This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/Zo71nJPQzWdk82htdJ4_ScNK2OI.roa File: Zo71nJPQzWdk82htdJ4_ScNK2OI.roa (raw, json) Hash identifier: esHeM4PM4X5yVhVhjRyU1X67PwV4zW44Le0KORnXtcA= Subject key identifier: 66:8E:F5:9C:93:D0:CD:67:64:F3:68:6D:74:9E:3F:49:C3:4A:D8:E2 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019C24B77C227DFBB3E820EFE62B28C150C6 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/Zo71nJPQzWdk82htdJ4_ScNK2OI.roa Signing time: Tue 03 Feb 2026 18:15:30 +0000 ROA not before: Tue 03 Feb 2026 18:15:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 401152 IP address blocks: 64.188.116.0/22 maxlen: 24 77.239.100.0/22 maxlen: 24 77.239.112.0/22 maxlen: 24 144.31.8.0/23 maxlen: 24 144.31.11.0/24 maxlen: 24 144.31.13.0/24 maxlen: 24 144.31.15.0/24 maxlen: 24 144.31.49.0/24 maxlen: 24 144.31.50.0/24 maxlen: 24 144.31.51.0/24 maxlen: 24 144.31.52.0/24 maxlen: 24 144.31.53.0/24 maxlen: 24 144.31.54.0/24 maxlen: 24 144.31.55.0/24 maxlen: 24 144.31.56.0/24 maxlen: 24 144.31.57.0/24 maxlen: 24 144.31.58.0/24 maxlen: 24 144.31.59.0/24 maxlen: 24 144.31.60.0/24 maxlen: 24 144.31.61.0/24 maxlen: 24 144.31.62.0/24 maxlen: 24 144.31.63.0/24 maxlen: 24 144.31.109.0/24 maxlen: 24 144.31.110.0/24 maxlen: 24 144.31.140.0/23 maxlen: 24 144.31.142.0/23 maxlen: 24 144.31.154.0/23 maxlen: 24 144.31.160.0/22 maxlen: 24 144.31.188.0/23 maxlen: 24 144.31.220.0/24 maxlen: 24 144.31.226.0/23 maxlen: 24 144.31.234.0/23 maxlen: 24 144.31.236.0/24 maxlen: 24 150.241.69.0/24 maxlen: 24 150.241.70.0/23 maxlen: 24 150.241.85.0/24 maxlen: 24 150.241.86.0/24 maxlen: 24 150.241.93.0/24 maxlen: 24 150.241.94.0/24 maxlen: 24 150.241.96.0/22 maxlen: 24 193.23.192.0/24 maxlen: 24 193.23.198.0/24 maxlen: 24 193.23.204.0/22 maxlen: 22 193.23.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:24:b7:7c:22:7d:fb:b3:e8:20:ef:e6:2b:28:c1:50:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Feb 3 18:15:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=668ef59c93d0cd6764f3686d749e3f49c34ad8e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6c:5a:96:39:ce:90:1c:e2:b4:4a:2a:82:33: 7f:cf:1d:f2:66:e5:15:64:6c:65:e7:19:92:04:32: 3f:d6:48:21:fb:62:b1:65:8a:f2:69:49:18:a4:c4: a4:83:20:a4:e7:dd:04:34:10:1c:1a:ee:7e:2d:8c: 84:b4:a4:e7:85:f8:6d:38:71:ea:8d:f7:90:c0:3b: 7d:5a:2d:d2:2d:65:6d:83:15:4e:d8:79:ba:a9:59: 39:fb:ac:f9:77:74:03:e9:01:4d:cf:8a:fe:fc:a8: bd:db:6d:fb:5e:d0:01:59:c2:b1:04:54:67:b1:4f: 4f:6d:a7:e8:d2:52:86:72:a5:50:7a:4c:e6:2a:5b: 02:4c:60:06:32:3a:e6:74:17:92:86:5b:9e:ff:1b: d2:4a:3e:29:4e:3c:14:59:a6:38:2a:44:e4:27:17: 6b:01:a6:81:4a:f7:61:27:55:17:1f:34:64:c8:8c: 69:8d:c5:91:e3:b6:83:ad:e1:2e:cd:4c:a2:9b:8d: f5:6b:05:a3:2c:66:0c:fc:10:81:c8:c3:16:65:5e: 35:f7:26:f5:3c:1e:b6:51:19:7a:3f:3e:4e:79:ac: a9:be:99:48:4a:a9:7f:21:df:9b:17:4e:f5:1e:6a: b8:73:d9:e7:25:fc:9f:03:bd:a3:2b:df:ba:b7:11: 44:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:8E:F5:9C:93:D0:CD:67:64:F3:68:6D:74:9E:3F:49:C3:4A:D8:E2 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/Zo71nJPQzWdk82htdJ4_ScNK2OI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.188.116.0/22 77.239.100.0/22 77.239.112.0/22 144.31.8.0/23 144.31.11.0/24 144.31.13.0/24 144.31.15.0/24 144.31.49.0-144.31.63.255 144.31.109.0-144.31.110.255 144.31.140.0/22 144.31.154.0/23 144.31.160.0/22 144.31.188.0/23 144.31.220.0/24 144.31.226.0/23 144.31.234.0-144.31.236.255 150.241.69.0-150.241.71.255 150.241.85.0-150.241.86.255 150.241.93.0-150.241.94.255 150.241.96.0/22 193.23.192.0/24 193.23.198.0/24 193.23.204.0/22 193.23.212.0/22 Signature Algorithm: sha256WithRSAEncryption 57:fa:a5:dd:9d:d8:eb:b1:cd:54:5f:57:19:b7:a2:1c:d2:b0: e4:bc:f7:ad:e6:bd:5e:65:15:9e:15:4f:e4:54:3c:a9:bd:21: a5:28:38:35:7e:fb:80:37:22:b3:0a:3c:79:d4:1d:84:2b:a7: ec:11:de:fd:0c:5b:18:0f:a2:72:b0:9b:65:59:0e:86:43:20: 0c:e9:b5:2e:bf:a2:70:70:9a:68:1c:20:f3:a9:e6:cf:28:3e: 1c:ab:14:0e:ae:6b:c9:94:f8:af:3f:2d:9f:3a:d7:dc:b0:c9: 20:a9:e3:a0:91:e1:1b:0f:a8:95:0f:9d:7e:ec:8f:bf:10:0a: 8d:5c:8d:a1:e8:5c:93:1b:e5:6f:18:6e:af:ba:0a:c3:d9:1d: 47:c2:3c:18:c9:a1:9d:6c:f1:85:35:46:a2:bb:bc:39:7c:a1: 35:db:5a:26:2c:46:62:21:8d:ca:4c:b5:2e:c8:9e:10:e9:f7: b4:00:95:e8:e8:93:49:ca:99:99:8c:e9:1a:e2:41:82:ce:01: a2:31:42:37:8e:ff:25:2f:e0:15:9d:b7:45:1a:e9:64:fc:63: 07:e9:92:db:d2:17:a8:b7:34:d4:99:a6:dc:08:4d:9a:25:14: 1b:de:4a:a2:bb:5c:aa:0b:c6:8e:0e:a8:64:9d:8a:ff:7b:7a: 5f:fa:f0:34 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgISAZwkt3wiffuz6CDv5isowVDGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMjAzMTgxNTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjhlZjU5YzkzZDBjZDY3NjRmMzY4NmQ3NDllM2Y0OWMzNGFkOGUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2xaljnOkBzitEoqgjN/zx3yZuUV ZGxl5xmSBDI/1kgh+2KxZYryaUkYpMSkgyCk590ENBAcGu5+LYyEtKTnhfhtOHHq jfeQwDt9Wi3SLWVtgxVO2Hm6qVk5+6z5d3QD6QFNz4r+/Ki92237XtABWcKxBFRn sU9Pbafo0lKGcqVQekzmKlsCTGAGMjrmdBeShlue/xvSSj4pTjwUWaY4KkTkJxdr AaaBSvdhJ1UXHzRkyIxpjcWR47aDreEuzUyim431awWjLGYM/BCByMMWZV419yb1 PB62URl6Pz5OeaypvplISql/Id+bF071Hmq4c9nnJfyfA72jK9+6txFE9wIDAQAB o4ICyDCCAsQwHQYDVR0OBBYEFGaO9ZyT0M1nZPNobXSeP0nDStjiMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvWm83MW5KUFF6V2RrODJodGRKNF9TY05LMk9JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHdBggrBgEFBQcBBwEB/wSBzTCByjCBxwQCAAEwgcADBAJA vHQDBAJN72QDBAJN73ADBAGQHwgDBACQHwsDBACQHw0DBACQHw8wDAMEAJAfMQME BpAfADAMAwQAkB9tAwQAkB9uAwQCkB+MAwQBkB+aAwQCkB+gAwQBkB+8AwQAkB/c AwQBkB/iMAwDBAGQH+oDBACQH+wwDAMEAJbxRQMEA5bxQDAMAwQAlvFVAwQAlvFW MAwDBACW8V0DBACW8V4DBAKW8WADBADBF8ADBADBF8YDBALBF8wDBALBF9QwDQYJ KoZIhvcNAQELBQADggEBAFf6pd2d2OuxzVRfVxm3ohzSsOS8963mvV5lFZ4VT+RU PKm9IaUoODV++4A3IrMKPHnUHYQrp+wR3v0MWxgPonKwm2VZDoZDIAzptS6/onBw mmgcIPOp5s8oPhyrFA6ua8mU+K8/LZ8619ywySCp46CR4RsPqJUPnX7sj78QCo1c jaHoXJMb5W8Ybq+6CsPZHUfCPBjJoZ1s8YU1RqK7vDl8oTXbWiYsRmIhjcpMtS7I nhDp97QAlejok0nKmZmM6RriQYLOAaIxQjeO/yUv4BWdt0Ua6WT8YwfpktvSF6i3 NNSZptwITZolFBveSqK7XKoLxo4OqGSdiv97el/68DQ= -----END CERTIFICATE-----Generated at Wed Feb 4 10:06:10 2026 by rpki-client