This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/63xOcvR8QuycKyWPD46rC6Mmy1w.roa File: 63xOcvR8QuycKyWPD46rC6Mmy1w.roa (raw, json) Hash identifier: 1JpkuCsVUmpJp5Qz8D63JM9uwDVLuy7nVXbuIUuck/0= Subject key identifier: EB:7C:4E:72:F4:7C:42:EC:9C:2B:25:8F:0F:8E:AB:0B:A3:26:CB:5C Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B7EED49F78648910AA930137BA1BD6F8C Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/63xOcvR8QuycKyWPD46rC6Mmy1w.roa Signing time: Fri 02 Jan 2026 13:37:18 +0000 ROA not before: Fri 02 Jan 2026 13:37:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138195 IP address blocks: 45.128.235.0/24 maxlen: 24 85.31.46.0/24 maxlen: 24 85.208.136.0/24 maxlen: 24 91.92.21.0/24 maxlen: 24 109.206.243.0/24 maxlen: 24 178.215.239.0/24 maxlen: 24 185.218.138.0/24 maxlen: 24 194.113.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 07:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:ed:49:f7:86:48:91:0a:a9:30:13:7b:a1:bd:6f:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 2 13:37:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eb7c4e72f47c42ec9c2b258f0f8eab0ba326cb5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:95:a7:22:9f:5b:3b:ee:28:98:ee:5b:c0:f5: 7a:f7:9f:d2:af:de:50:ca:dd:5b:ad:9b:97:50:35: 05:b4:f5:48:6f:78:76:bc:91:1b:73:0c:b0:7b:f8: d2:b5:1a:d2:dc:f7:00:1b:6e:48:48:f3:77:df:27: 6a:47:ba:b9:7d:60:88:de:6b:d1:7a:ec:36:b5:77: aa:f9:9e:cb:d6:32:90:06:5b:8b:6d:91:a7:0b:f0: 29:76:4b:8d:01:6c:76:4b:2a:6e:0e:ec:07:d9:f3: 4c:52:b4:25:5e:2e:53:5c:5c:42:7a:30:c8:1f:a9: 36:bd:f8:97:1d:74:6b:15:ad:f7:1f:ac:f8:f8:c1: 04:7e:2f:5c:3a:4a:11:76:84:1a:98:6e:44:4e:40: 50:e1:50:2e:42:0c:0e:f6:e6:f8:9b:92:0e:9c:58: 80:ed:4c:bd:99:e0:cf:48:ad:47:9b:8f:9a:43:08: 41:3f:3d:7a:d8:e7:8f:ec:14:49:32:f6:dc:86:ad: 0a:03:9b:15:e7:71:b0:64:92:8d:96:69:1e:4c:29: 51:9c:dd:f8:18:05:d5:72:e2:76:13:ec:e2:73:c4: ea:98:01:f8:13:c6:a8:c0:32:2f:12:44:5f:1d:de: 90:6b:84:8f:dd:ab:81:28:6a:85:cd:ed:69:00:35: ef:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:7C:4E:72:F4:7C:42:EC:9C:2B:25:8F:0F:8E:AB:0B:A3:26:CB:5C X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/63xOcvR8QuycKyWPD46rC6Mmy1w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.128.235.0/24 85.31.46.0/24 85.208.136.0/24 91.92.21.0/24 109.206.243.0/24 178.215.239.0/24 185.218.138.0/24 194.113.39.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:f2:c7:1b:8e:b8:f9:f9:49:72:13:ed:c5:21:1b:48:7f:f6: d0:40:e5:df:02:f6:35:e9:66:96:8a:9f:10:c4:8a:97:9e:14: 25:05:f7:9b:38:8f:65:33:82:57:87:06:1f:5f:94:fd:cb:7d: 9d:06:2d:ae:34:49:63:1f:19:7a:c4:b1:29:21:38:76:4e:6b: 5a:72:eb:20:44:d6:d8:58:63:28:63:e1:7a:eb:8b:61:b4:1e: f0:23:ed:36:42:eb:ae:28:ea:bb:04:ea:2d:9e:7b:22:67:5e: e5:da:a3:36:25:2e:75:5b:91:16:c2:88:e2:59:be:9a:a4:7e: d4:69:3d:6e:e2:6b:e6:55:a2:5a:85:8e:15:f7:77:3f:9b:4c: 91:19:96:4e:ed:28:d5:a6:fb:f1:09:d8:80:c0:e1:f8:e1:99: 6a:5c:22:ce:6e:b6:c5:45:8b:93:85:4f:61:d8:23:50:23:a8: 70:42:23:7b:48:4c:e8:ba:e2:01:f8:7d:2e:55:eb:44:3f:18: 6e:40:e1:52:a1:6f:63:95:ec:6c:5a:64:20:0c:1e:3a:49:58: ce:6d:ca:3e:ed:17:8c:98:4a:87:cc:fd:58:3b:f1:d6:99:45: c3:b2:67:58:d2:64:e8:32:50:6c:2b:a2:d2:2f:e7:ab:54:2a: 0c:bb:66:15 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt+7Un3hkiRCqkwE3uhvW+MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAyMTMzNzE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYjdjNGU3MmY0N2M0MmVjOWMyYjI1OGYwZjhlYWIwYmEzMjZjYjVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZWnIp9bO+4omO5bwPV695/Sr95Q yt1brZuXUDUFtPVIb3h2vJEbcwywe/jStRrS3PcAG25ISPN33ydqR7q5fWCI3mvR euw2tXeq+Z7L1jKQBluLbZGnC/ApdkuNAWx2SypuDuwH2fNMUrQlXi5TXFxCejDI H6k2vfiXHXRrFa33H6z4+MEEfi9cOkoRdoQamG5ETkBQ4VAuQgwO9ub4m5IOnFiA 7Uy9meDPSK1Hm4+aQwhBPz162OeP7BRJMvbchq0KA5sV53GwZJKNlmkeTClRnN34 GAXVcuJ2E+zic8TqmAH4E8aowDIvEkRfHd6Qa4SP3auBKGqFze1pADXvOwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFOt8TnL0fELsnCsljw+OqwujJstcMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvNjN4T2N2UjhRdXljS3lXUEQ0NnJDNk1teTF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQALYDrAwQA VR8uAwQAVdCIAwQAW1wVAwQAbc7zAwQAstfvAwQAudqKAwQAwnEnMA0GCSqGSIb3 DQEBCwUAA4IBAQBq8scbjrj5+UlyE+3FIRtIf/bQQOXfAvY16WaWip8QxIqXnhQl BfebOI9lM4JXhwYfX5T9y32dBi2uNEljHxl6xLEpITh2TmtacusgRNbYWGMoY+F6 64thtB7wI+02QuuuKOq7BOotnnsiZ17l2qM2JS51W5EWwojiWb6apH7UaT1u4mvm VaJahY4V93c/m0yRGZZO7SjVpvvxCdiAwOH44ZlqXCLObrbFRYuThU9h2CNQI6hw QiN7SEzouuIB+H0uVetEPxhuQOFSoW9jlexsWmQgDB46SVjObco+7ReMmEqHzP1Y O/HWmUXDsmdY0mToMlBsK6LSL+erVCoMu2YV -----END CERTIFICATE-----Generated at Thu Jan 8 18:04:25 2026 by rpki-client