This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZhqdIbRW83p_kVddHzSA0nllaKo.roa File: ZhqdIbRW83p_kVddHzSA0nllaKo.roa (raw, json) Hash identifier: Qcxsup91V7dxCaN8e4ZDLUgf9T3gBRakSNv6xOPFLuk= Subject key identifier: 66:1A:9D:21:B4:56:F3:7A:7F:91:57:5D:1F:34:80:D2:79:65:68:AA Certificate issuer: /CN=64f47c98440f103825c8ea5074298b18cc113e20 Certificate serial: 019B7D5D09448CF568FDA6AFBC6F7951CAB9 Authority key identifier: 64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZhqdIbRW83p_kVddHzSA0nllaKo.roa Signing time: Fri 02 Jan 2026 06:20:07 +0000 ROA not before: Fri 02 Jan 2026 06:20:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201639 IP address blocks: 185.3.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.crl rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.mft rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:09:44:8c:f5:68:fd:a6:af:bc:6f:79:51:ca:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64f47c98440f103825c8ea5074298b18cc113e20 Validity Not Before: Jan 2 06:20:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=661a9d21b456f37a7f91575d1f3480d2796568aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:aa:4c:53:a2:93:02:9a:9f:c7:ec:c4:43:31: 7e:89:0d:66:f0:3f:8e:43:8a:8a:92:a3:30:52:49: cd:7f:8a:6b:f3:ce:a7:4c:5a:8e:74:2a:59:4e:c4: cd:32:47:3d:85:a4:02:44:a6:c3:98:4b:45:b4:a1: 54:f6:69:4a:de:d9:b9:d5:e7:41:30:3d:6b:a2:08: ab:f8:e0:04:c9:f3:0b:b7:9e:97:f8:dd:68:ea:2c: cd:7e:39:60:bc:ec:df:ac:4e:08:a4:d6:fc:bb:8b: 5d:56:a9:23:9f:2d:6a:b0:f2:47:45:b5:35:69:df: b1:f7:07:12:5c:2d:2d:f2:84:7d:df:4b:84:d2:78: 65:0e:bf:c2:36:db:3e:58:fb:c1:24:03:e7:8e:34: 90:20:2e:d7:ce:02:22:9b:8f:32:dc:69:02:9f:9c: 9c:da:b1:93:d0:6f:04:ee:c6:65:41:db:15:7d:dc: 91:df:d6:60:bd:15:b4:0a:b1:55:66:46:1d:18:9a: d7:fe:08:43:05:50:03:87:51:5f:a3:ae:b6:8e:e0: ea:cd:17:90:f5:c3:8a:6d:86:ee:10:9c:b0:46:b0: 05:28:cb:e8:54:f7:06:77:34:78:4d:f6:91:8f:a5: 22:ec:92:cb:a9:89:66:1e:7c:4d:a7:2c:f8:45:48: 8d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:1A:9D:21:B4:56:F3:7A:7F:91:57:5D:1F:34:80:D2:79:65:68:AA X509v3 Authority Key Identifier: keyid:64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZhqdIbRW83p_kVddHzSA0nllaKo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.3.188.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:de:f2:cd:b7:f9:4d:eb:6a:39:2b:4d:c5:83:e5:51:52:4c: 34:e6:6a:bc:9b:47:d9:1e:02:aa:c0:23:0b:3d:34:5e:5a:cd: 4c:0e:41:75:d0:5c:3e:a0:0a:57:4d:c9:e9:fc:af:4a:26:c5: a2:30:4d:73:70:8a:f0:8c:f2:9d:47:ee:b9:63:b1:e6:aa:cd: 98:7a:54:09:d9:c1:ae:3c:8e:d0:b4:eb:03:29:b2:ee:88:e2: b0:c9:0b:f9:9c:32:7e:a0:f0:15:be:cc:06:8e:f1:b3:d6:a9: 2f:b8:c3:01:ea:96:1f:6d:4e:f1:84:84:02:9c:d5:d9:10:60: d7:59:e3:4c:fb:c2:69:e0:c4:f8:45:03:bb:34:c0:59:67:ae: 6d:12:d0:a7:a9:02:77:67:f3:c3:59:97:df:18:4b:43:b8:78: 9e:9e:b4:b3:13:94:ab:42:b0:c5:0b:c7:ee:f9:95:d6:f9:c3: 32:00:89:f6:ff:85:96:f8:63:6c:12:ac:d4:b6:1d:f0:c9:2d: fa:97:83:36:ec:93:05:de:9a:df:ce:78:5a:da:2a:31:88:d9: 43:79:3d:5b:99:6e:1a:4a:23:6f:0b:03:4b:16:77:66:7f:ac: eb:b8:36:1f:05:05:83:37:01:9f:c4:23:21:51:d4:a7:8f:eb: 7e:9f:81:cc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XQlEjPVo/aavvG95Ucq5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0ZjQ3Yzk4NDQwZjEwMzgyNWM4ZWE1MDc0Mjk4YjE4Y2Mx MTNlMjAwHhcNMjYwMTAyMDYyMDA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjFhOWQyMWI0NTZmMzdhN2Y5MTU3NWQxZjM0ODBkMjc5NjU2OGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvapMU6KTApqfx+zEQzF+iQ1m8D+O Q4qKkqMwUknNf4pr886nTFqOdCpZTsTNMkc9haQCRKbDmEtFtKFU9mlK3tm51edB MD1rogir+OAEyfMLt56X+N1o6izNfjlgvOzfrE4IpNb8u4tdVqkjny1qsPJHRbU1 ad+x9wcSXC0t8oR930uE0nhlDr/CNts+WPvBJAPnjjSQIC7XzgIim48y3GkCn5yc 2rGT0G8E7sZlQdsVfdyR39ZgvRW0CrFVZkYdGJrX/ghDBVADh1Ffo662juDqzReQ 9cOKbYbuEJywRrAFKMvoVPcGdzR4TfaRj6Ui7JLLqYlmHnxNpyz4RUiNqQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGYanSG0VvN6f5FXXR80gNJ5ZWiqMB8GA1UdIwQY MBaAFGT0fJhEDxA4JcjqUHQpixjMET4gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlBSOG1FUVBFRGdseU9wUWRDbUxHTXdSUGlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTlhZWItYzcxMy00MmY4LTkxZDYt Mzg0NDc4NTVkNjY5LzEvWmhxZEliUlc4M3Bfa1ZkZEh6U0EwbmxsYUtvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wOTlhZWItYzcxMy00MmY4LTkxZDYtMzg0NDc4NTVkNjY5 LzEvWlBSOG1FUVBFRGdseU9wUWRDbUxHTXdSUGlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQO8MA0G CSqGSIb3DQEBCwUAA4IBAQBf3vLNt/lN62o5K03Fg+VRUkw05mq8m0fZHgKqwCML PTReWs1MDkF10Fw+oApXTcnp/K9KJsWiME1zcIrwjPKdR+65Y7Hmqs2YelQJ2cGu PI7QtOsDKbLuiOKwyQv5nDJ+oPAVvswGjvGz1qkvuMMB6pYfbU7xhIQCnNXZEGDX WeNM+8Jp4MT4RQO7NMBZZ65tEtCnqQJ3Z/PDWZffGEtDuHienrSzE5SrQrDFC8fu +ZXW+cMyAIn2/4WW+GNsEqzUth3wyS36l4M27JMF3prfznha2ioxiNlDeT1bmW4a SiNvCwNLFndmf6zruDYfBQWDNwGfxCMhUdSnj+t+n4HM -----END CERTIFICATE-----Generated at Mon Jan 26 05:56:18 2026 by rpki-client