This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/rzSHfxPc8f5O2H8mRAfMYLb0IvY.roa File: rzSHfxPc8f5O2H8mRAfMYLb0IvY.roa (raw, json) Hash identifier: 2Tzpt/g2w9zDeQM34PpUDxYfVLUv4sE0Yo1fjkFv8m0= Subject key identifier: AF:34:87:7F:13:DC:F1:FE:4E:D8:7F:26:44:07:CC:60:B6:F4:22:F6 Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029 Certificate serial: 019B78A24DC46988C0B5B863133990FD5B06 Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/rzSHfxPc8f5O2H8mRAfMYLb0IvY.roa Signing time: Thu 01 Jan 2026 08:17:40 +0000 ROA not before: Thu 01 Jan 2026 08:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45014 IP address blocks: 95.177.51.0/24 maxlen: 24 95.177.52.0/24 maxlen: 24 95.177.57.0/24 maxlen: 24 95.177.58.0/24 maxlen: 24 95.177.60.0/24 maxlen: 24 109.204.4.0/24 maxlen: 24 109.204.8.0/24 maxlen: 24 109.204.10.0/24 maxlen: 24 109.204.14.0/24 maxlen: 24 109.204.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:4d:c4:69:88:c0:b5:b8:63:13:39:90:fd:5b:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e20b034e2c497b1884488def106972704765029 Validity Not Before: Jan 1 08:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af34877f13dcf1fe4ed87f264407cc60b6f422f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:73:82:14:71:6a:e8:11:9a:d3:65:ad:07:ee: c0:b9:56:44:9f:00:1f:94:e1:2e:af:38:92:86:fb: c4:3a:78:75:e4:ea:54:34:d8:5e:69:f6:bc:20:78: 1c:6f:7d:1d:76:fb:05:27:19:92:cf:46:ee:e9:ae: b8:e1:85:d3:d8:04:3b:97:38:07:cf:fc:dd:e4:bf: ee:c7:c3:9e:f4:60:e6:0b:dd:95:c6:bf:37:9c:ae: a3:be:3f:da:f6:1a:82:8a:44:7a:24:f1:db:13:bf: f5:21:6b:7e:07:c5:69:13:3c:c7:01:97:44:8b:59: d6:51:67:58:57:85:6d:ce:3b:d6:bf:33:51:28:79: cc:79:8d:f3:62:e2:b2:b6:74:a5:79:9f:37:70:d7: f0:b4:d2:98:bc:2f:c6:7e:0c:ae:52:d9:dc:82:6e: 94:88:d9:03:06:36:a2:ab:ba:18:d3:6a:cd:74:f1: d2:40:cb:f7:0c:51:71:3a:2a:85:36:e6:86:bf:9e: e1:aa:61:5c:18:d6:d2:f2:8c:53:84:9c:ca:ab:7e: c7:d5:c6:7a:8a:35:16:e0:38:8a:e8:c8:4e:78:e5: 07:6d:44:ae:74:de:d9:53:a1:21:a4:26:4d:87:a7: 57:bc:43:bb:15:19:0e:e9:7d:ba:a5:7d:c2:a8:cd: 0f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:34:87:7F:13:DC:F1:FE:4E:D8:7F:26:44:07:CC:60:B6:F4:22:F6 X509v3 Authority Key Identifier: keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/rzSHfxPc8f5O2H8mRAfMYLb0IvY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.177.51.0-95.177.52.255 95.177.57.0-95.177.58.255 95.177.60.0/24 109.204.4.0/24 109.204.8.0/24 109.204.10.0/24 109.204.14.0/24 109.204.22.0/24 Signature Algorithm: sha256WithRSAEncryption b5:c3:99:19:27:6a:d5:28:3a:3f:74:7a:86:f6:69:fc:8a:41: 3d:0d:c4:26:71:40:76:ac:e8:d0:9a:da:f0:e6:b4:bc:3c:11: a6:f8:4b:f7:99:e0:aa:4a:8c:95:61:02:9e:1f:49:96:7f:59: e7:c1:3c:43:0c:9d:14:3f:8f:b0:9e:64:29:55:ec:dc:a1:be: f3:d0:da:be:37:f8:95:1b:0d:28:8f:20:8b:3f:07:a0:55:c3: e9:b6:e3:5f:28:77:3d:19:b2:65:3f:1c:20:38:c6:b3:23:86: c4:e8:b3:49:7e:43:70:27:68:8b:35:e6:80:05:e8:d7:55:07: 38:16:bc:a5:3b:15:6e:a8:6c:98:86:48:99:78:ff:f9:f3:d2: 4e:12:75:4c:b8:43:0a:51:74:6a:e7:81:38:d1:65:79:94:19: f2:90:80:1b:50:dc:ef:55:f0:2f:93:f2:2a:9b:60:c5:ee:81: fd:56:33:44:fe:1e:87:60:cd:05:1a:fa:3e:58:78:12:96:d7: f3:61:92:75:6c:22:3a:fb:13:2b:c0:b6:c5:9a:84:a5:0f:29: 90:c7:ee:d7:e0:32:ac:0b:8a:37:d8:92:a2:2d:fe:5a:e1:12: ea:de:39:bf:c5:09:54:18:9b:9a:f0:8a:53:0b:ba:f8:a4:5a: d4:78:b7:cd -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgISAZt4ok3EaYjAtbhjEzmQ/VsGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMjBiMDM0ZTJjNDk3YjE4ODQ0ODhkZWYxMDY5NzI3MDQ3 NjUwMjkwHhcNMjYwMTAxMDgxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjM0ODc3ZjEzZGNmMWZlNGVkODdmMjY0NDA3Y2M2MGI2ZjQyMmY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnOCFHFq6BGa02WtB+7AuVZEnwAf lOEurziShvvEOnh15OpUNNheafa8IHgcb30ddvsFJxmSz0bu6a644YXT2AQ7lzgH z/zd5L/ux8Oe9GDmC92Vxr83nK6jvj/a9hqCikR6JPHbE7/1IWt+B8VpEzzHAZdE i1nWUWdYV4VtzjvWvzNRKHnMeY3zYuKytnSleZ83cNfwtNKYvC/GfgyuUtncgm6U iNkDBjaiq7oY02rNdPHSQMv3DFFxOiqFNuaGv57hqmFcGNbS8oxThJzKq37H1cZ6 ijUW4DiK6MhOeOUHbUSudN7ZU6EhpCZNh6dXvEO7FRkO6X26pX3CqM0P0QIDAQAB o4ICQzCCAj8wHQYDVR0OBBYEFK80h38T3PH+Tth/JkQHzGC29CL2MB8GA1UdIwQY MBaAFH4gsDTixJexiESI3vEGlycEdlApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2Qt MDM1ZDk3N2Y0MjE2LzEvcnpTSGZ4UGM4ZjVPMkg4bVJBZk1ZTGIwSXZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2QtMDM1ZDk3N2Y0MjE2 LzEvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFkGCCsGAQUFBwEHAQH/BEowSDBGBAIAATBAMAwDBABfsTMD BABfsTQwDAMEAF+xOQMEAF+xOgMEAF+xPAMEAG3MBAMEAG3MCAMEAG3MCgMEAG3M DgMEAG3MFjANBgkqhkiG9w0BAQsFAAOCAQEAtcOZGSdq1Sg6P3R6hvZp/IpBPQ3E JnFAdqzo0Jra8Oa0vDwRpvhL95ngqkqMlWECnh9Jln9Z58E8QwydFD+PsJ5kKVXs 3KG+89Davjf4lRsNKI8giz8HoFXD6bbjXyh3PRmyZT8cIDjGsyOGxOizSX5DcCdo izXmgAXo11UHOBa8pTsVbqhsmIZImXj/+fPSThJ1TLhDClF0aueBONFleZQZ8pCA G1Dc71XwL5PyKptgxe6B/VYzRP4eh2DNBRr6Plh4EpbX82GSdWwiOvsTK8C2xZqE pQ8pkMfu1+AyrAuKN9iSoi3+WuES6t45v8UJVBibmvCKUwu6+KRa1Hi3zQ== -----END CERTIFICATE-----Generated at Mon Jan 19 08:13:47 2026 by rpki-client