This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/a4c6f1-7c93-45ee-8eaf-4394052cd65e/1/1zaf526F9wVX38tplWDbgzfQwbY.roa File: 1zaf526F9wVX38tplWDbgzfQwbY.roa (raw, json) Hash identifier: qMnDOWXrsPt22GD6D3lnOwEaYsOjFucJb3/yloTnxl8= Subject key identifier: D7:36:9F:E7:6E:85:F7:05:57:DF:CB:69:95:60:DB:83:37:D0:C1:B6 Certificate issuer: /CN=c1adbdfe01e9a3f96d50022c3cdafdc3e1a8d988 Certificate serial: 019B7759710BCE57F3714EE1C357321D3CB0 Authority key identifier: C1:AD:BD:FE:01:E9:A3:F9:6D:50:02:2C:3C:DA:FD:C3:E1:A8:D9:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wa29_gHpo_ltUAIsPNr9w-Go2Yg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/a4c6f1-7c93-45ee-8eaf-4394052cd65e/1/1zaf526F9wVX38tplWDbgzfQwbY.roa Signing time: Thu 01 Jan 2026 02:18:28 +0000 ROA not before: Thu 01 Jan 2026 02:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35328 IP address blocks: 46.18.144.0/21 maxlen: 21 46.18.144.0/22 maxlen: 22 46.18.148.0/22 maxlen: 22 77.234.224.0/19 maxlen: 19 77.234.224.0/20 maxlen: 20 77.234.240.0/20 maxlen: 20 80.87.208.0/20 maxlen: 20 80.87.208.0/21 maxlen: 21 80.87.216.0/21 maxlen: 21 145.255.144.0/20 maxlen: 20 145.255.144.0/21 maxlen: 21 145.255.152.0/21 maxlen: 21 185.42.4.0/22 maxlen: 22 185.42.4.0/23 maxlen: 23 185.42.6.0/23 maxlen: 23 217.31.32.0/20 maxlen: 20 217.31.32.0/21 maxlen: 21 217.31.40.0/21 maxlen: 21 2a00:e380::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/a4c6f1-7c93-45ee-8eaf-4394052cd65e/1/wa29_gHpo_ltUAIsPNr9w-Go2Yg.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/a4c6f1-7c93-45ee-8eaf-4394052cd65e/1/wa29_gHpo_ltUAIsPNr9w-Go2Yg.mft rsync://rpki.ripe.net/repository/DEFAULT/wa29_gHpo_ltUAIsPNr9w-Go2Yg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:71:0b:ce:57:f3:71:4e:e1:c3:57:32:1d:3c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c1adbdfe01e9a3f96d50022c3cdafdc3e1a8d988 Validity Not Before: Jan 1 02:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d7369fe76e85f70557dfcb699560db8337d0c1b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:17:f6:f2:c6:e7:dc:29:8f:7e:73:cd:e2:2b: 90:24:16:49:e0:f0:24:76:19:3e:e5:34:fe:f3:ed: 8c:d2:98:44:91:1b:25:87:f6:82:42:bf:12:da:c6: 1f:5b:81:b2:66:91:9d:f5:48:01:fe:20:b6:3b:81: 5f:7c:b3:bf:7f:c1:21:61:b1:f5:bf:f9:ed:30:3d: e1:9c:13:d3:17:7d:35:a1:44:24:45:06:1f:42:61: 95:63:10:8c:6f:e1:58:46:ec:1c:6e:35:73:8e:75: 5e:9c:85:56:99:34:7a:72:4e:28:da:82:1b:15:ec: 9e:63:d5:8b:d4:de:63:0e:33:a7:ee:5c:46:bf:bf: ec:fe:ae:fd:77:af:64:1e:5f:b6:de:94:e6:53:64: 3e:f6:1d:43:11:1f:f9:1b:e2:cc:5b:69:97:85:0a: 2c:e6:e7:be:61:21:2a:60:11:10:56:6a:96:42:ab: cc:ad:d5:6e:86:99:a2:e1:e7:b7:c3:02:0f:c6:a2: 47:34:7e:5a:35:95:66:19:a3:fa:66:97:c3:12:24: 72:a1:0e:49:78:10:f6:53:97:1d:10:dc:a2:25:81: 3f:45:fe:cd:3c:dd:4b:d8:74:15:44:1e:58:25:85: ec:52:d6:9c:c8:6b:91:34:ab:83:5d:23:e2:45:e4: 4d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:36:9F:E7:6E:85:F7:05:57:DF:CB:69:95:60:DB:83:37:D0:C1:B6 X509v3 Authority Key Identifier: keyid:C1:AD:BD:FE:01:E9:A3:F9:6D:50:02:2C:3C:DA:FD:C3:E1:A8:D9:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wa29_gHpo_ltUAIsPNr9w-Go2Yg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/a4c6f1-7c93-45ee-8eaf-4394052cd65e/1/1zaf526F9wVX38tplWDbgzfQwbY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/a4c6f1-7c93-45ee-8eaf-4394052cd65e/1/wa29_gHpo_ltUAIsPNr9w-Go2Yg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.18.144.0/21 77.234.224.0/19 80.87.208.0/20 145.255.144.0/20 185.42.4.0/22 217.31.32.0/20 IPv6: 2a00:e380::/29 Signature Algorithm: sha256WithRSAEncryption 9c:e8:97:0b:e1:4a:ae:46:80:f3:32:ce:f5:59:ba:29:2c:3d: e3:77:b9:c4:26:8d:6d:a5:9e:92:4e:cf:3a:72:5b:d0:01:3e: 41:c8:ea:1f:ff:bc:62:b3:65:fc:01:ce:47:75:36:a4:ec:9a: 3f:c0:82:95:84:0b:90:1a:0a:aa:66:0f:e3:ea:ba:1c:e6:40: 94:11:74:a7:47:b5:70:97:fe:ae:6a:1a:c5:2f:25:1e:e8:a8: d9:7e:dd:07:92:5e:2d:df:8e:bc:1e:0d:4f:de:58:de:05:2e: 4a:e9:4e:d2:d5:ef:d9:c3:49:3e:04:d7:ba:e7:fe:79:fe:59: d8:dc:bd:9d:a1:29:d4:fa:b0:91:4c:f5:5a:b8:08:2e:36:ae: bb:1c:fc:c7:ef:a7:37:c9:29:32:f8:aa:ca:ee:e1:4e:a1:da: 62:cc:36:36:59:a1:93:14:70:dd:27:85:84:99:f9:97:1c:a1: 63:2c:e4:05:1c:51:88:11:c0:51:e6:db:3e:04:3d:4f:72:61: 25:c0:c3:58:c2:ef:b7:2d:66:61:7f:c6:f7:ee:95:7a:7f:4b: 68:27:d3:6c:56:50:f7:1c:96:41:6a:af:d9:49:18:7b:cf:ac: 04:c9:59:a7:9c:2b:f0:a6:cb:d5:0d:32:ef:4d:43:60:bf:97: 23:3c:b1:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt3WXELzlfzcU7hw1cyHTywMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxYWRiZGZlMDFlOWEzZjk2ZDUwMDIyYzNjZGFmZGMzZTFh OGQ5ODgwHhcNMjYwMTAxMDIxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzM2OWZlNzZlODVmNzA1NTdkZmNiNjk5NTYwZGI4MzM3ZDBjMWI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtRf28sbn3CmPfnPN4iuQJBZJ4PAk dhk+5TT+8+2M0phEkRslh/aCQr8S2sYfW4GyZpGd9UgB/iC2O4FffLO/f8EhYbH1 v/ntMD3hnBPTF301oUQkRQYfQmGVYxCMb+FYRuwcbjVzjnVenIVWmTR6ck4o2oIb FeyeY9WL1N5jDjOn7lxGv7/s/q79d69kHl+23pTmU2Q+9h1DER/5G+LMW2mXhQos 5ue+YSEqYBEQVmqWQqvMrdVuhpmi4ee3wwIPxqJHNH5aNZVmGaP6ZpfDEiRyoQ5J eBD2U5cdENyiJYE/Rf7NPN1L2HQVRB5YJYXsUtacyGuRNKuDXSPiReRNkwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFNc2n+duhfcFV9/LaZVg24M30MG2MB8GA1UdIwQY MBaAFMGtvf4B6aP5bVACLDza/cPhqNmIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2EyOV9nSHBvX2x0VUFJc1BOcjl3LUdvMllnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9hNGM2ZjEtN2M5My00NWVlLThlYWYt NDM5NDA1MmNkNjVlLzEvMXphZjUyNkY5d1ZYMzh0cGxXRGJnemZRd2JZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC9hNGM2ZjEtN2M5My00NWVlLThlYWYtNDM5NDA1MmNkNjVl LzEvd2EyOV9nSHBvX2x0VUFJc1BOcjl3LUdvMllnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDLhKQAwQF TergAwQEUFfQAwQEkf+QAwQCuSoEAwQE2R8gMA0EAgACMAcDBQMqAOOAMA0GCSqG SIb3DQEBCwUAA4IBAQCc6JcL4UquRoDzMs71WbopLD3jd7nEJo1tpZ6STs86clvQ AT5ByOof/7xis2X8Ac5HdTak7Jo/wIKVhAuQGgqqZg/j6roc5kCUEXSnR7Vwl/6u ahrFLyUe6KjZft0Hkl4t3468Hg1P3ljeBS5K6U7S1e/Zw0k+BNe65/55/lnY3L2d oSnU+rCRTPVauAguNq67HPzH76c3ySky+KrK7uFOodpizDY2WaGTFHDdJ4WEmfmX HKFjLOQFHFGIEcBR5ts+BD1PcmElwMNYwu+3LWZhf8b37pV6f0toJ9NsVlD3HJZB aq/ZSRh7z6wEyVmnnCvwpsvVDTLvTUNgv5cjPLHk -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:39 2026 by rpki-client