This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/Z7YAJ4xfnW8yEXTxt7DbwgKIB-k.roa File: Z7YAJ4xfnW8yEXTxt7DbwgKIB-k.roa (raw, json) Hash identifier: GKuomVfKG0bBmTKzxOPpDKeuM0owMJCeX+Ke/zhIJSw= Subject key identifier: 67:B6:00:27:8C:5F:9D:6F:32:11:74:F1:B7:B0:DB:C2:02:88:07:E9 Certificate issuer: /CN=4456c14cd8724f9a909627b94e006cf69d12307b Certificate serial: 019B797EFA389B5FC81620552CD55A61E433 Authority key identifier: 44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/Z7YAJ4xfnW8yEXTxt7DbwgKIB-k.roa Signing time: Thu 01 Jan 2026 12:18:43 +0000 ROA not before: Thu 01 Jan 2026 12:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50867 IP address blocks: 185.36.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/RFbBTNhyT5qQlie5TgBs9p0SMHs.crl rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/RFbBTNhyT5qQlie5TgBs9p0SMHs.mft rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:fa:38:9b:5f:c8:16:20:55:2c:d5:5a:61:e4:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4456c14cd8724f9a909627b94e006cf69d12307b Validity Not Before: Jan 1 12:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67b600278c5f9d6f321174f1b7b0dbc2028807e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3e:e5:d2:ff:89:a1:ce:52:38:0e:9e:95:ce: 9d:f4:8e:b2:cc:26:00:09:d1:cb:7f:f4:6d:39:43: 23:63:19:38:16:72:78:d3:11:87:22:81:ac:32:39: 5e:bc:63:6e:2a:b7:a8:3a:d6:27:b2:a9:7d:20:f5: 18:cc:af:39:73:ae:cb:18:a7:f5:0b:1c:41:f6:79: 38:29:5d:e1:81:cc:63:4f:a9:0b:42:83:7c:ce:d3: 37:af:f1:13:f3:ca:81:4e:35:fb:3e:07:a7:aa:9b: ed:7b:cc:62:a1:a5:03:d8:0a:77:56:bd:a9:ae:44: 9a:6f:0c:02:e1:71:00:cb:54:fc:2d:b4:86:f1:31: eb:af:66:f2:cb:25:82:99:bb:d6:de:6e:4b:4a:6f: 68:8e:cd:fa:0a:7f:d6:76:ce:1c:74:f3:05:46:70: c4:de:cd:56:7a:21:6a:68:b5:5f:e1:7b:e7:56:8a: 7b:21:83:8c:95:a3:83:5e:11:0b:12:ff:5f:77:e2: 24:52:a9:d0:e8:91:c4:cb:6b:70:72:a9:78:db:7e: dd:b9:33:2f:70:62:07:a6:6a:71:df:fa:45:0e:89: d3:f8:4c:d8:e1:66:50:53:dc:ed:fb:7a:33:af:3a: 98:eb:5e:a3:e8:c6:db:ae:1f:3d:f9:2a:1f:75:ce: f9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B6:00:27:8C:5F:9D:6F:32:11:74:F1:B7:B0:DB:C2:02:88:07:E9 X509v3 Authority Key Identifier: keyid:44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/Z7YAJ4xfnW8yEXTxt7DbwgKIB-k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/RFbBTNhyT5qQlie5TgBs9p0SMHs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.36.125.0/24 Signature Algorithm: sha256WithRSAEncryption 24:5f:9c:38:c9:4b:1d:35:2e:e7:65:28:d8:11:a2:ea:01:8d: ff:89:f6:e4:b5:44:9c:43:27:5c:79:4b:11:a4:3d:a2:e2:a2: 4f:f4:99:ea:85:73:db:94:0a:04:52:a4:82:b4:18:79:82:be: 1c:e1:fc:89:3b:2e:b2:00:b0:e1:65:4e:ec:31:e2:ac:13:3b: 5c:43:ff:d2:60:1a:13:22:85:5f:d4:e6:62:5d:49:1a:0c:d5: 6f:03:5e:b1:b2:94:85:02:19:76:10:68:68:4a:ee:2e:ac:fd: 78:99:3b:8e:10:be:be:db:24:ad:67:89:f4:03:4f:09:84:01: 63:a4:95:79:1d:83:95:df:0e:1e:7f:07:84:8b:8c:b7:ba:0b: 00:72:e3:54:a4:77:8c:26:47:4e:0f:b2:1c:8e:32:07:3d:0b: 7b:4f:fb:92:e9:9a:51:e7:70:83:40:c7:06:41:9c:fc:32:6a: bc:34:c4:67:1f:cc:48:a9:3c:44:5a:2d:7f:2e:3d:41:76:df: 0a:a8:0e:7b:52:cb:69:cb:15:45:9b:c4:a0:e3:ef:0d:16:fe: 96:cf:e2:3a:8e:9d:32:04:bf:9f:3b:c3:06:68:db:f3:2c:1f: b0:f6:72:8a:86:ae:32:b9:3a:4f:27:5f:6c:cd:a3:18:12:75: 03:f4:84:3f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fvo4m1/IFiBVLNVaYeQzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0NTZjMTRjZDg3MjRmOWE5MDk2MjdiOTRlMDA2Y2Y2OWQx MjMwN2IwHhcNMjYwMTAxMTIxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2I2MDAyNzhjNWY5ZDZmMzIxMTc0ZjFiN2IwZGJjMjAyODgwN2U5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArD7l0v+Joc5SOA6elc6d9I6yzCYA CdHLf/RtOUMjYxk4FnJ40xGHIoGsMjlevGNuKreoOtYnsql9IPUYzK85c67LGKf1 CxxB9nk4KV3hgcxjT6kLQoN8ztM3r/ET88qBTjX7Pgenqpvte8xioaUD2Ap3Vr2p rkSabwwC4XEAy1T8LbSG8THrr2byyyWCmbvW3m5LSm9ojs36Cn/Wds4cdPMFRnDE 3s1WeiFqaLVf4XvnVop7IYOMlaODXhELEv9fd+IkUqnQ6JHEy2twcql4237duTMv cGIHpmpx3/pFDonT+EzY4WZQU9zt+3ozrzqY616j6Mbbrh89+Sofdc75AQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGe2ACeMX51vMhF08bew28ICiAfpMB8GA1UdIwQY MBaAFERWwUzYck+akJYnuU4AbPadEjB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkZiQlROaHlUNXFRbGllNVRnQnM5cDBTTUhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS81ZWNmYzItZGE3MC00MzMzLThmOTYt NWI4NzgyNWMwN2VlLzEvWjdZQUo0eGZuVzh5RVhUeHQ3RGJ3Z0tJQi1rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS81ZWNmYzItZGE3MC00MzMzLThmOTYtNWI4NzgyNWMwN2Vl LzEvUkZiQlROaHlUNXFRbGllNVRnQnM5cDBTTUhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSR9MA0G CSqGSIb3DQEBCwUAA4IBAQAkX5w4yUsdNS7nZSjYEaLqAY3/ifbktUScQydceUsR pD2i4qJP9JnqhXPblAoEUqSCtBh5gr4c4fyJOy6yALDhZU7sMeKsEztcQ//SYBoT IoVf1OZiXUkaDNVvA16xspSFAhl2EGhoSu4urP14mTuOEL6+2yStZ4n0A08JhAFj pJV5HYOV3w4efweEi4y3ugsAcuNUpHeMJkdOD7IcjjIHPQt7T/uS6ZpR53CDQMcG QZz8Mmq8NMRnH8xIqTxEWi1/Lj1Bdt8KqA57UstpyxVFm8Sg4+8NFv6Wz+I6jp0y BL+fO8MGaNvzLB+w9nKKhq4yuTpPJ19szaMYEnUD9IQ/ -----END CERTIFICATE-----Generated at Sun Jan 25 15:28:59 2026 by rpki-client