This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/1-3OySvVtg6j55zm7RvKKKD2txc4.roa File: 1-3OySvVtg6j55zm7RvKKKD2txc4.roa (raw, json) Hash identifier: NIlV04qTE8fz3k+qGrSn4IT9heA3wwx6JbYylqq6SPI= Subject key identifier: FB:73:B2:4A:F5:6D:83:A8:F9:E7:39:BB:46:F2:8A:28:3D:AD:C5:CE Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5 Certificate serial: 019B76EB4D30358AC9F5C2AE117BBA5B9D79 Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/1-3OySvVtg6j55zm7RvKKKD2txc4.roa Signing time: Thu 01 Jan 2026 00:18:10 +0000 ROA not before: Thu 01 Jan 2026 00:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42337 IP address blocks: 2.182.172.0/24 maxlen: 24 2.188.40.0/21 maxlen: 24 2.188.72.0/22 maxlen: 24 2.188.160.0/21 maxlen: 24 2.188.160.0/22 maxlen: 22 2.188.161.0/24 maxlen: 24 2.188.164.0/22 maxlen: 22 2.188.165.0/24 maxlen: 24 2.188.170.0/24 maxlen: 24 2.188.176.0/23 maxlen: 23 2.188.192.0/19 maxlen: 24 2.188.224.0/20 maxlen: 24 2.188.225.0/24 maxlen: 24 2.188.232.0/23 maxlen: 23 2.188.234.0/24 maxlen: 24 2.188.236.0/23 maxlen: 23 2.188.240.0/20 maxlen: 24 2.189.48.0/21 maxlen: 24 2.189.64.0/22 maxlen: 24 2.189.80.0/21 maxlen: 24 2.189.88.0/21 maxlen: 24 2.189.160.0/21 maxlen: 24 2.189.168.0/21 maxlen: 24 78.38.25.0/24 maxlen: 24 78.38.243.0/24 maxlen: 24 78.38.246.0/24 maxlen: 24 78.38.248.0/24 maxlen: 24 78.38.250.0/24 maxlen: 24 78.38.251.0/24 maxlen: 24 78.38.254.0/24 maxlen: 24 78.39.40.0/24 maxlen: 24 78.39.43.0/24 maxlen: 24 78.39.46.0/24 maxlen: 24 78.39.47.0/24 maxlen: 24 78.39.48.0/24 maxlen: 24 78.39.49.0/24 maxlen: 24 78.39.50.0/24 maxlen: 24 78.39.51.0/24 maxlen: 24 78.39.53.0/24 maxlen: 24 78.39.54.0/24 maxlen: 24 78.39.55.0/24 maxlen: 24 78.39.56.0/24 maxlen: 24 78.39.57.0/24 maxlen: 24 78.39.58.0/24 maxlen: 24 78.39.59.0/24 maxlen: 24 78.39.62.0/23 maxlen: 24 78.39.155.0/24 maxlen: 24 78.39.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.mft rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:4d:30:35:8a:c9:f5:c2:ae:11:7b:ba:5b:9d:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5 Validity Not Before: Jan 1 00:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb73b24af56d83a8f9e739bb46f28a283dadc5ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c4:8a:df:01:fe:a1:31:01:97:4a:5d:0d:6f: bf:16:15:da:e5:0d:5e:5f:cd:d5:f4:78:83:f1:95: 71:b4:f9:ef:39:dd:8e:6c:c2:53:2e:9e:65:18:67: f2:22:ca:20:28:61:29:cc:ca:1a:a1:db:4c:11:95: 0d:76:56:e1:95:0d:89:3c:6e:b0:38:5d:93:a0:8d: f8:20:67:76:8c:58:8f:bd:d8:8c:66:f9:33:0e:02: 3a:01:4b:34:0c:1f:ca:d0:2f:0c:fc:1c:17:ef:0f: df:87:32:57:08:09:ae:10:ac:fa:f6:a0:f0:8c:00: c0:37:2a:70:1b:ac:84:bb:9f:83:4a:52:03:28:2d: fd:5c:54:ed:7c:6b:97:a9:94:d1:34:2f:ba:9c:1b: d1:4b:31:e8:e2:3d:3d:16:6d:da:b0:14:05:12:5b: 35:0c:14:d5:44:b2:e2:08:84:f4:ac:23:32:03:60: bc:50:55:52:33:72:0e:64:84:0b:cf:5e:2f:1a:43: 99:4e:88:78:c0:e2:02:ab:8f:ee:c4:ae:da:3b:aa: 01:8e:31:25:f6:50:fb:7d:82:4b:66:13:fc:ca:7e: fa:95:31:1b:a4:ab:dd:10:6f:b6:f3:28:c1:b1:11: d1:ca:56:42:d8:00:7d:7e:28:8d:3c:25:f5:fe:4b: 06:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:73:B2:4A:F5:6D:83:A8:F9:E7:39:BB:46:F2:8A:28:3D:AD:C5:CE X509v3 Authority Key Identifier: keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/1-3OySvVtg6j55zm7RvKKKD2txc4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.182.172.0/24 2.188.40.0/21 2.188.72.0/22 2.188.160.0/21 2.188.170.0/24 2.188.176.0/23 2.188.192.0/18 2.189.48.0/21 2.189.64.0/22 2.189.80.0/20 2.189.160.0/20 78.38.25.0/24 78.38.243.0/24 78.38.246.0/24 78.38.248.0/24 78.38.250.0/23 78.38.254.0/24 78.39.40.0/24 78.39.43.0/24 78.39.46.0-78.39.51.255 78.39.53.0-78.39.59.255 78.39.62.0/23 78.39.155.0-78.39.156.255 Signature Algorithm: sha256WithRSAEncryption 7c:36:37:2b:5f:d7:c4:d9:0b:a7:bb:03:af:30:c9:55:fb:69: 1f:7b:7e:e5:9d:60:32:d8:d7:6f:f5:b6:69:d6:e2:35:d5:d2: 35:d9:38:cf:ee:59:28:88:98:a5:b9:44:ea:04:e1:90:f0:de: 1e:e0:db:1e:3d:4c:06:6d:a0:6e:49:54:fb:2e:44:2b:62:e4: c0:74:ae:64:20:8e:f7:70:91:42:b4:bb:b4:35:b2:a5:de:e2: 7a:24:d2:43:e0:f5:c9:00:81:a1:58:a0:6d:3a:d0:75:af:4f: d5:bd:bb:43:8a:ac:d6:00:93:da:41:be:43:c6:76:80:aa:09: 64:f2:27:d1:80:c0:c1:0c:7e:d3:99:15:f3:4d:98:3e:ea:01: bb:f9:82:ae:a9:b0:74:49:c6:89:d5:16:3e:57:f2:b5:be:bd: 25:dc:7e:96:2d:e8:85:33:2f:eb:d1:fe:66:75:33:33:d1:e6: 73:bf:56:9f:30:2a:6c:71:36:13:58:00:2f:55:31:8f:d6:b1: 30:bc:ef:3a:e0:4d:2a:1a:9b:22:40:aa:59:95:09:fa:64:7d: 79:f7:bc:98:57:7f:a1:c5:12:49:e1:cc:63:9e:c7:00:20:65: 5e:19:9f:33:7e:c2:e9:0e:f4:d5:b6:e9:f2:b7:b6:50:f5:2c: 0f:69:31:bd -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgISAZt2600wNYrJ9cKuEXu6W515MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3YTM5ZTQ3OTRjMzQ2MTJlN2YyMjU2OWIxYTZhODE3MTAy NjBhZTUwHhcNMjYwMTAxMDAxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjczYjI0YWY1NmQ4M2E4ZjllNzM5YmI0NmYyOGEyODNkYWRjNWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMSK3wH+oTEBl0pdDW+/FhXa5Q1e X83V9HiD8ZVxtPnvOd2ObMJTLp5lGGfyIsogKGEpzMoaodtMEZUNdlbhlQ2JPG6w OF2ToI34IGd2jFiPvdiMZvkzDgI6AUs0DB/K0C8M/BwX7w/fhzJXCAmuEKz69qDw jADANypwG6yEu5+DSlIDKC39XFTtfGuXqZTRNC+6nBvRSzHo4j09Fm3asBQFEls1 DBTVRLLiCIT0rCMyA2C8UFVSM3IOZIQLz14vGkOZToh4wOICq4/uxK7aO6oBjjEl 9lD7fYJLZhP8yn76lTEbpKvdEG+28yjBsRHRylZC2AB9fiiNPCX1/ksGVQIDAQAB o4ICqzCCAqcwHQYDVR0OBBYEFPtzskr1bYOo+ec5u0byiig9rcXOMB8GA1UdIwQY MBaAFCejnkeUw0YS5/IlabGmqBcQJgrlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjZPZVI1VERSaExuOGlWcHNhYW9GeEFtQ3VVLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zOGZjMzMtMDZjMS00MDA2LTllMjMt Zjc0ZDk1MTg1NzZjLzEvMS0zT3lTdlZ0ZzZqNTV6bTdSdktLS0QydHhjNC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNDAvMzhmYzMzLTA2YzEtNDAwNi05ZTIzLWY3NGQ5NTE4NTc2 Yy8xL0o2T2VSNVREUmhMbjhpVnBzYWFvRnhBbUN1VS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCBvwYIKwYBBQUHAQcBAf8Ega8wgawwgakEAgABMIGiAwQA ArasAwQDArwoAwQCArxIAwQDArygAwQAAryqAwQBArywAwQGArzAAwQDAr0wAwQC Ar1AAwQEAr1QAwQEAr2gAwQATiYZAwQATibzAwQATib2AwQATib4AwQBTib6AwQA Tib+AwQATicoAwQATicrMAwDBAFOJy4DBAJOJzAwDAMEAE4nNQMEAk4nOAMEAU4n PjAMAwQATiebAwQATiecMA0GCSqGSIb3DQEBCwUAA4IBAQB8NjcrX9fE2QunuwOv MMlV+2kfe37lnWAy2Ndv9bZp1uI11dI12TjP7lkoiJiluUTqBOGQ8N4e4NsePUwG baBuSVT7LkQrYuTAdK5kII73cJFCtLu0NbKl3uJ6JNJD4PXJAIGhWKBtOtB1r0/V vbtDiqzWAJPaQb5DxnaAqglk8ifRgMDBDH7TmRXzTZg+6gG7+YKuqbB0ScaJ1RY+ V/K1vr0l3H6WLeiFMy/r0f5mdTMz0eZzv1afMCpscTYTWAAvVTGP1rEwvO864E0q GpsiQKpZlQn6ZH1597yYV3+hxRJJ4cxjnscAIGVeGZ8zfsLpDvTVtunyt7ZQ9SwP aTG9 -----END CERTIFICATE-----Generated at Sun Jan 25 20:30:34 2026 by rpki-client