This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/ecda3d-a2db-4908-862f-111056369a23/1/zFAiybQzQxds72WdUATD8g4BEjw.roa File: zFAiybQzQxds72WdUATD8g4BEjw.roa (raw, json) Hash identifier: cy5FFDk0mqzxC2rHBMlzxFOlZHb2KlFrT4hf9F2Oo6Q= Subject key identifier: CC:50:22:C9:B4:33:43:17:6C:EF:65:9D:50:04:C3:F2:0E:01:12:3C Certificate issuer: /CN=340bea3fcc3cbcedc82919cf57c74108baea369e Certificate serial: 019B78A22DC433EA3C3E9DCD7398765457C1 Authority key identifier: 34:0B:EA:3F:CC:3C:BC:ED:C8:29:19:CF:57:C7:41:08:BA:EA:36:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAvqP8w8vO3IKRnPV8dBCLrqNp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/ecda3d-a2db-4908-862f-111056369a23/1/zFAiybQzQxds72WdUATD8g4BEjw.roa Signing time: Thu 01 Jan 2026 08:17:32 +0000 ROA not before: Thu 01 Jan 2026 08:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6762 IP address blocks: 5.178.40.0/21 maxlen: 24 79.140.80.0/20 maxlen: 24 89.221.32.0/20 maxlen: 20 93.186.128.0/21 maxlen: 24 93.186.136.0/22 maxlen: 22 149.3.176.0/21 maxlen: 21 176.115.184.0/22 maxlen: 22 185.70.200.0/22 maxlen: 22 185.100.112.0/22 maxlen: 22 195.22.192.0/19 maxlen: 24 213.144.160.0/19 maxlen: 19 2001:41a8::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/ecda3d-a2db-4908-862f-111056369a23/1/NAvqP8w8vO3IKRnPV8dBCLrqNp4.crl rsync://rpki.ripe.net/repository/DEFAULT/33/ecda3d-a2db-4908-862f-111056369a23/1/NAvqP8w8vO3IKRnPV8dBCLrqNp4.mft rsync://rpki.ripe.net/repository/DEFAULT/NAvqP8w8vO3IKRnPV8dBCLrqNp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 11:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:2d:c4:33:ea:3c:3e:9d:cd:73:98:76:54:57:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=340bea3fcc3cbcedc82919cf57c74108baea369e Validity Not Before: Jan 1 08:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cc5022c9b43343176cef659d5004c3f20e01123c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ab:e2:f4:f0:e8:c3:79:c6:99:19:06:07:08: 31:3a:3c:4f:5d:15:d8:0d:cc:d5:d9:a2:d6:94:c3: 4c:f6:16:fe:f3:ea:41:7d:68:27:69:eb:69:df:3f: 78:02:97:7e:01:49:3a:57:83:28:88:c5:65:25:37: e1:fd:b3:19:d2:1e:7d:9d:0f:60:d2:84:f6:c7:a3: 22:89:c9:a9:d9:fe:93:2f:e9:f4:4f:bd:20:b2:4b: 99:b5:bd:2f:85:f2:cb:ed:91:e4:e3:2e:d8:59:7e: 96:ad:ea:4f:de:e8:28:2d:27:9b:64:b0:81:96:0e: 6d:13:3d:17:68:9a:47:9b:87:94:87:88:b6:48:1f: fe:37:b7:77:87:3c:a6:26:2e:99:37:94:85:fa:77: 86:e2:3b:d3:8d:08:a4:2c:2c:dc:71:6b:85:ac:f1: 65:68:2c:4f:b1:13:50:e4:24:d2:ff:83:d8:0c:2d: c1:e0:d7:41:f5:5e:d4:57:76:d1:f5:98:94:0e:e5: 0a:6f:af:73:7a:33:63:dc:86:82:74:0a:3c:14:5b: c2:27:c1:45:ed:88:bc:47:f1:74:0a:5f:56:e7:3e: 96:d7:60:8a:ea:35:fd:7e:3d:d0:55:1e:16:2d:45: 23:98:27:8f:eb:67:94:70:ac:2a:3a:ad:0e:3d:27: 9f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:50:22:C9:B4:33:43:17:6C:EF:65:9D:50:04:C3:F2:0E:01:12:3C X509v3 Authority Key Identifier: keyid:34:0B:EA:3F:CC:3C:BC:ED:C8:29:19:CF:57:C7:41:08:BA:EA:36:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAvqP8w8vO3IKRnPV8dBCLrqNp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ecda3d-a2db-4908-862f-111056369a23/1/zFAiybQzQxds72WdUATD8g4BEjw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ecda3d-a2db-4908-862f-111056369a23/1/NAvqP8w8vO3IKRnPV8dBCLrqNp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.178.40.0/21 79.140.80.0/20 89.221.32.0/20 93.186.128.0-93.186.139.255 149.3.176.0/21 176.115.184.0/22 185.70.200.0/22 185.100.112.0/22 195.22.192.0/19 213.144.160.0/19 IPv6: 2001:41a8::/32 Signature Algorithm: sha256WithRSAEncryption 44:a3:2d:ba:de:88:83:a3:de:66:ae:87:59:eb:99:11:0d:5e: bd:a1:e3:b5:4d:98:14:79:44:84:a7:ad:9d:5c:35:18:a4:38: b3:86:19:3b:e8:c9:94:35:15:d1:4d:1d:42:a2:e2:40:67:a7: c9:da:b2:a9:13:58:f3:2d:10:96:3b:ca:8a:72:29:d7:1b:fb: 08:3f:9e:61:cb:b0:0c:29:12:e8:aa:9b:8e:63:10:de:99:32: d3:eb:04:27:b7:95:e9:4f:b1:e8:08:20:df:6a:0f:a0:ac:1f: d8:5d:ea:be:ed:49:fe:b7:33:26:22:2e:ca:d2:b5:85:52:78: 21:98:92:69:b7:c7:14:18:aa:04:bf:26:f0:92:ac:c8:0f:71: 6c:31:39:96:41:7e:8c:00:3a:5d:45:c8:67:a0:28:fa:5c:10: a0:cd:83:93:54:5f:8e:11:43:46:ea:d9:98:f9:7e:61:eb:16: 60:59:53:0f:a7:b5:8e:b8:dc:6e:5e:29:3b:f0:fb:23:3c:18: 37:05:da:a9:5f:06:c7:0b:3a:a8:fe:13:ea:47:1f:fa:1c:bd: 69:5a:66:80:0a:a8:af:7c:f2:d6:46:f5:49:82:2a:64:fe:36: d7:01:15:34:1f:6a:75:f9:c5:97:ed:26:75:0a:5f:ce:e1:90: a9:61:32:cc -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgISAZt4oi3EM+o8Pp3Nc5h2VFfBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0MGJlYTNmY2MzY2JjZWRjODI5MTljZjU3Yzc0MTA4YmFl YTM2OWUwHhcNMjYwMTAxMDgxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYzUwMjJjOWI0MzM0MzE3NmNlZjY1OWQ1MDA0YzNmMjBlMDExMjNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqvi9PDow3nGmRkGBwgxOjxPXRXY DczV2aLWlMNM9hb+8+pBfWgnaetp3z94Apd+AUk6V4MoiMVlJTfh/bMZ0h59nQ9g 0oT2x6Miicmp2f6TL+n0T70gskuZtb0vhfLL7ZHk4y7YWX6WrepP3ugoLSebZLCB lg5tEz0XaJpHm4eUh4i2SB/+N7d3hzymJi6ZN5SF+neG4jvTjQikLCzccWuFrPFl aCxPsRNQ5CTS/4PYDC3B4NdB9V7UV3bR9ZiUDuUKb69zejNj3IaCdAo8FFvCJ8FF 7Yi8R/F0Cl9W5z6W12CK6jX9fj3QVR4WLUUjmCeP62eUcKwqOq0OPSefrQIDAQAB o4ICVjCCAlIwHQYDVR0OBBYEFMxQIsm0M0MXbO9lnVAEw/IOARI8MB8GA1UdIwQY MBaAFDQL6j/MPLztyCkZz1fHQQi66jaeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkF2cVA4dzh2TzNJS1JuUFY4ZEJDTHJxTnA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9lY2RhM2QtYTJkYi00OTA4LTg2MmYt MTExMDU2MzY5YTIzLzEvekZBaXliUXpReGRzNzJXZFVBVEQ4ZzRCRWp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy9lY2RhM2QtYTJkYi00OTA4LTg2MmYtMTExMDU2MzY5YTIz LzEvTkF2cVA4dzh2TzNJS1JuUFY4ZEJDTHJxTnA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGwGCCsGAQUFBwEHAQH/BF0wWzBKBAIAATBEAwQDBbIoAwQE T4xQAwQEWd0gMAwDBAdduoADBAJduogDBAOVA7ADBAKwc7gDBAK5RsgDBAK5ZHAD BAXDFsADBAXVkKAwDQQCAAIwBwMFACABQagwDQYJKoZIhvcNAQELBQADggEBAESj LbreiIOj3mauh1nrmRENXr2h47VNmBR5RISnrZ1cNRikOLOGGTvoyZQ1FdFNHUKi 4kBnp8nasqkTWPMtEJY7yopyKdcb+wg/nmHLsAwpEuiqm45jEN6ZMtPrBCe3lelP segIIN9qD6CsH9hd6r7tSf63MyYiLsrStYVSeCGYkmm3xxQYqgS/JvCSrMgPcWwx OZZBfowAOl1FyGegKPpcEKDNg5NUX44RQ0bq2Zj5fmHrFmBZUw+ntY643G5eKTvw +yM8GDcF2qlfBscLOqj+E+pHH/ocvWlaZoAKqK988tZG9UmCKmT+NtcBFTQfanX5 xZftJnUKX87hkKlhMsw= -----END CERTIFICATE-----Generated at Tue Jan 20 21:16:52 2026 by rpki-client