This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/Z0SiG0C6BPcf3JRi6Nl3J9q_3os.roa File: Z0SiG0C6BPcf3JRi6Nl3J9q_3os.roa (raw, json) Hash identifier: NV+K1fkE6wl7yh47F8n5bFbyG2dYxLxOb6GHsNPTGww= Subject key identifier: 67:44:A2:1B:40:BA:04:F7:1F:DC:94:62:E8:D9:77:27:DA:BF:DE:8B Certificate issuer: /CN=d3cb5cecc213b9f86dbba518521e8546ec93861c Certificate serial: 019B77595D425B657AC6864F7965CA52201F Authority key identifier: D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/Z0SiG0C6BPcf3JRi6Nl3J9q_3os.roa Signing time: Thu 01 Jan 2026 02:18:23 +0000 ROA not before: Thu 01 Jan 2026 02:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199653 IP address blocks: 89.36.212.0/22 maxlen: 24 89.38.148.0/22 maxlen: 24 89.40.112.0/22 maxlen: 24 94.177.232.0/21 maxlen: 24 94.177.240.0/22 maxlen: 24 185.8.48.0/22 maxlen: 24 185.35.64.0/22 maxlen: 24 217.61.96.0/21 maxlen: 24 2a03:2c40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/08tc7MITufhtu6UYUh6FRuyThhw.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/08tc7MITufhtu6UYUh6FRuyThhw.mft rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:5d:42:5b:65:7a:c6:86:4f:79:65:ca:52:20:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3cb5cecc213b9f86dbba518521e8546ec93861c Validity Not Before: Jan 1 02:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6744a21b40ba04f71fdc9462e8d97727dabfde8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:18:4d:4b:cf:b5:a9:54:43:c0:c3:24:b7:ae: 30:2d:db:15:67:c9:60:2a:97:0d:ea:66:ea:c1:b3: 06:f2:e0:9f:03:ab:0a:f7:ee:36:b5:c0:8e:9a:5b: 05:48:ae:47:70:24:1d:e0:f5:82:2e:8f:c3:67:be: d8:51:22:5d:75:50:40:97:c8:be:60:52:03:ba:e7: 30:ae:2e:fd:ef:23:2a:c0:4a:74:18:3b:97:b7:5b: 74:13:29:c3:39:ad:72:80:5f:d2:85:fc:c1:78:b4: c0:21:00:1e:4b:1a:d5:20:96:c3:ad:b7:32:64:76: 86:16:6f:c8:0e:41:fc:b1:c3:4d:a3:63:34:29:4a: f2:76:65:9e:19:93:8c:af:49:95:82:8f:ee:e0:07: c8:41:cb:45:de:57:57:66:8f:41:f0:41:4e:38:1e: e1:f5:25:6f:3a:3b:d9:a6:d2:bf:3d:4c:eb:18:ab: 19:8e:3f:0d:6d:af:43:7b:1f:3d:14:b8:15:e5:32: 1f:0a:7e:b7:48:c2:67:5c:7b:58:7c:f5:2f:0b:09: 3a:9f:25:ae:b7:9d:af:d2:7b:af:d7:13:cf:e7:24: 43:2a:43:d1:be:53:d6:e9:81:34:76:32:dc:97:97: cd:25:dc:06:c6:88:c8:22:ee:02:14:8f:6f:13:ef: 0e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:44:A2:1B:40:BA:04:F7:1F:DC:94:62:E8:D9:77:27:DA:BF:DE:8B X509v3 Authority Key Identifier: keyid:D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/Z0SiG0C6BPcf3JRi6Nl3J9q_3os.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/08tc7MITufhtu6UYUh6FRuyThhw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.36.212.0/22 89.38.148.0/22 89.40.112.0/22 94.177.232.0-94.177.243.255 185.8.48.0/22 185.35.64.0/22 217.61.96.0/21 IPv6: 2a03:2c40::/32 Signature Algorithm: sha256WithRSAEncryption 90:84:d7:28:ab:44:2c:59:81:34:ef:23:e9:f1:ef:f1:a5:19: c7:27:8f:a7:a1:14:54:52:8e:2d:ae:f7:1b:f2:76:13:0a:b1: cd:e3:0e:4d:5c:c3:cb:23:6b:d4:72:97:95:27:8b:2b:60:de: c4:29:66:cf:bc:6f:b2:d8:2e:e0:8e:7b:fd:78:84:7d:7f:41: c3:26:32:8a:c1:10:f8:4f:64:c5:76:95:cc:4a:4b:ea:f7:55: b0:c8:7a:a3:ff:12:ee:95:0b:41:46:85:57:46:7a:c7:b4:6d: 6c:ea:fe:65:38:a7:43:18:04:9a:a6:77:f3:b5:26:ab:b3:81: e0:dc:1e:a9:b8:f9:ff:70:99:9f:e3:72:20:85:7e:fb:0a:39: 46:fd:38:52:ff:3b:96:18:af:2e:10:51:72:5f:21:1b:df:b7: f1:8f:f0:7b:ea:e2:c5:79:d6:14:f7:3a:16:5f:72:8c:2a:bb: 87:0b:c0:90:31:a6:cd:7a:5f:8c:9e:28:14:fc:a5:51:6c:0b: f3:d2:bc:15:0b:69:33:0b:f4:d5:15:c4:2e:20:14:f2:50:d8: c4:4a:de:b5:d8:9d:29:74:09:d2:dc:a4:bd:46:c3:9f:48:0e: a7:39:31:56:b2:72:d0:13:87:e4:10:9d:4a:f8:c8:84:57:e8: 9d:a9:a6:53 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgISAZt3WV1CW2V6xoZPeWXKUiAfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzY2I1Y2VjYzIxM2I5Zjg2ZGJiYTUxODUyMWU4NTQ2ZWM5 Mzg2MWMwHhcNMjYwMTAxMDIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzQ0YTIxYjQwYmEwNGY3MWZkYzk0NjJlOGQ5NzcyN2RhYmZkZThiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRhNS8+1qVRDwMMkt64wLdsVZ8lg KpcN6mbqwbMG8uCfA6sK9+42tcCOmlsFSK5HcCQd4PWCLo/DZ77YUSJddVBAl8i+ YFIDuucwri797yMqwEp0GDuXt1t0EynDOa1ygF/ShfzBeLTAIQAeSxrVIJbDrbcy ZHaGFm/IDkH8scNNo2M0KUrydmWeGZOMr0mVgo/u4AfIQctF3ldXZo9B8EFOOB7h 9SVvOjvZptK/PUzrGKsZjj8Nba9Dex89FLgV5TIfCn63SMJnXHtYfPUvCwk6nyWu t52v0nuv1xPP5yRDKkPRvlPW6YE0djLcl5fNJdwGxojIIu4CFI9vE+8OCQIDAQAB o4ICRDCCAkAwHQYDVR0OBBYEFGdEohtAugT3H9yUYujZdyfav96LMB8GA1UdIwQY MBaAFNPLXOzCE7n4bbulGFIehUbsk4YcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDh0YzdNSVR1Zmh0dTZVWVVoNkZSdXlUaGh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9lMTE3ZmUtYzllNy00ZDQxLTk0ZGYt ODQyNjk0MTJkNTYxLzEvWjBTaUcwQzZCUGNmM0pSaTZObDNKOXFfM29zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy9lMTE3ZmUtYzllNy00ZDQxLTk0ZGYtODQyNjk0MTJkNTYx LzEvMDh0YzdNSVR1Zmh0dTZVWVVoNkZSdXlUaGh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFoGCCsGAQUFBwEHAQH/BEswSTA4BAIAATAyAwQCWSTUAwQC WSaUAwQCWShwMAwDBANesegDBAJesfADBAK5CDADBAK5I0ADBAPZPWAwDQQCAAIw BwMFACoDLEAwDQYJKoZIhvcNAQELBQADggEBAJCE1yirRCxZgTTvI+nx7/GlGccn j6ehFFRSji2u9xvydhMKsc3jDk1cw8sja9Ryl5Uniytg3sQpZs+8b7LYLuCOe/14 hH1/QcMmMorBEPhPZMV2lcxKS+r3VbDIeqP/Eu6VC0FGhVdGese0bWzq/mU4p0MY BJqmd/O1JquzgeDcHqm4+f9wmZ/jciCFfvsKOUb9OFL/O5YYry4QUXJfIRvft/GP 8Hvq4sV51hT3OhZfcowqu4cLwJAxps16X4yeKBT8pVFsC/PSvBULaTML9NUVxC4g FPJQ2MRK3rXYnSl0CdLcpL1Gw59IDqc5MVayctATh+QQnUr4yIRX6J2pplM= -----END CERTIFICATE-----Generated at Mon Jan 26 05:48:52 2026 by rpki-client