This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/995449-a905-4e06-b839-7c3bddc2978a/1/ZhJ5L5BrKwHCfAkrdgSHGKVEGLQ.roa File: ZhJ5L5BrKwHCfAkrdgSHGKVEGLQ.roa (raw, json) Hash identifier: LrOGWQlYoODl2o5Zz7qsJzTT29X+TmzrpsnPFdEc10c= Subject key identifier: 66:12:79:2F:90:6B:2B:01:C2:7C:09:2B:76:04:87:18:A5:44:18:B4 Certificate issuer: /CN=66fb7727d64a518c7cd485e4823ee78a9e291008 Certificate serial: 019B797F28E73EA14EEA79A41341BDE66E2E Authority key identifier: 66:FB:77:27:D6:4A:51:8C:7C:D4:85:E4:82:3E:E7:8A:9E:29:10:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zvt3J9ZKUYx81IXkgj7nip4pEAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/995449-a905-4e06-b839-7c3bddc2978a/1/ZhJ5L5BrKwHCfAkrdgSHGKVEGLQ.roa Signing time: Thu 01 Jan 2026 12:18:55 +0000 ROA not before: Thu 01 Jan 2026 12:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44066 IP address blocks: 5.154.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/995449-a905-4e06-b839-7c3bddc2978a/1/Zvt3J9ZKUYx81IXkgj7nip4pEAg.crl rsync://rpki.ripe.net/repository/DEFAULT/09/995449-a905-4e06-b839-7c3bddc2978a/1/Zvt3J9ZKUYx81IXkgj7nip4pEAg.mft rsync://rpki.ripe.net/repository/DEFAULT/Zvt3J9ZKUYx81IXkgj7nip4pEAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:28:e7:3e:a1:4e:ea:79:a4:13:41:bd:e6:6e:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66fb7727d64a518c7cd485e4823ee78a9e291008 Validity Not Before: Jan 1 12:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6612792f906b2b01c27c092b76048718a54418b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6f:7b:90:4c:5d:00:8d:c1:ed:44:62:34:74: b3:18:81:d9:ea:98:4a:51:ef:8a:4a:58:7b:0f:8b: 48:a3:ec:9c:59:fb:bd:c0:22:31:e8:57:7c:3e:35: 8c:a3:e5:fb:f7:0d:25:23:5f:9c:d1:59:05:b5:c8: 97:b3:4e:32:1c:c5:79:c6:e5:09:51:c6:27:c0:b2: f0:2f:ef:1f:ef:9e:88:f9:2f:95:ed:e8:cf:e9:04: 4b:24:2c:01:78:dd:b4:66:35:d2:b9:90:a8:b3:2e: f3:ff:28:06:1d:01:7f:1f:5c:ba:68:cd:7a:0b:a3: 06:35:39:7d:81:3e:40:cc:67:4f:48:dd:0f:1b:b7: db:05:25:23:8f:55:01:8c:0b:74:c5:72:e2:be:9a: bf:a8:b1:9e:c7:12:56:35:6c:59:ed:32:0c:88:e2: 2b:06:a2:96:ba:31:87:40:35:c7:14:92:2d:27:ba: 76:83:18:28:62:47:b0:28:97:5a:b9:44:13:7c:19: a1:23:2e:1d:3a:01:4b:a9:85:6e:ed:b5:fa:f3:3a: 9c:85:b1:ec:53:ae:4f:52:b7:5f:85:b3:d4:22:27: 2d:92:39:8d:ec:55:4f:a4:76:ad:96:c8:bb:35:9a: 42:f6:67:12:d6:0c:4b:29:65:80:0c:c0:a1:24:87: 16:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:12:79:2F:90:6B:2B:01:C2:7C:09:2B:76:04:87:18:A5:44:18:B4 X509v3 Authority Key Identifier: keyid:66:FB:77:27:D6:4A:51:8C:7C:D4:85:E4:82:3E:E7:8A:9E:29:10:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zvt3J9ZKUYx81IXkgj7nip4pEAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/995449-a905-4e06-b839-7c3bddc2978a/1/ZhJ5L5BrKwHCfAkrdgSHGKVEGLQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/995449-a905-4e06-b839-7c3bddc2978a/1/Zvt3J9ZKUYx81IXkgj7nip4pEAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.154.181.0/24 Signature Algorithm: sha256WithRSAEncryption 66:aa:a8:fd:60:1b:c3:e4:e9:7b:52:fc:47:86:d6:2e:82:bc: 05:28:86:ca:0a:f3:af:cf:86:14:71:f6:9b:61:80:4e:3d:8f: e6:3e:eb:99:4c:6d:19:32:bd:09:80:21:6b:55:56:af:a3:92: 22:0c:4f:b0:d4:08:2e:b1:b2:b0:aa:0a:55:68:2f:4b:a8:0f: 0c:0c:78:0d:3f:9c:ba:f9:de:f8:ee:6d:56:3b:67:a4:16:7c: c1:50:28:da:59:b9:05:89:fd:31:ae:7a:47:43:e2:34:dd:97: b1:0d:a3:29:d5:cd:7d:a0:25:46:36:86:7b:8f:33:ad:3a:6c: 0a:9e:3d:49:c0:9e:cf:81:3a:29:7c:51:5d:fd:5f:4d:64:3c: 50:5f:60:a2:a7:a9:c1:05:d5:47:79:43:4c:bc:a6:9e:ab:7a: c6:3d:e7:65:c6:29:51:0a:59:37:33:d6:43:da:f4:d0:30:b9: ab:8b:57:5b:9e:f3:de:fa:92:00:5d:2a:ea:a1:7b:99:2c:bb: 1f:21:29:6a:10:7b:3f:c7:d6:ae:67:67:0c:79:d4:cf:50:a8: 46:9c:74:3c:f5:64:75:df:d7:bd:65:64:6b:4a:f0:93:40:b2: 76:99:2c:d4:46:2d:83:82:bf:c9:1e:2c:9c:3a:9b:46:56:33: ed:66:1a:e1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fyjnPqFO6nmkE0G95m4uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZmI3NzI3ZDY0YTUxOGM3Y2Q0ODVlNDgyM2VlNzhhOWUy OTEwMDgwHhcNMjYwMTAxMTIxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjEyNzkyZjkwNmIyYjAxYzI3YzA5MmI3NjA0ODcxOGE1NDQxOGI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs297kExdAI3B7URiNHSzGIHZ6phK Ue+KSlh7D4tIo+ycWfu9wCIx6Fd8PjWMo+X79w0lI1+c0VkFtciXs04yHMV5xuUJ UcYnwLLwL+8f756I+S+V7ejP6QRLJCwBeN20ZjXSuZCosy7z/ygGHQF/H1y6aM16 C6MGNTl9gT5AzGdPSN0PG7fbBSUjj1UBjAt0xXLivpq/qLGexxJWNWxZ7TIMiOIr BqKWujGHQDXHFJItJ7p2gxgoYkewKJdauUQTfBmhIy4dOgFLqYVu7bX68zqchbHs U65PUrdfhbPUIictkjmN7FVPpHatlsi7NZpC9mcS1gxLKWWADMChJIcWNQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGYSeS+QaysBwnwJK3YEhxilRBi0MB8GA1UdIwQY MBaAFGb7dyfWSlGMfNSF5II+54qeKRAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnZ0M0o5WktVWXg4MUlYa2dqN25pcDRwRUFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS85OTU0NDktYTkwNS00ZTA2LWI4Mzkt N2MzYmRkYzI5NzhhLzEvWmhKNUw1QnJLd0hDZkFrcmRnU0hHS1ZFR0xRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS85OTU0NDktYTkwNS00ZTA2LWI4MzktN2MzYmRkYzI5Nzhh LzEvWnZ0M0o5WktVWXg4MUlYa2dqN25pcDRwRUFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABZq1MA0G CSqGSIb3DQEBCwUAA4IBAQBmqqj9YBvD5Ol7UvxHhtYugrwFKIbKCvOvz4YUcfab YYBOPY/mPuuZTG0ZMr0JgCFrVVavo5IiDE+w1AgusbKwqgpVaC9LqA8MDHgNP5y6 +d747m1WO2ekFnzBUCjaWbkFif0xrnpHQ+I03ZexDaMp1c19oCVGNoZ7jzOtOmwK nj1JwJ7PgTopfFFd/V9NZDxQX2Cip6nBBdVHeUNMvKaeq3rGPedlxilRClk3M9ZD 2vTQMLmri1dbnvPe+pIAXSrqoXuZLLsfISlqEHs/x9auZ2cMedTPUKhGnHQ89WR1 39e9ZWRrSvCTQLJ2mSzURi2Dgr/JHiycOptGVjPtZhrh -----END CERTIFICATE-----Generated at Sun Jan 25 17:39:31 2026 by rpki-client