This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/ZbE102VRAczBwFbNm6WP3CfOeC0.roa File: ZbE102VRAczBwFbNm6WP3CfOeC0.roa (raw, json) Hash identifier: rVoFQaYjG4H+zjgihkyFbOYOQwXJLuimbNMp54cfD9I= Subject key identifier: 65:B1:35:D3:65:51:01:CC:C1:C0:56:CD:9B:A5:8F:DC:27:CE:78:2D Certificate issuer: /CN=9d26649e4f2c795ffe540f9d97f26e99c5c5e3ff Certificate serial: 019B7F1540BF00EF965FE8DF5F5F1864E6E9 Authority key identifier: 9D:26:64:9E:4F:2C:79:5F:FE:54:0F:9D:97:F2:6E:99:C5:C5:E3:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSZknk8seV_-VA-dl_JumcXF4_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/ZbE102VRAczBwFbNm6WP3CfOeC0.roa Signing time: Fri 02 Jan 2026 14:20:57 +0000 ROA not before: Fri 02 Jan 2026 14:20:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 786 IP address blocks: 45.144.8.0/22 maxlen: 24 77.87.24.0/21 maxlen: 24 87.32.0.0/12 maxlen: 24 91.123.224.0/20 maxlen: 24 91.193.188.0/22 maxlen: 24 193.1.0.0/16 maxlen: 24 2001:770::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/nSZknk8seV_-VA-dl_JumcXF4_8.crl rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/nSZknk8seV_-VA-dl_JumcXF4_8.mft rsync://rpki.ripe.net/repository/DEFAULT/nSZknk8seV_-VA-dl_JumcXF4_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:40:bf:00:ef:96:5f:e8:df:5f:5f:18:64:e6:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d26649e4f2c795ffe540f9d97f26e99c5c5e3ff Validity Not Before: Jan 2 14:20:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65b135d3655101ccc1c056cd9ba58fdc27ce782d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:d4:82:42:e7:47:ab:2e:45:3b:0d:60:30: 6e:9e:fb:fd:c9:81:db:74:f6:30:63:87:e4:4e:49: 7b:66:54:ee:0f:ed:20:8d:4f:10:1a:37:a7:8f:43: 0e:f3:46:37:e2:67:a9:db:a8:05:05:58:17:c3:b1: 69:ae:a3:a1:88:0a:03:46:b8:c9:0c:92:17:7d:72: 54:81:e5:da:34:85:da:a2:bb:04:57:bf:5c:69:3c: ac:51:70:3e:c9:0a:ea:69:7f:4a:a6:9a:f7:b3:b9: 6d:0e:7d:d2:7f:6c:2e:d1:9c:6c:5c:02:5c:b8:e4: bf:b1:52:c4:78:ca:ec:cd:c0:95:0c:67:b1:00:33: 1e:bb:fa:9f:53:05:ca:40:76:91:f3:57:00:70:7a: fa:03:05:44:9f:9b:ab:d3:72:7c:7a:0a:a9:3b:40: 28:f5:28:94:6e:b0:dd:10:ff:a3:31:a2:30:7d:fd: e5:d8:50:64:7a:75:d3:b0:73:3a:3d:c5:54:4b:d0: 92:27:82:2b:7b:55:cc:76:b3:82:8e:3b:07:7f:70: a9:7d:e8:55:34:93:02:09:fd:26:72:57:82:47:8a: c5:7b:bc:03:f4:7b:e5:cf:90:b6:bd:8a:2b:76:ec: 13:67:0b:f3:01:f6:05:14:0e:70:37:eb:87:c3:7f: cb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B1:35:D3:65:51:01:CC:C1:C0:56:CD:9B:A5:8F:DC:27:CE:78:2D X509v3 Authority Key Identifier: keyid:9D:26:64:9E:4F:2C:79:5F:FE:54:0F:9D:97:F2:6E:99:C5:C5:E3:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSZknk8seV_-VA-dl_JumcXF4_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/ZbE102VRAczBwFbNm6WP3CfOeC0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/nSZknk8seV_-VA-dl_JumcXF4_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.144.8.0/22 77.87.24.0/21 87.32.0.0/12 91.123.224.0/20 91.193.188.0/22 193.1.0.0/16 IPv6: 2001:770::/32 Signature Algorithm: sha256WithRSAEncryption 43:ff:88:57:d3:fc:8d:65:a9:da:c9:ae:1f:ea:2b:53:03:f8: dc:29:43:a9:95:ee:c8:38:09:ab:49:92:ff:21:6a:03:26:91: 6b:4d:a8:cf:7a:da:87:e1:76:61:e9:6b:d3:56:43:49:6d:9e: b6:75:e8:d1:db:ba:18:b8:5d:e1:2e:0c:08:6e:30:9a:82:9b: 22:b7:36:b8:a7:bd:86:be:d8:7a:6f:b6:30:ad:c0:b5:e2:1e: 02:e7:0d:c1:7e:3d:5a:d7:e2:70:34:ca:4c:ac:93:c8:00:5c: fc:22:64:13:0e:2f:76:16:cd:44:4a:d8:eb:87:15:9c:2c:4c: 46:dd:31:ca:6d:29:d0:09:64:c5:ff:df:11:4e:e4:cf:7d:ff: 36:d0:ee:11:bb:78:e0:82:0a:64:41:ae:1f:15:ff:73:ce:0f: 6b:0b:c8:04:e2:4d:bb:8c:dc:3c:a1:6a:b7:b7:07:86:74:c0: ca:0d:16:56:81:29:de:82:61:25:f7:d4:63:45:70:8c:64:de: f4:ce:e0:5b:7f:c0:f0:72:32:e8:a6:20:83:4d:13:e8:7c:87: cd:09:1c:3f:6d:15:a4:0e:1b:95:2a:a1:a3:52:77:0d:ca:2c: 44:cf:a8:48:e8:3e:ef:ed:8c:04:5e:74:2d:40:b8:49:f0:ee: b2:45:a1:00 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgISAZt/FUC/AO+WX+jfX18YZObpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMjY2NDllNGYyYzc5NWZmZTU0MGY5ZDk3ZjI2ZTk5YzVj NWUzZmYwHhcNMjYwMTAyMTQyMDU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NWIxMzVkMzY1NTEwMWNjYzFjMDU2Y2Q5YmE1OGZkYzI3Y2U3ODJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxK/UgkLnR6suRTsNYDBunvv9yYHb dPYwY4fkTkl7ZlTuD+0gjU8QGjenj0MO80Y34mep26gFBVgXw7FprqOhiAoDRrjJ DJIXfXJUgeXaNIXaorsEV79caTysUXA+yQrqaX9Kppr3s7ltDn3Sf2wu0ZxsXAJc uOS/sVLEeMrszcCVDGexADMeu/qfUwXKQHaR81cAcHr6AwVEn5ur03J8egqpO0Ao 9SiUbrDdEP+jMaIwff3l2FBkenXTsHM6PcVUS9CSJ4Ire1XMdrOCjjsHf3CpfehV NJMCCf0mcleCR4rFe7wD9Hvlz5C2vYorduwTZwvzAfYFFA5wN+uHw3/LuwIDAQAB o4ICNDCCAjAwHQYDVR0OBBYEFGWxNdNlUQHMwcBWzZulj9wnzngtMB8GA1UdIwQY MBaAFJ0mZJ5PLHlf/lQPnZfybpnFxeP/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNaa25rOHNlVl8tVkEtZGxfSnVtY1hGNF84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9kYzVjMDctZWIzMC00MDhmLTg1OGEt ZWE0NjljODYwZGM2LzEvWmJFMTAyVlJBY3pCd0ZiTm02V1AzQ2ZPZUMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9kYzVjMDctZWIzMC00MDhmLTg1OGEtZWE0NjljODYwZGM2 LzEvblNaa25rOHNlVl8tVkEtZGxfSnVtY1hGNF84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTAoBAIAATAiAwQCLZAIAwQD TVcYAwMEVyADBARbe+ADBAJbwbwDAwDBATANBAIAAjAHAwUAIAEHcDANBgkqhkiG 9w0BAQsFAAOCAQEAQ/+IV9P8jWWp2smuH+orUwP43ClDqZXuyDgJq0mS/yFqAyaR a02oz3rah+F2Yelr01ZDSW2etnXo0du6GLhd4S4MCG4wmoKbIrc2uKe9hr7Yem+2 MK3AteIeAucNwX49WtficDTKTKyTyABc/CJkEw4vdhbNRErY64cVnCxMRt0xym0p 0Alkxf/fEU7kz33/NtDuEbt44IIKZEGuHxX/c84PawvIBOJNu4zcPKFqt7cHhnTA yg0WVoEp3oJhJffUY0VwjGTe9M7gW3/A8HIy6KYgg00T6HyHzQkcP20VpA4blSqh o1J3DcosRM+oSOg+7+2MBF50LUC4SfDuskWhAA== -----END CERTIFICATE-----Generated at Mon Jan 26 06:03:23 2026 by rpki-client