This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/zXcXSxUd_S0erpTZIS3r9O-OPYg.roa File: zXcXSxUd_S0erpTZIS3r9O-OPYg.roa (raw, json) Hash identifier: ze5nVDfYkyASKcLtQs3oQ+SosHvVTmX8GJEi9OHqo9Q= Subject key identifier: CD:77:17:4B:15:1D:FD:2D:1E:AE:94:D9:21:2D:EB:F4:EF:8E:3D:88 Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb Certificate serial: 019B797F0C408DAB38238655AF5DF582DF77 Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/zXcXSxUd_S0erpTZIS3r9O-OPYg.roa Signing time: Thu 01 Jan 2026 12:18:47 +0000 ROA not before: Thu 01 Jan 2026 12:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8069 IP address blocks: 145.190.0.0/23 maxlen: 23 145.190.2.0/24 maxlen: 24 145.190.3.0/24 maxlen: 24 145.190.4.0/23 maxlen: 23 145.190.6.0/24 maxlen: 24 145.190.7.0/24 maxlen: 24 145.190.8.0/21 maxlen: 21 145.190.16.0/21 maxlen: 21 145.190.24.0/21 maxlen: 21 145.190.32.0/22 maxlen: 22 145.190.36.0/24 maxlen: 24 145.190.37.0/24 maxlen: 24 145.190.38.0/23 maxlen: 23 145.190.40.0/23 maxlen: 23 145.190.42.0/24 maxlen: 24 145.190.43.0/24 maxlen: 24 145.190.44.0/22 maxlen: 22 145.190.48.0/22 maxlen: 22 145.190.52.0/23 maxlen: 23 145.190.54.0/24 maxlen: 24 145.190.55.0/24 maxlen: 24 145.190.56.0/23 maxlen: 23 145.190.58.0/24 maxlen: 24 145.190.59.0/24 maxlen: 24 145.190.60.0/24 maxlen: 24 145.190.61.0/24 maxlen: 24 145.190.62.0/24 maxlen: 24 145.190.63.0/24 maxlen: 24 145.190.64.0/24 maxlen: 24 145.190.65.0/24 maxlen: 24 145.190.66.0/24 maxlen: 24 145.190.67.0/24 maxlen: 24 145.190.68.0/24 maxlen: 24 145.190.128.0/24 maxlen: 24 145.190.129.0/24 maxlen: 24 145.190.130.0/24 maxlen: 24 145.190.131.0/24 maxlen: 24 145.190.132.0/24 maxlen: 24 145.190.133.0/24 maxlen: 24 145.190.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.mft rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 13:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:0c:40:8d:ab:38:23:86:55:af:5d:f5:82:df:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb Validity Not Before: Jan 1 12:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd77174b151dfd2d1eae94d9212debf4ef8e3d88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:54:41:46:33:ef:c9:93:e8:e6:a5:c4:c5:e5: 51:fc:4d:7f:cf:e0:77:73:72:2e:8e:50:1b:fc:d5: 8c:aa:18:24:62:ef:dc:d4:c8:7e:13:77:e8:af:50: a3:23:9b:69:6b:cc:93:ea:49:d5:85:a7:4c:f9:b8: bf:7f:5a:b5:77:1d:5f:30:9e:06:65:81:fc:2b:8f: 98:f8:c6:6d:0f:db:10:bd:f5:54:78:30:41:ca:d4: de:4b:33:78:a8:21:d5:62:79:06:55:cd:67:5d:1e: b7:c5:76:22:bf:4c:0e:1f:cb:1d:70:0e:2e:36:4a: 93:ff:22:b3:8f:6b:a5:c6:9a:c3:95:d0:1f:fc:0e: 21:ad:d2:a2:82:66:34:46:29:1e:50:ff:69:d2:b3: ce:18:22:43:01:4c:50:ad:05:4b:da:d1:44:f3:8f: 79:e2:f8:e1:de:16:bb:d6:1d:c2:1e:49:db:d2:b8: 89:ce:e8:9c:8d:de:b2:8f:39:75:95:3e:dc:9d:07: 8e:b0:a2:53:ac:54:5b:b3:ad:35:25:43:24:20:07: 30:9c:d5:c8:b1:5a:3a:e1:fb:9d:f6:6a:78:87:19: 03:c5:a4:dd:93:17:f2:11:ae:4e:8c:d2:bc:83:70: 30:0c:d9:88:22:e3:03:3e:a6:6c:e1:f6:16:ae:ed: 04:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:77:17:4B:15:1D:FD:2D:1E:AE:94:D9:21:2D:EB:F4:EF:8E:3D:88 X509v3 Authority Key Identifier: keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/zXcXSxUd_S0erpTZIS3r9O-OPYg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.190.0.0-145.190.68.255 145.190.128.0-145.190.134.255 Signature Algorithm: sha256WithRSAEncryption 56:e8:8d:38:26:bb:30:6f:6f:cf:50:eb:23:1e:e3:e7:63:b7: db:1d:0b:f7:c4:89:e3:c9:04:fe:74:e3:29:6b:4e:ac:fc:18: 94:af:e3:63:bd:d6:e0:b2:04:72:48:23:af:cf:dd:05:9a:bb: 24:83:87:5f:f6:c7:bb:9f:e7:d6:3c:5b:80:8b:f6:89:93:14: 20:93:a0:bb:81:6c:41:3d:47:6a:d0:f0:be:c9:6b:ec:a7:06: 75:7e:40:49:87:3c:7f:cd:0d:14:5f:7c:3a:38:da:a9:c8:bd: 84:9d:96:6d:10:06:17:74:3e:20:2a:d6:3e:43:f4:95:db:cc: c3:48:27:1a:7c:ab:c9:c4:44:59:fb:72:a7:1b:00:5a:8d:9f: bc:36:41:d2:75:cf:0e:a3:7d:18:1c:02:dd:98:3e:e4:4d:6a: 87:6c:7c:6d:ee:83:c2:ec:4f:0a:52:5f:e3:77:c2:55:df:22: c8:49:e1:07:ca:78:49:27:2d:00:fa:25:81:d2:bc:6f:81:6f: 81:d4:54:5a:81:e3:c8:2b:9d:9b:39:3c:41:2a:cf:7e:87:ce: be:d3:01:cd:51:f4:e5:ae:6c:6f:a2:78:a2:9c:f1:09:74:83: e1:3f:26:9a:04:ae:d4:89:c0:87:24:22:a2:6e:b9:dd:5b:9a: bd:15:cf:a5 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt5fwxAjas4I4ZVr131gt93MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjZTY4ZGFmNWYwODk0NTZjMGUxZDAyMjQ1MzkzNTMxYWM1 YjhmY2IwHhcNMjYwMTAxMTIxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDc3MTc0YjE1MWRmZDJkMWVhZTk0ZDkyMTJkZWJmNGVmOGUzZDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFRBRjPvyZPo5qXExeVR/E1/z+B3 c3IujlAb/NWMqhgkYu/c1Mh+E3for1CjI5tpa8yT6knVhadM+bi/f1q1dx1fMJ4G ZYH8K4+Y+MZtD9sQvfVUeDBBytTeSzN4qCHVYnkGVc1nXR63xXYiv0wOH8sdcA4u NkqT/yKzj2ulxprDldAf/A4hrdKigmY0RikeUP9p0rPOGCJDAUxQrQVL2tFE8495 4vjh3ha71h3CHknb0riJzuicjd6yjzl1lT7cnQeOsKJTrFRbs601JUMkIAcwnNXI sVo64fud9mp4hxkDxaTdkxfyEa5OjNK8g3AwDNmIIuMDPqZs4fYWru0EXwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFM13F0sVHf0tHq6U2SEt6/Tvjj2IMB8GA1UdIwQY MBaAFHzmja9fCJRWwOHQIkU5NTGsW4/LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZk9hTnIxOElsRmJBNGRBaVJUazFNYXhiajhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9lYzBiODktMWU2OC00NWEwLThiOTMt MTNhMDZhMjY5YWE4LzEvelhjWFN4VWRfUzBlcnBUWklTM3I5Ty1PUFlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi9lYzBiODktMWU2OC00NWEwLThiOTMtMTNhMDZhMjY5YWE4 LzEvZk9hTnIxOElsRmJBNGRBaVJUazFNYXhiajhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzAhBAIAATAbMAsDAwGRvgME AJG+RDAMAwQHkb6AAwQAkb6GMA0GCSqGSIb3DQEBCwUAA4IBAQBW6I04Jrswb2/P UOsjHuPnY7fbHQv3xInjyQT+dOMpa06s/BiUr+NjvdbgsgRySCOvz90Fmrskg4df 9se7n+fWPFuAi/aJkxQgk6C7gWxBPUdq0PC+yWvspwZ1fkBJhzx/zQ0UX3w6ONqp yL2EnZZtEAYXdD4gKtY+Q/SV28zDSCcafKvJxERZ+3KnGwBajZ+8NkHSdc8Oo30Y HALdmD7kTWqHbHxt7oPC7E8KUl/jd8JV3yLISeEHynhJJy0A+iWB0rxvgW+B1FRa gePIK52bOTxBKs9+h86+0wHNUfTlrmxvoniinPEJdIPhPyaaBK7UicCHJCKibrnd W5q9Fc+l -----END CERTIFICATE-----Generated at Sun Jan 18 17:55:46 2026 by rpki-client