This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/C-zWCgwAxUcB5PR-BZP8SY0imsc.roa File: C-zWCgwAxUcB5PR-BZP8SY0imsc.roa (raw, json) Hash identifier: tH6y5VegxHL/FivasKZlqGMSC8JeobbFVY2ZXp/Rp9w= Subject key identifier: 0B:EC:D6:0A:0C:00:C5:47:01:E4:F4:7E:05:93:FC:49:8D:22:9A:C7 Certificate issuer: /CN=3e332dd2994c6ee89436158a2eac1f482922cd2a Certificate serial: 019B7B3669607F4AD2C6B2C3123BED3181EF Authority key identifier: 3E:33:2D:D2:99:4C:6E:E8:94:36:15:8A:2E:AC:1F:48:29:22:CD:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PjMt0plMbuiUNhWKLqwfSCkizSo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/C-zWCgwAxUcB5PR-BZP8SY0imsc.roa Signing time: Thu 01 Jan 2026 20:18:41 +0000 ROA not before: Thu 01 Jan 2026 20:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 185.230.40.0/22 maxlen: 22 185.230.40.0/24 maxlen: 24 185.230.41.0/24 maxlen: 24 185.230.42.0/24 maxlen: 24 185.230.43.0/24 maxlen: 24 2a13:3680::/29 maxlen: 29 2a13:3680::/32 maxlen: 32 2a13:3681::/32 maxlen: 32 2a13:3682::/32 maxlen: 32 2a13:3683::/32 maxlen: 32 2a13:3684::/32 maxlen: 32 2a13:3685::/32 maxlen: 32 2a13:3686::/32 maxlen: 32 2a13:3687::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/PjMt0plMbuiUNhWKLqwfSCkizSo.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/PjMt0plMbuiUNhWKLqwfSCkizSo.mft rsync://rpki.ripe.net/repository/DEFAULT/PjMt0plMbuiUNhWKLqwfSCkizSo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:69:60:7f:4a:d2:c6:b2:c3:12:3b:ed:31:81:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e332dd2994c6ee89436158a2eac1f482922cd2a Validity Not Before: Jan 1 20:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0becd60a0c00c54701e4f47e0593fc498d229ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7b:69:6b:05:61:d6:ad:1c:9e:e8:db:12:34: d8:11:67:b5:c8:81:b8:29:b6:bd:a9:d9:0f:61:51: c1:07:09:81:de:fe:4d:7d:22:07:83:ba:dc:c1:58: 67:53:92:90:f6:5e:98:64:c9:63:e1:b5:33:cb:9c: 5a:83:b5:41:88:50:1d:68:3d:01:dd:7a:d8:a1:f8: 95:67:c7:49:3f:6b:62:d1:9e:1d:b6:e1:b2:21:aa: 6c:15:79:52:8e:50:56:df:dd:82:ad:f4:47:02:90: b1:e7:49:be:48:40:43:d7:0d:3d:89:8d:3b:e6:4c: 3b:9e:2e:d7:7d:17:77:08:2e:2c:ea:17:57:aa:02: 92:32:9d:e7:c0:15:bf:91:dd:ad:cf:4a:14:2f:b3: b9:b3:28:e3:71:fe:3f:39:f6:f7:0c:40:37:c6:aa: dd:5c:82:55:92:f4:5f:28:fd:9e:a1:4f:fd:c7:6d: 65:a3:70:0c:8f:2f:14:97:8e:e0:9e:59:a7:82:9f: d3:6b:bc:75:23:1c:18:0b:7d:43:44:79:8a:40:5a: 14:06:c5:ef:5d:63:ce:06:dd:93:58:40:b7:6b:48: 23:8b:42:ee:f9:16:68:e9:38:b3:22:f5:21:86:db: 4f:9a:62:e8:e0:76:3b:de:9f:6e:45:59:e3:d5:51: 64:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EC:D6:0A:0C:00:C5:47:01:E4:F4:7E:05:93:FC:49:8D:22:9A:C7 X509v3 Authority Key Identifier: keyid:3E:33:2D:D2:99:4C:6E:E8:94:36:15:8A:2E:AC:1F:48:29:22:CD:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PjMt0plMbuiUNhWKLqwfSCkizSo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/C-zWCgwAxUcB5PR-BZP8SY0imsc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/608e21-6a40-4711-9c83-d024ad4b7beb/1/PjMt0plMbuiUNhWKLqwfSCkizSo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.230.40.0/22 IPv6: 2a13:3680::/29 Signature Algorithm: sha256WithRSAEncryption 48:e8:2c:01:4d:00:5b:d9:7f:b9:5c:cc:fe:88:ba:62:b2:fc: 1b:ec:37:1c:5a:d5:49:c5:ce:77:18:ac:f2:be:d0:45:61:59: 2e:1e:11:4d:31:db:8f:6b:5a:d2:c3:3a:bf:1e:8d:ef:6c:39: 0c:05:19:08:07:17:b6:b1:88:75:aa:8a:f5:1e:77:2c:87:3e: 6a:f4:67:c2:c1:0f:de:a1:25:68:22:70:b1:a9:18:74:2f:34: e6:c6:28:4d:02:a2:4a:20:f0:c7:77:f1:69:b3:c8:c0:38:67: b4:21:78:09:82:6c:dc:68:ae:5a:8a:8e:d8:e2:61:97:66:55: 30:11:a3:f5:87:63:17:a8:9f:7b:da:18:cd:79:85:67:7c:cb: f7:54:88:85:30:ac:6a:6a:a0:90:35:e0:98:fe:9d:72:2c:46: e7:e5:39:99:5c:bd:d4:a0:da:09:6b:a5:90:98:77:e0:fe:6f: fd:ed:c5:9f:64:37:a9:6a:14:4f:08:29:bf:1a:c4:a5:c0:33: ac:10:ca:03:08:07:e9:7c:9e:d0:f1:c7:0c:91:25:22:86:8a: aa:2c:13:15:b4:d1:0e:ce:9d:1d:f3:4a:82:75:16:20:99:c6: 1e:db:66:b3:8c:f9:27:ff:0b:6a:95:3b:98:bc:df:e6:9f:74: dc:6d:bb:ab -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7Nmlgf0rSxrLDEjvtMYHvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMzMyZGQyOTk0YzZlZTg5NDM2MTU4YTJlYWMxZjQ4Mjky MmNkMmEwHhcNMjYwMTAxMjAxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYmVjZDYwYTBjMDBjNTQ3MDFlNGY0N2UwNTkzZmM0OThkMjI5YWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvntpawVh1q0cnujbEjTYEWe1yIG4 Kba9qdkPYVHBBwmB3v5NfSIHg7rcwVhnU5KQ9l6YZMlj4bUzy5xag7VBiFAdaD0B 3XrYofiVZ8dJP2ti0Z4dtuGyIapsFXlSjlBW392CrfRHApCx50m+SEBD1w09iY07 5kw7ni7XfRd3CC4s6hdXqgKSMp3nwBW/kd2tz0oUL7O5syjjcf4/Ofb3DEA3xqrd XIJVkvRfKP2eoU/9x21lo3AMjy8Ul47gnlmngp/Ta7x1IxwYC31DRHmKQFoUBsXv XWPOBt2TWEC3a0gji0Lu+RZo6TizIvUhhttPmmLo4HY73p9uRVnj1VFkdQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAvs1goMAMVHAeT0fgWT/EmNIprHMB8GA1UdIwQY MBaAFD4zLdKZTG7olDYVii6sH0gpIs0qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGpNdDBwbE1idWlVTmhXS0xxd2ZTQ2tpelNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC82MDhlMjEtNmE0MC00NzExLTljODMt ZDAyNGFkNGI3YmViLzEvQy16V0Nnd0F4VWNCNVBSLUJaUDhTWTBpbXNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC82MDhlMjEtNmE0MC00NzExLTljODMtZDAyNGFkNGI3YmVi LzEvUGpNdDBwbE1idWlVTmhXS0xxd2ZTQ2tpelNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCueYoMA0E AgACMAcDBQMqEzaAMA0GCSqGSIb3DQEBCwUAA4IBAQBI6CwBTQBb2X+5XMz+iLpi svwb7DccWtVJxc53GKzyvtBFYVkuHhFNMduPa1rSwzq/Ho3vbDkMBRkIBxe2sYh1 qor1Hncshz5q9GfCwQ/eoSVoInCxqRh0LzTmxihNAqJKIPDHd/Fps8jAOGe0IXgJ gmzcaK5aio7Y4mGXZlUwEaP1h2MXqJ972hjNeYVnfMv3VIiFMKxqaqCQNeCY/p1y LEbn5TmZXL3UoNoJa6WQmHfg/m/97cWfZDepahRPCCm/GsSlwDOsEMoDCAfpfJ7Q 8ccMkSUihoqqLBMVtNEOzp0d80qCdRYgmcYe22azjPkn/wtqlTuYvN/mn3Tcbbur -----END CERTIFICATE-----Generated at Tue Jan 20 01:20:55 2026 by rpki-client