This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/221945-a74e-4775-aea5-3cf2a4622fbc/1/Rc7RzqAPPUCBuDvI3EccxhXQFx0.roa File: Rc7RzqAPPUCBuDvI3EccxhXQFx0.roa (raw, json) Hash identifier: NZZ300KypQkIx5yRquXaIhhH8xlduscfQaOkKsQw9Kc= Subject key identifier: 45:CE:D1:CE:A0:0F:3D:40:81:B8:3B:C8:DC:47:1C:C6:15:D0:17:1D Certificate issuer: /CN=3e43277b7ca79d0e9e07fc4a4b318041df415cb3 Certificate serial: 019B7EA4E57761860C7738ECF35B89355CCF Authority key identifier: 3E:43:27:7B:7C:A7:9D:0E:9E:07:FC:4A:4B:31:80:41:DF:41:5C:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkMne3ynnQ6eB_xKSzGAQd9BXLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/221945-a74e-4775-aea5-3cf2a4622fbc/1/Rc7RzqAPPUCBuDvI3EccxhXQFx0.roa Signing time: Fri 02 Jan 2026 12:18:14 +0000 ROA not before: Fri 02 Jan 2026 12:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51264 IP address blocks: 91.228.218.0/24 maxlen: 24 176.117.68.0/23 maxlen: 23 193.108.170.0/24 maxlen: 24 194.0.206.0/24 maxlen: 24 194.143.146.0/24 maxlen: 24 195.14.123.0/24 maxlen: 24 195.93.173.0/24 maxlen: 24 2001:678:cfc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/221945-a74e-4775-aea5-3cf2a4622fbc/1/PkMne3ynnQ6eB_xKSzGAQd9BXLM.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/221945-a74e-4775-aea5-3cf2a4622fbc/1/PkMne3ynnQ6eB_xKSzGAQd9BXLM.mft rsync://rpki.ripe.net/repository/DEFAULT/PkMne3ynnQ6eB_xKSzGAQd9BXLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:e5:77:61:86:0c:77:38:ec:f3:5b:89:35:5c:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e43277b7ca79d0e9e07fc4a4b318041df415cb3 Validity Not Before: Jan 2 12:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=45ced1cea00f3d4081b83bc8dc471cc615d0171d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a3:a7:82:f5:66:eb:e6:17:6b:02:e0:bf:cf: d1:2d:88:95:b6:b9:95:7f:79:c8:6b:81:ff:3f:05: b0:c7:f9:7f:5f:17:5f:23:82:cd:af:3f:c1:33:5e: 1e:10:1a:49:2f:9b:ca:65:c1:04:5a:49:2f:9d:4d: 0c:4a:04:62:fb:96:46:e0:50:1d:e2:ad:b6:00:59: 82:08:69:68:64:a5:17:73:4e:b4:7e:0d:1b:6c:0f: 00:3f:e4:23:43:6a:ae:ac:4c:9a:3c:1b:12:fb:df: 2d:74:aa:5f:62:da:ab:90:f0:69:de:06:39:2c:a9: 09:a8:4b:16:97:16:3e:c9:09:1d:a4:28:ac:da:50: 46:42:ab:f8:9b:fe:b5:d4:d3:1c:1d:3d:24:c4:18: 23:16:62:c5:74:8e:c9:18:ee:9f:a0:19:15:96:2e: 58:8a:1a:8f:55:65:e7:11:99:c3:1c:2d:bd:09:11: 79:60:8d:b3:3b:54:a9:8b:70:d6:cb:5c:f4:d1:00: b7:25:2a:22:25:f4:68:5e:7e:49:75:c4:dd:8a:51: 07:70:77:41:20:50:af:e0:1c:16:e2:27:c7:de:d5: 3b:30:26:70:a9:94:e5:6a:d5:92:31:1d:0f:7d:f7: 7e:93:be:65:d9:ac:1f:1b:30:f9:0f:ff:05:04:16: 9c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CE:D1:CE:A0:0F:3D:40:81:B8:3B:C8:DC:47:1C:C6:15:D0:17:1D X509v3 Authority Key Identifier: keyid:3E:43:27:7B:7C:A7:9D:0E:9E:07:FC:4A:4B:31:80:41:DF:41:5C:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkMne3ynnQ6eB_xKSzGAQd9BXLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/221945-a74e-4775-aea5-3cf2a4622fbc/1/Rc7RzqAPPUCBuDvI3EccxhXQFx0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/221945-a74e-4775-aea5-3cf2a4622fbc/1/PkMne3ynnQ6eB_xKSzGAQd9BXLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.228.218.0/24 176.117.68.0/23 193.108.170.0/24 194.0.206.0/24 194.143.146.0/24 195.14.123.0/24 195.93.173.0/24 IPv6: 2001:678:cfc::/48 Signature Algorithm: sha256WithRSAEncryption 1b:66:73:56:d2:df:9c:92:85:34:58:50:40:d9:46:81:d7:23: 57:8d:76:4a:5b:25:de:e4:fc:f7:88:e8:92:0e:82:18:0b:49: 01:2f:d2:50:06:39:74:f3:3b:55:36:56:b0:98:6a:88:e1:cd: 21:29:52:7a:35:d4:53:63:f8:dc:07:b8:59:1a:c5:99:50:b4: e6:87:cd:35:ef:00:32:9f:59:38:02:f4:b6:21:45:8f:16:d6: 92:c1:6a:59:94:ad:38:ea:86:f1:7d:3b:16:23:64:7b:ad:23: 3e:a7:43:17:ab:8f:bc:59:15:98:2b:9f:4d:37:b0:9e:e0:59: d8:a9:c8:d2:6a:1e:63:ea:89:2f:44:b3:1d:24:57:3c:30:82: 46:d4:ec:2b:6c:39:a7:b6:ff:eb:f3:fd:3e:05:53:10:ed:df: f2:2d:7a:5d:ae:eb:e2:94:6e:e1:52:35:ef:0c:b0:d5:76:49: 3f:d5:06:d2:ed:9f:33:67:91:55:2f:84:e8:2f:bc:c3:6d:fb: cd:f3:09:c6:07:b1:f1:0c:c7:c0:95:c4:0e:b4:23:44:2b:6a: 95:21:98:7d:fe:69:98:0f:e2:89:b3:2f:33:4b:8b:3b:77:18: b3:67:0c:8a:42:23:b7:70:2c:3e:8a:ff:8f:6e:85:25:d1:8a: 23:53:93:cb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgISAZt+pOV3YYYMdzjs81uJNVzPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNDMyNzdiN2NhNzlkMGU5ZTA3ZmM0YTRiMzE4MDQxZGY0 MTVjYjMwHhcNMjYwMTAyMTIxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NWNlZDFjZWEwMGYzZDQwODFiODNiYzhkYzQ3MWNjNjE1ZDAxNzFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKOngvVm6+YXawLgv8/RLYiVtrmV f3nIa4H/PwWwx/l/XxdfI4LNrz/BM14eEBpJL5vKZcEEWkkvnU0MSgRi+5ZG4FAd 4q22AFmCCGloZKUXc060fg0bbA8AP+QjQ2qurEyaPBsS+98tdKpfYtqrkPBp3gY5 LKkJqEsWlxY+yQkdpCis2lBGQqv4m/611NMcHT0kxBgjFmLFdI7JGO6foBkVli5Y ihqPVWXnEZnDHC29CRF5YI2zO1Spi3DWy1z00QC3JSoiJfRoXn5JdcTdilEHcHdB IFCv4BwW4ifH3tU7MCZwqZTlatWSMR0Pffd+k75l2awfGzD5D/8FBBacLQIDAQAB o4ICPjCCAjowHQYDVR0OBBYEFEXO0c6gDz1Agbg7yNxHHMYV0BcdMB8GA1UdIwQY MBaAFD5DJ3t8p50Ongf8SksxgEHfQVyzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGtNbmUzeW5uUTZlQl94S1N6R0FRZDlCWExNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yMjE5NDUtYTc0ZS00Nzc1LWFlYTUt M2NmMmE0NjIyZmJjLzEvUmM3UnpxQVBQVUNCdUR2STNFY2N4aFhRRngwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yMjE5NDUtYTc0ZS00Nzc1LWFlYTUtM2NmMmE0NjIyZmJj LzEvUGtNbmUzeW5uUTZlQl94S1N6R0FRZDlCWExNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAwBAIAATAqAwQAW+TaAwQB sHVEAwQAwWyqAwQAwgDOAwQAwo+SAwQAww57AwQAw12tMA8EAgACMAkDBwAgAQZ4 DPwwDQYJKoZIhvcNAQELBQADggEBABtmc1bS35yShTRYUEDZRoHXI1eNdkpbJd7k /PeI6JIOghgLSQEv0lAGOXTzO1U2VrCYaojhzSEpUno11FNj+NwHuFkaxZlQtOaH zTXvADKfWTgC9LYhRY8W1pLBalmUrTjqhvF9OxYjZHutIz6nQxerj7xZFZgrn003 sJ7gWdipyNJqHmPqiS9Esx0kVzwwgkbU7CtsOae2/+vz/T4FUxDt3/Itel2u6+KU buFSNe8MsNV2ST/VBtLtnzNnkVUvhOgvvMNt+83zCcYHsfEMx8CVxA60I0QrapUh mH3+aZgP4omzLzNLizt3GLNnDIpCI7dwLD6K/49uhSXRiiNTk8s= -----END CERTIFICATE-----Generated at Sun Jan 25 15:01:15 2026 by rpki-client