This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Zk7RBwfRIImqC8EtMqWd6u_a6d4.roa File: Zk7RBwfRIImqC8EtMqWd6u_a6d4.roa (raw, json) Hash identifier: ra1LVTbvyvysLIdperjga52N2rlQC4DFcmeLPuS5/sc= Subject key identifier: 66:4E:D1:07:07:D1:20:89:AA:0B:C1:2D:32:A5:9D:EA:EF:DA:E9:DE Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Certificate serial: 019B085ACF7553E93D4D748C1ED836170EF3 Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Zk7RBwfRIImqC8EtMqWd6u_a6d4.roa Signing time: Wed 10 Dec 2025 13:02:07 +0000 ROA not before: Wed 10 Dec 2025 13:02:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 63023 IP address blocks: 2.56.117.0/24 maxlen: 24 5.180.23.0/24 maxlen: 24 45.9.5.0/24 maxlen: 24 45.9.17.0/24 maxlen: 24 45.66.164.0/24 maxlen: 24 45.82.253.0/24 maxlen: 24 45.88.160.0/22 maxlen: 24 45.136.115.0/24 maxlen: 24 45.149.112.0/24 maxlen: 24 92.118.229.0/24 maxlen: 24 95.214.248.0/24 maxlen: 24 139.28.234.0/23 maxlen: 24 141.98.167.0/24 maxlen: 24 171.22.110.0/23 maxlen: 24 185.161.70.0/24 maxlen: 24 185.166.152.0/24 maxlen: 24 194.36.38.0/24 maxlen: 24 213.59.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:5a:cf:75:53:e9:3d:4d:74:8c:1e:d8:36:17:0e:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Validity Not Before: Dec 10 13:02:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=664ed10707d12089aa0bc12d32a59deaefdae9de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e3:a8:81:1f:f0:30:d7:46:c1:d2:36:27:6a: 02:d0:21:e0:25:3e:37:09:76:be:48:98:59:49:72: 2f:6f:99:a7:33:9c:1f:e6:3e:dd:15:cd:33:86:f6: b9:d5:01:26:db:3c:4d:8c:22:69:38:1a:24:b5:13: c7:4b:6b:dc:43:7f:69:0b:1d:df:39:44:da:00:20: c4:de:79:70:b3:fc:5b:8d:73:f4:e9:b3:85:e8:67: c3:b1:48:76:f8:f5:6d:c9:dc:c6:a6:4d:fa:13:62: 8a:38:50:6d:c1:d9:68:cc:88:de:e9:30:62:5a:f9: 36:bc:7f:b7:ab:68:91:a7:f2:d3:b5:08:fa:f9:ec: 0f:52:bc:35:0f:a7:ae:4d:45:93:a5:69:ff:22:15: a9:02:55:17:c4:71:37:3c:1d:18:c6:a4:9b:e2:32: 46:30:04:87:fd:78:e8:8e:ec:83:01:67:81:35:53: 76:a1:8b:c5:82:ee:e5:20:b5:48:18:63:34:a8:97: 07:fe:91:ee:6d:fa:d7:77:2f:22:2d:37:3f:80:b0: b1:d2:c3:c3:85:07:c2:42:61:d9:d3:06:07:d3:bf: d9:b9:c5:b0:af:ad:4a:13:03:c2:d3:2a:f1:db:ab: 9f:28:4c:df:47:75:fd:bf:a2:03:95:37:d7:3d:a8: 9c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:4E:D1:07:07:D1:20:89:AA:0B:C1:2D:32:A5:9D:EA:EF:DA:E9:DE X509v3 Authority Key Identifier: keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Zk7RBwfRIImqC8EtMqWd6u_a6d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.117.0/24 5.180.23.0/24 45.9.5.0/24 45.9.17.0/24 45.66.164.0/24 45.82.253.0/24 45.88.160.0/22 45.136.115.0/24 45.149.112.0/24 92.118.229.0/24 95.214.248.0/24 139.28.234.0/23 141.98.167.0/24 171.22.110.0/23 185.161.70.0/24 185.166.152.0/24 194.36.38.0/24 213.59.112.0/24 Signature Algorithm: sha256WithRSAEncryption 21:9d:50:93:2e:bc:b0:3d:a3:c0:4b:f0:e5:af:61:53:a6:bf: 47:bc:58:35:e9:c7:d4:8a:e4:a9:d4:36:ee:d3:89:6b:9f:85: b3:be:01:c9:3d:84:92:f8:d9:e6:23:79:58:f5:3b:ca:62:76: 6c:13:b7:cb:9c:4d:04:09:f1:24:8e:83:8f:34:53:7d:32:d9: f4:6f:b4:c8:35:bb:1c:23:a1:cc:b9:a0:21:60:e7:44:40:8a: 46:00:4f:06:77:3f:a1:64:c7:69:f1:00:34:a4:f8:fc:5d:b9: 11:66:27:86:f5:6b:f4:42:30:5f:b9:a8:f0:c8:1f:ed:10:65: b5:0c:18:b9:bf:bc:08:bf:2d:dc:fe:0c:aa:7b:fd:17:08:d6: c7:38:6f:21:66:6b:59:d4:12:e6:7e:23:00:6a:8b:75:10:00: 40:42:98:be:47:a0:7f:c0:27:ee:8b:e0:b7:a2:fa:d3:0a:76: 2f:b8:25:69:5d:d0:d4:99:9a:05:59:74:d9:9d:65:43:a3:b8: b6:51:93:96:c5:0c:5c:a6:f3:68:4e:a3:f5:23:cd:fb:4d:8a: 9e:fe:94:fc:d3:8f:f1:38:62:92:1c:ff:94:c8:96:ae:1f:c2: 1a:f0:31:3c:50:4b:59:bf:60:92:71:0b:a5:0e:66:34:a4:1e: 67:de:15:4d -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgISAZsIWs91U+k9TXSMHtg2Fw7zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj Zjk3MDQwHhcNMjUxMjEwMTMwMjA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjRlZDEwNzA3ZDEyMDg5YWEwYmMxMmQzMmE1OWRlYWVmZGFlOWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuOogR/wMNdGwdI2J2oC0CHgJT43 CXa+SJhZSXIvb5mnM5wf5j7dFc0zhva51QEm2zxNjCJpOBoktRPHS2vcQ39pCx3f OUTaACDE3nlws/xbjXP06bOF6GfDsUh2+PVtydzGpk36E2KKOFBtwdlozIje6TBi Wvk2vH+3q2iRp/LTtQj6+ewPUrw1D6euTUWTpWn/IhWpAlUXxHE3PB0YxqSb4jJG MASH/XjojuyDAWeBNVN2oYvFgu7lILVIGGM0qJcH/pHubfrXdy8iLTc/gLCx0sPD hQfCQmHZ0wYH07/ZucWwr61KEwPC0yrx26ufKEzfR3X9v6IDlTfXPaic9QIDAQAB o4ICcDCCAmwwHQYDVR0OBBYEFGZO0QcH0SCJqgvBLTKlnerv2uneMB8GA1UdIwQY MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct ZTg2MTIxYzU5NGRmLzEvWms3UkJ3ZlJJSW1xQzhFdE1xV2Q2dV9hNmQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAAI4dQME AAW0FwMEAC0JBQMEAC0JEQMEAC1CpAMEAC1S/QMEAi1YoAMEAC2IcwMEAC2VcAME AFx25QMEAF/W+AMEAYsc6gMEAI1ipwMEAasWbgMEALmhRgMEALmmmAMEAMIkJgME ANU7cDANBgkqhkiG9w0BAQsFAAOCAQEAIZ1Qky68sD2jwEvw5a9hU6a/R7xYNenH 1IrkqdQ27tOJa5+Fs74ByT2EkvjZ5iN5WPU7ymJ2bBO3y5xNBAnxJI6DjzRTfTLZ 9G+0yDW7HCOhzLmgIWDnRECKRgBPBnc/oWTHafEANKT4/F25EWYnhvVr9EIwX7mo 8Mgf7RBltQwYub+8CL8t3P4Mqnv9FwjWxzhvIWZrWdQS5n4jAGqLdRAAQEKYvkeg f8An7ovgt6L60wp2L7glaV3Q1JmaBVl02Z1lQ6O4tlGTlsUMXKbzaE6j9SPN+02K nv6U/NOP8Thikhz/lMiWrh/CGvAxPFBLWb9gknELpQ5mNKQeZ94VTQ== -----END CERTIFICATE-----Generated at Sat Dec 20 01:46:17 2025 by rpki-client