This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/964848-1028-4d22-9345-18f34a7dbdd9/1/rdPF1oSF697o-6J7h737TTdZ1tI.roa File: rdPF1oSF697o-6J7h737TTdZ1tI.roa (raw, json) Hash identifier: sMXUA/wK5htTFnsVDTj5g0Rhpnmfg7FybwvswSl03mY= Subject key identifier: AD:D3:C5:D6:84:85:EB:DE:E8:FB:A2:7B:87:BD:FB:4D:37:59:D6:D2 Certificate issuer: /CN=6f3c5408b2f67233f60d63f749ac483eb66ae7c8 Certificate serial: 019B7EA72B45B6DA2BF504B5EC051733D081 Authority key identifier: 6F:3C:54:08:B2:F6:72:33:F6:0D:63:F7:49:AC:48:3E:B6:6A:E7:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzxUCLL2cjP2DWP3SaxIPrZq58g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/964848-1028-4d22-9345-18f34a7dbdd9/1/rdPF1oSF697o-6J7h737TTdZ1tI.roa Signing time: Fri 02 Jan 2026 12:20:43 +0000 ROA not before: Fri 02 Jan 2026 12:20:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198672 IP address blocks: 37.230.32.0/21 maxlen: 21 37.230.32.0/24 maxlen: 24 37.230.33.0/24 maxlen: 24 37.230.35.0/24 maxlen: 24 185.59.128.0/22 maxlen: 22 185.59.128.0/24 maxlen: 24 185.59.129.0/24 maxlen: 24 185.59.130.0/24 maxlen: 24 185.59.131.0/24 maxlen: 24 2a00:baa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/964848-1028-4d22-9345-18f34a7dbdd9/1/bzxUCLL2cjP2DWP3SaxIPrZq58g.crl rsync://rpki.ripe.net/repository/DEFAULT/30/964848-1028-4d22-9345-18f34a7dbdd9/1/bzxUCLL2cjP2DWP3SaxIPrZq58g.mft rsync://rpki.ripe.net/repository/DEFAULT/bzxUCLL2cjP2DWP3SaxIPrZq58g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:2b:45:b6:da:2b:f5:04:b5:ec:05:17:33:d0:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3c5408b2f67233f60d63f749ac483eb66ae7c8 Validity Not Before: Jan 2 12:20:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=add3c5d68485ebdee8fba27b87bdfb4d3759d6d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:20:2b:18:41:43:e9:b3:ca:05:4d:a8:8f:db: 6e:7b:e1:84:14:62:53:5b:b6:7f:99:9a:d0:72:16: 82:33:36:6a:e9:9d:91:ee:b6:83:9b:7e:91:ec:be: 3f:60:73:4c:87:2f:c8:8a:bb:a1:03:b9:62:57:da: df:75:8e:e4:18:45:8d:2e:a8:93:78:17:0b:fe:0d: 38:2a:3e:e5:de:40:60:75:23:9b:78:15:63:5b:03: ec:f2:52:99:ef:4e:dd:2e:44:81:72:c8:40:60:fb: e8:d8:78:60:30:fa:31:29:38:31:da:a4:4e:6b:ba: 10:59:b8:52:86:30:51:9e:2c:87:ac:a1:ba:7e:b3: 27:47:26:22:0e:c7:a0:a2:b9:13:1d:42:31:6e:21: bc:b1:9c:6e:df:ef:af:73:e6:e8:06:e6:c7:02:59: a7:9b:6b:32:66:92:14:cb:c9:a6:8d:1b:05:6c:40: b6:ba:b2:e7:48:74:88:55:c7:43:c7:21:b7:29:bd: 0d:6d:82:fd:54:ff:f2:90:3d:da:ec:e6:96:df:73: 9c:17:c9:ea:24:ea:e7:4f:7f:8b:9e:a0:16:16:e0: 07:3a:bc:4b:bc:77:31:33:4d:cf:f9:80:04:7f:f3: b9:44:0a:7d:30:df:86:12:0b:e5:f1:b2:79:7b:8e: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D3:C5:D6:84:85:EB:DE:E8:FB:A2:7B:87:BD:FB:4D:37:59:D6:D2 X509v3 Authority Key Identifier: keyid:6F:3C:54:08:B2:F6:72:33:F6:0D:63:F7:49:AC:48:3E:B6:6A:E7:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzxUCLL2cjP2DWP3SaxIPrZq58g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/964848-1028-4d22-9345-18f34a7dbdd9/1/rdPF1oSF697o-6J7h737TTdZ1tI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/964848-1028-4d22-9345-18f34a7dbdd9/1/bzxUCLL2cjP2DWP3SaxIPrZq58g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.32.0/21 185.59.128.0/22 IPv6: 2a00:baa0::/32 Signature Algorithm: sha256WithRSAEncryption 5f:e9:4d:07:c2:88:31:2a:87:40:25:a8:33:9b:e9:dc:d8:ff: 1b:27:f2:cf:9a:7e:f2:4b:e4:93:7b:3c:4e:81:ae:ad:09:57: 31:69:11:b8:a3:1a:97:30:2b:75:4c:53:54:37:75:c7:ba:ae: 50:1a:d4:63:6d:5c:89:c1:04:ba:5a:b2:77:57:ae:cb:e1:51: 53:ff:ef:3d:29:6c:5d:59:c2:c4:7f:ea:2a:d2:3d:74:16:6d: 03:47:88:df:d1:03:1e:67:42:a1:77:cc:f9:e1:60:d2:dd:d0: 06:1b:12:37:0c:15:74:a4:4a:8e:52:dc:7a:8c:4e:cf:3d:be: 40:2a:d3:b7:8d:17:61:88:71:5b:d1:88:2d:60:10:5e:35:dd: cf:28:fe:3d:75:c5:7a:97:6e:87:a6:6f:eb:aa:bb:e3:95:7a: 52:6c:03:cd:1a:af:02:97:e4:ae:e4:b7:d2:a0:53:43:35:5d: cb:e2:f5:17:47:1f:da:d2:65:fe:74:89:98:2a:2e:f7:09:ed: 35:0f:e9:ed:51:e8:f8:fe:b7:e5:1c:2e:c0:11:93:f4:0e:8a: d9:86:31:79:13:ad:67:de:50:1a:92:b9:6c:13:93:72:91:7e: 34:ba:af:9e:04:12:3b:eb:2c:d9:15:93:38:21:34:5d:c8:52: c7:0f:85:14 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt+pytFttor9QS17AUXM9CBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmM2M1NDA4YjJmNjcyMzNmNjBkNjNmNzQ5YWM0ODNlYjY2 YWU3YzgwHhcNMjYwMTAyMTIyMDQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZGQzYzVkNjg0ODVlYmRlZThmYmEyN2I4N2JkZmI0ZDM3NTlkNmQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7iArGEFD6bPKBU2oj9tue+GEFGJT W7Z/mZrQchaCMzZq6Z2R7raDm36R7L4/YHNMhy/IiruhA7liV9rfdY7kGEWNLqiT eBcL/g04Kj7l3kBgdSObeBVjWwPs8lKZ707dLkSBcshAYPvo2HhgMPoxKTgx2qRO a7oQWbhShjBRniyHrKG6frMnRyYiDsegorkTHUIxbiG8sZxu3++vc+boBubHAlmn m2syZpIUy8mmjRsFbEC2urLnSHSIVcdDxyG3Kb0NbYL9VP/ykD3a7OaW33OcF8nq JOrnT3+LnqAWFuAHOrxLvHcxM03P+YAEf/O5RAp9MN+GEgvl8bJ5e46nwwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFK3TxdaEheve6Puie4e9+003WdbSMB8GA1UdIwQY MBaAFG88VAiy9nIz9g1j90msSD62aufIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnp4VUNMTDJjalAyRFdQM1NheElQclpxNThnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC85NjQ4NDgtMTAyOC00ZDIyLTkzNDUt MThmMzRhN2RiZGQ5LzEvcmRQRjFvU0Y2OTdvLTZKN2g3MzdUVGRaMXRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC85NjQ4NDgtMTAyOC00ZDIyLTkzNDUtMThmMzRhN2RiZGQ5 LzEvYnp4VUNMTDJjalAyRFdQM1NheElQclpxNThnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDJeYgAwQC uTuAMA0EAgACMAcDBQAqALqgMA0GCSqGSIb3DQEBCwUAA4IBAQBf6U0HwogxKodA Jagzm+nc2P8bJ/LPmn7yS+STezxOga6tCVcxaRG4oxqXMCt1TFNUN3XHuq5QGtRj bVyJwQS6WrJ3V67L4VFT/+89KWxdWcLEf+oq0j10Fm0DR4jf0QMeZ0Khd8z54WDS 3dAGGxI3DBV0pEqOUtx6jE7PPb5AKtO3jRdhiHFb0YgtYBBeNd3PKP49dcV6l26H pm/rqrvjlXpSbAPNGq8Cl+Su5LfSoFNDNV3L4vUXRx/a0mX+dImYKi73Ce01D+nt Uej4/rflHC7AEZP0DorZhjF5E61n3lAakrlsE5NykX40uq+eBBI76yzZFZM4ITRd yFLHD4UU -----END CERTIFICATE-----Generated at Mon Feb 9 22:27:18 2026 by rpki-client