This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/1-zrdARVkzgRoyTnum_A32IqG1lU.roa File: 1-zrdARVkzgRoyTnum_A32IqG1lU.roa (raw, json) Hash identifier: PEeob3OGuwYCTUydz8ovE0Sas3nGif0Et/soAa7Ru+U= Subject key identifier: FB:3A:DD:01:15:64:CE:04:68:C9:39:EE:9B:F0:37:D8:8A:86:D6:55 Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1 Certificate serial: 019B7B362098E634B55043595EC6EE89268C Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/1-zrdARVkzgRoyTnum_A32IqG1lU.roa Signing time: Thu 01 Jan 2026 20:18:23 +0000 ROA not before: Thu 01 Jan 2026 20:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47285 IP address blocks: 194.36.175.0/24 maxlen: 24 2a10:ab00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.mft rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:20:98:e6:34:b5:50:43:59:5e:c6:ee:89:26:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1 Validity Not Before: Jan 1 20:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb3add011564ce0468c939ee9bf037d88a86d655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:30:ad:ce:32:22:7e:18:72:02:ae:39:fc:47: 25:38:5f:1e:07:b2:8d:37:d9:d0:bf:b2:3d:64:bf: cf:10:f2:70:55:61:3e:18:c8:0a:48:bd:c0:19:dd: 4c:bb:7a:9b:8b:14:ee:be:59:dc:8c:f3:0c:e7:1b: 79:db:a5:03:cf:20:88:61:da:4f:04:f9:0a:2a:20: 2b:c9:8e:2c:7c:58:02:a5:ee:89:43:48:ef:6b:00: cd:5f:75:b3:2f:3e:00:22:f1:34:71:2a:83:6a:b6: aa:a1:73:30:09:3c:e2:0f:89:16:83:ca:7f:2f:3a: d5:5f:96:43:fd:55:8c:4c:2a:b2:12:e4:5f:d8:cc: e6:22:b5:96:f4:93:c7:59:06:4f:4f:f9:df:25:6d: 8d:4c:ea:54:71:a4:a8:8c:78:68:82:db:e9:81:67: ba:5c:a5:50:c6:1f:e9:37:78:84:d2:ca:e3:55:2a: c0:3a:11:40:d2:b4:0a:37:b3:ca:f7:06:95:88:37: f0:8b:e8:c1:20:8d:12:ca:44:e3:72:31:04:5c:72: 21:6a:4a:31:6e:a7:27:b9:88:51:ce:42:0b:7a:80: 16:3c:50:61:47:83:aa:8a:2a:04:fc:72:ab:a0:bd: 79:af:69:6b:e4:74:cf:89:23:db:59:55:6e:98:10: e3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:3A:DD:01:15:64:CE:04:68:C9:39:EE:9B:F0:37:D8:8A:86:D6:55 X509v3 Authority Key Identifier: keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/1-zrdARVkzgRoyTnum_A32IqG1lU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.36.175.0/24 IPv6: 2a10:ab00::/29 Signature Algorithm: sha256WithRSAEncryption ab:53:fa:d7:7f:71:b4:72:0b:12:8c:49:1c:08:85:23:84:27: d8:61:05:d2:06:28:31:00:b6:be:a5:a6:ca:e9:f6:f5:c8:a5: f7:72:c6:e5:36:1d:9a:d1:4f:5c:ef:ea:cd:8e:02:07:5f:a6: e8:25:ad:28:16:e3:47:43:70:57:98:f0:41:21:d9:16:2e:0c: f7:db:86:80:7a:a2:66:51:b5:48:90:d2:a3:a6:ae:88:0b:14: 10:e8:4f:16:b0:ae:91:9d:e6:ab:ba:0e:fe:c6:7a:70:d4:56: 39:e3:17:1d:ac:ef:20:2d:55:e2:cd:92:2b:b8:24:49:74:c5: 14:3e:c9:21:bb:b9:27:3d:ce:82:e3:95:52:96:b5:c9:9f:47: e9:1c:1a:dd:84:48:84:d5:88:33:a4:a0:0a:d9:4c:22:ce:fe: 7a:52:09:9b:ea:a2:ad:95:6b:c4:d1:68:02:75:a0:85:53:de: 7e:a3:4b:a7:0e:f5:81:2e:3a:60:9f:5d:25:4a:c8:8f:89:2d: 58:84:dd:4d:57:75:ea:90:1f:b5:e0:a6:39:b1:34:03:1c:a7: 08:da:4f:69:6a:50:1f:40:8a:1b:4d:7d:f0:32:17:ce:13:b9: ae:1c:ea:9b:20:6e:a6:5b:24:5c:af:6c:61:f6:73:f6:f4:7e: 11:f0:18:0a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt7NiCY5jS1UENZXsbuiSaMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkMzBhMTMxNzE4NTYwYTM0YWIzNDkzODg0ZTg1OGVjNDMx ZjZhZDEwHhcNMjYwMTAxMjAxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjNhZGQwMTE1NjRjZTA0NjhjOTM5ZWU5YmYwMzdkODhhODZkNjU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApDCtzjIifhhyAq45/EclOF8eB7KN N9nQv7I9ZL/PEPJwVWE+GMgKSL3AGd1Mu3qbixTuvlncjPMM5xt526UDzyCIYdpP BPkKKiAryY4sfFgCpe6JQ0jvawDNX3WzLz4AIvE0cSqDaraqoXMwCTziD4kWg8p/ LzrVX5ZD/VWMTCqyEuRf2MzmIrWW9JPHWQZPT/nfJW2NTOpUcaSojHhogtvpgWe6 XKVQxh/pN3iE0srjVSrAOhFA0rQKN7PK9waViDfwi+jBII0SykTjcjEEXHIhakox bqcnuYhRzkILeoAWPFBhR4OqiioE/HKroL15r2lr5HTPiSPbWVVumBDjOwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFPs63QEVZM4EaMk57pvwN9iKhtZVMB8GA1UdIwQY MBaAFO0woTFxhWCjSrNJOIToWOxDH2rRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTkt NGIzYjFiNjNiNmFiLzEvMS16cmRBUlZremdSb3lUbnVtX0EzMklxRzFsVS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMGYvNWIwNzAyLTE2ZTctNDYyNy1hZTE5LTRiM2IxYjYzYjZh Yi8xLzdUQ2hNWEdGWUtOS3MwazRoT2hZN0VNZmF0RS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMIkrzAN BAIAAjAHAwUDKhCrADANBgkqhkiG9w0BAQsFAAOCAQEAq1P6139xtHILEoxJHAiF I4Qn2GEF0gYoMQC2vqWmyun29cil93LG5TYdmtFPXO/qzY4CB1+m6CWtKBbjR0Nw V5jwQSHZFi4M99uGgHqiZlG1SJDSo6auiAsUEOhPFrCukZ3mq7oO/sZ6cNRWOeMX HazvIC1V4s2SK7gkSXTFFD7JIbu5Jz3OguOVUpa1yZ9H6Rwa3YRIhNWIM6SgCtlM Is7+elIJm+qirZVrxNFoAnWghVPefqNLpw71gS46YJ9dJUrIj4ktWITdTVd16pAf teCmObE0AxynCNpPaWpQH0CKG0198DIXzhO5rhzqmyBuplskXK9sYfZz9vR+EfAY Cg== -----END CERTIFICATE-----Generated at Mon Jan 26 01:17:30 2026 by rpki-client