This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/AsZ_LG9ESPhrw3OlW2usk8oz1Ns.roa File: AsZ_LG9ESPhrw3OlW2usk8oz1Ns.roa (raw, json) Hash identifier: IPA1h/9g7Vb++p1mqyb90xkiAfJh6+hbdkuvr22J7PU= Subject key identifier: 02:C6:7F:2C:6F:44:48:F8:6B:C3:73:A5:5B:6B:AC:93:CA:33:D4:DB Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e Certificate serial: 019B7AC7E69F7A1244A987B7427442390FD4 Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/AsZ_LG9ESPhrw3OlW2usk8oz1Ns.roa Signing time: Thu 01 Jan 2026 18:17:59 +0000 ROA not before: Thu 01 Jan 2026 18:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1136 IP address blocks: 145.4.224.0/20 maxlen: 20 145.15.108.0/22 maxlen: 22 145.15.108.0/24 maxlen: 24 145.15.109.0/24 maxlen: 24 145.15.110.0/24 maxlen: 24 145.15.111.0/24 maxlen: 24 145.15.114.0/24 maxlen: 24 145.15.115.0/24 maxlen: 24 145.15.208.0/21 maxlen: 21 145.78.0.0/16 maxlen: 16 145.78.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.mft rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:e6:9f:7a:12:44:a9:87:b7:42:74:42:39:0f:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e Validity Not Before: Jan 1 18:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02c67f2c6f4448f86bc373a55b6bac93ca33d4db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5d:0e:20:07:e5:9e:92:09:3c:f0:90:2d:64: 1a:3b:76:f6:ca:de:c4:15:1f:ed:d6:46:66:b4:f3: 94:d0:56:d5:67:81:c2:d9:50:f7:1e:5a:38:3c:e3: e5:9e:dc:e3:9c:dd:38:33:41:fb:a1:5e:53:89:80: cf:36:e5:f5:f7:b0:12:ad:2e:a0:d1:77:56:07:29: 57:4e:e6:bd:f5:53:c7:b6:df:80:ab:fc:29:9a:01: c1:34:3c:4a:33:08:20:fd:ab:94:f8:13:ea:1e:fb: 4e:61:6a:72:fe:61:8d:b6:26:16:2e:28:93:79:08: 73:6a:5a:0a:f1:b6:4d:c7:8a:7f:62:b0:84:a2:63: 35:36:2b:aa:2e:d5:7f:9c:df:e9:62:f8:50:20:1b: 71:d3:7b:64:16:4e:30:f6:e7:52:ae:dd:a2:65:bd: 56:ab:bb:2d:fe:3a:c0:bb:80:59:04:9c:39:74:5b: e4:f4:46:49:5e:03:c5:47:48:76:c9:02:f6:b1:c2: 80:0a:a9:69:8d:15:84:91:98:13:b3:0d:4a:df:e0: 57:f4:7b:24:5e:27:7f:20:af:13:aa:2e:2f:c7:43: df:40:30:73:b9:f1:31:e0:0c:39:80:93:a2:5d:2f: 44:44:c9:f1:c6:97:6b:06:50:9c:cd:7e:de:55:98: 17:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C6:7F:2C:6F:44:48:F8:6B:C3:73:A5:5B:6B:AC:93:CA:33:D4:DB X509v3 Authority Key Identifier: keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/AsZ_LG9ESPhrw3OlW2usk8oz1Ns.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.4.224.0/20 145.15.108.0/22 145.15.114.0/23 145.15.208.0/21 145.78.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7d:ba:57:37:2a:ea:12:a7:a4:76:ab:b7:63:0f:61:14:c4:e8: 6d:fb:9d:50:8c:8e:51:ae:15:fd:84:4c:89:9a:95:f8:f6:8c: ce:f8:29:61:7b:77:f0:c9:60:0b:13:be:c8:ca:0b:73:cd:8c: bc:54:90:f0:96:9e:fa:ed:fe:93:ac:f8:e0:6d:df:fe:41:45: 57:f9:df:09:c2:c2:35:bd:6f:79:ca:49:f0:40:18:dd:cf:f1: 13:4b:90:a0:56:30:d4:85:fa:be:7d:b6:f3:22:cd:3b:fe:e8: c3:f3:d8:f4:37:a0:46:90:29:5a:5b:10:14:cd:34:35:3a:4b: 6e:eb:b2:2b:e0:65:aa:a1:ec:cb:c0:0a:c1:00:3a:64:66:c6: 06:b8:05:80:c3:4f:87:a1:67:a6:0c:6b:43:96:f0:ba:0e:ac: 7c:dc:c9:86:01:e7:75:6c:e8:5c:7b:42:e5:6f:4c:3d:93:4e: d8:06:48:c9:4d:1c:76:5b:5c:94:13:a3:aa:0b:14:fa:b4:d4: 7f:bf:17:dc:de:e0:ab:21:c1:b2:30:d5:ee:7b:19:19:f2:7f: 3c:d7:dc:2a:9b:20:81:45:06:90:09:bf:7c:28:ea:93:ec:47: 2f:55:f4:ed:29:26:23:68:dc:de:2a:b0:b7:9a:6a:f4:5a:fe: f1:3c:5a:77 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt6x+afehJEqYe3QnRCOQ/UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NzNkYjE3Nzk1ZDJiZjFiNGI1MzQ1YzViMjkzOTBkYmFm NDUyM2UwHhcNMjYwMTAxMTgxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMmM2N2YyYzZmNDQ0OGY4NmJjMzczYTU1YjZiYWM5M2NhMzNkNGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0V0OIAflnpIJPPCQLWQaO3b2yt7E FR/t1kZmtPOU0FbVZ4HC2VD3Hlo4POPlntzjnN04M0H7oV5TiYDPNuX197ASrS6g 0XdWBylXTua99VPHtt+Aq/wpmgHBNDxKMwgg/auU+BPqHvtOYWpy/mGNtiYWLiiT eQhzaloK8bZNx4p/YrCEomM1NiuqLtV/nN/pYvhQIBtx03tkFk4w9udSrt2iZb1W q7st/jrAu4BZBJw5dFvk9EZJXgPFR0h2yQL2scKACqlpjRWEkZgTsw1K3+BX9Hsk Xid/IK8Tqi4vx0PfQDBzufEx4Aw5gJOiXS9ERMnxxpdrBlCczX7eVZgX0QIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFALGfyxvREj4a8NzpVtrrJPKM9TbMB8GA1UdIwQY MBaAFBdz2xd5XSvxtLU0XFspOQ269FI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYt NTQ4NjFmMjMyNDlkLzEvQXNaX0xHOUVTUGhydzNPbFcydXNrOG96MU5zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYtNTQ4NjFmMjMyNDlk LzEvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAjBAIAATAdAwQEkQTgAwQC kQ9sAwQBkQ9yAwQDkQ/QAwMAkU4wDQYJKoZIhvcNAQELBQADggEBAH26Vzcq6hKn pHart2MPYRTE6G37nVCMjlGuFf2ETImalfj2jM74KWF7d/DJYAsTvsjKC3PNjLxU kPCWnvrt/pOs+OBt3/5BRVf53wnCwjW9b3nKSfBAGN3P8RNLkKBWMNSF+r59tvMi zTv+6MPz2PQ3oEaQKVpbEBTNNDU6S27rsivgZaqh7MvACsEAOmRmxga4BYDDT4eh Z6YMa0OW8LoOrHzcyYYB53Vs6Fx7QuVvTD2TTtgGSMlNHHZbXJQTo6oLFPq01H+/ F9ze4KshwbIw1e57GRnyfzzX3CqbIIFFBpAJv3wo6pPsRy9V9O0pJiNo3N4qsLea avRa/vE8Wnc= -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:24 2026 by rpki-client