This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/18z3oL-9DLmBfKW49WK-lTGdScQ.roa File: 18z3oL-9DLmBfKW49WK-lTGdScQ.roa (raw, json) Hash identifier: dVQpvUBqdussQS+BFDKVVIV0ZzkLLqogcDkevdfxigE= Subject key identifier: D7:CC:F7:A0:BF:BD:0C:B9:81:7C:A5:B8:F5:62:BE:95:31:9D:49:C4 Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7 Certificate serial: 019B7CEDE04298C9D292B583B3AF7349F317 Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/18z3oL-9DLmBfKW49WK-lTGdScQ.roa Signing time: Fri 02 Jan 2026 04:18:42 +0000 ROA not before: Fri 02 Jan 2026 04:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60849 IP address blocks: 62.72.165.0/24 maxlen: 24 62.72.167.0/24 maxlen: 24 62.72.169.0/24 maxlen: 24 62.72.179.0/24 maxlen: 24 62.72.186.0/24 maxlen: 24 176.57.51.0/24 maxlen: 24 176.57.52.0/24 maxlen: 24 176.57.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:e0:42:98:c9:d2:92:b5:83:b3:af:73:49:f3:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7 Validity Not Before: Jan 2 04:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d7ccf7a0bfbd0cb9817ca5b8f562be95319d49c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:24:55:69:ea:f5:53:f3:3d:a5:5d:81:7c:36: 57:c5:08:a4:66:4d:43:d3:0b:0a:ac:67:ef:49:60: 8a:f4:1f:e5:da:e3:c2:11:c9:95:85:3a:64:11:d9: 84:80:f3:3e:0c:e6:de:a2:a7:ee:ee:18:02:81:be: e3:ee:cb:eb:c5:ef:dc:e3:db:6f:45:5d:be:e1:0f: 58:38:bd:32:28:ad:ac:4e:e9:fe:f0:ca:0a:c0:85: f7:db:be:f9:30:94:23:90:1d:b6:dd:5e:1b:b0:ea: 6c:25:a9:29:62:20:f5:b6:59:d7:a3:dd:67:56:11: a7:c9:d7:99:98:ce:48:62:e3:5a:d3:e0:8f:88:0d: d6:85:42:eb:f6:ad:da:c3:14:5e:c2:4b:ec:0f:9a: 01:e6:44:2f:52:f1:fd:de:22:6f:3b:98:0e:97:80: 3d:6c:8e:21:be:bd:11:52:a7:4d:7c:9a:ad:7e:ae: f1:c2:3f:fe:24:4c:17:27:0c:6d:55:d0:82:76:44: 3e:64:91:e2:0a:c2:20:4c:05:62:48:f5:41:d9:21: f2:27:ba:33:26:e4:b0:35:60:ef:87:8e:22:dd:29: 30:b7:46:69:e4:26:6c:7f:d4:2e:de:80:4e:3c:d1: d7:e0:4d:7b:4b:47:c9:50:11:de:96:6e:74:3e:0d: cd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:CC:F7:A0:BF:BD:0C:B9:81:7C:A5:B8:F5:62:BE:95:31:9D:49:C4 X509v3 Authority Key Identifier: keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/18z3oL-9DLmBfKW49WK-lTGdScQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.72.165.0/24 62.72.167.0/24 62.72.169.0/24 62.72.179.0/24 62.72.186.0/24 176.57.51.0-176.57.53.255 Signature Algorithm: sha256WithRSAEncryption 4f:92:33:57:d0:69:87:56:44:f5:0b:62:05:a1:0b:4c:9e:bc: a4:a1:9a:00:65:e7:42:db:2b:06:dc:75:ad:1a:46:44:34:68: 2f:b7:e7:f7:1c:28:92:2d:ac:a7:d5:bc:b4:79:28:8b:c0:41: 52:1e:cf:42:91:07:94:76:5a:45:db:d8:a1:f4:10:a9:d4:83: 33:da:cb:e2:49:3b:47:96:aa:55:a3:2d:38:92:a5:ab:58:ba: 27:dc:c8:72:59:3a:9e:d4:63:50:29:c3:f9:0a:bb:e6:82:ba: d1:6a:fe:a5:a5:b8:41:22:36:2a:0a:87:57:cd:8e:36:ce:50: 66:0b:fb:5e:8f:4f:cd:72:50:34:59:cb:be:ba:fc:75:a0:e4: 19:e3:d2:5c:2d:84:54:93:27:ec:20:ad:06:97:a3:ae:35:a1: b3:e6:87:7d:71:2a:c6:74:b3:8f:bc:9a:76:12:6c:2b:95:21: 61:b7:d6:8e:3c:28:82:43:6c:c9:c4:7f:b5:74:0b:8d:00:4a: 94:81:4a:8e:a0:22:6c:39:eb:56:71:bc:18:e9:d5:d4:01:97: 9c:9c:55:09:53:7a:dd:e9:da:f4:61:ba:37:96:8e:9b:55:7c: 9f:10:22:b7:78:23:23:d5:3d:d3:47:ea:8c:42:8b:5d:1e:9f: 6a:49:64:89 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt87eBCmMnSkrWDs69zSfMXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl ZTQ2ZDcwHhcNMjYwMTAyMDQxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkN2NjZjdhMGJmYmQwY2I5ODE3Y2E1YjhmNTYyYmU5NTMxOWQ0OWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8CRVaer1U/M9pV2BfDZXxQikZk1D 0wsKrGfvSWCK9B/l2uPCEcmVhTpkEdmEgPM+DObeoqfu7hgCgb7j7svrxe/c49tv RV2+4Q9YOL0yKK2sTun+8MoKwIX32775MJQjkB223V4bsOpsJakpYiD1tlnXo91n VhGnydeZmM5IYuNa0+CPiA3WhULr9q3awxRewkvsD5oB5kQvUvH93iJvO5gOl4A9 bI4hvr0RUqdNfJqtfq7xwj/+JEwXJwxtVdCCdkQ+ZJHiCsIgTAViSPVB2SHyJ7oz JuSwNWDvh44i3Skwt0Zp5CZsf9Qu3oBOPNHX4E17S0fJUBHelm50Pg3NAwIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFNfM96C/vQy5gXyluPVivpUxnUnEMB8GA1UdIwQY MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt NTYyNDRmNDMwZGNjLzEvMTh6M29MLTlETG1CZktXNDlXSy1sVEdkU2NRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQAPkilAwQA PkinAwQAPkipAwQAPkizAwQAPki6MAwDBACwOTMDBAGwOTQwDQYJKoZIhvcNAQEL BQADggEBAE+SM1fQaYdWRPULYgWhC0yevKShmgBl50LbKwbcda0aRkQ0aC+35/cc KJItrKfVvLR5KIvAQVIez0KRB5R2WkXb2KH0EKnUgzPay+JJO0eWqlWjLTiSpatY uifcyHJZOp7UY1Apw/kKu+aCutFq/qWluEEiNioKh1fNjjbOUGYL+16PT81yUDRZ y766/HWg5Bnj0lwthFSTJ+wgrQaXo641obPmh31xKsZ0s4+8mnYSbCuVIWG31o48 KIJDbMnEf7V0C40ASpSBSo6gImw561ZxvBjp1dQBl5ycVQlTet3p2vRhujeWjptV fJ8QIrd4IyPVPdNH6oxCi10en2pJZIk= -----END CERTIFICATE-----Generated at Fri Jan 2 17:51:37 2026 by rpki-client