This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/h3O572ai_eUifMk-F32TUL7VkXM.roa File: h3O572ai_eUifMk-F32TUL7VkXM.roa (raw, json) Hash identifier: 66/7jgHjdxS0pR5qYD6CjCTDfR7QgTTO/qDff+KDDOM= Subject key identifier: 87:73:B9:EF:66:A2:FD:E5:22:7C:C9:3E:17:7D:93:50:BE:D5:91:73 Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0 Certificate serial: 019C204493B71843745AF49C32DF7800073D Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/h3O572ai_eUifMk-F32TUL7VkXM.roa Signing time: Mon 02 Feb 2026 21:31:30 +0000 ROA not before: Mon 02 Feb 2026 21:31:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201106 IP address blocks: 37.72.132.0/24 maxlen: 32 45.142.156.0/24 maxlen: 32 45.142.157.0/24 maxlen: 32 45.142.158.0/23 maxlen: 32 45.145.72.0/23 maxlen: 32 45.145.74.0/23 maxlen: 32 45.150.164.0/22 maxlen: 32 45.150.224.0/24 maxlen: 32 45.150.225.0/24 maxlen: 32 45.150.226.0/23 maxlen: 32 45.151.132.0/22 maxlen: 32 45.154.212.0/22 maxlen: 32 62.204.54.0/24 maxlen: 24 94.154.114.0/24 maxlen: 32 146.19.114.0/24 maxlen: 32 146.19.223.0/24 maxlen: 32 178.22.30.0/24 maxlen: 32 188.93.139.0/24 maxlen: 32 193.218.200.0/23 maxlen: 32 193.221.94.0/23 maxlen: 32 194.124.218.0/23 maxlen: 32 194.124.224.0/24 maxlen: 32 194.124.225.0/24 maxlen: 32 194.147.98.0/23 maxlen: 32 194.147.100.0/23 maxlen: 32 212.18.111.0/24 maxlen: 32 217.114.47.0/24 maxlen: 32 2a0e:da40:4000::/34 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.mft rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:20:44:93:b7:18:43:74:5a:f4:9c:32:df:78:00:07:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0 Validity Not Before: Feb 2 21:31:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8773b9ef66a2fde5227cc93e177d9350bed59173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:11:95:8e:de:c7:08:3f:d3:2c:77:dc:3c:3e: 25:25:23:e6:90:46:73:24:08:02:3d:b8:b7:a0:77: ee:36:2a:e8:00:9c:34:69:73:d5:96:91:76:fe:b4: 42:17:a9:a7:3f:50:09:c4:1b:e1:3b:63:11:06:e5: ea:ab:ac:3a:24:23:8a:4a:d4:b6:87:45:29:62:e4: 58:27:d3:7a:d4:2c:2f:93:e5:1d:f4:17:ea:9e:7c: 76:05:dd:c9:18:89:12:fc:63:3a:2d:8b:39:c2:0a: 40:fb:19:04:a2:35:63:25:c3:c5:ef:68:16:4e:49: 43:1b:81:13:96:64:70:c9:87:41:f7:ad:7d:60:e1: 18:9e:a8:d5:74:6c:0a:83:95:d8:75:33:0c:84:a4: d9:64:d6:13:fa:84:d3:e5:a9:d4:7c:13:1d:41:a4: 4e:f7:7b:c5:3e:dd:43:91:6a:f8:cc:b3:70:b4:65: c6:b2:6d:68:1a:94:97:5f:20:5b:73:0d:9a:47:57: 4a:ad:44:98:03:c6:de:9d:92:95:e9:5e:50:42:86: a9:92:91:f7:b1:63:4d:a4:d9:28:70:e5:c6:4f:d1: 5d:73:a8:85:5a:44:98:ca:af:87:0f:ae:0c:95:89: a6:71:d6:24:a2:94:2e:f0:e9:d2:73:1e:15:56:1f: 3a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:73:B9:EF:66:A2:FD:E5:22:7C:C9:3E:17:7D:93:50:BE:D5:91:73 X509v3 Authority Key Identifier: keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/h3O572ai_eUifMk-F32TUL7VkXM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.72.132.0/24 45.142.156.0/22 45.145.72.0/22 45.150.164.0/22 45.150.224.0/22 45.151.132.0/22 45.154.212.0/22 62.204.54.0/24 94.154.114.0/24 146.19.114.0/24 146.19.223.0/24 178.22.30.0/24 188.93.139.0/24 193.218.200.0/23 193.221.94.0/23 194.124.218.0/23 194.124.224.0/23 194.147.98.0-194.147.101.255 212.18.111.0/24 217.114.47.0/24 IPv6: 2a0e:da40:4000::/34 Signature Algorithm: sha256WithRSAEncryption 8f:4d:eb:60:22:83:6c:60:8d:6f:b6:a1:7a:0e:16:39:9c:19: 6e:9d:e5:48:d2:50:a7:55:1a:31:8c:eb:42:13:9c:f5:b5:26: b4:31:72:b4:b8:d7:24:31:dd:d0:0f:86:68:50:6e:bb:da:e1: 0f:c4:b0:8a:3e:5d:da:8b:4f:90:5f:06:7f:31:3d:ed:ef:31: e9:e2:50:92:02:40:f7:e7:a0:5c:77:07:6b:dc:23:84:aa:3f: 89:b6:92:c6:e3:93:41:b0:82:f3:69:49:20:51:80:37:d4:f6: b7:7a:96:94:e5:26:b5:3a:a9:bd:00:48:37:3c:ee:58:f6:b4: 10:1e:9b:e8:24:25:0e:2f:29:28:e8:ae:98:99:07:30:17:01: f7:62:0a:36:71:e8:8b:39:13:82:e6:5a:b4:89:2f:2c:52:e3: 05:0b:1d:bf:27:9e:f3:5a:43:11:35:90:15:79:9a:2a:a8:e1: f8:49:46:9a:e5:23:1a:ce:49:77:32:b3:65:79:d0:ff:da:b7: ef:af:74:ef:51:3d:1b:1f:f3:26:ee:6b:b6:1d:ec:25:1f:c9: 0d:64:4d:59:9c:d8:4e:03:17:0a:d9:8f:a5:16:62:25:2f:e0: 8e:ac:a8:a8:19:c8:3d:5e:09:c2:c2:0e:bc:ad:97:58:28:13: c2:99:3e:8b -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgISAZwgRJO3GEN0WvScMt94AAc9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkYjY3YzVjN2ZhN2ZlMjQ5MmVlYzM3Y2Y0Mjc2NDJiNzFk NDI1YjAwHhcNMjYwMjAyMjEzMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzczYjllZjY2YTJmZGU1MjI3Y2M5M2UxNzdkOTM1MGJlZDU5MTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhGVjt7HCD/TLHfcPD4lJSPmkEZz JAgCPbi3oHfuNiroAJw0aXPVlpF2/rRCF6mnP1AJxBvhO2MRBuXqq6w6JCOKStS2 h0UpYuRYJ9N61Cwvk+Ud9Bfqnnx2Bd3JGIkS/GM6LYs5wgpA+xkEojVjJcPF72gW TklDG4ETlmRwyYdB9619YOEYnqjVdGwKg5XYdTMMhKTZZNYT+oTT5anUfBMdQaRO 93vFPt1DkWr4zLNwtGXGsm1oGpSXXyBbcw2aR1dKrUSYA8benZKV6V5QQoapkpH3 sWNNpNkocOXGT9Fdc6iFWkSYyq+HD64MlYmmcdYkopQu8OnScx4VVh86LQIDAQAB o4ICmDCCApQwHQYDVR0OBBYEFIdzue9mov3lInzJPhd9k1C+1ZFzMB8GA1UdIwQY MBaAFA22fFx/p/4kku7DfPQnZCtx1CWwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGJaOFhILW5faVNTN3NOODlDZGtLM0hVSmJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8wZjM3NTctZjBlZC00ZTdlLTkzMjkt YjAzZGY5OTZlNDgxLzEvaDNPNTcyYWlfZVVpZk1rLUYzMlRVTDdWa1hNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS8wZjM3NTctZjBlZC00ZTdlLTkzMjktYjAzZGY5OTZlNDgx LzEvRGJaOFhILW5faVNTN3NOODlDZGtLM0hVSmJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGtBggrBgEFBQcBBwEB/wSBnTCBmjCBhwQCAAEwgYADBAAl SIQDBAItjpwDBAItkUgDBAItlqQDBAItluADBAItl4QDBAItmtQDBAA+zDYDBABe mnIDBACSE3IDBACSE98DBACyFh4DBAC8XYsDBAHB2sgDBAHB3V4DBAHCfNoDBAHC fOAwDAMEAcKTYgMEAcKTZAMEANQSbwMEANlyLzAOBAIAAjAIAwYGKg7aQEAwDQYJ KoZIhvcNAQELBQADggEBAI9N62Aig2xgjW+2oXoOFjmcGW6d5UjSUKdVGjGM60IT nPW1JrQxcrS41yQx3dAPhmhQbrva4Q/EsIo+XdqLT5BfBn8xPe3vMeniUJICQPfn oFx3B2vcI4SqP4m2ksbjk0GwgvNpSSBRgDfU9rd6lpTlJrU6qb0ASDc87lj2tBAe m+gkJQ4vKSjorpiZBzAXAfdiCjZx6Is5E4LmWrSJLyxS4wULHb8nnvNaQxE1kBV5 miqo4fhJRprlIxrOSXcys2V50P/at++vdO9RPRsf8ybua7Yd7CUfyQ1kTVmc2E4D FwrZj6UWYiUv4I6sqKgZyD1eCcLCDrytl1goE8KZPos= -----END CERTIFICATE-----Generated at Wed Feb 4 13:15:21 2026 by rpki-client