This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/czJYqtKI2O8bBLKf9hMbydw0464.roa File: czJYqtKI2O8bBLKf9hMbydw0464.roa (raw, json) Hash identifier: SyjZcH9i0GQ6rbw6orGV+IFjWH1d7o+tz/dBiP+lxCg= Subject key identifier: 73:32:58:AA:D2:88:D8:EF:1B:04:B2:9F:F6:13:1B:C9:DC:34:E3:AE Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e Certificate serial: 019B77C68AC915E7B76DA9ED3D7BBECF5853 Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/czJYqtKI2O8bBLKf9hMbydw0464.roa Signing time: Thu 01 Jan 2026 04:17:38 +0000 ROA not before: Thu 01 Jan 2026 04:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60494 IP address blocks: 31.200.240.0/24 maxlen: 24 31.200.241.0/24 maxlen: 24 31.200.242.0/24 maxlen: 24 31.200.243.0/24 maxlen: 24 31.200.244.0/24 maxlen: 24 31.200.245.0/24 maxlen: 24 31.200.246.0/24 maxlen: 24 31.200.247.0/24 maxlen: 24 37.153.88.0/24 maxlen: 24 37.153.89.0/24 maxlen: 24 37.153.90.0/24 maxlen: 24 37.153.91.0/24 maxlen: 24 37.153.92.0/24 maxlen: 24 37.153.93.0/24 maxlen: 24 37.153.94.0/24 maxlen: 24 37.153.95.0/24 maxlen: 24 185.40.144.0/24 maxlen: 24 185.40.145.0/24 maxlen: 24 185.40.146.0/24 maxlen: 24 185.40.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.mft rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:8a:c9:15:e7:b7:6d:a9:ed:3d:7b:be:cf:58:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e Validity Not Before: Jan 1 04:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=733258aad288d8ef1b04b29ff6131bc9dc34e3ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5d:44:fe:0b:76:7e:94:8a:5d:0f:d6:d2:a2: 31:c3:b3:64:ee:a2:84:1e:b7:9a:d6:8b:f1:5d:fe: 93:f8:58:a1:6c:5b:26:af:6a:37:3d:ac:da:66:4f: 24:3d:21:1b:8d:f0:27:24:29:71:a1:4b:42:1c:29: 58:9d:ed:16:02:1a:b5:d0:7a:12:dc:73:56:3c:fa: 0c:71:f8:28:45:53:ff:b8:42:39:3d:2c:ca:6b:bd: fd:ef:f3:a3:08:b7:5e:9d:85:18:88:74:32:fc:55: 21:0b:68:05:5f:29:60:3e:cb:c6:4e:dc:1e:0f:64: 7c:e2:0f:de:2d:1b:07:c1:1c:7b:03:d4:f8:3f:c5: 08:a3:f7:e4:d6:2e:69:ab:82:0c:c5:7a:e0:37:47: 93:ab:e4:8d:4f:69:f2:76:25:45:bc:5d:a0:30:74: eb:88:80:0f:fb:0a:dd:19:c9:08:44:26:9f:fd:f5: 43:ea:52:03:61:2c:e4:cf:20:5a:d9:1c:51:23:ba: 7c:12:e1:11:4c:e6:6c:74:b3:3b:40:1f:be:2b:95: 1b:b2:63:05:7d:51:69:8d:5a:74:9d:39:4f:f8:6b: 28:f7:15:f6:de:f1:25:3e:21:95:5b:0b:e6:65:10: 55:67:0e:b6:81:a0:45:17:11:01:fe:eb:a3:d6:e9: 1a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:32:58:AA:D2:88:D8:EF:1B:04:B2:9F:F6:13:1B:C9:DC:34:E3:AE X509v3 Authority Key Identifier: keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/czJYqtKI2O8bBLKf9hMbydw0464.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.200.240.0/21 37.153.88.0/21 185.40.144.0/22 Signature Algorithm: sha256WithRSAEncryption 66:7b:80:ce:ab:1f:52:51:7a:a3:bb:ca:28:9b:e2:c6:80:83: 20:57:33:02:1b:b3:23:ad:1f:77:85:40:11:8a:68:29:8c:e3: f6:06:78:fb:4a:f8:95:e7:36:51:c2:9c:04:84:ce:15:f3:ee: 98:f6:f7:71:32:e1:73:ed:c1:23:ba:d5:01:45:f2:5c:59:92: 33:dd:60:67:a7:1e:4d:ac:10:ff:ba:92:e2:b5:59:6d:73:97: b2:25:6c:c1:de:60:06:d3:24:cb:e0:e7:32:5f:58:78:08:f5: 8b:66:80:ee:cb:66:b3:a6:45:e9:b5:e8:63:71:c7:d2:db:20: d3:5b:2e:9c:93:1c:d6:6e:83:3f:ad:2b:44:02:72:3d:d7:e9: 93:38:45:70:ea:7e:70:5c:a9:a3:69:e6:fa:fb:68:61:a7:60: a3:28:19:5b:9e:97:a0:f8:05:20:0b:46:d1:b0:ea:f0:69:ec: c6:24:36:88:ef:4f:c6:50:96:ef:53:4b:cd:6e:12:12:4e:af: d7:de:2e:b8:c4:6d:2c:34:63:ee:e0:4c:b7:91:09:4c:1c:fe: 57:32:c0:32:f0:ec:ba:b0:b5:10:06:68:71:b7:2b:f0:35:2c: 6a:22:56:3d:62:f6:25:2a:56:34:67:64:2a:24:e4:0e:fe:a2: 3f:02:64:21 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt3xorJFee3bantPXu+z1hTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYWYxN2IwMDE1ZGJiN2NkOTkyZjI2Y2RmZjAxYzRlMjYy MGI3M2UwHhcNMjYwMTAxMDQxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MzMyNThhYWQyODhkOGVmMWIwNGIyOWZmNjEzMWJjOWRjMzRlM2FlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2l1E/gt2fpSKXQ/W0qIxw7Nk7qKE Hrea1ovxXf6T+FihbFsmr2o3PazaZk8kPSEbjfAnJClxoUtCHClYne0WAhq10HoS 3HNWPPoMcfgoRVP/uEI5PSzKa7397/OjCLdenYUYiHQy/FUhC2gFXylgPsvGTtwe D2R84g/eLRsHwRx7A9T4P8UIo/fk1i5pq4IMxXrgN0eTq+SNT2nydiVFvF2gMHTr iIAP+wrdGckIRCaf/fVD6lIDYSzkzyBa2RxRI7p8EuERTOZsdLM7QB++K5UbsmMF fVFpjVp0nTlP+Gso9xX23vElPiGVWwvmZRBVZw62gaBFFxEB/uuj1uka8QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFHMyWKrSiNjvGwSyn/YTG8ncNOOuMB8GA1UdIwQY MBaAFNqvF7ABXbt82ZLybN/wHE4mILc+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAt Y2YwNmQxOTgzYmExLzEvY3pKWXF0S0kyTzhiQkxLZjloTWJ5ZHcwNDY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAtY2YwNmQxOTgzYmEx LzEvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDH8jwAwQD JZlYAwQCuSiQMA0GCSqGSIb3DQEBCwUAA4IBAQBme4DOqx9SUXqju8oom+LGgIMg VzMCG7MjrR93hUARimgpjOP2Bnj7SviV5zZRwpwEhM4V8+6Y9vdxMuFz7cEjutUB RfJcWZIz3WBnpx5NrBD/upLitVltc5eyJWzB3mAG0yTL4OcyX1h4CPWLZoDuy2az pkXptehjccfS2yDTWy6ckxzWboM/rStEAnI91+mTOEVw6n5wXKmjaeb6+2hhp2Cj KBlbnpeg+AUgC0bRsOrwaezGJDaI70/GUJbvU0vNbhISTq/X3i64xG0sNGPu4Ey3 kQlMHP5XMsAy8Oy6sLUQBmhxtyvwNSxqIlY9YvYlKlY0Z2QqJOQO/qI/AmQh -----END CERTIFICATE-----Generated at Sun Jan 25 16:13:35 2026 by rpki-client