This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/fe83cb-2acd-464b-9667-0ab96163c471/1/SCZWeTcny1exQiE_olJpPnFUZXw.roa File: SCZWeTcny1exQiE_olJpPnFUZXw.roa (raw, json) Hash identifier: ShsK8qUgrWWSGaOdyvhtHxdpcqEgIl3SH1rRA+O7v4o= Subject key identifier: 48:26:56:79:37:27:CB:57:B1:42:21:3F:A2:52:69:3E:71:54:65:7C Certificate issuer: /CN=3247bef9537de164bfbaba5166be02acf7ed82da Certificate serial: 019B7E3741B0CA2208E16DA14D2C8A447BD5 Authority key identifier: 32:47:BE:F9:53:7D:E1:64:BF:BA:BA:51:66:BE:02:AC:F7:ED:82:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mke--VN94WS_urpRZr4CrPftgto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/fe83cb-2acd-464b-9667-0ab96163c471/1/SCZWeTcny1exQiE_olJpPnFUZXw.roa Signing time: Fri 02 Jan 2026 10:18:28 +0000 ROA not before: Fri 02 Jan 2026 10:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201172 IP address blocks: 45.156.92.0/22 maxlen: 24 109.204.160.0/21 maxlen: 24 185.83.116.0/22 maxlen: 24 193.104.188.0/24 maxlen: 24 194.8.226.0/23 maxlen: 24 2a05:8c40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/fe83cb-2acd-464b-9667-0ab96163c471/1/Mke--VN94WS_urpRZr4CrPftgto.crl rsync://rpki.ripe.net/repository/DEFAULT/81/fe83cb-2acd-464b-9667-0ab96163c471/1/Mke--VN94WS_urpRZr4CrPftgto.mft rsync://rpki.ripe.net/repository/DEFAULT/Mke--VN94WS_urpRZr4CrPftgto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:41:b0:ca:22:08:e1:6d:a1:4d:2c:8a:44:7b:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3247bef9537de164bfbaba5166be02acf7ed82da Validity Not Before: Jan 2 10:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=482656793727cb57b142213fa252693e7154657c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:99:97:61:92:b1:3a:5a:f6:07:2f:f9:c2:dd: 51:38:37:c5:67:8e:a4:57:af:a9:6c:33:14:41:01: d5:37:fc:9f:f6:63:af:b2:71:32:20:36:9c:75:40: a0:7b:21:56:66:55:9b:e6:56:b9:6f:dd:7c:35:4f: d2:40:35:f0:ad:88:e9:f2:a0:59:e2:51:45:0a:8a: 32:e4:a6:62:63:75:6e:90:f7:a0:e1:df:19:28:12: 46:7e:f0:35:b7:c3:34:9b:b9:ef:e3:67:b0:5e:47: e3:5d:3c:e1:1c:40:74:92:7b:f7:3a:f9:c4:0d:13: ee:ef:4d:04:c0:46:de:f5:02:60:ad:fa:a2:e6:e5: 1a:23:80:e1:66:0b:5b:b9:d5:08:e1:e7:62:77:f0: b3:5a:55:37:05:ce:13:96:c7:c0:f3:95:5c:d3:ad: ee:1d:6e:3c:90:21:a5:58:34:14:55:fd:1f:45:36: 5b:07:49:7d:d6:1e:2b:b3:df:4b:42:16:d2:61:dc: 25:e0:97:35:dc:d7:0b:5d:10:d3:d2:a3:09:dd:46: c5:e8:96:31:28:e8:9f:9b:d7:44:c3:dd:73:62:e3: 0f:68:6a:c2:27:d2:2c:56:b8:79:f6:f7:0c:c6:d4: b4:e1:4e:d0:6e:c8:95:cc:a8:0c:35:7d:a6:d2:a0: 52:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:26:56:79:37:27:CB:57:B1:42:21:3F:A2:52:69:3E:71:54:65:7C X509v3 Authority Key Identifier: keyid:32:47:BE:F9:53:7D:E1:64:BF:BA:BA:51:66:BE:02:AC:F7:ED:82:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mke--VN94WS_urpRZr4CrPftgto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe83cb-2acd-464b-9667-0ab96163c471/1/SCZWeTcny1exQiE_olJpPnFUZXw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe83cb-2acd-464b-9667-0ab96163c471/1/Mke--VN94WS_urpRZr4CrPftgto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.156.92.0/22 109.204.160.0/21 185.83.116.0/22 193.104.188.0/24 194.8.226.0/23 IPv6: 2a05:8c40::/29 Signature Algorithm: sha256WithRSAEncryption 26:f3:9b:55:1f:f9:34:21:d0:93:ea:62:cf:93:e6:7d:eb:87: 0a:5e:43:9d:6b:72:e5:8f:88:db:24:11:f7:41:0a:e5:27:c8: 08:14:fe:f3:af:19:48:36:09:c7:7a:5b:c3:1a:57:d6:b2:95: 8a:78:fa:b5:64:51:b8:7f:b2:c1:47:6a:09:6c:eb:d0:e6:2c: 38:11:54:af:ef:d5:31:c7:c2:b2:f4:99:6a:e8:70:0b:6c:d4: a6:ca:f3:09:67:16:69:4d:d2:37:c3:aa:cd:ea:9b:05:5a:8d: 98:df:d4:24:bb:38:28:8a:24:33:99:cc:a0:bf:af:8c:ef:7f: 8a:4b:23:e9:12:4c:ec:c4:6c:ba:cb:cc:83:c5:0b:63:79:38: 2d:78:8f:3e:14:99:f9:3c:09:8d:ea:61:87:2e:3c:28:64:a8: 38:18:09:0f:44:74:a7:e8:be:b8:d2:a8:e2:68:6d:03:b8:0a: 07:d6:f3:b6:23:fc:b9:a4:64:e9:46:7c:97:f3:12:a8:00:9f: 38:98:44:2f:24:71:ff:00:b8:a9:b3:e6:1b:45:a2:b5:df:36: ba:a5:a9:cb:ac:cb:c2:78:67:a9:97:a2:96:b4:63:a9:3c:b3: bb:e5:c0:56:66:6f:b2:c0:3a:3f:e5:cf:01:92:5a:27:16:af: 1f:fd:94:a2 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt+N0GwyiII4W2hTSyKRHvVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDdiZWY5NTM3ZGUxNjRiZmJhYmE1MTY2YmUwMmFjZjdl ZDgyZGEwHhcNMjYwMTAyMTAxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODI2NTY3OTM3MjdjYjU3YjE0MjIxM2ZhMjUyNjkzZTcxNTQ2NTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5mXYZKxOlr2By/5wt1RODfFZ46k V6+pbDMUQQHVN/yf9mOvsnEyIDacdUCgeyFWZlWb5la5b918NU/SQDXwrYjp8qBZ 4lFFCooy5KZiY3VukPeg4d8ZKBJGfvA1t8M0m7nv42ewXkfjXTzhHEB0knv3OvnE DRPu700EwEbe9QJgrfqi5uUaI4DhZgtbudUI4edid/CzWlU3Bc4TlsfA85Vc063u HW48kCGlWDQUVf0fRTZbB0l91h4rs99LQhbSYdwl4Jc13NcLXRDT0qMJ3UbF6JYx KOifm9dEw91zYuMPaGrCJ9IsVrh59vcMxtS04U7QbsiVzKgMNX2m0qBS6QIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFEgmVnk3J8tXsUIhP6JSaT5xVGV8MB8GA1UdIwQY MBaAFDJHvvlTfeFkv7q6UWa+Aqz37YLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtlLS1WTjk0V1NfdXJwUlpyNENyUGZ0Z3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9mZTgzY2ItMmFjZC00NjRiLTk2Njct MGFiOTYxNjNjNDcxLzEvU0NaV2VUY255MWV4UWlFX29sSnBQbkZVWlh3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS9mZTgzY2ItMmFjZC00NjRiLTk2NjctMGFiOTYxNjNjNDcx LzEvTWtlLS1WTjk0V1NfdXJwUlpyNENyUGZ0Z3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCLZxcAwQD bcygAwQCuVN0AwQAwWi8AwQBwgjiMA0EAgACMAcDBQMqBYxAMA0GCSqGSIb3DQEB CwUAA4IBAQAm85tVH/k0IdCT6mLPk+Z964cKXkOda3Llj4jbJBH3QQrlJ8gIFP7z rxlINgnHelvDGlfWspWKePq1ZFG4f7LBR2oJbOvQ5iw4EVSv79Uxx8Ky9Jlq6HAL bNSmyvMJZxZpTdI3w6rN6psFWo2Y39QkuzgoiiQzmcygv6+M73+KSyPpEkzsxGy6 y8yDxQtjeTgteI8+FJn5PAmN6mGHLjwoZKg4GAkPRHSn6L640qjiaG0DuAoH1vO2 I/y5pGTpRnyX8xKoAJ84mEQvJHH/ALips+YbRaK13za6panLrMvCeGepl6KWtGOp PLO75cBWZm+ywDo/5c8BklonFq8f/ZSi -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:51 2026 by rpki-client