This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0005b2-d28b-4bf9-9bce-cd81fc580f47/1/3z59xcVVHmOYTcMl6K7dwHoQcvw.roa File: 3z59xcVVHmOYTcMl6K7dwHoQcvw.roa (raw, json) Hash identifier: sZKm/hLxXKVHvVjWgAeq8rY/zQIbmF5W3TZbsODWWdY= Subject key identifier: DF:3E:7D:C5:C5:55:1E:63:98:4D:C3:25:E8:AE:DD:C0:7A:10:72:FC Certificate issuer: /CN=502718ba6839397c6c57eced6d509571eaeceddf Certificate serial: 019B7834919588ADAD0458CC54D82FC8FDD2 Authority key identifier: 50:27:18:BA:68:39:39:7C:6C:57:EC:ED:6D:50:95:71:EA:EC:ED:DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UCcYumg5OXxsV-ztbVCVcers7d8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0005b2-d28b-4bf9-9bce-cd81fc580f47/1/3z59xcVVHmOYTcMl6K7dwHoQcvw.roa Signing time: Thu 01 Jan 2026 06:17:49 +0000 ROA not before: Thu 01 Jan 2026 06:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206132 IP address blocks: 185.195.164.0/22 maxlen: 22 185.195.164.0/23 maxlen: 23 185.195.164.0/24 maxlen: 24 185.195.165.0/24 maxlen: 24 185.195.166.0/23 maxlen: 23 185.195.166.0/24 maxlen: 24 185.195.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/0005b2-d28b-4bf9-9bce-cd81fc580f47/1/UCcYumg5OXxsV-ztbVCVcers7d8.crl rsync://rpki.ripe.net/repository/DEFAULT/60/0005b2-d28b-4bf9-9bce-cd81fc580f47/1/UCcYumg5OXxsV-ztbVCVcers7d8.mft rsync://rpki.ripe.net/repository/DEFAULT/UCcYumg5OXxsV-ztbVCVcers7d8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 04 Jan 2026 03:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:91:95:88:ad:ad:04:58:cc:54:d8:2f:c8:fd:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=502718ba6839397c6c57eced6d509571eaeceddf Validity Not Before: Jan 1 06:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df3e7dc5c5551e63984dc325e8aeddc07a1072fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d7:1f:f9:49:aa:7d:7f:90:0d:e9:ed:7e:3d: 27:d1:80:5a:bd:01:24:bf:2b:64:aa:e4:97:d3:9d: ba:77:b2:39:7c:d4:dd:ba:02:36:09:e3:53:78:2e: aa:0d:e4:18:b5:66:c9:89:1d:42:cc:d5:b1:74:b9: 79:f4:1e:ca:16:7c:df:1f:ff:d7:5a:5d:c2:52:5f: 90:3f:da:5c:d3:00:a8:22:54:aa:92:a7:e9:ca:40: f7:be:c5:01:cf:ce:8f:12:a6:1c:25:a0:3c:1e:df: 3a:ab:b1:be:d2:d3:eb:1f:91:1e:84:ea:79:66:1d: 9c:7c:eb:c2:99:d3:37:29:61:f9:2d:75:51:e2:eb: 8c:6f:3e:62:ed:72:35:a4:dc:d1:7a:d9:9b:9a:16: 9d:e6:5f:3c:3a:5f:3a:90:aa:77:94:17:51:af:b6: 7f:a4:e9:93:88:16:a6:3e:60:57:2d:59:cb:d4:31: 5d:2a:9a:38:c7:1c:91:6d:08:b3:5b:83:7b:5d:ef: 9e:c4:f8:00:31:11:4e:44:20:f7:88:38:b1:0e:10: ff:29:a7:ca:ed:84:7c:c7:1a:4c:18:75:3f:64:de: 48:15:df:9e:86:3c:b0:cf:c9:16:17:01:80:80:de: 4d:0a:6a:12:12:57:df:1c:19:d1:28:4f:bd:48:db: e4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:3E:7D:C5:C5:55:1E:63:98:4D:C3:25:E8:AE:DD:C0:7A:10:72:FC X509v3 Authority Key Identifier: keyid:50:27:18:BA:68:39:39:7C:6C:57:EC:ED:6D:50:95:71:EA:EC:ED:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UCcYumg5OXxsV-ztbVCVcers7d8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0005b2-d28b-4bf9-9bce-cd81fc580f47/1/3z59xcVVHmOYTcMl6K7dwHoQcvw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0005b2-d28b-4bf9-9bce-cd81fc580f47/1/UCcYumg5OXxsV-ztbVCVcers7d8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.195.164.0/22 Signature Algorithm: sha256WithRSAEncryption 65:16:d8:91:e4:05:a7:38:25:6b:7d:ea:51:4c:e9:53:9a:b9: 11:81:81:5c:fb:1b:7e:3c:db:c9:38:be:f8:19:a8:bb:7b:18: bc:e6:25:53:62:2b:c4:0b:17:21:28:1c:eb:3b:8d:e7:ae:e7: 34:7b:af:23:f8:c4:9a:be:bc:fe:ac:15:47:00:2c:3c:2c:f3: 02:bd:e0:75:3d:90:be:2f:c7:b8:be:ba:6e:81:cf:93:d6:d9: e2:e7:77:a4:0b:6c:71:a2:aa:e3:6e:4c:83:5b:4f:11:8f:8b: a8:7d:b0:df:98:ce:61:24:93:5f:9a:69:7c:e7:d3:8f:e1:39: df:7e:49:f7:50:8c:39:7a:10:01:36:77:2b:94:7d:29:4d:47: 2b:cb:4e:6e:78:c9:33:fe:ed:a6:2a:45:f9:81:57:73:ce:be: 3a:26:ea:ba:40:a5:89:10:e3:be:ba:6b:62:a4:94:14:93:52: f4:c6:90:14:d2:12:cd:b7:12:27:cd:9f:3d:2e:7f:de:de:32: 2c:f6:d1:4a:58:e8:a9:17:53:9a:61:35:03:e0:98:2c:24:28: d1:f5:6c:72:92:29:c0:db:22:bc:a5:fc:37:54:dc:86:25:1f: 82:0e:89:d1:ae:a9:e2:6f:b1:8a:c9:f5:a7:fb:e3:4c:24:2c: fc:30:4c:59 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NJGViK2tBFjMVNgvyP3SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwMjcxOGJhNjgzOTM5N2M2YzU3ZWNlZDZkNTA5NTcxZWFl Y2VkZGYwHhcNMjYwMTAxMDYxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjNlN2RjNWM1NTUxZTYzOTg0ZGMzMjVlOGFlZGRjMDdhMTA3MmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Ncf+UmqfX+QDentfj0n0YBavQEk vytkquSX0526d7I5fNTdugI2CeNTeC6qDeQYtWbJiR1CzNWxdLl59B7KFnzfH//X Wl3CUl+QP9pc0wCoIlSqkqfpykD3vsUBz86PEqYcJaA8Ht86q7G+0tPrH5EehOp5 Zh2cfOvCmdM3KWH5LXVR4uuMbz5i7XI1pNzRetmbmhad5l88Ol86kKp3lBdRr7Z/ pOmTiBamPmBXLVnL1DFdKpo4xxyRbQizW4N7Xe+exPgAMRFORCD3iDixDhD/KafK 7YR8xxpMGHU/ZN5IFd+ehjywz8kWFwGAgN5NCmoSElffHBnRKE+9SNvkkwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN8+fcXFVR5jmE3DJeiu3cB6EHL8MB8GA1UdIwQY MBaAFFAnGLpoOTl8bFfs7W1QlXHq7O3fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUNjWXVtZzVPWHhzVi16dGJWQ1ZjZXJzN2Q4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8wMDA1YjItZDI4Yi00YmY5LTliY2Ut Y2Q4MWZjNTgwZjQ3LzEvM3o1OXhjVlZIbU9ZVGNNbDZLN2R3SG9RY3Z3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC8wMDA1YjItZDI4Yi00YmY5LTliY2UtY2Q4MWZjNTgwZjQ3 LzEvVUNjWXVtZzVPWHhzVi16dGJWQ1ZjZXJzN2Q4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucOkMA0G CSqGSIb3DQEBCwUAA4IBAQBlFtiR5AWnOCVrfepRTOlTmrkRgYFc+xt+PNvJOL74 Gai7exi85iVTYivECxchKBzrO43nruc0e68j+MSavrz+rBVHACw8LPMCveB1PZC+ L8e4vrpugc+T1tni53ekC2xxoqrjbkyDW08Rj4uofbDfmM5hJJNfmml859OP4Tnf fkn3UIw5ehABNncrlH0pTUcry05ueMkz/u2mKkX5gVdzzr46Juq6QKWJEOO+umti pJQUk1L0xpAU0hLNtxInzZ89Ln/e3jIs9tFKWOipF1OaYTUD4JgsJCjR9WxykinA 2yK8pfw3VNyGJR+CDonRrqnib7GKyfWn++NMJCz8MExZ -----END CERTIFICATE-----Generated at Sat Jan 3 12:48:45 2026 by rpki-client