9GUVg4Y0M2SU5sZm5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEQGCCsGAQUFBwEHAQH/BDUwMzAgBAIAATAaMAwDBAEut1oD BAAut1wDBAGyT9gDBACy+W0wDwQCAAIwCQMHACoCA9AACjANBgkqhkiG9w0BAQsF AAOCAQEAhXbe5fpO29t/7bK1VqMA9eLpBrnqgVtajMBRya+sr76NDx2Fx5iBc/2k uK/W1gpTbCH7aIuh517Q5oyQcee5zku+hm0hrEfOJHYJJO8qhHE1qCUnvm5KgcRD o4U/PtTKzVNFwm8pBOtYcBUZnyFOXG6Z0ImgJz97nYGihhSr1bn9Ln/FogS/+3rO hyobYF7G4wPLp8fMnxpiuwRFuXh7LgBXFTSTlPlpTtUxEhIqyLZOfEQYrJLiKWll OtouxfeHRyGJZpoG86bQGa8Fvwv72sKnSBESZ34TzYg94I4iSbVf3gSNw91N4faC xATo1MkAwIu0BBwh176BZR/4wSk//A== -----END CERTIFICATE-----Generated at Sun Jan 25 19:02:20 2026 by rpki-client