This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/ZMcpzSwF8sfXNSwmkOe8TDMBSJw.roa File: ZMcpzSwF8sfXNSwmkOe8TDMBSJw.roa (raw, json) Hash identifier: +y1O8tgMcUGxxeeg9mLZswZb6MR8jtPoqrvAjwcYJzU= Subject key identifier: 64:C7:29:CD:2C:05:F2:C7:D7:35:2C:26:90:E7:BC:4C:33:01:48:9C Certificate issuer: /CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f Certificate serial: 019B76EB2270BC75B2C657DCCDD7E011C898 Authority key identifier: AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/ZMcpzSwF8sfXNSwmkOe8TDMBSJw.roa Signing time: Thu 01 Jan 2026 00:17:59 +0000 ROA not before: Thu 01 Jan 2026 00:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60507 IP address blocks: 81.94.220.0/22 maxlen: 24 81.94.220.0/23 maxlen: 24 81.94.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.crl rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.mft rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:22:70:bc:75:b2:c6:57:dc:cd:d7:e0:11:c8:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f Validity Not Before: Jan 1 00:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64c729cd2c05f2c7d7352c2690e7bc4c3301489c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:7b:14:6b:36:8a:18:20:c8:75:9d:e6:0c:aa: 9a:71:39:f6:60:53:b4:16:a3:6a:a8:c3:1f:c9:fe: cc:e2:e2:55:a4:cd:20:b9:e8:03:63:af:e8:d9:90: 2f:1e:89:84:8f:0a:77:58:94:dd:1b:e9:fc:40:7d: a8:07:c0:18:10:17:cd:cb:14:17:4f:4e:e4:0f:b1: 1b:fc:3c:2d:3d:f4:19:66:8c:19:ee:73:ee:aa:5e: 22:8b:79:4b:99:a5:e0:43:0a:a2:4a:c6:6b:a5:6d: 28:be:b9:59:87:a6:bd:13:23:43:41:13:15:08:73: 2e:b4:e6:ba:31:d2:29:7d:5f:30:f2:04:8c:44:2f: d1:ba:19:47:6d:02:4a:40:e0:48:c3:33:31:b8:05: 1d:91:2e:5b:94:2d:80:ec:80:24:67:da:68:99:bb: ff:46:3f:ae:96:fa:09:5a:70:38:1a:73:c1:57:35: 03:44:c3:86:37:54:3e:7b:5e:ed:95:3a:bc:a1:cb: e5:5a:b6:29:07:2b:04:59:4b:b3:d3:94:9a:6f:60: 61:e3:69:28:df:2a:29:b3:f9:af:dc:f7:a9:6c:1a: b1:14:56:dd:30:ad:21:22:e9:f4:36:18:eb:df:4c: 7b:55:71:6e:7e:3f:41:3d:6a:ac:42:e6:5b:1e:83: b7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C7:29:CD:2C:05:F2:C7:D7:35:2C:26:90:E7:BC:4C:33:01:48:9C X509v3 Authority Key Identifier: keyid:AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/ZMcpzSwF8sfXNSwmkOe8TDMBSJw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.94.220.0/22 Signature Algorithm: sha256WithRSAEncryption 40:0a:82:99:9b:ef:da:f1:4a:d2:79:75:21:b6:31:20:fc:56: b6:e4:30:ca:43:d3:4b:3c:b8:e0:77:b4:d9:43:f9:aa:a2:12: d4:c9:c8:ef:a4:c3:ee:8c:e1:53:86:5f:4a:84:eb:4a:b2:0a: bb:27:28:3a:64:83:fb:82:c4:b9:1b:62:4e:a6:25:02:b3:f5: 74:b8:f6:ff:05:a3:56:c6:86:d0:22:4a:c9:be:29:c0:3a:c0: e3:47:38:5c:00:a8:47:10:6d:0a:c7:b2:62:87:6c:3d:1f:5a: 65:5c:b8:75:3a:e0:4c:00:9c:da:c2:1e:72:47:a9:9e:1f:63: 08:7b:5d:e7:c0:eb:7c:2b:0f:cc:3b:8d:ca:f7:20:a7:f3:ce: 9e:94:d9:a0:95:17:e3:1f:0a:bf:18:ef:e7:f0:f2:f9:21:02: 22:0f:37:da:73:1f:5f:f7:c3:4e:02:b7:a4:da:bd:17:84:dc: 8d:62:65:6b:6a:a9:23:ce:c5:fb:c7:ad:04:a4:05:3d:79:e5: c5:8a:54:c1:66:13:a7:9c:47:d5:5e:26:30:6d:99:6b:95:8f: 10:55:d8:2d:95:d1:d1:92:68:12:b4:74:f4:0f:ed:d3:aa:49: 5c:70:fc:c3:e3:b6:91:0d:04:1a:33:20:83:f3:1a:65:62:e0: 98:9a:bd:fb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26yJwvHWyxlfczdfgEciYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlYjY2ZWM1ZThmMjQwNWY2ZjhkNDg2ZTczZmI4MmI4ZGUw ZGVlMGYwHhcNMjYwMTAxMDAxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NGM3MjljZDJjMDVmMmM3ZDczNTJjMjY5MGU3YmM0YzMzMDE0ODljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi3sUazaKGCDIdZ3mDKqacTn2YFO0 FqNqqMMfyf7M4uJVpM0guegDY6/o2ZAvHomEjwp3WJTdG+n8QH2oB8AYEBfNyxQX T07kD7Eb/DwtPfQZZowZ7nPuql4ii3lLmaXgQwqiSsZrpW0ovrlZh6a9EyNDQRMV CHMutOa6MdIpfV8w8gSMRC/RuhlHbQJKQOBIwzMxuAUdkS5blC2A7IAkZ9pombv/ Rj+ulvoJWnA4GnPBVzUDRMOGN1Q+e17tlTq8ocvlWrYpBysEWUuz05Sab2Bh42ko 3yops/mv3PepbBqxFFbdMK0hIun0Nhjr30x7VXFufj9BPWqsQuZbHoO3NQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGTHKc0sBfLH1zUsJpDnvEwzAUicMB8GA1UdIwQY MBaAFK62bsXo8kBfb41IbnP7grjeDe4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnJadXhlanlRRjl2alVodWNfdUN1TjRON2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8xNTM3ODgtMTRiNy00NTUxLTlhZGUt NmFlYTkwNTdjODAwLzEvWk1jcHpTd0Y4c2ZYTlN3bWtPZThURE1CU0p3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi8xNTM3ODgtMTRiNy00NTUxLTlhZGUtNmFlYTkwNTdjODAw LzEvcnJadXhlanlRRjl2alVodWNfdUN1TjRON2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCUV7cMA0G CSqGSIb3DQEBCwUAA4IBAQBACoKZm+/a8UrSeXUhtjEg/Fa25DDKQ9NLPLjgd7TZ Q/mqohLUycjvpMPujOFThl9KhOtKsgq7Jyg6ZIP7gsS5G2JOpiUCs/V0uPb/BaNW xobQIkrJvinAOsDjRzhcAKhHEG0Kx7Jih2w9H1plXLh1OuBMAJzawh5yR6meH2MI e13nwOt8Kw/MO43K9yCn886elNmglRfjHwq/GO/n8PL5IQIiDzfacx9f98NOArek 2r0XhNyNYmVraqkjzsX7x60EpAU9eeXFilTBZhOnnEfVXiYwbZlrlY8QVdgtldHR kmgStHT0D+3TqklccPzD47aRDQQaMyCD8xplYuCYmr37 -----END CERTIFICATE-----Generated at Sun Jan 25 20:34:49 2026 by rpki-client