This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/9def08-7552-4b5a-966f-8ee0a12a359b/1/D7Zsy3_mNU8-Rm51FRQcQWy9iSc.roa File: D7Zsy3_mNU8-Rm51FRQcQWy9iSc.roa (raw, json) Hash identifier: kXrPaU3rwx6WqBxRjuiwz4FcrTzXvZxG60BJrqQyazs= Subject key identifier: 0F:B6:6C:CB:7F:E6:35:4F:3E:46:6E:75:15:14:1C:41:6C:BD:89:27 Certificate issuer: /CN=45f9e32ff6af3d5e5d77bdbb98da37d0b8e44519 Certificate serial: 019B797E861389EBED47BC642F6B65D3E96E Authority key identifier: 45:F9:E3:2F:F6:AF:3D:5E:5D:77:BD:BB:98:DA:37:D0:B8:E4:45:19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RfnjL_avPV5dd727mNo30LjkRRk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/9def08-7552-4b5a-966f-8ee0a12a359b/1/D7Zsy3_mNU8-Rm51FRQcQWy9iSc.roa Signing time: Thu 01 Jan 2026 12:18:13 +0000 ROA not before: Thu 01 Jan 2026 12:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49289 IP address blocks: 93.185.112.0/20 maxlen: 20 159.255.136.0/22 maxlen: 22 159.255.144.0/24 maxlen: 24 171.22.232.0/24 maxlen: 24 171.22.233.0/24 maxlen: 24 171.22.234.0/24 maxlen: 24 171.22.235.0/24 maxlen: 24 178.239.32.0/22 maxlen: 22 178.239.36.0/24 maxlen: 24 178.239.40.0/22 maxlen: 22 178.239.44.0/23 maxlen: 23 178.239.46.0/23 maxlen: 23 185.63.132.0/23 maxlen: 23 185.63.135.0/24 maxlen: 24 188.94.120.0/21 maxlen: 21 2a00:c50::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/9def08-7552-4b5a-966f-8ee0a12a359b/1/RfnjL_avPV5dd727mNo30LjkRRk.crl rsync://rpki.ripe.net/repository/DEFAULT/40/9def08-7552-4b5a-966f-8ee0a12a359b/1/RfnjL_avPV5dd727mNo30LjkRRk.mft rsync://rpki.ripe.net/repository/DEFAULT/RfnjL_avPV5dd727mNo30LjkRRk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:86:13:89:eb:ed:47:bc:64:2f:6b:65:d3:e9:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45f9e32ff6af3d5e5d77bdbb98da37d0b8e44519 Validity Not Before: Jan 1 12:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0fb66ccb7fe6354f3e466e7515141c416cbd8927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d0:54:d0:42:c5:29:27:62:d8:d3:99:ac:7a: 9d:6c:1f:4d:36:31:39:db:6b:f7:5c:3f:cc:cc:7b: 29:0a:cc:47:ef:ce:c2:69:27:80:df:e1:47:69:44: 16:f0:ae:08:5b:c6:ac:6f:8f:db:b1:5f:79:d2:08: cd:a9:97:52:0d:28:03:ca:16:56:0b:6b:48:24:1a: 41:56:99:12:c2:e8:6a:30:06:f4:57:68:14:3e:86: fd:02:77:70:f1:c3:34:86:85:ac:d9:b1:25:c0:ae: 91:ff:a1:21:5d:b7:a7:60:5e:07:80:6a:ae:69:cd: f9:ff:e4:88:e6:c3:da:79:c5:06:f1:5e:e8:2c:85: 07:fa:5a:90:b0:7c:51:37:e5:30:26:09:50:f8:2f: 3f:45:52:b9:5a:d2:e1:82:5f:82:e1:73:16:ec:af: 71:78:e2:bb:0d:72:c0:75:b7:1e:3d:ad:74:f7:fc: 34:e7:9a:58:40:8c:85:01:e3:ab:ae:21:a2:33:61: cb:9d:52:db:4c:89:a4:b5:80:4f:f2:97:f9:c9:21: 59:33:f6:b6:52:f1:fc:34:ff:59:72:de:70:3d:f2: d6:27:34:fe:8b:2c:8f:a6:74:0e:b9:6a:f8:bb:84: 85:3d:4c:eb:96:a9:40:db:91:2b:ad:a0:13:86:a7: 2a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B6:6C:CB:7F:E6:35:4F:3E:46:6E:75:15:14:1C:41:6C:BD:89:27 X509v3 Authority Key Identifier: keyid:45:F9:E3:2F:F6:AF:3D:5E:5D:77:BD:BB:98:DA:37:D0:B8:E4:45:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RfnjL_avPV5dd727mNo30LjkRRk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9def08-7552-4b5a-966f-8ee0a12a359b/1/D7Zsy3_mNU8-Rm51FRQcQWy9iSc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9def08-7552-4b5a-966f-8ee0a12a359b/1/RfnjL_avPV5dd727mNo30LjkRRk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.185.112.0/20 159.255.136.0/22 159.255.144.0/24 171.22.232.0/22 178.239.32.0-178.239.36.255 178.239.40.0/21 185.63.132.0/23 185.63.135.0/24 188.94.120.0/21 IPv6: 2a00:c50::/29 Signature Algorithm: sha256WithRSAEncryption 48:60:69:0b:6e:de:db:c5:95:99:34:09:8a:32:d5:9b:b0:bd: 35:c3:39:24:4b:39:2b:14:e6:b3:d5:c5:23:e1:9e:e2:7c:30: c1:c9:58:32:bd:b3:91:24:7b:07:10:98:b8:04:2e:73:ab:58: fe:13:03:a5:5c:53:19:3c:e7:47:24:23:0e:1a:56:6e:81:b9: f0:c7:ce:a3:37:b2:e1:6a:34:74:e4:d2:68:b9:80:24:f8:68: 50:20:36:b2:9e:22:14:e9:68:b7:be:10:fd:56:8e:67:2b:a6: e3:c4:a3:96:5e:c0:b3:7d:0c:ea:fe:71:e8:31:cd:ce:4b:64: 36:56:77:f1:15:4e:6a:b4:09:d2:66:48:77:94:46:0d:46:1f: 67:01:64:c4:18:82:15:68:eb:6e:2d:90:7c:da:05:05:87:a0: 86:55:8c:88:16:7b:ff:3b:c3:bc:a1:5f:05:e3:a1:38:58:30: e3:83:e4:60:88:8b:6d:bf:64:20:f1:f2:9a:08:50:1d:83:8b: dc:e0:8c:7c:52:01:09:1e:47:4f:d8:8b:8f:ef:0a:2f:46:6b: 63:e3:0b:c9:fd:fb:97:5d:0a:25:c4:e4:fe:28:e5:35:2f:8e: c0:fd:35:7e:b4:fc:c4:0e:b9:68:57:76:77:a5:8e:fa:83:dc: 29:f1:5f:dc -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgISAZt5foYTievtR7xkL2tl0+luMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1ZjllMzJmZjZhZjNkNWU1ZDc3YmRiYjk4ZGEzN2QwYjhl NDQ1MTkwHhcNMjYwMTAxMTIxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZmI2NmNjYjdmZTYzNTRmM2U0NjZlNzUxNTE0MWM0MTZjYmQ4OTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0tBU0ELFKSdi2NOZrHqdbB9NNjE5 22v3XD/MzHspCsxH787CaSeA3+FHaUQW8K4IW8asb4/bsV950gjNqZdSDSgDyhZW C2tIJBpBVpkSwuhqMAb0V2gUPob9Andw8cM0hoWs2bElwK6R/6EhXbenYF4HgGqu ac35/+SI5sPaecUG8V7oLIUH+lqQsHxRN+UwJglQ+C8/RVK5WtLhgl+C4XMW7K9x eOK7DXLAdbcePa109/w055pYQIyFAeOrriGiM2HLnVLbTImktYBP8pf5ySFZM/a2 UvH8NP9Zct5wPfLWJzT+iyyPpnQOuWr4u4SFPUzrlqlA25ErraAThqcqrwIDAQAB o4ICUDCCAkwwHQYDVR0OBBYEFA+2bMt/5jVPPkZudRUUHEFsvYknMB8GA1UdIwQY MBaAFEX54y/2rz1eXXe9u5jaN9C45EUZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmZuakxfYXZQVjVkZDcyN21ObzMwTGprUlJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC85ZGVmMDgtNzU1Mi00YjVhLTk2NmYt OGVlMGExMmEzNTliLzEvRDdac3kzX21OVTgtUm01MUZSUWNRV3k5aVNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC85ZGVmMDgtNzU1Mi00YjVhLTk2NmYtOGVlMGExMmEzNTli LzEvUmZuakxfYXZQVjVkZDcyN21ObzMwTGprUlJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTBEBAIAATA+AwQEXblwAwQC n/+IAwQAn/+QAwQCqxboMAwDBAWy7yADBACy7yQDBAOy7ygDBAG5P4QDBAC5P4cD BAO8XngwDQQCAAIwBwMFAyoADFAwDQYJKoZIhvcNAQELBQADggEBAEhgaQtu3tvF lZk0CYoy1ZuwvTXDOSRLOSsU5rPVxSPhnuJ8MMHJWDK9s5EkewcQmLgELnOrWP4T A6VcUxk850ckIw4aVm6BufDHzqM3suFqNHTk0mi5gCT4aFAgNrKeIhTpaLe+EP1W jmcrpuPEo5ZewLN9DOr+cegxzc5LZDZWd/EVTmq0CdJmSHeURg1GH2cBZMQYghVo 624tkHzaBQWHoIZVjIgWe/87w7yhXwXjoThYMOOD5GCIi22/ZCDx8poIUB2Di9zg jHxSAQkeR0/Yi4/vCi9Ga2PjC8n9+5ddCiXE5P4o5TUvjsD9NX60/MQOuWhXdnel jvqD3CnxX9w= -----END CERTIFICATE-----Generated at Mon Jan 26 09:22:51 2026 by rpki-client