This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b38fd7-9e68-426b-a100-1c0fd89dbcb4/1/PZBnPdfbJCdgsdJ-b0ZM7yGRxxc.roa File: PZBnPdfbJCdgsdJ-b0ZM7yGRxxc.roa (raw, json) Hash identifier: lKGeR/3YCO+JxIhtID6zbVNMC2uzyz/+F4TUSGRB+zg= Subject key identifier: 3D:90:67:3D:D7:DB:24:27:60:B1:D2:7E:6F:46:4C:EF:21:91:C7:17 Certificate issuer: /CN=b7730c8322118c81ca84bab1b7e0890a9c85e9f7 Certificate serial: 019B78352C26F6827D941796AA03A048AC7A Authority key identifier: B7:73:0C:83:22:11:8C:81:CA:84:BA:B1:B7:E0:89:0A:9C:85:E9:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3MMgyIRjIHKhLqxt-CJCpyF6fc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b38fd7-9e68-426b-a100-1c0fd89dbcb4/1/PZBnPdfbJCdgsdJ-b0ZM7yGRxxc.roa Signing time: Thu 01 Jan 2026 06:18:29 +0000 ROA not before: Thu 01 Jan 2026 06:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205033 IP address blocks: 185.219.244.0/22 maxlen: 22 2a0b:f040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/b38fd7-9e68-426b-a100-1c0fd89dbcb4/1/t3MMgyIRjIHKhLqxt-CJCpyF6fc.crl rsync://rpki.ripe.net/repository/DEFAULT/05/b38fd7-9e68-426b-a100-1c0fd89dbcb4/1/t3MMgyIRjIHKhLqxt-CJCpyF6fc.mft rsync://rpki.ripe.net/repository/DEFAULT/t3MMgyIRjIHKhLqxt-CJCpyF6fc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:2c:26:f6:82:7d:94:17:96:aa:03:a0:48:ac:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b7730c8322118c81ca84bab1b7e0890a9c85e9f7 Validity Not Before: Jan 1 06:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3d90673dd7db242760b1d27e6f464cef2191c717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:34:44:14:0a:bf:41:47:1e:49:7e:40:d2:0f: 8f:c2:08:7b:38:a1:18:42:0c:75:d2:13:98:3d:da: b1:6e:e7:a3:05:59:eb:0d:fb:86:be:0f:81:ef:c8: af:b4:1f:a0:47:6f:57:8f:e8:e4:17:dc:09:7d:9b: c0:4a:7f:65:ff:bd:3e:7c:22:5a:d1:28:03:6e:f8: 6d:c0:6a:a6:6e:82:8f:e6:cd:ba:63:f4:63:af:77: 10:70:5e:56:65:5d:44:43:9a:8b:7e:9d:c9:23:ef: 18:27:86:02:f7:8c:73:6f:70:fe:98:5d:44:f2:70: 5e:62:40:57:d4:a3:f3:78:e4:b6:2f:e0:5d:c9:35: 25:18:1d:53:56:bb:ad:c3:9e:2d:35:2a:7c:b0:b1: 6b:40:06:02:85:3d:88:94:94:7d:17:c3:fb:9a:89: 84:d9:5f:89:b8:db:23:da:64:44:08:14:17:50:12: 48:11:6a:f0:6e:08:52:09:45:b0:e1:dc:36:d5:dc: b9:8c:43:f6:44:a8:87:51:36:43:5c:e0:98:c5:05: 14:65:86:0b:f4:77:17:5e:6f:03:1f:f5:ce:3f:bd: 18:16:aa:3d:98:17:f7:2e:45:43:65:cf:9a:2f:fe: c7:13:19:3b:4c:de:87:51:c6:2c:02:98:38:0f:8f: bd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:90:67:3D:D7:DB:24:27:60:B1:D2:7E:6F:46:4C:EF:21:91:C7:17 X509v3 Authority Key Identifier: keyid:B7:73:0C:83:22:11:8C:81:CA:84:BA:B1:B7:E0:89:0A:9C:85:E9:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3MMgyIRjIHKhLqxt-CJCpyF6fc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b38fd7-9e68-426b-a100-1c0fd89dbcb4/1/PZBnPdfbJCdgsdJ-b0ZM7yGRxxc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b38fd7-9e68-426b-a100-1c0fd89dbcb4/1/t3MMgyIRjIHKhLqxt-CJCpyF6fc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.219.244.0/22 IPv6: 2a0b:f040::/32 Signature Algorithm: sha256WithRSAEncryption 2c:04:75:30:53:07:6e:bb:05:6d:22:0e:13:2a:06:c1:b7:d2: 3f:cf:8d:d7:aa:02:91:4f:76:22:c8:fa:3d:53:b0:dd:b2:be: 99:54:6d:a1:81:da:db:61:be:df:4d:65:22:cd:97:96:39:c6: 1b:5e:9a:96:32:94:15:58:7f:c0:d4:d9:e6:df:ee:0c:b8:c6: 3f:27:6a:d5:ff:ae:d8:d5:7a:85:36:c9:85:06:22:2a:77:23: 2f:c6:af:59:7a:06:a4:5e:51:03:eb:d9:db:16:a4:39:ca:a9: 16:70:38:91:ed:08:9d:cf:fc:cd:cb:df:63:57:f6:84:26:45: 50:c7:e7:06:0d:55:e6:63:07:f5:31:d4:39:8f:b8:c4:1b:6a: d9:81:68:35:9f:97:9e:18:f2:99:50:98:3c:7e:35:ff:3a:81: cd:07:47:6c:3e:36:d9:55:3f:93:c0:c8:53:de:25:25:eb:cd: 24:dd:1a:a4:92:64:a5:6c:09:c0:39:1a:be:2e:ac:29:bd:9b: bf:1e:4e:12:62:ea:19:d2:3d:a3:a1:7b:9c:f5:58:9d:e3:b7: 91:e3:24:b6:bd:09:1a:44:46:42:b6:39:d4:47:ce:05:14:d6: ec:56:69:b9:9c:3e:a1:a4:34:c1:a3:67:9c:d1:90:76:6b:44: cc:81:fb:8e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NSwm9oJ9lBeWqgOgSKx6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NzMwYzgzMjIxMThjODFjYTg0YmFiMWI3ZTA4OTBhOWM4 NWU5ZjcwHhcNMjYwMTAxMDYxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDkwNjczZGQ3ZGIyNDI3NjBiMWQyN2U2ZjQ2NGNlZjIxOTFjNzE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5zREFAq/QUceSX5A0g+Pwgh7OKEY Qgx10hOYPdqxbuejBVnrDfuGvg+B78ivtB+gR29Xj+jkF9wJfZvASn9l/70+fCJa 0SgDbvhtwGqmboKP5s26Y/Rjr3cQcF5WZV1EQ5qLfp3JI+8YJ4YC94xzb3D+mF1E 8nBeYkBX1KPzeOS2L+BdyTUlGB1TVrutw54tNSp8sLFrQAYChT2IlJR9F8P7momE 2V+JuNsj2mRECBQXUBJIEWrwbghSCUWw4dw21dy5jEP2RKiHUTZDXOCYxQUUZYYL 9HcXXm8DH/XOP70YFqo9mBf3LkVDZc+aL/7HExk7TN6HUcYsApg4D4+93QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFD2QZz3X2yQnYLHSfm9GTO8hkccXMB8GA1UdIwQY MBaAFLdzDIMiEYyByoS6sbfgiQqchen3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDNNTWd5SVJqSUhLaExxeHQtQ0pDcHlGNmZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9iMzhmZDctOWU2OC00MjZiLWExMDAt MWMwZmQ4OWRiY2I0LzEvUFpCblBkZmJKQ2Rnc2RKLWIwWk03eUdSeHhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9iMzhmZDctOWU2OC00MjZiLWExMDAtMWMwZmQ4OWRiY2I0 LzEvdDNNTWd5SVJqSUhLaExxeHQtQ0pDcHlGNmZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCudv0MA0E AgACMAcDBQAqC/BAMA0GCSqGSIb3DQEBCwUAA4IBAQAsBHUwUwduuwVtIg4TKgbB t9I/z43XqgKRT3YiyPo9U7Ddsr6ZVG2hgdrbYb7fTWUizZeWOcYbXpqWMpQVWH/A 1Nnm3+4MuMY/J2rV/67Y1XqFNsmFBiIqdyMvxq9ZegakXlED69nbFqQ5yqkWcDiR 7Qidz/zNy99jV/aEJkVQx+cGDVXmYwf1MdQ5j7jEG2rZgWg1n5eeGPKZUJg8fjX/ OoHNB0dsPjbZVT+TwMhT3iUl680k3RqkkmSlbAnAORq+LqwpvZu/Hk4SYuoZ0j2j oXuc9Vid47eR4yS2vQkaREZCtjnUR84FFNbsVmm5nD6hpDTBo2ec0ZB2a0TMgfuO -----END CERTIFICATE-----Generated at Tue Feb 10 01:13:04 2026 by rpki-client