This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/Z81lv8qaADBtEGYsx0-brJvvQeg.roa File: Z81lv8qaADBtEGYsx0-brJvvQeg.roa (raw, json) Hash identifier: r6SobeHV+YoGbEJkji/z1sNc1KoSoCEgvZU8Lt5eYac= Subject key identifier: 67:CD:65:BF:CA:9A:00:30:6D:10:66:2C:C7:4F:9B:AC:9B:EF:41:E8 Certificate issuer: /CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0 Certificate serial: 019B7DCB67269BC78CE55AA108B424E2F2BF Authority key identifier: 82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/Z81lv8qaADBtEGYsx0-brJvvQeg.roa Signing time: Fri 02 Jan 2026 08:20:40 +0000 ROA not before: Fri 02 Jan 2026 08:20:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31027 IP address blocks: 89.104.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/gnrxfwSZYn5LPIzFwzPsS452NeA.crl rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/gnrxfwSZYn5LPIzFwzPsS452NeA.mft rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:67:26:9b:c7:8c:e5:5a:a1:08:b4:24:e2:f2:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0 Validity Not Before: Jan 2 08:20:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67cd65bfca9a00306d10662cc74f9bac9bef41e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d4:26:46:e0:68:6b:89:53:7e:c7:79:cf:cb: 9c:71:00:1f:2b:79:5c:4f:31:54:b7:27:23:61:58: c9:1c:1d:c7:9c:af:58:8f:2a:12:0f:71:3f:af:82: 28:14:86:a3:3e:ef:02:20:06:79:80:fe:7d:49:8e: ba:21:86:5e:dd:db:99:a6:f6:bc:fd:b0:8c:7c:0a: 5c:7d:bb:a5:f1:b6:9f:20:5f:b7:b0:63:79:3a:c6: f9:e6:ac:50:27:4b:ab:96:ab:38:af:a2:bf:b5:df: f4:43:c1:c0:c8:b6:35:48:a6:fb:1a:a1:9b:80:77: da:0a:ae:8b:d4:9d:18:1e:6c:dd:fb:75:03:85:d5: 77:94:79:12:b2:24:2e:74:e6:0c:5c:18:3c:77:65: a0:19:9c:68:cd:71:57:4d:ff:4a:91:b3:d7:d0:27: d1:a4:79:b4:f4:e7:82:17:84:26:43:91:58:aa:a5: 77:c6:ee:7f:d1:79:99:12:dc:b4:61:ac:91:a3:7f: 6f:ae:81:a9:6e:b6:61:40:16:6d:d9:1f:ae:09:3d: 95:9f:7c:62:63:30:3c:64:8f:7c:e3:03:60:36:80: d9:28:f5:30:4c:25:51:e7:2a:31:ed:13:67:57:cb: ea:8c:b1:94:be:78:26:7f:17:78:d5:42:14:a6:58: 62:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CD:65:BF:CA:9A:00:30:6D:10:66:2C:C7:4F:9B:AC:9B:EF:41:E8 X509v3 Authority Key Identifier: keyid:82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/Z81lv8qaADBtEGYsx0-brJvvQeg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/gnrxfwSZYn5LPIzFwzPsS452NeA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.104.221.0/24 Signature Algorithm: sha256WithRSAEncryption 65:d3:ce:29:4f:66:1f:b9:c9:bf:fe:27:9e:74:e0:6b:c3:59: 2a:4e:38:d1:f6:49:80:5b:ba:1b:2e:66:9a:07:03:55:c2:70: 5b:7f:97:e2:85:8a:78:ad:25:37:aa:db:c9:87:a7:f7:7b:39: 53:60:4b:44:ec:4a:c9:df:b6:c3:d3:83:99:d4:3a:f0:44:24: c3:89:ee:ab:0b:ab:78:8e:45:ed:1e:ce:1a:34:63:9f:c5:e9: 07:b7:09:1f:86:d6:53:77:ef:3b:96:7c:c3:82:a5:be:bc:2c: 17:f6:71:9a:47:72:52:7b:38:f7:d9:16:b9:31:2c:fd:0d:ab: 84:42:99:31:03:ac:57:4d:dc:50:da:58:54:07:0c:49:c8:df: 79:70:e7:13:75:2c:a7:e4:7e:f8:22:38:9f:4a:54:c0:df:4c: ae:80:14:dc:c0:82:b9:a5:f7:c2:e4:35:af:15:5b:d2:50:2b: 30:1a:8d:07:37:0b:64:fa:34:41:99:12:4f:a2:a1:a5:3a:1f: 0f:a7:ab:fc:e9:04:98:a1:e7:c1:03:a1:9a:6d:57:79:f1:3c: a8:67:88:de:92:04:49:22:84:47:bd:2b:70:73:76:10:0e:0f: f4:29:62:8f:95:90:9b:e5:2d:e5:19:c1:c7:c8:07:1b:fa:55: 13:dd:04:35 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y2cmm8eM5VqhCLQk4vK/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyN2FmMTdmMDQ5OTYyN2U0YjNjOGNjNWMzMzNlYzRiOGU3 NjM1ZTAwHhcNMjYwMTAyMDgyMDQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2NkNjViZmNhOWEwMDMwNmQxMDY2MmNjNzRmOWJhYzliZWY0MWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNQmRuBoa4lTfsd5z8uccQAfK3lc TzFUtycjYVjJHB3HnK9YjyoSD3E/r4IoFIajPu8CIAZ5gP59SY66IYZe3duZpva8 /bCMfApcfbul8bafIF+3sGN5Osb55qxQJ0urlqs4r6K/td/0Q8HAyLY1SKb7GqGb gHfaCq6L1J0YHmzd+3UDhdV3lHkSsiQudOYMXBg8d2WgGZxozXFXTf9KkbPX0CfR pHm09OeCF4QmQ5FYqqV3xu5/0XmZEty0YayRo39vroGpbrZhQBZt2R+uCT2Vn3xi YzA8ZI984wNgNoDZKPUwTCVR5yox7RNnV8vqjLGUvngmfxd41UIUplhi3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGfNZb/KmgAwbRBmLMdPm6yb70HoMB8GA1UdIwQY MBaAFIJ68X8EmWJ+SzyMxcMz7EuOdjXgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ25yeGZ3U1pZbjVMUEl6Rnd6UHNTNDUyTmVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9jMmFlM2QtOThiNC00NDZmLWFiMjgt NzMxM2M3ZjNjYTNmLzEvWjgxbHY4cWFBREJ0RUdZc3gwLWJySnZ2UWVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC9jMmFlM2QtOThiNC00NDZmLWFiMjgtNzMxM2M3ZjNjYTNm LzEvZ25yeGZ3U1pZbjVMUEl6Rnd6UHNTNDUyTmVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWWjdMA0G CSqGSIb3DQEBCwUAA4IBAQBl084pT2Yfucm//ieedOBrw1kqTjjR9kmAW7obLmaa BwNVwnBbf5fihYp4rSU3qtvJh6f3ezlTYEtE7ErJ37bD04OZ1DrwRCTDie6rC6t4 jkXtHs4aNGOfxekHtwkfhtZTd+87lnzDgqW+vCwX9nGaR3JSezj32Ra5MSz9DauE QpkxA6xXTdxQ2lhUBwxJyN95cOcTdSyn5H74IjifSlTA30yugBTcwIK5pffC5DWv FVvSUCswGo0HNwtk+jRBmRJPoqGlOh8Pp6v86QSYoefBA6GabVd58TyoZ4jekgRJ IoRHvStwc3YQDg/0KWKPlZCb5S3lGcHHyAcb+lUT3QQ1 -----END CERTIFICATE-----Generated at Mon Jan 26 00:25:03 2026 by rpki-client