This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/ZioYOGsNfMxy07UlqgZrBgcTE4o.roa File: ZioYOGsNfMxy07UlqgZrBgcTE4o.roa (raw, json) Hash identifier: 4f3pcz2xE9Ywmo/wXO916PUITihDfuTfzvT55VS4uaY= Subject key identifier: 66:2A:18:38:6B:0D:7C:CC:72:D3:B5:25:AA:06:6B:06:07:13:13:8A Certificate issuer: /CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83 Certificate serial: 019AED623D1205AC29C1D5BA541568761B39 Authority key identifier: 4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/ZioYOGsNfMxy07UlqgZrBgcTE4o.roa Signing time: Fri 05 Dec 2025 07:20:29 +0000 ROA not before: Fri 05 Dec 2025 07:20:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 12843 IP address blocks: 193.17.197.0/24 maxlen: 24 194.145.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ed:62:3d:12:05:ac:29:c1:d5:ba:54:15:68:76:1b:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83 Validity Not Before: Dec 5 07:20:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=662a18386b0d7ccc72d3b525aa066b060713138a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:62:cc:ce:dc:97:4b:d7:27:47:ed:57:e5:56: 1f:b5:1b:59:87:01:f8:20:e1:dd:db:5b:60:e8:f1: 33:5e:55:e3:ca:af:ac:d1:86:16:10:61:9e:cf:43: 32:a0:11:5d:43:55:73:8e:96:7c:8b:ae:76:20:cd: 00:a9:c6:32:92:28:a7:65:45:98:92:a7:6e:dc:34: 91:56:06:1e:28:22:f8:d1:ff:fb:23:8e:2a:ff:ba: 9e:40:72:ca:44:6b:02:e4:d4:60:d7:1f:57:21:06: 5a:e2:58:0a:67:b7:2f:35:d5:c4:93:81:f3:db:3e: 86:06:28:f6:a6:23:dc:c3:f2:12:13:c2:ae:36:8e: 33:a2:29:8f:b4:f3:fd:37:60:b9:33:a0:e7:4b:9f: 43:ac:09:19:26:3b:9c:d6:df:fa:59:ef:3c:28:d7: 31:6c:b8:ba:82:5a:d0:fe:22:dd:a6:73:90:44:77: b9:d9:34:dc:4c:90:1d:49:0d:00:8d:b9:80:29:9e: 92:66:0e:90:59:9e:cb:b1:9a:e7:78:ac:3e:6a:29: 13:7f:c7:47:2e:9b:ae:a3:74:ba:69:ed:fa:9f:1a: d6:ea:a8:95:90:5f:b9:ba:07:07:43:d9:27:13:2a: 70:cc:07:43:b6:38:e8:3d:b8:68:ee:4d:24:8c:49: f3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:2A:18:38:6B:0D:7C:CC:72:D3:B5:25:AA:06:6B:06:07:13:13:8A X509v3 Authority Key Identifier: keyid:4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/ZioYOGsNfMxy07UlqgZrBgcTE4o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.17.197.0/24 194.145.114.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:81:5b:f4:b0:48:06:46:56:80:1c:c6:0a:a3:e2:33:53:67: a1:d6:d4:46:f6:92:2c:94:30:e2:fe:fd:e7:2d:33:fc:f7:a2: da:98:75:b1:b8:f4:2c:68:36:13:ba:49:77:1e:4f:db:b0:aa: 62:9a:ca:79:41:ff:af:79:7f:94:b6:55:11:f6:5c:af:d9:82: 62:b5:bb:55:3c:74:73:e2:08:c8:0e:95:72:30:b8:2b:f1:3b: 34:8a:fd:28:e1:cd:29:b3:71:94:b0:f4:68:b5:3c:ac:8b:15: d3:a4:02:28:0c:89:cf:82:6e:06:de:99:b0:7f:d4:18:56:c4: 30:24:12:22:69:f1:93:87:ba:6d:a9:fb:14:fa:1d:17:e5:53: e4:b1:b1:f3:ef:e6:ef:d6:aa:65:16:dc:de:4c:cb:08:e7:16: ea:e8:36:81:30:10:98:d6:8e:76:b9:9f:07:1b:6d:06:58:e9: 07:43:46:3c:5e:63:b8:56:0d:ac:74:02:85:68:14:32:af:b9: 0e:8b:a8:1f:34:74:4e:1a:52:a9:b5:bd:25:bd:8f:2e:ae:03: b1:e5:c0:b7:bc:77:77:32:dd:6d:be:b4:39:9b:69:d6:ac:42: 0a:04:ec:d1:82:7d:ba:cc:23:4e:b1:98:93:2b:ba:73:78:27: d4:86:cf:5b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZrtYj0SBawpwdW6VBVodhs5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNjhlMWZiYTdiNDRhN2I2NjYyMzZiMjEyNTNkN2Q2MzYy ZDBkODMwHhcNMjUxMjA1MDcyMDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjJhMTgzODZiMGQ3Y2NjNzJkM2I1MjVhYTA2NmIwNjA3MTMxMzhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7WLMztyXS9cnR+1X5VYftRtZhwH4 IOHd21tg6PEzXlXjyq+s0YYWEGGez0MyoBFdQ1VzjpZ8i652IM0AqcYykiinZUWY kqdu3DSRVgYeKCL40f/7I44q/7qeQHLKRGsC5NRg1x9XIQZa4lgKZ7cvNdXEk4Hz 2z6GBij2piPcw/ISE8KuNo4zoimPtPP9N2C5M6DnS59DrAkZJjuc1t/6We88KNcx bLi6glrQ/iLdpnOQRHe52TTcTJAdSQ0AjbmAKZ6SZg6QWZ7LsZrneKw+aikTf8dH Lpuuo3S6ae36nxrW6qiVkF+5ugcHQ9knEypwzAdDtjjoPbho7k0kjEnzQwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGYqGDhrDXzMctO1JaoGawYHExOKMB8GA1UdIwQY MBaAFEto4funtEp7ZmI2shJT19Y2LQ2DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzJqaC02ZTBTbnRtWWpheUVsUFgxall0RFlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mMTQwNzktNDExNC00YmVjLTg3OWMt OGIwNmVjNTY0YTFiLzEvWmlvWU9Hc05mTXh5MDdVbHFnWnJCZ2NURTRvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9mMTQwNzktNDExNC00YmVjLTg3OWMtOGIwNmVjNTY0YTFi LzEvUzJqaC02ZTBTbnRtWWpheUVsUFgxall0RFlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwRHFAwQA wpFyMA0GCSqGSIb3DQEBCwUAA4IBAQAbgVv0sEgGRlaAHMYKo+IzU2eh1tRG9pIs lDDi/v3nLTP896LamHWxuPQsaDYTukl3Hk/bsKpimsp5Qf+veX+UtlUR9lyv2YJi tbtVPHRz4gjIDpVyMLgr8Ts0iv0o4c0ps3GUsPRotTysixXTpAIoDInPgm4G3pmw f9QYVsQwJBIiafGTh7ptqfsU+h0X5VPksbHz7+bv1qplFtzeTMsI5xbq6DaBMBCY 1o52uZ8HG20GWOkHQ0Y8XmO4Vg2sdAKFaBQyr7kOi6gfNHROGlKptb0lvY8urgOx 5cC3vHd3Mt1tvrQ5m2nWrEIKBOzRgn26zCNOsZiTK7pzeCfUhs9b -----END CERTIFICATE-----Generated at Sat Dec 6 18:22:44 2025 by rpki-client