This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/Zq_slRbeIbakzkyhFvP-PgYKmew.roa File: Zq_slRbeIbakzkyhFvP-PgYKmew.roa (raw, json) Hash identifier: cl2sEp9IdvvNJyOdRm/p3gV/wJJc6+uba9k8NqDhtbQ= Subject key identifier: 66:AF:EC:95:16:DE:21:B6:A4:CE:4C:A1:16:F3:FE:3E:06:0A:99:EC Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3 Certificate serial: 019AF37BF4056320FFF39676C8BE04F7C265 Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/Zq_slRbeIbakzkyhFvP-PgYKmew.roa Signing time: Sat 06 Dec 2025 11:46:18 +0000 ROA not before: Sat 06 Dec 2025 11:46:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 37.44.228.0/22 maxlen: 24 37.44.228.0/24 maxlen: 24 165.84.224.0/22 maxlen: 22 165.84.228.0/22 maxlen: 22 192.145.53.0/24 maxlen: 24 192.145.54.0/24 maxlen: 24 192.145.55.0/24 maxlen: 24 194.15.32.0/24 maxlen: 24 194.15.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.mft rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:7b:f4:05:63:20:ff:f3:96:76:c8:be:04:f7:c2:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3 Validity Not Before: Dec 6 11:46:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=66afec9516de21b6a4ce4ca116f3fe3e060a99ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b3:79:40:97:b6:4d:14:61:b6:e1:e2:09:e4: 3c:e5:da:f8:ee:53:2e:6f:0a:5d:56:ef:e1:07:d0: b3:da:3d:bd:4d:2d:8d:7b:d9:a0:ec:0d:9a:96:ba: 8e:45:18:33:20:89:54:5a:c3:25:70:62:ea:da:0b: f3:7a:20:cc:c3:95:82:e9:51:af:31:0d:fb:6f:32: a7:cf:3b:19:46:24:e5:d1:51:a7:e9:70:32:72:15: c7:b0:80:96:c8:76:0b:29:0e:0b:8c:53:24:ac:5b: 44:7e:cc:be:26:c2:5c:78:3b:51:57:a2:bf:a2:60: 47:79:fb:04:84:24:79:d5:4b:78:4f:f7:0f:cc:ba: a7:70:2a:f8:42:23:c3:6a:e3:7b:67:8d:27:e6:15: 5f:1c:41:e9:10:a5:84:33:be:c5:5d:77:99:45:57: db:e8:27:b6:fd:7e:07:b1:8c:e0:bc:31:7d:25:83: a6:8a:02:71:c8:9b:94:f0:a4:a5:be:d0:61:1f:bb: 82:0e:21:9f:77:4e:5a:e7:a0:1b:b6:44:8a:6c:11: 47:95:b9:94:f2:a3:9c:47:4f:f8:07:60:e1:d7:6b: 80:44:3e:55:b4:bd:21:1d:eb:5f:c5:e7:67:6f:ed: 16:02:98:0a:12:dc:b3:58:37:2d:71:cd:d1:67:2d: 58:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:AF:EC:95:16:DE:21:B6:A4:CE:4C:A1:16:F3:FE:3E:06:0A:99:EC X509v3 Authority Key Identifier: keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/Zq_slRbeIbakzkyhFvP-PgYKmew.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.44.228.0/22 165.84.224.0/21 192.145.53.0-192.145.55.255 194.15.32.0/24 194.15.34.0/23 Signature Algorithm: sha256WithRSAEncryption 32:87:c0:53:a4:33:24:4f:67:20:d3:2e:5e:c1:e0:9f:bd:4f: c6:60:94:d2:d8:22:28:0f:96:64:83:39:e2:3e:b7:6f:07:a4: 58:0f:6e:42:71:4a:72:2b:e9:2d:03:4a:30:a7:31:63:fb:f4: 2a:cf:26:1e:da:76:20:54:fe:0f:9d:15:55:d1:11:39:64:cf: 05:3f:04:1a:da:bd:f9:fd:ac:15:01:44:c5:17:e1:29:06:06: 30:8f:58:47:5f:eb:b5:b2:6c:b1:8b:8b:38:a7:ac:e7:14:01: 7f:c0:81:61:51:e3:87:12:1d:c0:eb:1f:43:54:3e:77:8d:7e: d7:f5:d1:8b:20:2a:9a:f8:0e:0e:d1:64:a6:52:64:c3:57:15: 05:74:af:d4:ae:57:d8:cd:f2:2d:30:ed:ce:54:fe:28:f2:97: 55:15:db:86:42:d9:c9:c6:fa:9c:7c:88:e2:f2:69:a9:09:33: ee:38:f2:b7:87:c0:2f:91:2b:58:d3:41:31:4c:0f:b6:31:12: 30:88:c9:0a:7a:5c:79:0e:4f:4b:cd:8d:69:ef:40:73:cf:5b: bd:81:60:0b:53:41:4f:e0:d6:41:3c:e8:0a:50:e1:ca:4e:96: 48:32:4f:8f:2b:0e:c5:21:d5:42:f2:bb:a4:b4:37:29:78:c3: ae:79:39:52 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZrze/QFYyD/85Z2yL4E98JlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNjM3ODdmZDBmOTRiMzc4MTNlZWYxNmJjODEzNzQyM2Vl M2ZlZjMwHhcNMjUxMjA2MTE0NjE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NmFmZWM5NTE2ZGUyMWI2YTRjZTRjYTExNmYzZmUzZTA2MGE5OWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbN5QJe2TRRhtuHiCeQ85dr47lMu bwpdVu/hB9Cz2j29TS2Ne9mg7A2alrqORRgzIIlUWsMlcGLq2gvzeiDMw5WC6VGv MQ37bzKnzzsZRiTl0VGn6XAychXHsICWyHYLKQ4LjFMkrFtEfsy+JsJceDtRV6K/ omBHefsEhCR51Ut4T/cPzLqncCr4QiPDauN7Z40n5hVfHEHpEKWEM77FXXeZRVfb 6Ce2/X4HsYzgvDF9JYOmigJxyJuU8KSlvtBhH7uCDiGfd05a56AbtkSKbBFHlbmU 8qOcR0/4B2Dh12uARD5VtL0hHetfxednb+0WApgKEtyzWDctcc3RZy1YPQIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFGav7JUW3iG2pM5MoRbz/j4GCpnsMB8GA1UdIwQY MBaAFDJjeH/Q+Us3gT7vFryBN0I+4/7zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTW1ONGY5RDVTemVCUHU4V3ZJRTNRajdqX3ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NzAzZWYtMjQyMi00MzdjLWI5M2Qt NTk1ZTBiZjVjNjEzLzEvWnFfc2xSYmVJYmFremt5aEZ2UC1QZ1lLbWV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS83NzAzZWYtMjQyMi00MzdjLWI5M2QtNTk1ZTBiZjVjNjEz LzEvTW1ONGY5RDVTemVCUHU4V3ZJRTNRajdqX3ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQCJSzkAwQD pVTgMAwDBADAkTUDBAPAkTADBADCDyADBAHCDyIwDQYJKoZIhvcNAQELBQADggEB ADKHwFOkMyRPZyDTLl7B4J+9T8ZglNLYIigPlmSDOeI+t28HpFgPbkJxSnIr6S0D SjCnMWP79CrPJh7adiBU/g+dFVXRETlkzwU/BBravfn9rBUBRMUX4SkGBjCPWEdf 67WybLGLizinrOcUAX/AgWFR44cSHcDrH0NUPneNftf10YsgKpr4Dg7RZKZSZMNX FQV0r9SuV9jN8i0w7c5U/ijyl1UV24ZC2cnG+px8iOLyaakJM+448reHwC+RK1jT QTFMD7YxEjCIyQp6XHkOT0vNjWnvQHPPW72BYAtTQU/g1kE86ApQ4cpOlkgyT48r DsUh1ULyu6S0Nyl4w655OVI= -----END CERTIFICATE-----Generated at Sat Dec 6 23:19:10 2025 by rpki-client