This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/042339-d03c-4636-9ec9-163222a719b5/1/3loz_wUg8iUnmUBOtpVHROxNJvk.roa File: 3loz_wUg8iUnmUBOtpVHROxNJvk.roa (raw, json) Hash identifier: J7VMYCaBbkzMjXRMgzvhwXQZ2f23okoS+RYz+uaW5gI= Subject key identifier: DE:5A:33:FF:05:20:F2:25:27:99:40:4E:B6:95:47:44:EC:4D:26:F9 Certificate issuer: /CN=a9bda18fefb00e7e9c54733019c762bb2eb3a33c Certificate serial: 019B78A224174BB8709CC93AFC662857B28A Authority key identifier: A9:BD:A1:8F:EF:B0:0E:7E:9C:54:73:30:19:C7:62:BB:2E:B3:A3:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qb2hj--wDn6cVHMwGcdiuy6zozw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/042339-d03c-4636-9ec9-163222a719b5/1/3loz_wUg8iUnmUBOtpVHROxNJvk.roa Signing time: Thu 01 Jan 2026 08:17:30 +0000 ROA not before: Thu 01 Jan 2026 08:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43268 IP address blocks: 185.239.152.0/22 maxlen: 22 185.239.152.0/24 maxlen: 24 185.239.153.0/24 maxlen: 24 185.239.154.0/24 maxlen: 24 185.239.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/042339-d03c-4636-9ec9-163222a719b5/1/qb2hj--wDn6cVHMwGcdiuy6zozw.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/042339-d03c-4636-9ec9-163222a719b5/1/qb2hj--wDn6cVHMwGcdiuy6zozw.mft rsync://rpki.ripe.net/repository/DEFAULT/qb2hj--wDn6cVHMwGcdiuy6zozw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:24:17:4b:b8:70:9c:c9:3a:fc:66:28:57:b2:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a9bda18fefb00e7e9c54733019c762bb2eb3a33c Validity Not Before: Jan 1 08:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=de5a33ff0520f2252799404eb6954744ec4d26f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:17:2e:5e:bc:f1:16:cc:d2:39:87:c5:ad:26: 4e:e1:e4:fa:75:c8:99:c6:eb:7d:d6:13:4f:6b:45: 61:40:bb:a7:f6:5f:7c:1d:0e:1c:2a:b2:bb:f1:88: 73:68:4d:64:76:d7:25:d7:f4:a5:a3:4a:00:78:4a: c7:42:d3:25:88:ca:1b:7f:0d:b6:20:42:cd:72:d1: fb:8e:09:ce:d2:a6:26:96:aa:aa:bb:47:2b:b7:04: 11:2a:e1:f7:09:ac:96:2d:95:c2:f2:97:bc:d7:41: aa:46:dc:b9:c8:14:56:5b:cd:fa:80:73:02:cb:a4: e6:1d:ed:20:27:74:a5:c9:7d:fe:52:47:52:7e:e2: 07:14:15:51:23:9c:43:a0:94:c8:6b:e9:85:11:ba: 32:49:ba:d7:10:f3:98:cb:f9:39:c7:69:af:79:42: 07:b8:40:f1:f4:20:37:c6:3e:c6:83:83:3b:eb:99: 16:c7:09:33:c5:04:0e:14:64:ff:64:3f:f3:50:ee: 65:19:ab:5c:40:d1:ad:6e:f2:7e:35:b6:ef:fa:67: 09:e5:95:c6:a6:0d:11:ad:50:e8:fa:f8:71:16:21: fd:0a:1b:a3:ef:bf:bf:9e:61:1d:f7:92:f4:93:b3: a1:5e:26:a4:a6:f8:1d:f2:38:a9:61:f2:ec:91:1c: bb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:5A:33:FF:05:20:F2:25:27:99:40:4E:B6:95:47:44:EC:4D:26:F9 X509v3 Authority Key Identifier: keyid:A9:BD:A1:8F:EF:B0:0E:7E:9C:54:73:30:19:C7:62:BB:2E:B3:A3:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qb2hj--wDn6cVHMwGcdiuy6zozw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/042339-d03c-4636-9ec9-163222a719b5/1/3loz_wUg8iUnmUBOtpVHROxNJvk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/042339-d03c-4636-9ec9-163222a719b5/1/qb2hj--wDn6cVHMwGcdiuy6zozw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.239.152.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:ed:34:48:6a:f2:c6:24:36:34:cd:72:a8:e1:21:24:40:64: a3:fb:8d:6a:b2:75:3a:28:50:70:3b:8e:38:b7:f5:36:e3:64: 04:ed:32:fa:76:bd:c2:34:92:40:ec:12:78:92:9c:31:88:22: 78:99:69:f6:26:8e:08:74:e5:5a:ec:e6:f0:39:54:7e:83:97: 86:67:66:e9:0e:5a:3b:45:89:c3:81:c7:5c:af:6f:b9:c7:56: 9e:d7:7f:64:12:3e:d8:12:b6:a6:6b:9d:d8:ec:5e:37:03:7b: a6:55:67:e7:33:a9:eb:0f:08:09:c9:e1:28:a6:ce:bd:41:82: cd:b4:f2:89:94:b6:81:4f:91:e9:45:c9:c6:2c:f3:17:bb:fb: 36:d7:15:92:dd:0c:6e:91:4b:a4:a6:51:22:09:ac:09:8c:16: f9:cf:70:4d:0a:5f:a0:7d:80:03:1f:41:d5:69:7a:c7:ba:10: 56:01:20:7a:5d:66:bc:dd:d5:db:30:93:1b:c1:70:05:50:d3: ea:c5:29:78:c0:95:86:12:a3:1a:32:a1:b6:5c:4c:ee:6b:9a: a3:ab:8b:e3:5e:24:b3:83:ed:8f:19:6a:f5:90:60:c5:8e:fe: 9e:56:56:ac:61:17:34:5b:aa:db:fb:36:13:18:c6:7d:54:fe: d7:cc:ed:15 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oiQXS7hwnMk6/GYoV7KKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5YmRhMThmZWZiMDBlN2U5YzU0NzMzMDE5Yzc2MmJiMmVi M2EzM2MwHhcNMjYwMTAxMDgxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTVhMzNmZjA1MjBmMjI1Mjc5OTQwNGViNjk1NDc0NGVjNGQyNmY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhcuXrzxFszSOYfFrSZO4eT6dciZ xut91hNPa0VhQLun9l98HQ4cKrK78YhzaE1kdtcl1/Slo0oAeErHQtMliMobfw22 IELNctH7jgnO0qYmlqqqu0crtwQRKuH3CayWLZXC8pe810GqRty5yBRWW836gHMC y6TmHe0gJ3SlyX3+UkdSfuIHFBVRI5xDoJTIa+mFEboySbrXEPOYy/k5x2mveUIH uEDx9CA3xj7Gg4M765kWxwkzxQQOFGT/ZD/zUO5lGatcQNGtbvJ+Nbbv+mcJ5ZXG pg0RrVDo+vhxFiH9Chuj77+/nmEd95L0k7OhXiakpvgd8jipYfLskRy7vQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN5aM/8FIPIlJ5lATraVR0TsTSb5MB8GA1UdIwQY MBaAFKm9oY/vsA5+nFRzMBnHYrsus6M8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWIyaGotLXdEbjZjVkhNd0djZGl1eTZ6b3p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8wNDIzMzktZDAzYy00NjM2LTllYzkt MTYzMjIyYTcxOWI1LzEvM2xvel93VWc4aVVubVVCT3RwVkhST3hOSnZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS8wNDIzMzktZDAzYy00NjM2LTllYzktMTYzMjIyYTcxOWI1 LzEvcWIyaGotLXdEbjZjVkhNd0djZGl1eTZ6b3p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCue+YMA0G CSqGSIb3DQEBCwUAA4IBAQB97TRIavLGJDY0zXKo4SEkQGSj+41qsnU6KFBwO444 t/U242QE7TL6dr3CNJJA7BJ4kpwxiCJ4mWn2Jo4IdOVa7ObwOVR+g5eGZ2bpDlo7 RYnDgcdcr2+5x1ae139kEj7YErama53Y7F43A3umVWfnM6nrDwgJyeEops69QYLN tPKJlLaBT5HpRcnGLPMXu/s21xWS3QxukUukplEiCawJjBb5z3BNCl+gfYADH0HV aXrHuhBWASB6XWa83dXbMJMbwXAFUNPqxSl4wJWGEqMaMqG2XEzua5qjq4vjXiSz g+2PGWr1kGDFjv6eVlasYRc0W6rb+zYTGMZ9VP7XzO0V -----END CERTIFICATE-----Generated at Mon Feb 9 22:24:02 2026 by rpki-client