This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/D-ZsgxX-lJM43XQWd73eBSAxS_Q.roa File: D-ZsgxX-lJM43XQWd73eBSAxS_Q.roa (raw, json) Hash identifier: WzGIf/FRP/VRfafRsDZV4L+vI/ltiwsGao4Ec2r89Fo= Subject key identifier: 0F:E6:6C:83:15:FE:94:93:38:DD:74:16:77:BD:DE:05:20:31:4B:F4 Certificate issuer: /CN=351c7b5607c536657fd5748f6f65b24ac12eb17d Certificate serial: 019B978957AD81E2E4AD35137943C88F85B5 Authority key identifier: 35:1C:7B:56:07:C5:36:65:7F:D5:74:8F:6F:65:B2:4A:C1:2E:B1:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRx7VgfFNmV_1XSPb2WySsEusX0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/D-ZsgxX-lJM43XQWd73eBSAxS_Q.roa Signing time: Wed 07 Jan 2026 08:18:39 +0000 ROA not before: Wed 07 Jan 2026 08:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49581 IP address blocks: 80.91.223.0/24 maxlen: 24 91.212.121.0/24 maxlen: 24 146.19.191.0/24 maxlen: 24 185.91.127.0/24 maxlen: 24 193.111.248.0/24 maxlen: 24 193.111.249.0/24 maxlen: 24 193.111.250.0/24 maxlen: 24 193.141.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/NRx7VgfFNmV_1XSPb2WySsEusX0.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/NRx7VgfFNmV_1XSPb2WySsEusX0.mft rsync://rpki.ripe.net/repository/DEFAULT/NRx7VgfFNmV_1XSPb2WySsEusX0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:97:89:57:ad:81:e2:e4:ad:35:13:79:43:c8:8f:85:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=351c7b5607c536657fd5748f6f65b24ac12eb17d Validity Not Before: Jan 7 08:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0fe66c8315fe949338dd741677bdde0520314bf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:12:21:03:f3:84:00:b2:82:81:9e:75:b8:45: 3a:7f:39:8c:cf:c3:75:6b:09:5f:c7:6c:ab:46:dc: cd:79:b9:8c:9f:1e:ba:92:08:ea:be:ff:9e:61:5d: 67:00:34:ab:b9:f9:fd:81:6c:23:63:4f:48:51:b1: 3f:98:29:30:08:ee:8f:ef:8a:30:46:8f:0e:0e:92: 57:7b:b5:6d:70:a5:7c:68:70:34:80:12:70:86:7e: 63:ea:a6:9e:10:60:80:67:1f:6b:18:49:80:bd:db: e3:1e:bd:c4:2a:a6:42:2b:7d:b3:5b:e5:33:bd:3a: 8d:99:4d:d9:1c:4b:8b:48:54:0e:00:12:7f:6b:ed: b9:a6:74:a6:d9:53:ad:20:39:b6:f5:70:e8:d8:2a: 8d:35:bc:df:ba:67:8f:8d:da:e1:43:38:9f:96:b7: 80:63:0a:e1:81:04:88:66:f5:0d:67:9e:31:fd:b8: 0c:d1:25:76:da:1a:d0:88:59:ac:34:28:5b:86:75: 19:58:c2:e1:5b:69:a0:c4:97:c0:bf:0a:7e:cb:57: c5:cc:43:1a:8a:df:a5:77:98:15:74:58:21:29:1a: de:54:f4:8a:50:5d:e0:68:49:ce:1d:79:91:79:ae: 8b:07:c4:48:a1:55:83:6c:f6:73:fe:c6:97:6d:c8: 80:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E6:6C:83:15:FE:94:93:38:DD:74:16:77:BD:DE:05:20:31:4B:F4 X509v3 Authority Key Identifier: keyid:35:1C:7B:56:07:C5:36:65:7F:D5:74:8F:6F:65:B2:4A:C1:2E:B1:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRx7VgfFNmV_1XSPb2WySsEusX0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/D-ZsgxX-lJM43XQWd73eBSAxS_Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/NRx7VgfFNmV_1XSPb2WySsEusX0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.91.223.0/24 91.212.121.0/24 146.19.191.0/24 185.91.127.0/24 193.111.248.0-193.111.250.255 193.141.60.0/24 Signature Algorithm: sha256WithRSAEncryption 82:17:50:f0:ae:76:ca:e9:9e:fb:24:a5:b1:7b:b0:af:3b:0a: a2:57:29:4c:af:5f:01:82:71:1a:76:1f:a5:1e:20:f9:9b:e2: b2:6d:14:6d:09:83:0e:dd:f7:fc:f1:5d:09:0e:35:b1:cf:df: d4:69:aa:46:31:5f:53:71:a9:3f:eb:f9:04:10:fa:d5:92:63: c5:60:b7:60:7a:06:ca:f0:09:7a:f6:c5:8a:ce:1a:2b:ff:6f: 1a:de:00:33:70:3f:59:78:28:eb:1a:79:72:0e:c3:71:60:43: 42:56:62:7a:3b:c2:a4:5b:7f:54:76:53:b4:0c:52:ba:63:bb: 65:1c:02:18:8e:82:8e:72:77:28:16:1e:8c:25:37:14:77:c9: 45:3c:89:75:d3:66:dc:30:df:11:2b:f7:e4:93:2c:c3:a0:d5: d8:e8:c1:b4:86:06:26:18:0e:a2:9c:3c:c1:ae:63:33:0f:60: 55:ce:be:1c:3f:2d:f2:1c:be:7f:d6:0a:9f:23:68:e9:ed:32: c8:14:8a:dd:e2:33:4a:9e:45:0e:84:21:bb:ff:e3:0a:c7:85: a8:e0:22:9e:b0:31:50:63:b9:8c:19:cd:9b:c4:2a:c8:0c:74: 56:a5:67:7b:27:56:12:22:a3:dd:0c:93:35:aa:48:5e:a0:53: 0a:b3:61:4d -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZuXiVetgeLkrTUTeUPIj4W1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MWM3YjU2MDdjNTM2NjU3ZmQ1NzQ4ZjZmNjViMjRhYzEy ZWIxN2QwHhcNMjYwMTA3MDgxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZmU2NmM4MzE1ZmU5NDkzMzhkZDc0MTY3N2JkZGUwNTIwMzE0YmY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxIhA/OEALKCgZ51uEU6fzmMz8N1 awlfx2yrRtzNebmMnx66kgjqvv+eYV1nADSrufn9gWwjY09IUbE/mCkwCO6P74ow Ro8ODpJXe7VtcKV8aHA0gBJwhn5j6qaeEGCAZx9rGEmAvdvjHr3EKqZCK32zW+Uz vTqNmU3ZHEuLSFQOABJ/a+25pnSm2VOtIDm29XDo2CqNNbzfumePjdrhQziflreA YwrhgQSIZvUNZ54x/bgM0SV22hrQiFmsNChbhnUZWMLhW2mgxJfAvwp+y1fFzEMa it+ld5gVdFghKRreVPSKUF3gaEnOHXmRea6LB8RIoVWDbPZz/saXbciAmwIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFA/mbIMV/pSTON10Fne93gUgMUv0MB8GA1UdIwQY MBaAFDUce1YHxTZlf9V0j29lskrBLrF9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlJ4N1ZnZkZObVZfMVhTUGIyV3lTc0V1c1gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9jMWZmMjEtNWFjMi00ZTUwLTkzNmMt NjUxNzA3YzkxZmQzLzEvRC1ac2d4WC1sSk00M1hRV2Q3M2VCU0F4U19RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9jMWZmMjEtNWFjMi00ZTUwLTkzNmMtNjUxNzA3YzkxZmQz LzEvTlJ4N1ZnZkZObVZfMVhTUGIyV3lTc0V1c1gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQAUFvfAwQA W9R5AwQAkhO/AwQAuVt/MAwDBAPBb/gDBADBb/oDBADBjTwwDQYJKoZIhvcNAQEL BQADggEBAIIXUPCudsrpnvskpbF7sK87CqJXKUyvXwGCcRp2H6UeIPmb4rJtFG0J gw7d9/zxXQkONbHP39RpqkYxX1NxqT/r+QQQ+tWSY8Vgt2B6BsrwCXr2xYrOGiv/ bxreADNwP1l4KOsaeXIOw3FgQ0JWYno7wqRbf1R2U7QMUrpju2UcAhiOgo5ydygW HowlNxR3yUU8iXXTZtww3xEr9+STLMOg1djowbSGBiYYDqKcPMGuYzMPYFXOvhw/ LfIcvn/WCp8jaOntMsgUit3iM0qeRQ6EIbv/4wrHhajgIp6wMVBjuYwZzZvEKsgM dFalZ3snVhIio90MkzWqSF6gUwqzYU0= -----END CERTIFICATE-----Generated at Wed Jan 21 09:13:03 2026 by rpki-client