This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/PZ3ccJJpmnY8ezggBns_pU2Y2oU.roa File: PZ3ccJJpmnY8ezggBns_pU2Y2oU.roa (raw, json) Hash identifier: E33KozuSZQaAjnSuCott9QPTJ4e9ZQFOqJ78WHk5jew= Subject key identifier: 3D:9D:DC:70:92:69:9A:76:3C:7B:38:20:06:7B:3F:A5:4D:98:DA:85 Certificate issuer: /CN=dfad8b16099d6cdf8c3a811ca5860df0f6baf6de Certificate serial: 019B7834F39BCC6EB4A6F0380D526BBF9E4D Authority key identifier: DF:AD:8B:16:09:9D:6C:DF:8C:3A:81:1C:A5:86:0D:F0:F6:BA:F6:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/362LFgmdbN-MOoEcpYYN8Pa69t4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/PZ3ccJJpmnY8ezggBns_pU2Y2oU.roa Signing time: Thu 01 Jan 2026 06:18:14 +0000 ROA not before: Thu 01 Jan 2026 06:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204668 IP address blocks: 185.175.8.0/23 maxlen: 23 2a0d:180::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/362LFgmdbN-MOoEcpYYN8Pa69t4.crl rsync://rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/362LFgmdbN-MOoEcpYYN8Pa69t4.mft rsync://rpki.ripe.net/repository/DEFAULT/362LFgmdbN-MOoEcpYYN8Pa69t4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:f3:9b:cc:6e:b4:a6:f0:38:0d:52:6b:bf:9e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dfad8b16099d6cdf8c3a811ca5860df0f6baf6de Validity Not Before: Jan 1 06:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3d9ddc7092699a763c7b3820067b3fa54d98da85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:73:95:64:7a:f5:54:a4:53:a0:66:60:44:cc: 2f:8f:dd:f6:5c:1d:e4:e3:ed:c0:71:e3:a7:59:cd: 77:83:35:b7:03:60:10:60:75:61:a5:48:68:c3:c3: 7f:1c:a7:61:92:a5:cc:0d:b2:56:02:7c:13:8a:6e: bb:f2:a2:71:30:29:82:46:2d:b6:e5:37:92:cd:2d: 02:50:9d:9c:36:70:08:b9:2b:47:f0:d0:4b:d6:9a: ca:8b:17:18:60:6f:11:10:21:6b:74:15:71:f6:23: 9b:3d:a5:c8:b7:7f:e3:80:9f:ce:f8:50:e8:1f:b2: 9b:72:c9:7d:82:83:bf:01:08:4f:10:2a:6a:b5:d0: 12:6f:b1:8e:50:2b:85:38:27:e5:6f:44:08:41:1a: 34:fb:e9:77:03:7b:8d:aa:53:bb:94:f7:51:e4:47: ae:72:52:10:c9:43:0e:d6:c3:e4:19:c1:50:6d:47: 2e:66:b1:88:e9:03:6f:88:cb:3b:c0:0f:4b:96:82: 05:cb:e9:02:74:60:9a:4f:5b:b3:93:c7:91:6f:49: 92:c7:d2:3f:66:50:0a:62:c0:ee:cc:b9:2d:98:5d: 28:a5:0a:13:d2:ff:3e:c5:c8:5d:6e:70:44:c8:e9: 74:70:9a:a7:bc:a7:19:88:ed:35:45:26:ee:1a:f8: 53:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:9D:DC:70:92:69:9A:76:3C:7B:38:20:06:7B:3F:A5:4D:98:DA:85 X509v3 Authority Key Identifier: keyid:DF:AD:8B:16:09:9D:6C:DF:8C:3A:81:1C:A5:86:0D:F0:F6:BA:F6:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/362LFgmdbN-MOoEcpYYN8Pa69t4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/PZ3ccJJpmnY8ezggBns_pU2Y2oU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b3f543-74cb-4298-82e1-8bca27cb30c0/1/362LFgmdbN-MOoEcpYYN8Pa69t4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.175.8.0/23 IPv6: 2a0d:180::/31 Signature Algorithm: sha256WithRSAEncryption a5:8b:97:38:44:38:75:7a:1e:13:e1:84:9a:ae:90:64:ee:06: c8:45:36:20:4f:a6:97:ff:85:37:92:41:47:91:9b:88:8c:6f: 02:67:c2:81:80:61:c6:d9:0c:92:e0:02:cf:e2:a5:fa:7d:02: 72:c6:a3:31:bb:cc:2a:46:62:fd:57:8b:70:22:86:75:e8:a6: 8e:33:a3:d5:f1:77:97:f0:c1:6a:f3:7c:ba:5a:e8:e5:e3:cd: e2:82:c9:c1:a9:8b:3e:68:1b:e0:99:11:e0:f8:56:c2:2d:00: 1b:9f:21:90:03:b5:3c:96:ba:fb:aa:aa:db:dd:91:b8:d1:0f: 29:5d:42:1f:06:3f:77:78:62:9c:18:3c:85:de:a9:64:a7:0d: 5b:ae:13:e8:8a:44:33:2f:44:99:37:8e:fe:4b:1f:9b:5e:03: 4d:50:82:ad:34:7b:e2:02:53:46:7d:5e:40:0c:ed:8d:53:23: 7b:9e:4f:1d:3d:88:9b:41:31:0c:30:6c:04:48:5e:6d:99:02: f4:41:9a:4f:81:3c:5f:b8:a2:51:b3:87:f6:b9:28:3f:8a:c1: 95:a0:71:e8:78:9e:0d:0d:3b:ce:d8:ca:47:08:80:ab:12:b2: 6e:8e:18:30:c3:7c:4f:2a:32:78:24:93:1f:ae:fd:c0:e1:f4: 66:45:0f:4f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NPObzG60pvA4DVJrv55NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmYWQ4YjE2MDk5ZDZjZGY4YzNhODExY2E1ODYwZGYwZjZi YWY2ZGUwHhcNMjYwMTAxMDYxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDlkZGM3MDkyNjk5YTc2M2M3YjM4MjAwNjdiM2ZhNTRkOThkYTg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXOVZHr1VKRToGZgRMwvj932XB3k 4+3AceOnWc13gzW3A2AQYHVhpUhow8N/HKdhkqXMDbJWAnwTim678qJxMCmCRi22 5TeSzS0CUJ2cNnAIuStH8NBL1prKixcYYG8RECFrdBVx9iObPaXIt3/jgJ/O+FDo H7Kbcsl9goO/AQhPECpqtdASb7GOUCuFOCflb0QIQRo0++l3A3uNqlO7lPdR5Eeu clIQyUMO1sPkGcFQbUcuZrGI6QNviMs7wA9LloIFy+kCdGCaT1uzk8eRb0mSx9I/ ZlAKYsDuzLktmF0opQoT0v8+xchdbnBEyOl0cJqnvKcZiO01RSbuGvhTwwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFD2d3HCSaZp2PHs4IAZ7P6VNmNqFMB8GA1UdIwQY MBaAFN+tixYJnWzfjDqBHKWGDfD2uvbeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzYyTEZnbWRiTi1NT29FY3BZWU44UGE2OXQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9iM2Y1NDMtNzRjYi00Mjk4LTgyZTEt OGJjYTI3Y2IzMGMwLzEvUFozY2NKSnBtblk4ZXpnZ0Juc19wVTJZMm9VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni9iM2Y1NDMtNzRjYi00Mjk4LTgyZTEtOGJjYTI3Y2IzMGMw LzEvMzYyTEZnbWRiTi1NT29FY3BZWU44UGE2OXQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBua8IMA0E AgACMAcDBQEqDQGAMA0GCSqGSIb3DQEBCwUAA4IBAQCli5c4RDh1eh4T4YSarpBk 7gbIRTYgT6aX/4U3kkFHkZuIjG8CZ8KBgGHG2QyS4ALP4qX6fQJyxqMxu8wqRmL9 V4twIoZ16KaOM6PV8XeX8MFq83y6Wujl483igsnBqYs+aBvgmRHg+FbCLQAbnyGQ A7U8lrr7qqrb3ZG40Q8pXUIfBj93eGKcGDyF3qlkpw1brhPoikQzL0SZN47+Sx+b XgNNUIKtNHviAlNGfV5ADO2NUyN7nk8dPYibQTEMMGwESF5tmQL0QZpPgTxfuKJR s4f2uSg/isGVoHHoeJ4NDTvO2MpHCICrErJujhgww3xPKjJ4JJMfrv3A4fRmRQ9P -----END CERTIFICATE-----Generated at Mon Jan 26 07:23:35 2026 by rpki-client