This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/o3cxZcNzSg9SO45HaY0TNpg2cjU.roa File: o3cxZcNzSg9SO45HaY0TNpg2cjU.roa (raw, json) Hash identifier: UjaywnPKLnpp7x1pNyAtzJ7EJS+kay35P/mJ+p8abdk= Subject key identifier: A3:77:31:65:C3:73:4A:0F:52:3B:8E:47:69:8D:13:36:98:36:72:35 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019AA693830151AA75A8A057A68DE2D0704B Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/o3cxZcNzSg9SO45HaY0TNpg2cjU.roa Signing time: Fri 21 Nov 2025 13:21:16 +0000 ROA not before: Fri 21 Nov 2025 13:21:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 50685 IP address blocks: 93.170.236.0/22 maxlen: 24 93.171.160.0/23 maxlen: 24 95.47.60.0/23 maxlen: 24 146.120.13.0/24 maxlen: 24 146.120.14.0/23 maxlen: 24 146.120.192.0/22 maxlen: 24 146.158.16.0/22 maxlen: 24 2a02:128:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a6:93:83:01:51:aa:75:a8:a0:57:a6:8d:e2:d0:70:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Nov 21 13:21:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=a3773165c3734a0f523b8e47698d133698367235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f7:6a:a9:d2:e5:70:a9:48:d8:47:d6:e8:20: 21:f8:1e:09:89:3b:82:37:67:4f:26:01:e4:af:30: 02:3d:d0:7a:5b:2d:34:e6:6c:5c:3b:93:c4:ff:6c: 62:dd:e1:0f:e4:1c:33:61:78:59:20:5a:f7:d9:88: 29:93:e9:d6:41:18:cd:4a:ed:43:5e:7f:2f:92:fe: cb:1c:bd:05:d9:21:4e:b8:af:da:e7:a8:c3:58:7c: 43:41:8b:af:e9:46:07:78:34:b7:db:55:e6:01:7e: a5:f8:06:f9:4f:69:14:8c:37:8c:36:2a:5e:17:27: b3:76:62:ca:b7:d3:4e:61:e1:a1:98:56:0f:f8:b0: db:33:48:98:b3:e2:d3:4f:c6:0a:f4:02:25:0c:96: 2a:e8:91:00:e0:ff:4e:0e:56:18:d6:cb:2e:5d:fd: a0:97:54:29:62:aa:69:7b:b0:38:0e:89:e2:81:bb: fb:bd:b9:55:9f:fd:e0:a6:40:1c:8f:f0:11:79:7a: 12:90:34:f4:be:a0:05:24:04:16:d7:7d:9e:4a:a6: dc:02:f1:dd:6f:67:5b:72:b2:ba:91:84:fe:cf:4f: 46:c8:7b:4c:8a:c3:ba:43:d0:3e:38:0b:be:b0:aa: ae:a7:ac:90:36:76:a4:0b:78:8d:96:fc:1f:96:b3: 06:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:77:31:65:C3:73:4A:0F:52:3B:8E:47:69:8D:13:36:98:36:72:35 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/o3cxZcNzSg9SO45HaY0TNpg2cjU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.170.236.0/22 93.171.160.0/23 95.47.60.0/23 146.120.13.0-146.120.15.255 146.120.192.0/22 146.158.16.0/22 IPv6: 2a02:128:9::/48 Signature Algorithm: sha256WithRSAEncryption 9a:fa:4c:02:a9:52:9b:bf:a3:58:f7:9a:4c:46:5a:21:72:ed: 48:4f:77:53:cb:bb:ac:25:41:b6:6f:23:2a:97:ea:8b:52:cd: 0e:b7:1c:fc:1e:8e:22:04:d9:e5:88:0a:95:f8:0e:f8:8e:03: c9:6e:d3:5b:53:c1:b3:b6:46:ee:27:bb:2a:b4:5a:7f:57:6e: 69:a6:be:22:78:75:49:c1:90:bf:4d:11:73:ee:d1:30:63:82: 12:eb:6c:10:13:ac:77:15:f4:80:a7:27:85:ad:89:94:65:e5: 99:09:9c:5e:ba:aa:ab:4a:ba:19:9c:0f:49:d9:44:16:b1:df: a0:7f:bc:d3:57:2f:06:0b:77:c3:26:d0:e9:a0:c2:de:39:28: 81:a5:3c:41:1a:ce:d4:c3:3f:f7:41:22:c0:0f:e7:95:ac:d5: e7:cb:36:f5:30:c8:88:78:69:08:a5:e9:f7:43:20:bc:1e:ab: 0d:49:b5:75:72:7a:de:09:7c:6c:fd:15:67:14:84:a2:48:b4: 8a:8e:9d:d7:41:75:85:ed:92:2c:67:68:c2:04:16:d0:bc:90: 9f:d1:2e:d8:3f:85:03:6f:79:b8:da:d6:5f:13:1f:7b:6a:b9: b2:df:33:9f:43:f1:55:54:01:ce:c2:08:08:dd:b5:6b:55:fd: 8c:dc:9d:6d -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgISAZqmk4MBUap1qKBXpo3i0HBLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjUxMTIxMTMyMTE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzc3MzE2NWMzNzM0YTBmNTIzYjhlNDc2OThkMTMzNjk4MzY3MjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvdqqdLlcKlI2EfW6CAh+B4JiTuC N2dPJgHkrzACPdB6Wy005mxcO5PE/2xi3eEP5BwzYXhZIFr32Ygpk+nWQRjNSu1D Xn8vkv7LHL0F2SFOuK/a56jDWHxDQYuv6UYHeDS321XmAX6l+Ab5T2kUjDeMNipe FyezdmLKt9NOYeGhmFYP+LDbM0iYs+LTT8YK9AIlDJYq6JEA4P9ODlYY1ssuXf2g l1QpYqppe7A4Donigbv7vblVn/3gpkAcj/AReXoSkDT0vqAFJAQW132eSqbcAvHd b2dbcrK6kYT+z09GyHtMisO6Q9A+OAu+sKqup6yQNnakC3iNlvwflrMGbwIDAQAB o4ICQDCCAjwwHQYDVR0OBBYEFKN3MWXDc0oPUjuOR2mNEzaYNnI1MB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvbzNjeFpjTnpTZzlTTzQ1SGFZMFROcGcyY2pVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFYGCCsGAQUFBwEHAQH/BEcwRTAyBAIAATAsAwQCXarsAwQB XaugAwQBXy88MAwDBACSeA0DBASSeAADBAKSeMADBAKSnhAwDwQCAAIwCQMHACoC ASgACTANBgkqhkiG9w0BAQsFAAOCAQEAmvpMAqlSm7+jWPeaTEZaIXLtSE93U8u7 rCVBtm8jKpfqi1LNDrcc/B6OIgTZ5YgKlfgO+I4DyW7TW1PBs7ZG7ie7KrRaf1du aaa+Inh1ScGQv00Rc+7RMGOCEutsEBOsdxX0gKcnha2JlGXlmQmcXrqqq0q6GZwP SdlEFrHfoH+801cvBgt3wybQ6aDC3jkogaU8QRrO1MM/90EiwA/nlazV58s29TDI iHhpCKXp90MgvB6rDUm1dXJ63gl8bP0VZxSEoki0io6d10F1he2SLGdowgQW0LyQ n9Eu2D+FA295uNrWXxMfe2q5st8zn0PxVVQBzsIICN21a1X9jNydbQ== -----END CERTIFICATE-----Generated at Sat Dec 6 16:34:56 2025 by rpki-client