This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/w86h2KzDZS6YtySYsZhZxpOAGO8.roa File: w86h2KzDZS6YtySYsZhZxpOAGO8.roa (raw, json) Hash identifier: 7P5EmuzkFgSJ8A4gUGId7gPuDy9EqUICiuWaRXM6HSs= Subject key identifier: C3:CE:A1:D8:AC:C3:65:2E:98:B7:24:98:B1:98:59:C6:93:80:18:EF Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB5F1A467F512FD8966E5A3B23AA89 Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/w86h2KzDZS6YtySYsZhZxpOAGO8.roa Signing time: Fri 02 Jan 2026 08:20:38 +0000 ROA not before: Fri 02 Jan 2026 08:20:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41957 IP address blocks: 46.16.37.0/24 maxlen: 24 46.253.128.0/24 maxlen: 24 62.3.48.0/24 maxlen: 24 91.242.254.0/24 maxlen: 24 146.19.178.0/24 maxlen: 24 146.19.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:5f:1a:46:7f:51:2f:d8:96:6e:5a:3b:23:aa:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c3cea1d8acc3652e98b72498b19859c6938018ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3e:2c:83:80:5d:d8:9c:10:1a:b6:b4:4f:aa: 42:a8:11:5a:bb:0f:9b:eb:6a:de:73:f8:7c:9a:1c: 06:e0:11:5e:f6:76:1e:b6:5c:f6:a5:13:25:ad:0d: 9e:2b:c9:e0:1a:b2:26:a4:3f:6a:61:e7:01:5e:d4: 5f:3e:5f:32:91:dc:94:bf:5d:99:51:ce:ba:fe:32: 24:7b:1c:c9:52:a5:72:4b:fc:01:2f:f5:a6:48:43: 81:11:1c:eb:29:83:1d:9f:bb:43:06:1a:51:26:d8: 80:37:d1:a9:db:8f:8a:6d:ae:c2:24:bd:d3:d0:4c: 5a:23:52:e5:37:d7:ab:91:00:eb:51:e3:6b:23:6f: 8e:cf:94:06:ec:9a:2e:87:a1:e0:5f:19:82:b8:66: 1a:0e:1e:00:82:1b:50:1c:85:e0:32:d6:8d:e9:46: 49:74:d7:0d:61:a5:89:87:46:01:96:8c:de:fe:3c: 06:b6:44:3e:30:bd:e5:c2:04:4b:4b:c7:a1:e3:f7: 59:52:b8:00:71:ee:d6:9f:3f:e2:4e:31:3e:48:74: 99:e9:74:ed:17:3b:69:c5:6b:a9:b1:5c:2f:f5:e5: b7:72:a9:1e:33:be:9b:cc:db:93:f1:c2:c1:fd:a2: bc:ab:ea:c5:98:95:2b:92:3c:45:d4:d4:20:ef:de: 2b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:CE:A1:D8:AC:C3:65:2E:98:B7:24:98:B1:98:59:C6:93:80:18:EF X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/w86h2KzDZS6YtySYsZhZxpOAGO8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.16.37.0/24 46.253.128.0/24 62.3.48.0/24 91.242.254.0/24 146.19.178.0/24 146.19.180.0/24 Signature Algorithm: sha256WithRSAEncryption 07:52:e0:dd:0e:2b:55:0c:c4:e6:0f:8a:3c:d7:bd:cb:fc:fd: df:23:ab:78:d7:86:00:11:a5:7d:26:fe:ec:5b:92:73:6a:75: 83:c7:20:4e:a3:f8:91:8f:80:24:e6:99:05:9c:92:84:37:4a: 5d:6b:0a:f6:91:ab:68:d6:47:8f:d5:38:c9:f2:09:3c:3a:e7: 4b:51:2c:3f:a7:9d:c7:6c:39:3f:82:5e:4d:6d:99:c6:9b:46: 8b:ff:41:01:cc:f9:04:14:8d:4c:55:15:5c:34:c0:c2:62:c6: 7d:36:99:7f:38:43:3b:ed:09:14:77:58:52:36:e5:fb:21:ee: dc:d5:cc:34:d7:15:79:26:6f:5c:45:59:3e:03:3e:63:6c:86: c5:9c:b3:11:cb:2d:0f:c2:b2:f7:6c:50:e6:b6:6d:83:4c:1a: 8a:e0:47:f6:42:a1:d4:eb:91:2b:22:61:bd:b2:95:1d:54:2d: d6:b4:1c:c0:69:f0:b8:54:bd:b8:ce:bf:4d:61:ae:ee:c7:29: d8:a0:ff:bc:c9:27:0a:be:e9:ce:c8:00:de:fb:bf:59:ec:e8: fa:c8:3c:ed:42:00:5c:28:63:8d:2e:8c:e0:90:6b:ba:d9:bd: 15:7a:4d:27:67:a4:fe:0f:08:c8:f9:db:cb:fb:93:85:41:87: dd:b4:6d:1c -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt9y18aRn9RL9iWblo7I6qJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjM2NlYTFkOGFjYzM2NTJlOThiNzI0OThiMTk4NTljNjkzODAxOGVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvT4sg4Bd2JwQGra0T6pCqBFauw+b 62rec/h8mhwG4BFe9nYetlz2pRMlrQ2eK8ngGrImpD9qYecBXtRfPl8ykdyUv12Z Uc66/jIkexzJUqVyS/wBL/WmSEOBERzrKYMdn7tDBhpRJtiAN9Gp24+Kba7CJL3T 0ExaI1LlN9erkQDrUeNrI2+Oz5QG7Jouh6HgXxmCuGYaDh4AghtQHIXgMtaN6UZJ dNcNYaWJh0YBloze/jwGtkQ+ML3lwgRLS8eh4/dZUrgAce7Wnz/iTjE+SHSZ6XTt FztpxWupsVwv9eW3cqkeM76bzNuT8cLB/aK8q+rFmJUrkjxF1NQg794r9QIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFMPOodisw2UumLckmLGYWcaTgBjvMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvdzg2aDJLekRaUzZZdHlTWXNaaFp4cE9BR084LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQALhAlAwQA Lv2AAwQAPgMwAwQAW/L+AwQAkhOyAwQAkhO0MA0GCSqGSIb3DQEBCwUAA4IBAQAH UuDdDitVDMTmD4o8173L/P3fI6t414YAEaV9Jv7sW5JzanWDxyBOo/iRj4Ak5pkF nJKEN0pdawr2kato1keP1TjJ8gk8OudLUSw/p53HbDk/gl5NbZnGm0aL/0EBzPkE FI1MVRVcNMDCYsZ9Npl/OEM77QkUd1hSNuX7Ie7c1cw01xV5Jm9cRVk+Az5jbIbF nLMRyy0PwrL3bFDmtm2DTBqK4Ef2QqHU65ErImG9spUdVC3WtBzAafC4VL24zr9N Ya7uxynYoP+8yScKvunOyADe+79Z7Oj6yDztQgBcKGONLozgkGu62b0Vek0nZ6T+ DwjI+dvL+5OFQYfdtG0c -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:10 2026 by rpki-client