This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/WS3Z_BM52BTJjWbBHhazrpZVOYg.roa File: WS3Z_BM52BTJjWbBHhazrpZVOYg.roa (raw, json) Hash identifier: SJIHk7TT3ZTlS12qN7Nxucuns7jAOlr08V7cn7ZqJWk= Subject key identifier: 59:2D:D9:FC:13:39:D8:14:C9:8D:66:C1:1E:16:B3:AE:96:55:39:88 Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519 Certificate serial: 019A7E3ADADE389E7AC5E88D788631F4C853 Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/WS3Z_BM52BTJjWbBHhazrpZVOYg.roa Signing time: Thu 13 Nov 2025 17:19:37 +0000 ROA not before: Thu 13 Nov 2025 17:19:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 12874 IP address blocks: 37.153.135.0/24 maxlen: 24 86.107.110.0/24 maxlen: 24 89.39.200.0/23 maxlen: 23 89.39.200.0/24 maxlen: 24 89.40.142.0/23 maxlen: 23 89.43.192.0/24 maxlen: 24 185.36.72.0/22 maxlen: 22 193.169.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.mft rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 16:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:7e:3a:da:de:38:9e:7a:c5:e8:8d:78:86:31:f4:c8:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519 Validity Not Before: Nov 13 17:19:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=592dd9fc1339d814c98d66c11e16b3ae96553988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:af:8e:ec:9d:22:99:76:85:06:16:a0:a7:c4: 8e:a2:60:7a:2f:e8:c5:4f:30:4c:e3:74:5b:65:2e: 83:8b:32:fa:6b:74:f3:6d:ea:0c:db:93:39:72:0b: 4a:28:b6:91:cd:ef:4d:e8:ef:92:54:1b:e9:c5:8a: b2:c2:43:69:a2:c3:e1:62:52:5b:02:77:61:3e:5a: b0:94:de:0d:74:31:56:39:d8:fa:07:5f:d1:e7:be: 8a:28:71:6c:ce:db:71:ed:a4:6b:28:bb:a1:19:c1: 59:4f:06:4f:49:0d:89:a0:1a:8b:91:0f:b9:34:d5: b3:2b:c3:ce:50:af:70:96:e9:38:85:49:91:de:96: 70:6a:c8:b1:82:28:d1:0d:33:ec:c4:f6:6f:ef:41: 39:54:6b:04:10:a9:28:ef:23:11:9c:dc:ec:73:fb: 66:20:62:56:bf:3a:94:8e:4b:5b:bd:59:42:7e:90: 7e:27:d1:ee:56:63:30:de:a4:e0:b2:80:c3:66:15: 28:75:08:91:0b:01:a8:28:91:64:ab:ec:63:65:8a: 8f:96:e6:65:f3:86:47:8f:4b:0a:8a:63:09:77:ba: fb:f7:f5:18:f1:4c:04:fd:30:15:14:2b:30:d5:1a: ff:a7:3a:2b:90:2c:d2:28:e5:c8:90:7e:2c:db:70: 02:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:2D:D9:FC:13:39:D8:14:C9:8D:66:C1:1E:16:B3:AE:96:55:39:88 X509v3 Authority Key Identifier: keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/WS3Z_BM52BTJjWbBHhazrpZVOYg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.153.135.0/24 86.107.110.0/24 89.39.200.0/23 89.40.142.0/23 89.43.192.0/24 185.36.72.0/22 193.169.20.0/24 Signature Algorithm: sha256WithRSAEncryption 05:f2:0f:27:39:f9:15:2a:b3:29:f3:b8:68:6a:37:36:5a:33: d6:00:ac:d4:12:72:a5:43:de:93:4d:3e:42:8a:9b:83:27:10: 5d:37:20:a7:45:77:49:d1:70:d8:f8:65:61:93:0d:f6:15:4b: f9:8a:95:2b:3a:7b:a9:69:66:81:c1:c4:cc:99:37:17:6c:8c: 7e:d3:77:33:0b:20:60:4d:a7:74:f6:fb:7e:1c:fc:cd:58:ce: 86:db:07:ff:90:7a:a9:00:69:7f:34:f4:7b:3d:92:ea:c8:6c: 71:c8:9f:02:8f:f1:91:88:83:1b:58:e0:a0:db:07:03:32:52: ad:50:03:e0:05:6e:74:d0:3d:81:69:af:b9:ce:2f:df:6d:98: 55:9d:5f:68:d7:11:26:97:bb:e6:15:33:56:15:a5:75:75:fb: 9c:04:c7:14:92:9e:53:97:8c:e3:97:53:51:cd:95:02:08:50: 78:94:51:4b:9c:49:74:ed:ae:5f:57:fe:00:cf:8f:19:f3:94: cd:a5:71:3c:b8:a9:33:20:fe:d0:d1:27:f7:a0:03:a5:c1:98: 2a:33:85:d9:4b:8a:bf:4a:55:0b:82:74:13:a9:99:ea:a6:bb: d8:2d:37:a8:07:8c:5c:f0:22:41:2e:c9:70:8e:70:12:c3:4a: 20:31:92:3f -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZp+OtreOJ56xeiNeIYx9MhTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0ZmE2NmZiODRhNzgxYTA1ODRmZDBkMWMyZGYzOWJkYTQ3 NjA1MTkwHhcNMjUxMTEzMTcxOTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OTJkZDlmYzEzMzlkODE0Yzk4ZDY2YzExZTE2YjNhZTk2NTUzOTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6+O7J0imXaFBhagp8SOomB6L+jF TzBM43RbZS6DizL6a3TzbeoM25M5cgtKKLaRze9N6O+SVBvpxYqywkNposPhYlJb AndhPlqwlN4NdDFWOdj6B1/R576KKHFszttx7aRrKLuhGcFZTwZPSQ2JoBqLkQ+5 NNWzK8POUK9wluk4hUmR3pZwasixgijRDTPsxPZv70E5VGsEEKko7yMRnNzsc/tm IGJWvzqUjktbvVlCfpB+J9HuVmMw3qTgsoDDZhUodQiRCwGoKJFkq+xjZYqPluZl 84ZHj0sKimMJd7r79/UY8UwE/TAVFCsw1Rr/pzorkCzSKOXIkH4s23ACdQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFFkt2fwTOdgUyY1mwR4Ws66WVTmIMB8GA1UdIwQY MBaAFGT6ZvuEp4GgWE/Q0cLfOb2kdgUZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlBwbS00U25nYUJZVDlEUnd0ODV2YVIyQlJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi82NjNiNGQtYjgwZS00OTQ2LTg0YzQt NzQwOGViOGJjNTg2LzEvV1MzWl9CTTUyQlRKaldiQkhoYXpycFpWT1lnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi82NjNiNGQtYjgwZS00OTQ2LTg0YzQtNzQwOGViOGJjNTg2 LzEvWlBwbS00U25nYUJZVDlEUnd0ODV2YVIyQlJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAJZmHAwQA VmtuAwQBWSfIAwQBWSiOAwQAWSvAAwQCuSRIAwQAwakUMA0GCSqGSIb3DQEBCwUA A4IBAQAF8g8nOfkVKrMp87hoajc2WjPWAKzUEnKlQ96TTT5CipuDJxBdNyCnRXdJ 0XDY+GVhkw32FUv5ipUrOnupaWaBwcTMmTcXbIx+03czCyBgTad09vt+HPzNWM6G 2wf/kHqpAGl/NPR7PZLqyGxxyJ8Cj/GRiIMbWOCg2wcDMlKtUAPgBW500D2Baa+5 zi/fbZhVnV9o1xEml7vmFTNWFaV1dfucBMcUkp5Tl4zjl1NRzZUCCFB4lFFLnEl0 7a5fV/4Az48Z85TNpXE8uKkzIP7Q0Sf3oAOlwZgqM4XZS4q/SlULgnQTqZnqprvY LTeoB4xc8CJBLslwjnASw0ogMZI/ -----END CERTIFICATE-----Generated at Thu Dec 4 22:32:20 2025 by rpki-client