This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/ZJhJkD0CceJgM09eaPa8BLLEafo.roa File: ZJhJkD0CceJgM09eaPa8BLLEafo.roa (raw, json) Hash identifier: BlsQuKIuIZjlkNs7CyQsPx+GB2YKhnZ5sZ1zg6FGBso= Subject key identifier: 64:98:49:90:3D:02:71:E2:60:33:4F:5E:68:F6:BC:04:B2:C4:69:FA Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9 Certificate serial: 019B7E37F55FEAE1DF0E881256999EA1CCE6 Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/ZJhJkD0CceJgM09eaPa8BLLEafo.roa Signing time: Fri 02 Jan 2026 10:19:15 +0000 ROA not before: Fri 02 Jan 2026 10:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202444 IP address blocks: 81.8.23.0/24 maxlen: 24 193.243.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.mft rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:f5:5f:ea:e1:df:0e:88:12:56:99:9e:a1:cc:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9 Validity Not Before: Jan 2 10:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=649849903d0271e260334f5e68f6bc04b2c469fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b0:80:4c:c4:29:88:37:b2:96:b5:71:70:d1: 40:6c:d2:e0:80:4d:4c:39:9a:d5:bd:62:fd:3b:78: 44:a3:50:fa:7d:40:af:f6:8c:6b:4c:5a:01:e4:9e: 20:35:02:14:af:9f:8d:e6:16:bf:4c:69:4e:62:5d: 5a:81:7b:4d:58:46:6b:c8:e3:f9:f3:e7:26:a4:86: 4c:2d:e1:c9:95:b8:55:46:fa:f7:57:b3:f6:10:8c: 09:bd:aa:9f:6d:d4:1c:7b:77:6b:b3:20:d5:24:aa: 48:a5:9a:60:4a:8f:1e:fc:f4:a3:b2:d8:bd:a9:52: 44:d6:57:d8:83:8e:5c:ef:b5:00:cd:b2:33:62:8a: a8:0b:89:b9:fd:1d:28:05:73:7e:f3:b3:8b:6f:4d: 24:64:05:f1:97:d8:b8:ff:d5:78:67:08:9d:27:86: 74:e2:9d:6c:30:2f:c9:bb:43:e4:6b:ae:34:08:f1: 3d:d2:46:de:34:64:53:93:1c:4c:ff:9a:38:a3:73: fb:7b:fe:9a:be:d4:f0:4c:07:7d:f2:49:8d:81:72: 21:4c:b8:52:e8:22:4f:6b:ea:be:46:8a:0a:f2:95: ab:88:3f:90:22:3a:7f:b5:2e:1c:9a:12:76:a8:06: 69:93:c9:48:ca:d6:33:f3:5e:ec:28:80:16:65:71: 8c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:98:49:90:3D:02:71:E2:60:33:4F:5E:68:F6:BC:04:B2:C4:69:FA X509v3 Authority Key Identifier: keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/ZJhJkD0CceJgM09eaPa8BLLEafo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.8.23.0/24 193.243.218.0/24 Signature Algorithm: sha256WithRSAEncryption b9:eb:92:17:3d:39:55:27:9a:ef:fa:8a:c7:b1:64:4f:17:b4: ea:03:8c:ac:55:c9:57:8f:96:0e:b0:36:0c:84:25:a3:a1:ac: 2d:ee:7b:6c:3e:5c:7d:72:9a:ec:86:e8:c9:3d:75:fc:66:60: 06:4e:f9:a5:4f:01:f5:9b:32:e5:d5:7b:17:88:8b:27:35:29: d2:90:64:3b:19:da:75:e9:58:43:a0:1e:c2:f1:91:50:48:4a: 46:de:ba:23:45:e7:e7:bf:39:fd:dd:2c:75:a3:8d:c2:a0:86: a3:1c:9f:0b:52:2a:ed:ee:a7:76:b5:ef:22:c0:fd:22:90:f9: 5f:01:d7:93:af:ed:ac:32:45:45:7d:bc:e6:50:be:5f:7e:20: ae:c8:51:d7:cf:24:05:91:07:c8:df:73:f2:c3:26:d9:21:01: a4:f2:5e:ad:54:98:0f:8b:03:03:66:e3:17:0a:9f:39:6a:70: 46:d1:b8:be:1a:c4:e3:e6:cd:67:dc:cd:33:32:36:5c:97:97: 8d:26:eb:a4:03:b5:54:86:e3:c4:13:0c:e7:f8:00:ac:71:44: d7:53:8f:b6:90:b1:18:0e:03:52:56:c1:7c:6a:db:77:85:e3: 55:2e:dd:ef:c4:91:f1:0b:53:2d:0a:e1:60:d1:61:fc:19:51: a0:eb:67:d3 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+N/Vf6uHfDogSVpmeoczmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2OGZlMzVjYzk2MjYzM2EyNzU3YWYxMGEwZTZlOGFiNmQw MWY0YzkwHhcNMjYwMTAyMTAxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDk4NDk5MDNkMDI3MWUyNjAzMzRmNWU2OGY2YmMwNGIyYzQ2OWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrCATMQpiDeylrVxcNFAbNLggE1M OZrVvWL9O3hEo1D6fUCv9oxrTFoB5J4gNQIUr5+N5ha/TGlOYl1agXtNWEZryOP5 8+cmpIZMLeHJlbhVRvr3V7P2EIwJvaqfbdQce3drsyDVJKpIpZpgSo8e/PSjsti9 qVJE1lfYg45c77UAzbIzYoqoC4m5/R0oBXN+87OLb00kZAXxl9i4/9V4ZwidJ4Z0 4p1sMC/Ju0Pka640CPE90kbeNGRTkxxM/5o4o3P7e/6avtTwTAd98kmNgXIhTLhS 6CJPa+q+RooK8pWriD+QIjp/tS4cmhJ2qAZpk8lIytYz817sKIAWZXGM0QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGSYSZA9AnHiYDNPXmj2vASyxGn6MB8GA1UdIwQY MBaAFFaP41zJYmM6J1evEKDm6KttAfTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMt ODNkNjQ4Zjc5NzQ2LzEvWkpoSmtEMENjZUpnTTA5ZWFQYThCTExFYWZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMtODNkNjQ4Zjc5NzQ2 LzEvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUQgXAwQA wfPaMA0GCSqGSIb3DQEBCwUAA4IBAQC565IXPTlVJ5rv+orHsWRPF7TqA4ysVclX j5YOsDYMhCWjoawt7ntsPlx9cprshujJPXX8ZmAGTvmlTwH1mzLl1XsXiIsnNSnS kGQ7Gdp16VhDoB7C8ZFQSEpG3rojRefnvzn93Sx1o43CoIajHJ8LUirt7qd2te8i wP0ikPlfAdeTr+2sMkVFfbzmUL5ffiCuyFHXzyQFkQfI33PywybZIQGk8l6tVJgP iwMDZuMXCp85anBG0bi+GsTj5s1n3M0zMjZcl5eNJuukA7VUhuPEEwzn+ACscUTX U4+2kLEYDgNSVsF8att3heNVLt3vxJHxC1MtCuFg0WH8GVGg62fT -----END CERTIFICATE-----Generated at Sun Jan 25 19:17:33 2026 by rpki-client