This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6db34b-8afa-49c5-b73f-9204c197aa65/1/zBQZLdLmaGh_-g3P--vX0vIobSg.roa File: zBQZLdLmaGh_-g3P--vX0vIobSg.roa (raw, json) Hash identifier: CKHg12RKerpOenghGOhIchwHfIG43cp9IM1fsSnSC4M= Subject key identifier: CC:14:19:2D:D2:E6:68:68:7F:FA:0D:CF:FB:EB:D7:D2:F2:28:6D:28 Certificate issuer: /CN=47edf8f1bf0c4fbc469e71c99d82489ea1f3da4a Certificate serial: 019B33C8652764786BA46AF979E4698F85D1 Authority key identifier: 47:ED:F8:F1:BF:0C:4F:BC:46:9E:71:C9:9D:82:48:9E:A1:F3:DA:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-348b8MT7xGnnHJnYJInqHz2ko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6db34b-8afa-49c5-b73f-9204c197aa65/1/zBQZLdLmaGh_-g3P--vX0vIobSg.roa Signing time: Thu 18 Dec 2025 23:25:29 +0000 ROA not before: Thu 18 Dec 2025 23:25:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 41627 IP address blocks: 31.171.224.0/20 maxlen: 20 46.251.12.0/22 maxlen: 22 85.155.32.0/19 maxlen: 19 89.251.32.0/21 maxlen: 21 89.251.40.0/21 maxlen: 21 91.147.236.0/22 maxlen: 22 185.167.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6db34b-8afa-49c5-b73f-9204c197aa65/1/R-348b8MT7xGnnHJnYJInqHz2ko.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/6db34b-8afa-49c5-b73f-9204c197aa65/1/R-348b8MT7xGnnHJnYJInqHz2ko.mft rsync://rpki.ripe.net/repository/DEFAULT/R-348b8MT7xGnnHJnYJInqHz2ko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:c8:65:27:64:78:6b:a4:6a:f9:79:e4:69:8f:85:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47edf8f1bf0c4fbc469e71c99d82489ea1f3da4a Validity Not Before: Dec 18 23:25:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=cc14192dd2e668687ffa0dcffbebd7d2f2286d28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6c:cb:f6:84:a7:1d:af:5e:6d:c7:fa:e6:1a: 9c:70:02:2c:b6:41:f6:4b:40:14:09:c1:55:7c:41: 8c:31:9b:95:a1:4d:a1:56:a1:fd:a8:f5:e4:1b:09: 6c:35:41:95:0b:9a:67:82:10:cd:c4:09:0a:ce:14: 96:ec:eb:97:3e:b4:b3:9a:12:e1:1f:3d:01:6d:08: 66:eb:79:b2:d3:da:f3:32:10:3d:c9:bd:60:ad:c1: c1:33:92:69:e8:26:74:e6:1c:ed:90:20:90:ac:0a: 3f:e9:57:78:4b:60:34:29:92:77:d3:22:a8:04:10: 24:38:8c:66:f8:08:46:dc:af:3e:14:a6:87:f2:ee: 48:bc:34:38:73:17:d1:b5:99:4d:b7:ea:c3:c9:68: c5:20:d6:cb:77:a5:0d:60:9d:12:42:fe:b3:c6:08: 75:97:40:dd:79:81:43:d7:36:bf:da:d5:11:d6:2b: 69:e8:6f:64:96:18:b0:88:e6:8d:dd:5e:8d:49:c5: d7:6d:6c:4f:27:14:71:e9:3f:18:8f:67:fb:55:57: f9:d4:bc:76:16:97:b8:38:9b:cc:bc:fd:6a:83:88: f2:37:9e:ef:31:48:01:14:c0:d4:2c:67:98:ae:3c: 0e:58:82:8e:cb:cc:9d:f0:e8:e5:99:5f:e1:86:a7: 63:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:14:19:2D:D2:E6:68:68:7F:FA:0D:CF:FB:EB:D7:D2:F2:28:6D:28 X509v3 Authority Key Identifier: keyid:47:ED:F8:F1:BF:0C:4F:BC:46:9E:71:C9:9D:82:48:9E:A1:F3:DA:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-348b8MT7xGnnHJnYJInqHz2ko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6db34b-8afa-49c5-b73f-9204c197aa65/1/zBQZLdLmaGh_-g3P--vX0vIobSg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6db34b-8afa-49c5-b73f-9204c197aa65/1/R-348b8MT7xGnnHJnYJInqHz2ko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.171.224.0/20 46.251.12.0/22 85.155.32.0/19 89.251.32.0/20 91.147.236.0/22 185.167.92.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:2f:3b:dc:27:a2:98:00:2c:2c:43:29:ec:8a:ca:8d:d5:95: e8:22:65:65:72:81:70:08:6c:1e:f3:d0:e8:70:35:96:6c:4a: 49:63:b8:86:0e:3e:dc:16:e4:2a:51:e8:54:c1:4c:e2:3e:55: 29:de:39:0d:d4:f8:ab:83:e0:c5:56:ab:cc:49:4b:e2:97:04: e0:de:fb:90:49:da:0d:28:d6:3e:a6:d5:fc:88:93:be:be:f6: 09:b4:2d:91:04:92:8d:c8:0f:35:87:9d:4b:bb:3f:6f:5c:1a: 93:da:43:00:66:22:16:f4:70:3d:3c:c7:fd:7f:9a:2e:c0:48: 3f:60:ba:f2:99:11:09:b8:1d:d3:00:b9:53:89:e7:58:af:82: 53:4b:ef:c1:04:d9:24:9e:f5:78:0d:6b:02:8c:36:60:77:c0: bb:0a:1f:33:d6:7a:6c:05:da:5a:04:bf:c0:6d:66:0d:95:1a: 1a:5a:df:e0:d1:5b:ea:11:62:dc:8b:a2:c8:7c:29:f0:66:7f: 7a:dd:ac:33:88:5c:03:3c:ea:93:d3:61:c8:a5:5c:b7:a9:ff: 5c:bd:12:d1:77:cb:85:68:90:87:85:45:ce:e6:95:f7:0a:8c: 60:54:37:e7:f4:44:86:d9:dc:10:cf:a4:0f:62:ae:93:c7:38: 80:b9:73:d5 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZszyGUnZHhrpGr5eeRpj4XRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3ZWRmOGYxYmYwYzRmYmM0NjllNzFjOTlkODI0ODllYTFm M2RhNGEwHhcNMjUxMjE4MjMyNTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYzE0MTkyZGQyZTY2ODY4N2ZmYTBkY2ZmYmViZDdkMmYyMjg2ZDI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6mzL9oSnHa9ebcf65hqccAIstkH2 S0AUCcFVfEGMMZuVoU2hVqH9qPXkGwlsNUGVC5pnghDNxAkKzhSW7OuXPrSzmhLh Hz0BbQhm63my09rzMhA9yb1grcHBM5Jp6CZ05hztkCCQrAo/6Vd4S2A0KZJ30yKo BBAkOIxm+AhG3K8+FKaH8u5IvDQ4cxfRtZlNt+rDyWjFINbLd6UNYJ0SQv6zxgh1 l0DdeYFD1za/2tUR1itp6G9klhiwiOaN3V6NScXXbWxPJxRx6T8Yj2f7VVf51Lx2 Fpe4OJvMvP1qg4jyN57vMUgBFMDULGeYrjwOWIKOy8yd8OjlmV/hhqdjQwIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFMwUGS3S5mhof/oNz/vr19LyKG0oMB8GA1UdIwQY MBaAFEft+PG/DE+8Rp5xyZ2CSJ6h89pKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUi0zNDhiOE1UN3hHbm5ISm5ZSklucUh6MmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82ZGIzNGItOGFmYS00OWM1LWI3M2Yt OTIwNGMxOTdhYTY1LzEvekJRWkxkTG1hR2hfLWczUC0tdlgwdklvYlNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC82ZGIzNGItOGFmYS00OWM1LWI3M2YtOTIwNGMxOTdhYTY1 LzEvUi0zNDhiOE1UN3hHbm5ISm5ZSklucUh6MmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQEH6vgAwQC LvsMAwQFVZsgAwQEWfsgAwQCW5PsAwQCuadcMA0GCSqGSIb3DQEBCwUAA4IBAQAa LzvcJ6KYACwsQynsisqN1ZXoImVlcoFwCGwe89DocDWWbEpJY7iGDj7cFuQqUehU wUziPlUp3jkN1Pirg+DFVqvMSUvilwTg3vuQSdoNKNY+ptX8iJO+vvYJtC2RBJKN yA81h51Luz9vXBqT2kMAZiIW9HA9PMf9f5ouwEg/YLrymREJuB3TALlTiedYr4JT S+/BBNkknvV4DWsCjDZgd8C7Ch8z1npsBdpaBL/AbWYNlRoaWt/g0VvqEWLci6LI fCnwZn963awziFwDPOqT02HIpVy3qf9cvRLRd8uFaJCHhUXO5pX3CoxgVDfn9ESG 2dwQz6QPYq6TxziAuXPV -----END CERTIFICATE-----Generated at Sat Dec 27 07:21:25 2025 by rpki-client