This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/PzOxkkBoVgzoRxDR39-hl2fdXdI.roa File: PzOxkkBoVgzoRxDR39-hl2fdXdI.roa (raw, json) Hash identifier: KHz1LIh7zbqlpZxlPVh5cWxmJfuR/3qyCz+QTRxpSkk= Subject key identifier: 3F:33:B1:92:40:68:56:0C:E8:47:10:D1:DF:DF:A1:97:67:DD:5D:D2 Certificate issuer: /CN=2e252a477242fb45f20bb08020a403a2bb466a9b Certificate serial: 019C09A157262DB1F7ECDC13DDFA0DD287C0 Authority key identifier: 2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/PzOxkkBoVgzoRxDR39-hl2fdXdI.roa Signing time: Thu 29 Jan 2026 12:01:34 +0000 ROA not before: Thu 29 Jan 2026 12:01:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200729 IP address blocks: 85.132.83.0/24 maxlen: 24 94.20.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.crl rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.mft rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:09:a1:57:26:2d:b1:f7:ec:dc:13:dd:fa:0d:d2:87:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e252a477242fb45f20bb08020a403a2bb466a9b Validity Not Before: Jan 29 12:01:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3f33b1924068560ce84710d1dfdfa19767dd5dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c2:6a:5d:d8:f6:07:d1:3b:00:ab:1c:16:ad: 2e:45:94:27:87:c0:83:16:26:dd:d4:40:79:fa:64: 14:b8:f2:af:1f:2d:07:7c:3f:d7:c4:99:42:4b:0a: ad:8f:d0:e5:a7:d3:ff:9e:da:30:8e:37:11:59:46: 6f:e8:60:e0:50:b5:9d:44:86:68:68:a8:80:b9:cc: 1c:8b:1c:9f:d7:14:e5:3b:bc:44:ea:4f:5a:fe:16: b6:10:63:f5:f2:31:2c:4b:92:b5:12:f4:6d:56:73: b9:fc:ce:fe:c8:c4:7c:7f:24:2a:d5:4f:ea:10:a1: 1b:74:3b:34:c2:59:d8:95:65:99:7f:ee:70:36:44: ca:1b:f2:6a:a3:96:a3:dd:15:a8:54:69:35:77:1a: 86:b0:b8:05:d4:0f:17:5e:34:4d:7b:fd:20:86:0c: e3:0b:a3:df:c6:45:fc:ed:37:8e:af:04:04:31:36: 37:eb:aa:75:9a:5d:7d:c0:36:90:37:1e:db:d3:d6: 81:12:e2:48:1b:99:c4:d4:6c:8c:33:14:03:0b:63: 06:56:ef:02:a1:9e:e9:e9:be:4f:7f:46:1c:30:ad: c6:05:f8:68:82:a1:8d:0b:f6:ce:12:f8:76:36:74: fc:ae:55:ee:90:08:df:30:8b:0c:01:da:d1:d3:37: 3a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:33:B1:92:40:68:56:0C:E8:47:10:D1:DF:DF:A1:97:67:DD:5D:D2 X509v3 Authority Key Identifier: keyid:2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/PzOxkkBoVgzoRxDR39-hl2fdXdI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.132.83.0/24 94.20.86.0/24 Signature Algorithm: sha256WithRSAEncryption 11:80:98:87:b8:e0:ff:2a:c2:ce:f6:0f:70:f8:53:21:2a:8f: 87:9a:14:a8:9e:5f:dc:fa:91:9c:e2:2e:84:7d:50:8b:42:31: d7:d1:5b:f1:a1:8c:61:e5:a0:ba:ad:3b:c3:4b:b5:1b:ac:72: ee:1e:a9:05:57:ee:f2:01:60:9f:fe:08:c0:53:3f:47:d2:bf: fa:ed:3f:04:68:91:14:33:d6:55:cd:df:29:0d:4a:ff:2f:83: cf:71:9f:34:0b:14:91:f2:a3:79:b9:e9:30:17:25:4a:6a:91: 0e:60:01:9b:6c:24:fe:b6:2a:cb:c8:b5:82:b1:5f:cf:15:22: 93:26:13:61:33:ec:22:e2:b2:4e:98:b7:41:15:23:b2:bf:40: b7:1e:3e:81:d9:19:50:77:40:f0:be:41:b0:a9:15:0e:37:be: 82:a4:31:54:89:a4:0f:9a:1f:22:e5:50:1b:88:f5:23:bc:d7: 7f:b1:3c:ea:ec:45:da:5c:6e:e8:fe:a3:ac:7b:b4:7b:75:70: e8:20:27:ec:fe:1b:2a:7b:6d:33:45:cb:1d:d0:9b:59:1e:b9: 12:d3:31:b6:4b:9d:ba:fe:f4:4c:23:be:03:2c:1b:6a:98:c1: b4:29:c1:66:b5:2c:31:e0:67:e4:b8:6b:55:21:be:88:cc:ce: 8b:d7:e2:18 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZwJoVcmLbH37NwT3foN0ofAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlMjUyYTQ3NzI0MmZiNDVmMjBiYjA4MDIwYTQwM2EyYmI0 NjZhOWIwHhcNMjYwMTI5MTIwMTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZjMzYjE5MjQwNjg1NjBjZTg0NzEwZDFkZmRmYTE5NzY3ZGQ1ZGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1sJqXdj2B9E7AKscFq0uRZQnh8CD Fibd1EB5+mQUuPKvHy0HfD/XxJlCSwqtj9Dlp9P/ntowjjcRWUZv6GDgULWdRIZo aKiAucwcixyf1xTlO7xE6k9a/ha2EGP18jEsS5K1EvRtVnO5/M7+yMR8fyQq1U/q EKEbdDs0wlnYlWWZf+5wNkTKG/Jqo5aj3RWoVGk1dxqGsLgF1A8XXjRNe/0ghgzj C6PfxkX87TeOrwQEMTY366p1ml19wDaQNx7b09aBEuJIG5nE1GyMMxQDC2MGVu8C oZ7p6b5Pf0YcMK3GBfhogqGNC/bOEvh2NnT8rlXukAjfMIsMAdrR0zc6SwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFD8zsZJAaFYM6EcQ0d/foZdn3V3SMB8GA1UdIwQY MBaAFC4lKkdyQvtF8guwgCCkA6K7RmqbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGlVcVIzSkMtMFh5QzdDQUlLUURvcnRHYXBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9iMTA1NjItMjZhMS00NjQ1LThkMmIt MTZmMTQ2YmVmOTk1LzEvUHpPeGtrQm9WZ3pvUnhEUjM5LWhsMmZkWGRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9iMTA1NjItMjZhMS00NjQ1LThkMmItMTZmMTQ2YmVmOTk1 LzEvTGlVcVIzSkMtMFh5QzdDQUlLUURvcnRHYXBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVYRTAwQA XhRWMA0GCSqGSIb3DQEBCwUAA4IBAQARgJiHuOD/KsLO9g9w+FMhKo+HmhSonl/c +pGc4i6EfVCLQjHX0VvxoYxh5aC6rTvDS7UbrHLuHqkFV+7yAWCf/gjAUz9H0r/6 7T8EaJEUM9ZVzd8pDUr/L4PPcZ80CxSR8qN5uekwFyVKapEOYAGbbCT+tirLyLWC sV/PFSKTJhNhM+wi4rJOmLdBFSOyv0C3Hj6B2RlQd0DwvkGwqRUON76CpDFUiaQP mh8i5VAbiPUjvNd/sTzq7EXaXG7o/qOse7R7dXDoICfs/hsqe20zRcsd0JtZHrkS 0zG2S526/vRMI74DLBtqmMG0KcFmtSwx4GfkuGtVIb6IzM6L1+IY -----END CERTIFICATE-----Generated at Tue Feb 10 02:22:35 2026 by rpki-client