This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/0608zt-8orJ6kNX3XPv0kMyOK5Q.roa File: 0608zt-8orJ6kNX3XPv0kMyOK5Q.roa (raw, json) Hash identifier: W0XCT9jMbiNFbMnkrDbCdpjPNd3+brMKEABetkqN5ic= Subject key identifier: D3:AD:3C:CE:DF:BC:A2:B2:7A:90:D5:F7:5C:FB:F4:90:CC:8E:2B:94 Certificate issuer: /CN=dc899c28664ee8194a64048e46c60c6e5f190c53 Certificate serial: 019B7835122A5D6EF8FD5E92F65CB166830C Authority key identifier: DC:89:9C:28:66:4E:E8:19:4A:64:04:8E:46:C6:0C:6E:5F:19:0C:53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ImcKGZO6BlKZASORsYMbl8ZDFM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/0608zt-8orJ6kNX3XPv0kMyOK5Q.roa Signing time: Thu 01 Jan 2026 06:18:22 +0000 ROA not before: Thu 01 Jan 2026 06:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60492 IP address blocks: 213.167.75.0/24 maxlen: 24 213.167.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/3ImcKGZO6BlKZASORsYMbl8ZDFM.crl rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/3ImcKGZO6BlKZASORsYMbl8ZDFM.mft rsync://rpki.ripe.net/repository/DEFAULT/3ImcKGZO6BlKZASORsYMbl8ZDFM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:12:2a:5d:6e:f8:fd:5e:92:f6:5c:b1:66:83:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc899c28664ee8194a64048e46c60c6e5f190c53 Validity Not Before: Jan 1 06:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d3ad3ccedfbca2b27a90d5f75cfbf490cc8e2b94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:15:ed:42:01:3a:f0:e9:fd:9b:97:e8:5c:22: 90:b5:4d:94:33:29:ff:7c:0a:19:60:b4:46:c8:e3: 08:3e:f9:1f:33:ab:43:98:4d:dd:b3:1e:63:ff:71: 54:d9:96:31:24:9a:28:5e:ad:61:f6:e5:bf:d3:29: b2:82:be:a9:da:9f:62:82:ff:13:e4:ef:49:ba:73: d5:2f:e3:f5:88:69:e9:42:e4:42:5d:1b:74:f0:ba: 37:bd:b2:ca:f6:f2:38:87:44:51:b3:a5:77:9f:a4: 0f:85:4a:b9:ea:97:f3:9d:3e:7e:4a:5e:3e:99:7c: 84:ab:8d:c2:59:11:7a:e8:60:57:2c:2c:fd:90:7d: 0f:dd:74:0b:fb:f0:a1:58:d9:b2:7d:84:93:02:e3: 8b:93:41:1d:48:91:c2:31:11:bb:45:5c:73:33:93: e6:8f:3e:4d:5c:d9:89:6e:f3:35:11:4e:ae:06:fe: 85:f0:53:1e:94:99:5d:ad:29:ce:71:10:bf:b3:53: a0:f5:d0:5a:b4:57:2a:fc:ce:5f:05:25:f4:1b:06: 6f:24:0b:dc:97:de:2b:f4:fd:32:5b:a4:c1:9f:58: 82:2a:90:95:e4:4b:c1:5a:b3:db:ed:37:a0:fb:e6: e6:7f:f2:ee:23:2a:ed:88:5e:09:fa:bd:49:1f:f5: 90:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AD:3C:CE:DF:BC:A2:B2:7A:90:D5:F7:5C:FB:F4:90:CC:8E:2B:94 X509v3 Authority Key Identifier: keyid:DC:89:9C:28:66:4E:E8:19:4A:64:04:8E:46:C6:0C:6E:5F:19:0C:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ImcKGZO6BlKZASORsYMbl8ZDFM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/0608zt-8orJ6kNX3XPv0kMyOK5Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/3ImcKGZO6BlKZASORsYMbl8ZDFM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.167.75.0/24 213.167.81.0/24 Signature Algorithm: sha256WithRSAEncryption 33:2c:46:1d:64:7d:28:b5:ad:52:5e:a3:04:08:30:da:4f:69: 74:32:ba:f1:bf:5f:3a:2c:47:d9:b3:8b:89:ce:a7:c1:9d:6e: 89:20:e0:c7:87:79:a1:a6:51:cd:92:a3:87:ce:d6:02:6e:83: 68:e5:ce:97:4a:0c:50:4a:4d:7b:ca:4f:3a:84:d4:d1:08:8b: 88:b1:4b:01:ef:36:43:b7:43:aa:2b:8d:4b:94:cc:b9:e2:53: fa:c3:20:a5:7e:54:c4:18:ed:c2:be:48:31:22:a7:55:e2:c1: 2b:47:53:d0:49:d7:2b:fa:91:3c:45:8f:42:cb:30:dd:38:14: 52:27:d4:d8:3b:f9:d1:bf:5b:a2:3c:d7:8d:49:54:0b:8b:a8: 3c:7b:d5:bb:0d:fa:f3:41:60:b7:ce:c1:18:d9:fe:8b:7d:d8: 52:6c:f9:de:2c:be:c3:39:f3:b3:b1:cd:0e:d0:6c:23:25:76: d5:cd:e4:c5:85:55:05:fa:33:74:e7:d7:e8:57:ac:2d:d0:4f: b9:78:08:11:9d:71:ef:f7:d2:5c:ab:d6:fb:27:00:46:10:c2: 4f:c8:d7:09:55:0f:73:06:42:36:76:e0:32:f8:99:af:3d:dc: c5:a2:ec:93:c6:67:e5:2a:0f:b9:eb:e7:b2:01:d3:e2:39:09: 62:52:e2:24 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NRIqXW74/V6S9lyxZoMMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjODk5YzI4NjY0ZWU4MTk0YTY0MDQ4ZTQ2YzYwYzZlNWYx OTBjNTMwHhcNMjYwMTAxMDYxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkM2FkM2NjZWRmYmNhMmIyN2E5MGQ1Zjc1Y2ZiZjQ5MGNjOGUyYjk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1hXtQgE68On9m5foXCKQtU2UMyn/ fAoZYLRGyOMIPvkfM6tDmE3dsx5j/3FU2ZYxJJooXq1h9uW/0ymygr6p2p9igv8T 5O9JunPVL+P1iGnpQuRCXRt08Lo3vbLK9vI4h0RRs6V3n6QPhUq56pfznT5+Sl4+ mXyEq43CWRF66GBXLCz9kH0P3XQL+/ChWNmyfYSTAuOLk0EdSJHCMRG7RVxzM5Pm jz5NXNmJbvM1EU6uBv6F8FMelJldrSnOcRC/s1Og9dBatFcq/M5fBSX0GwZvJAvc l94r9P0yW6TBn1iCKpCV5EvBWrPb7Teg++bmf/LuIyrtiF4J+r1JH/WQGQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNOtPM7fvKKyepDV91z79JDMjiuUMB8GA1UdIwQY MBaAFNyJnChmTugZSmQEjkbGDG5fGQxTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0ltY0tHWk82QmxLWkFTT1JzWU1ibDhaREZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny81NmQ2YTgtMDc1Mi00Y2JkLTg4NDUt NTJmZTEwNTEzMTI5LzEvMDYwOHp0LThvcko2a05YM1hQdjBrTXlPSzVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny81NmQ2YTgtMDc1Mi00Y2JkLTg4NDUtNTJmZTEwNTEzMTI5 LzEvM0ltY0tHWk82QmxLWkFTT1JzWU1ibDhaREZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1adLAwQA 1adRMA0GCSqGSIb3DQEBCwUAA4IBAQAzLEYdZH0ota1SXqMECDDaT2l0Mrrxv186 LEfZs4uJzqfBnW6JIODHh3mhplHNkqOHztYCboNo5c6XSgxQSk17yk86hNTRCIuI sUsB7zZDt0OqK41LlMy54lP6wyClflTEGO3CvkgxIqdV4sErR1PQSdcr+pE8RY9C yzDdOBRSJ9TYO/nRv1uiPNeNSVQLi6g8e9W7DfrzQWC3zsEY2f6LfdhSbPneLL7D OfOzsc0O0GwjJXbVzeTFhVUF+jN059foV6wt0E+5eAgRnXHv99Jcq9b7JwBGEMJP yNcJVQ9zBkI2duAy+JmvPdzFouyTxmflKg+56+eyAdPiOQliUuIk -----END CERTIFICATE-----Generated at Sun Jan 25 21:06:13 2026 by rpki-client