This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/ZQ6sjy8La_IDIFosGkys-gjAGew.roa File: ZQ6sjy8La_IDIFosGkys-gjAGew.roa (raw, json) Hash identifier: C7JF+gmCs+f4XDJ3+8WA8I9Otmb9ceFXsb6Dqw3hOq8= Subject key identifier: 65:0E:AC:8F:2F:0B:6B:F2:03:20:5A:2C:1A:4C:AC:FA:08:C0:19:EC Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91 Certificate serial: 019AA062B71E762D13DEBA9153B7ECC9FE5E Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/ZQ6sjy8La_IDIFosGkys-gjAGew.roa Signing time: Thu 20 Nov 2025 08:30:15 +0000 ROA not before: Thu 20 Nov 2025 08:30:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 208959 IP address blocks: 45.86.221.0/24 maxlen: 24 46.232.210.0/23 maxlen: 23 185.207.164.0/22 maxlen: 22 185.207.164.0/24 maxlen: 24 185.207.165.0/24 maxlen: 24 185.207.166.0/23 maxlen: 23 185.207.166.0/24 maxlen: 24 185.207.167.0/24 maxlen: 24 216.163.184.0/22 maxlen: 24 2a11:b00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a0:62:b7:1e:76:2d:13:de:ba:91:53:b7:ec:c9:fe:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91 Validity Not Before: Nov 20 08:30:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=650eac8f2f0b6bf203205a2c1a4cacfa08c019ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0a:a7:b7:1d:ae:ce:82:60:a3:ad:f7:d0:87: fe:8c:46:5b:8f:99:29:07:01:52:2b:b0:36:cd:53: 06:3d:f1:d2:dc:44:ff:a9:b4:41:6f:f1:09:a7:57: 86:dd:71:dc:dd:58:aa:0c:28:9e:7c:52:b0:ed:18: 25:33:0c:f2:e8:ff:6c:05:eb:bf:cd:d0:be:f4:46: 32:7c:c9:33:06:85:b4:71:1f:ea:df:00:82:0a:a0: 45:5d:09:f6:af:f4:7e:86:b6:a1:44:12:b5:02:09: 6f:87:de:7b:0b:f2:20:d7:00:55:5a:91:fb:0d:09: 10:1f:f7:03:28:a0:f5:bd:c4:e9:06:fb:f5:21:7e: e4:74:84:80:d8:09:b0:a3:46:8d:08:62:05:2c:b2: 4e:96:21:ee:3b:1e:49:61:b7:50:f0:1c:00:93:4a: 02:36:9e:34:f7:b7:30:48:71:19:6c:3a:c9:18:cb: 17:f4:66:ae:88:ae:ee:35:0e:4a:eb:05:a6:5a:b6: e8:c5:87:3c:0e:22:ac:bf:69:c3:c4:2d:40:c8:99: 68:d2:d2:7d:28:c4:dc:75:59:77:87:20:25:a4:96: 29:93:b5:00:e0:94:08:fe:f9:b9:3a:82:99:de:2f: 18:53:5e:56:60:4e:36:ba:32:0d:89:f5:dc:94:97: 88:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:0E:AC:8F:2F:0B:6B:F2:03:20:5A:2C:1A:4C:AC:FA:08:C0:19:EC X509v3 Authority Key Identifier: keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/ZQ6sjy8La_IDIFosGkys-gjAGew.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.86.221.0/24 46.232.210.0/23 185.207.164.0/22 216.163.184.0/22 IPv6: 2a11:b00::/29 Signature Algorithm: sha256WithRSAEncryption 48:5b:b9:2b:6c:7f:3a:a2:1d:ca:49:3a:69:18:bb:e5:71:da: 27:da:8c:85:73:00:31:25:68:e2:fd:72:ef:7c:78:47:6b:aa: 9c:8d:81:ad:3e:fe:d2:d9:13:47:86:98:ac:ff:05:e5:ec:6b: d5:38:60:a3:a8:3f:49:01:1d:03:d4:1e:96:52:15:40:2d:21: 63:5a:51:fa:bd:0a:62:4e:5c:00:6e:49:15:77:17:cd:c3:36: 25:a3:5c:07:ec:37:1d:f8:14:39:73:73:b6:c3:b7:51:50:19: 72:69:59:5e:ef:c1:6e:cc:5e:50:a8:6c:fc:0f:cd:5a:9f:c0: 98:dc:26:86:7d:e7:a0:5b:6c:48:98:ac:fd:2e:28:01:82:a9: 01:1f:e0:b3:cf:88:a4:a4:18:0d:83:ef:b1:27:ef:01:9c:05: 3b:0b:6a:a6:e7:1e:aa:e4:fb:c3:cd:3e:97:bc:3b:13:c8:90: 04:89:7b:61:6f:b4:a3:37:be:c9:2d:d7:f2:35:fc:b8:52:29: 2c:e6:c4:b5:bf:86:6c:2c:03:f3:ec:af:41:90:be:5a:0f:4c: a0:7c:f9:8b:2d:5b:4a:f1:eb:bf:c4:e8:82:eb:19:ed:71:7f: 68:e4:54:1b:3f:66:bd:2d:56:03:ad:d0:5e:ea:18:f1:1e:db: f5:9d:91:d2 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZqgYrcedi0T3rqRU7fsyf5eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNTE0MDk4YTVhOTczNmNkYTQzMDNlMDQ5NWU5NDY1MjM5 MGFhOTEwHhcNMjUxMTIwMDgzMDE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTBlYWM4ZjJmMGI2YmYyMDMyMDVhMmMxYTRjYWNmYTA4YzAxOWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwqntx2uzoJgo6330If+jEZbj5kp BwFSK7A2zVMGPfHS3ET/qbRBb/EJp1eG3XHc3ViqDCiefFKw7RglMwzy6P9sBeu/ zdC+9EYyfMkzBoW0cR/q3wCCCqBFXQn2r/R+hrahRBK1Aglvh957C/Ig1wBVWpH7 DQkQH/cDKKD1vcTpBvv1IX7kdISA2Amwo0aNCGIFLLJOliHuOx5JYbdQ8BwAk0oC Np4097cwSHEZbDrJGMsX9GauiK7uNQ5K6wWmWrboxYc8DiKsv2nDxC1AyJlo0tJ9 KMTcdVl3hyAlpJYpk7UA4JQI/vm5OoKZ3i8YU15WYE42ujINifXclJeI9QIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFGUOrI8vC2vyAyBaLBpMrPoIwBnsMB8GA1UdIwQY MBaAFB5RQJilqXNs2kMD4ElelGUjkKqRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8zNWRmY2ItZDkyZC00OGZlLTlkYWQt ODU0MzgxNjg2YzdiLzEvWlE2c2p5OExhX0lESUZvc0dreXMtZ2pBR2V3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8zNWRmY2ItZDkyZC00OGZlLTlkYWQtODU0MzgxNjg2Yzdi LzEvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQALVbdAwQB LujSAwQCuc+kAwQC2KO4MA0EAgACMAcDBQMqEQsAMA0GCSqGSIb3DQEBCwUAA4IB AQBIW7krbH86oh3KSTppGLvlcdon2oyFcwAxJWji/XLvfHhHa6qcjYGtPv7S2RNH hpis/wXl7GvVOGCjqD9JAR0D1B6WUhVALSFjWlH6vQpiTlwAbkkVdxfNwzYlo1wH 7Dcd+BQ5c3O2w7dRUBlyaVle78FuzF5QqGz8D81an8CY3CaGfeegW2xImKz9LigB gqkBH+Czz4ikpBgNg++xJ+8BnAU7C2qm5x6q5PvDzT6XvDsTyJAEiXthb7SjN77J LdfyNfy4Uiks5sS1v4ZsLAPz7K9BkL5aD0ygfPmLLVtK8eu/xOiC6xntcX9o5FQb P2a9LVYDrdBe6hjxHtv1nZHS -----END CERTIFICATE-----Generated at Sat Dec 6 15:42:05 2025 by rpki-client